$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/7072DE7601C911EC9286E827C4F9AE02.roa File: 7072DE7601C911EC9286E827C4F9AE02.roa (raw, json) Hash identifier: 8HpuGDjJ1HaUnvbqwg2p0RqMWNKRPbkcusj7/8dGWQ0= Subject key identifier: 66:0C:D5:79:1F:A5:44:88:A9:2D:F8:83:FE:CE:0F:48:BE:D5:69:36 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0E98 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/7072DE7601C911EC9286E827C4F9AE02.roa Signing time: Tue 02 Sep 2025 18:37:58 +0000 ROA not before: Tue 02 Sep 2025 18:37:58 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 210872 IP address blocks: 2405:84c0:fdfc::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 18:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3736 (0xe98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60, serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 2 18:37:58 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b73985-3241 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d4:cf:34:bc:98:78:44:5c:10:33:fc:21:5b: 4c:4d:31:4c:70:2c:39:20:45:d5:1c:9e:8f:44:a8: f3:34:fd:8e:86:b9:9a:1d:7a:20:09:89:49:50:6b: 91:ad:9e:5e:e0:96:9c:c7:9d:44:70:4d:5d:33:db: 67:55:cc:d4:cb:86:83:62:c8:e5:67:31:2f:ba:28: 51:2d:60:17:2a:9d:b1:cc:2e:64:8b:9b:96:bd:3e: 85:89:0d:26:cb:7a:c4:ab:93:f7:71:e3:31:47:0b: 4e:b7:c3:8b:f0:7b:9c:bf:b5:c6:df:43:68:81:fa: 5b:20:44:e0:fc:bc:d4:f9:62:8f:6c:22:75:63:bf: c5:a5:a4:5f:3c:56:30:f9:1b:66:01:bc:64:4d:e3: c7:b2:d7:98:c0:e7:02:2d:19:b4:cc:56:1f:94:a2: a0:49:15:93:60:80:01:37:3c:a0:61:33:5d:31:e1: 69:fd:2c:0b:1b:92:d0:fb:7d:0c:f9:42:28:19:41: 3a:43:8e:bb:f2:2a:d1:36:6e:b7:1b:fd:91:08:f5: be:c4:65:3c:4d:a0:eb:e3:53:a0:f1:3c:3c:19:54: df:c6:7d:b2:b6:13:e6:9f:f1:8c:68:c6:63:df:52: e7:f6:39:88:44:a6:61:3c:dd:e1:f7:0e:1a:b9:d9: 2a:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:0C:D5:79:1F:A5:44:88:A9:2D:F8:83:FE:CE:0F:48:BE:D5:69:36 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/7072DE7601C911EC9286E827C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:fdfc::/46 Signature Algorithm: sha256WithRSAEncryption b4:33:e7:95:8e:7a:9e:68:ff:f6:ac:cd:d3:ed:a2:f4:b2:27: ee:91:ad:63:a0:77:61:91:29:73:74:fb:12:26:11:a3:1c:da: a5:3e:7c:f6:71:1a:f4:43:d3:32:46:83:b4:bb:57:1b:03:0e: b2:7d:f6:09:94:77:ca:e0:71:4b:44:33:62:82:c9:14:ed:85: 62:71:57:38:ae:46:86:0c:c6:6e:b9:7f:45:54:6e:90:10:37: 16:1d:67:f8:78:b2:2f:1e:27:42:14:55:09:33:47:70:8f:ea: 22:fa:d4:d0:52:16:1a:18:ba:71:25:5c:85:fe:40:0f:e7:9c: 0b:09:d3:84:b3:1a:9a:89:8a:00:71:fa:af:c2:be:c4:f9:d0: 97:50:1b:42:46:86:26:2c:83:ac:47:36:14:07:f3:cc:0e:39: 6d:f0:b3:5c:53:13:76:0a:4d:9e:87:6b:92:18:ce:98:94:b5: ee:d2:75:44:33:8e:6b:25:a2:d3:ef:94:70:bd:83:eb:07:e5: c5:e1:59:e8:71:c5:6a:47:d3:45:15:22:a1:e6:44:bc:81:b2: 3a:18:3a:71:45:1e:5f:3e:de:80:45:7f:64:25:59:b8:89:bf: f2:96:41:eb:d7:2d:f7:9d:03:e6:f1:d6:08:d0:b8:c6:06:ec: 91:f3:a1:d5 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDpgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjUwOTAyMTgzNzU4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3Mzk4NS0zMjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstTPNLyYeERcEDP8IVtMTTFMcCw5IEXVHJ6PRKjzNP2OhrmaHXogCYlJUGuR rZ5e4Jacx51EcE1dM9tnVczUy4aDYsjlZzEvuihRLWAXKp2xzC5ki5uWvT6FiQ0m y3rEq5P3ceMxRwtOt8OL8Hucv7XG30NogfpbIETg/LzU+WKPbCJ1Y7/FpaRfPFYw +RtmAbxkTePHsteYwOcCLRm0zFYflKKgSRWTYIABNzygYTNdMeFp/SwLG5LQ+30M +UIoGUE6Q4678irRNm63G/2RCPW+xGU8TaDr41Og8Tw8GVTfxn2ythPmn/GMaMZj 31Ln9jmIRKZhPN3h9w4audkqSQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFGYM1Xkf pUSIqS34g/7OD0i+1Wk2MB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvNzA3MkRFNzYw MUM5MTFFQzkyODZFODI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwIkBYTA/fwwDQYJKoZIhvcNAQELBQADggEBALQz55WOep5o //aszdPtovSyJ+6RrWOgd2GRKXN0+xImEaMc2qU+fPZxGvRD0zJGg7S7VxsDDrJ9 9gmUd8rgcUtEM2KCyRTthWJxVziuRoYMxm65f0VUbpAQNxYdZ/h4si8eJ0IUVQkz R3CP6iL61NBSFhoYunElXIX+QA/nnAsJ04SzGpqJigBx+q/CvsT50JdQG0JGhiYs g6xHNhQH88wOOW3ws1xTE3YKTZ6Ha5IYzpiUte7SdUQzjmslotPvlHC9g+sH5cXh WehxxWpH00UVIqHmRLyBsjoYOnFFHl8+3oBFf2QlWbiJv/KWQevXLfedA+bx1gjQ uMYG7JHzodU= -----END CERTIFICATE-----Generated at Thu Sep 4 10:26:59 2025 by rpki-client