$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/81CDB96A53F111EB85FBFA19C4F9AE02.roa File: 81CDB96A53F111EB85FBFA19C4F9AE02.roa (raw, json) Hash identifier: a0zumIIFq60VnU+h+sczBC8nSfMUtNZJOT2cGQXHtFM= Subject key identifier: 3B:D8:AD:25:DA:EA:1D:21:79:65:CA:E1:22:75:71:71:B0:9D:B2:5E Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0E9F Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/81CDB96A53F111EB85FBFA19C4F9AE02.roa Signing time: Tue 02 Sep 2025 18:38:05 +0000 ROA not before: Tue 02 Sep 2025 18:38:05 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 59598 IP address blocks: 2405:84c0:ff20::/44 maxlen: 44 2405:84c0:ff20::/48 maxlen: 48 2405:84c0:ff21::/48 maxlen: 48 2405:84c0:ff22::/48 maxlen: 48 2405:84c0:ff23::/48 maxlen: 48 2405:84c0:ff24::/48 maxlen: 48 2405:84c0:ff25::/48 maxlen: 48 2405:84c0:ff26::/48 maxlen: 48 2405:84c0:ff27::/48 maxlen: 48 2405:84c0:ff28::/48 maxlen: 48 2405:84c0:ff29::/48 maxlen: 48 2405:84c0:ff2a::/48 maxlen: 48 2405:84c0:ff2b::/48 maxlen: 48 2405:84c0:ff2c::/48 maxlen: 48 2405:84c0:ff2d::/48 maxlen: 48 2405:84c0:ff2e::/48 maxlen: 48 2405:84c0:ff2f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 18:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3743 (0xe9f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60, serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 2 18:38:05 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7398d-236b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:92:6a:eb:c9:d5:58:9a:e7:16:24:3b:1d:a7: b8:de:3b:04:9d:e0:d1:b0:53:7d:52:1a:bc:50:bf: 2d:f0:f8:91:49:88:d8:2f:1b:0a:24:1f:02:cb:4e: e8:5f:b7:d9:ff:a0:48:51:36:23:ac:41:6a:03:22: dc:84:4e:55:73:d7:e0:db:db:8c:04:b9:fb:b7:b5: 1c:c7:4b:c6:b8:38:25:5a:02:1a:05:e9:95:d6:31: c9:f8:f5:b1:78:cd:03:f7:8b:c4:a5:bf:58:ea:65: ee:21:0d:e6:f7:d5:6d:c8:55:80:ca:fd:11:9c:e0: 1c:38:c6:3a:5c:11:42:4e:88:a0:a4:54:e0:b9:f9: f7:75:98:94:0b:85:1f:ee:b0:49:ce:87:72:71:2b: 2e:94:e8:ef:97:71:4c:82:99:5c:da:e8:86:0d:ba: 52:15:3d:69:27:0c:e9:f9:e0:7a:98:22:e2:86:69: 99:36:7f:6c:e7:39:81:97:9d:6c:2d:9d:28:7e:df: 59:e1:c0:8d:60:67:15:3c:c9:4a:52:bf:ed:36:49: 84:2b:d6:b2:9e:3f:22:85:dc:1f:6b:47:4e:86:6a: 9b:33:dc:da:f0:a3:bd:d4:b3:62:eb:05:97:84:e1: 8a:7a:3a:f0:45:f0:37:51:51:a4:2d:59:67:5b:2a: db:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:D8:AD:25:DA:EA:1D:21:79:65:CA:E1:22:75:71:71:B0:9D:B2:5E X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/81CDB96A53F111EB85FBFA19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:ff20::/44 Signature Algorithm: sha256WithRSAEncryption 32:03:e1:30:94:ff:5b:f6:1f:76:c1:67:c5:09:42:0a:a0:19: 32:b4:e9:ae:95:8b:0e:85:50:fa:ee:22:07:7c:24:d5:42:b7: 52:9e:48:15:70:69:e7:9f:88:6b:06:e9:e6:f3:bc:76:f8:2a: 4f:32:8b:f8:4c:c7:98:7d:a0:96:f4:1b:a7:18:1c:ee:f6:a1: 44:27:5b:e2:eb:e0:47:c3:c3:b0:8b:aa:01:2e:93:b3:29:ec: f4:50:97:b9:a4:26:87:7c:0a:e9:69:f8:95:29:7c:ed:ae:6e: 27:9d:34:ed:33:46:92:05:4b:d9:b0:f0:c5:d6:00:c3:3d:7f: bb:70:34:f6:5f:f9:3e:9e:d7:74:98:14:ce:c1:7d:1a:6b:77: ac:42:89:1e:05:c8:30:ca:55:59:72:a1:33:21:0c:ad:4b:ec: 06:71:e7:b1:be:d4:6d:b6:cd:bb:c4:d8:27:79:05:0b:ed:22: f6:e1:ec:bc:a1:c4:13:39:a1:bf:60:2c:a4:80:04:0d:f7:58: d5:a8:52:57:ac:9c:91:b1:a3:4d:31:d9:5e:fc:4e:57:49:bd: 90:0c:dc:24:a9:2d:b5:e9:42:76:9a:b4:b6:cb:4f:10:c5:e7: d3:4b:8c:68:85:73:57:8a:7b:0d:64:47:08:1f:18:d9:a0:1b: 7b:70:03:e9 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDp8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjUwOTAyMTgzODA1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3Mzk4ZC0yMzZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6ZJq68nVWJrnFiQ7Hae43jsEneDRsFN9Uhq8UL8t8PiRSYjYLxsKJB8Cy07o X7fZ/6BIUTYjrEFqAyLchE5Vc9fg29uMBLn7t7Ucx0vGuDglWgIaBemV1jHJ+PWx eM0D94vEpb9Y6mXuIQ3m99VtyFWAyv0RnOAcOMY6XBFCToigpFTgufn3dZiUC4Uf 7rBJzodycSsulOjvl3FMgplc2uiGDbpSFT1pJwzp+eB6mCLihmmZNn9s5zmBl51s LZ0oft9Z4cCNYGcVPMlKUr/tNkmEK9aynj8ihdwfa0dOhmqbM9za8KO91LNi6wWX hOGKejrwRfA3UVGkLVlnWyrbkQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFDvYrSXa 6h0heWXK4SJ1cXGwnbJeMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvODFDREI5NkE1 M0YxMTFFQjg1RkJGQTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBYTA/yAwDQYJKoZIhvcNAQELBQADggEBADID4TCU/1v2 H3bBZ8UJQgqgGTK06a6Viw6FUPruIgd8JNVCt1KeSBVwaeefiGsG6ebzvHb4Kk8y i/hMx5h9oJb0G6cYHO72oUQnW+Lr4EfDw7CLqgEuk7Mp7PRQl7mkJod8Culp+JUp fO2ubiedNO0zRpIFS9mw8MXWAMM9f7twNPZf+T6e13SYFM7BfRprd6xCiR4FyDDK VVlyoTMhDK1L7AZx57G+1G22zbvE2Cd5BQvtIvbh7LyhxBM5ob9gLKSABA33WNWo UlesnJGxo00x2V78TldJvZAM3CSpLbXpQnaatLbLTxDF59NLjGiFc1eKew1kRwgf GNmgG3twA+k= -----END CERTIFICATE-----Generated at Thu Sep 4 10:25:30 2025 by rpki-client