$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/915FFF14A5AF11EAB039ED67C4F9AE02.roa File: 915FFF14A5AF11EAB039ED67C4F9AE02.roa (raw, json) Hash identifier: 1H9jP4UG0MauS5NOFFxuSSAQmI9fS/xoBhEMmaqDQtc= Subject key identifier: 2F:0C:D5:18:90:A5:0A:32:33:6D:59:5B:69:4E:4D:D0:E9:90:90:60 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0E99 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/915FFF14A5AF11EAB039ED67C4F9AE02.roa Signing time: Tue 02 Sep 2025 18:37:59 +0000 ROA not before: Tue 02 Sep 2025 18:37:59 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 213136 IP address blocks: 2405:84c0:fcf2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 18:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3737 (0xe99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60, serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 2 18:37:59 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b73986-c917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c9:21:da:b2:a0:3a:3d:c3:f5:c5:fc:00:0b: a7:95:ba:47:60:12:55:3e:74:c8:60:ab:30:7d:b3: 23:b0:30:2b:59:16:9f:0c:08:41:74:c8:38:d6:e6: bd:87:99:ba:2e:fb:b6:c7:ab:c4:69:19:74:32:99: e6:c9:7a:06:99:84:b6:61:2d:a2:43:fc:21:2e:03: 45:cb:95:be:e2:08:99:29:ef:7c:5b:51:60:0c:b7: a5:7a:cc:40:4e:01:d5:51:14:52:9f:13:35:c6:e3: 7c:44:56:94:42:95:41:20:f6:b6:63:20:3b:6a:57: 5c:76:e8:1f:b2:42:fa:b3:22:0f:44:bd:47:a6:0a: a9:4a:d8:78:b2:04:ab:d7:d9:96:17:ab:14:dc:34: 94:be:47:f8:cd:bb:4c:60:d2:b0:ec:9c:33:57:6d: f2:80:5c:b2:f0:24:87:33:89:48:2d:31:d6:b7:cd: ee:7f:8b:83:01:c2:39:2f:c9:ac:25:e7:40:8c:26: c6:ff:30:6d:d5:77:a1:7b:31:96:a1:92:41:df:47: 1b:96:35:b6:60:18:9b:4b:4e:9d:1c:46:62:1d:a7: d9:e2:a8:b4:c6:c5:6d:75:23:8a:95:3b:8d:38:53: 3b:71:01:c3:f9:16:cc:e3:ff:42:04:fc:86:5f:86: 63:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:0C:D5:18:90:A5:0A:32:33:6D:59:5B:69:4E:4D:D0:E9:90:90:60 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/915FFF14A5AF11EAB039ED67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:fcf2::/48 Signature Algorithm: sha256WithRSAEncryption 66:ec:c9:42:4d:24:d2:46:2c:2e:e5:3d:74:e2:30:8c:43:1b: 1b:34:75:65:20:0f:ba:f6:b1:65:36:1c:2e:f8:11:c0:3a:69: d6:ad:2f:b3:f5:cc:91:d4:d5:84:c7:01:13:7b:d8:e4:e4:86: 4b:ae:52:4b:81:19:98:c2:4a:68:28:13:35:8b:06:d2:5c:38: 05:9e:d5:35:82:05:b6:cb:a8:6a:dc:58:ef:db:c4:04:26:85: 3f:04:d6:76:ca:42:6b:51:60:f3:b2:a1:5e:c3:05:cc:d8:2e: d6:7a:3b:10:0f:52:1a:fd:bb:eb:df:a6:4a:02:1e:a5:26:c6: b0:3d:63:55:fe:97:6a:4f:ac:6b:16:7d:16:4e:6f:65:1d:65: cc:8c:3d:13:32:1b:89:f1:44:34:67:12:db:67:c3:85:79:ab: 15:d6:d5:f7:32:a5:f7:df:5f:9b:1a:25:29:fa:f9:f5:7e:ac: 61:64:92:07:14:4f:19:36:c1:20:85:97:6f:91:1e:bc:dd:01: c2:62:88:82:3f:38:ec:88:6b:75:6e:5b:0a:67:df:b5:71:86: 38:62:a2:c3:49:e0:9b:9c:84:b9:40:c6:2c:9b:5d:fa:2c:99: 63:34:ef:de:7b:f7:18:2b:81:c7:07:e8:c6:dd:d5:e9:9e:1d: d6:0e:04:21 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDpkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjUwOTAyMTgzNzU5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3Mzk4Ni1jOTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwMkh2rKgOj3D9cX8AAunlbpHYBJVPnTIYKswfbMjsDArWRafDAhBdMg41ua9 h5m6Lvu2x6vEaRl0MpnmyXoGmYS2YS2iQ/whLgNFy5W+4giZKe98W1FgDLelesxA TgHVURRSnxM1xuN8RFaUQpVBIPa2YyA7aldcdugfskL6syIPRL1HpgqpSth4sgSr 19mWF6sU3DSUvkf4zbtMYNKw7JwzV23ygFyy8CSHM4lILTHWt83uf4uDAcI5L8ms JedAjCbG/zBt1XehezGWoZJB30cbljW2YBibS06dHEZiHafZ4qi0xsVtdSOKlTuN OFM7cQHD+RbM4/9CBPyGX4ZjMQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFC8M1RiQ pQoyM21ZW2lOTdDpkJBgMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvOTE1RkZGMTRB NUFGMTFFQUIwMzlFRDY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBYTA/PIwDQYJKoZIhvcNAQELBQADggEBAGbsyUJNJNJG LC7lPXTiMIxDGxs0dWUgD7r2sWU2HC74EcA6adatL7P1zJHU1YTHARN72OTkhkuu UkuBGZjCSmgoEzWLBtJcOAWe1TWCBbbLqGrcWO/bxAQmhT8E1nbKQmtRYPOyoV7D BczYLtZ6OxAPUhr9u+vfpkoCHqUmxrA9Y1X+l2pPrGsWfRZOb2UdZcyMPRMyG4nx RDRnEttnw4V5qxXW1fcypfffX5saJSn6+fV+rGFkkgcUTxk2wSCFl2+RHrzdAcJi iII/OOyIa3VuWwpn37VxhjhiosNJ4JuchLlAxiybXfosmWM079579xgrgccH6Mbd 1emeHdYOBCE= -----END CERTIFICATE-----Generated at Thu Sep 4 10:29:08 2025 by rpki-client