$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/9F71391C684F11EAB45B6F4FC4F9AE02.roa File: 9F71391C684F11EAB45B6F4FC4F9AE02.roa (raw, json) Hash identifier: 2I5f/ord7l4Z+1cz8mubA9ENQbHncDdSE1Z3NBiS6xA= Subject key identifier: 84:8E:01:C9:75:B0:DB:6A:F1:5C:EB:8A:ED:BD:38:B9:8B:4F:61:A2 Certificate issuer: /CN=A91A4C60/serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Certificate serial: 0E97 Authority key identifier: 9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/9F71391C684F11EAB45B6F4FC4F9AE02.roa Signing time: Tue 02 Sep 2025 18:37:57 +0000 ROA not before: Tue 02 Sep 2025 18:37:57 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 209650 IP address blocks: 2405:84c0:fcf0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 18:38:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3735 (0xe97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4C60, serialNumber=9EF9E4376E36653275C7963598D6B45B70AF8099 Validity Not Before: Sep 2 18:37:57 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b73985-9dcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a2:c9:3d:63:c0:9f:2a:71:e6:2c:43:f7:5a: 72:66:16:2b:7d:bf:a5:ed:40:fc:46:cd:7b:9a:f5: bf:fb:9c:c8:ac:9f:c6:22:c9:57:b6:cd:6c:8d:98: d1:d6:ac:60:d1:2f:22:45:14:fc:99:5d:00:28:34: f9:7d:02:e5:49:17:8f:b7:ba:10:d6:15:9f:10:b4: 6a:a1:0e:3c:67:a0:91:d1:56:89:b2:63:b2:d3:fb: c0:95:ec:fe:7c:15:5b:22:f2:07:87:dc:06:2f:1e: 74:09:34:f5:16:1d:46:08:c9:90:b5:c0:50:b4:b5: e9:52:6a:11:a2:31:81:96:04:dd:8a:4a:32:a5:22: 25:75:b1:4d:be:f9:16:8c:f7:6a:a6:23:f3:5a:3c: 61:e1:68:79:e0:1a:65:3d:b6:de:85:f8:0a:ce:97: 74:5c:0d:ea:af:5b:9a:88:1e:bb:bd:81:cd:bc:e6: ec:4a:cd:a4:57:78:8a:36:89:3c:40:5b:63:e1:6f: c4:a3:bb:b3:ac:6f:be:89:f7:39:7b:04:54:a2:f5: 9c:b8:7d:a4:25:27:14:05:7f:7e:b7:e1:3c:a4:5e: f0:fc:66:a2:c4:a1:f3:e1:85:ef:14:0f:92:6e:09: 2e:fd:42:f6:66:a6:69:26:f2:a4:40:0d:67:be:04: b7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:8E:01:C9:75:B0:DB:6A:F1:5C:EB:8A:ED:BD:38:B9:8B:4F:61:A2 X509v3 Authority Key Identifier: keyid:9E:F9:E4:37:6E:36:65:32:75:C7:96:35:98:D6:B4:5B:70:AF:80:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nvnkN242ZTJ1x5Y1mNa0W3CvgJk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4C60/B526FF74D84111E9A4521413C4F9AE02/9F71391C684F11EAB45B6F4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:84c0:fcf0::/48 Signature Algorithm: sha256WithRSAEncryption 9f:79:f6:ad:2a:28:d9:ec:2c:39:09:cd:a7:51:7b:9e:77:19: 89:58:b4:f0:4a:cd:15:10:75:d3:49:67:85:3e:50:88:34:60: aa:60:27:33:e3:f4:0e:16:ff:7b:00:3c:a7:6f:79:8b:00:d5: a4:f0:d4:86:16:a0:25:9e:77:66:ce:8e:82:8b:a6:e8:f8:dc: 7b:c1:b7:8f:f0:53:a4:69:b7:ce:1a:9b:85:9c:f9:e8:f2:97: 68:ae:f2:f5:4a:92:e7:09:87:2d:fd:34:8c:3a:fc:36:7b:5b: a4:f1:4b:87:51:fc:71:90:c3:16:63:e4:41:9e:5b:53:c0:b3: 42:03:2f:e4:1a:5f:57:ba:d2:12:8e:e2:44:a6:13:cf:e2:08: 2a:fa:69:f7:2e:50:2c:0a:18:63:de:21:b4:8a:55:2a:6f:aa: 47:49:64:82:83:53:16:a7:16:4a:21:63:db:84:93:fc:90:a7: 17:67:02:77:36:89:d8:2a:92:02:ae:4f:39:1d:d9:26:c7:73: 53:62:6b:55:bd:87:65:3f:98:78:5c:7b:7b:1c:87:bf:55:0e: 69:ce:28:7b:b6:7b:c0:a4:99:6d:4b:98:36:a0:32:ab:03:e3: 54:56:bf:d8:44:13:13:74:47:7f:00:dc:67:e3:ef:e0:a9:7e: 57:40:e8:20 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICDpcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTRDNjAxMTAvBgNVBAUTKDlFRjlFNDM3NkUzNjY1MzI3NUM3OTYzNTk4RDZCNDVC NzBBRjgwOTkwHhcNMjUwOTAyMTgzNzU3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3Mzk4NS05ZGNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6LJPWPAnypx5ixD91pyZhYrfb+l7UD8Rs17mvW/+5zIrJ/GIslXts1sjZjR 1qxg0S8iRRT8mV0AKDT5fQLlSRePt7oQ1hWfELRqoQ48Z6CR0VaJsmOy0/vAlez+ fBVbIvIHh9wGLx50CTT1Fh1GCMmQtcBQtLXpUmoRojGBlgTdikoypSIldbFNvvkW jPdqpiPzWjxh4Wh54BplPbbehfgKzpd0XA3qr1uaiB67vYHNvObsSs2kV3iKNok8 QFtj4W/Eo7uzrG++ifc5ewRUovWcuH2kJScUBX9+t+E8pF7w/GaixKHz4YXvFA+S bgku/UL2ZqZpJvKkQA1nvgS3xQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFISOAcl1 sNtq8Vzriu29OLmLT2GiMB8GA1UdIwQYMBaAFJ755DduNmUydceWNZjWtFtwr4CZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNEM2MC9CNTI2RkY3NEQ4 NDExMUU5QTQ1MjE0MTNDNEY5QUUwMi9udm5rTjI0MlpUSjF4NVkxbU5hMFczQ3Zn SmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252bmtOMjQyWlRKMXg1WTFtTmEwVzNDdmdKay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTRDNjAvQjUyNkZGNzREODQxMTFFOUE0NTIxNDEzQzRGOUFFMDIvOUY3MTM5MUM2 ODRGMTFFQUI0NUI2RjRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBYTA/PAwDQYJKoZIhvcNAQELBQADggEBAJ959q0qKNns LDkJzadRe553GYlYtPBKzRUQddNJZ4U+UIg0YKpgJzPj9A4W/3sAPKdveYsA1aTw 1IYWoCWed2bOjoKLpuj43HvBt4/wU6Rpt84am4Wc+ejyl2iu8vVKkucJhy39NIw6 /DZ7W6TxS4dR/HGQwxZj5EGeW1PAs0IDL+QaX1e60hKO4kSmE8/iCCr6afcuUCwK GGPeIbSKVSpvqkdJZIKDUxanFkohY9uEk/yQpxdnAnc2idgqkgKuTzkd2SbHc1Ni a1W9h2U/mHhce3sch79VDmnOKHu2e8CkmW1LmDagMqsD41RWv9hEExN0R38A3Gfj 7+CpfldA6CA= -----END CERTIFICATE-----Generated at Thu Sep 4 10:26:07 2025 by rpki-client