$ rpki-client -vvf rpki.apnic.net/member_repository/A91C62B6/B9987AA4FE4011EE8FE74569C4F9AE02/DF79CCF45FF211F09950C36DC4F9AE02.roa File: DF79CCF45FF211F09950C36DC4F9AE02.roa (raw, json) Hash identifier: kzFBhyv4+J38LiXini28KhoGCZEFn2uAqbOVTdVmDDA= Subject key identifier: C1:8C:45:1C:A9:79:EA:6F:B0:93:EF:7D:65:77:FD:53:01:F9:1C:C9 Certificate issuer: /CN=A91C62B6/serialNumber=C14A0E6082F0E922CAFE22969523E864C7A8F1DC Certificate serial: 010D Authority key identifier: C1:4A:0E:60:82:F0:E9:22:CA:FE:22:96:95:23:E8:64:C7:A8:F1:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUoOYILw6SLK_iKWlSPoZMeo8dw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C62B6/B9987AA4FE4011EE8FE74569C4F9AE02/DF79CCF45FF211F09950C36DC4F9AE02.roa Signing time: Sun 13 Jul 2025 14:08:38 +0000 ROA not before: Sun 13 Jul 2025 14:08:38 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 138658 IP address blocks: 2401:9460::/32 maxlen: 32 2401:9460:8000::/36 maxlen: 36 2401:9460:9000::/36 maxlen: 36 2401:9460:a000::/36 maxlen: 36 2401:9460:b000::/36 maxlen: 36 2401:9460:c000::/36 maxlen: 36 2401:9460:d000::/36 maxlen: 36 2401:9460:e000::/36 maxlen: 36 2401:9460:f000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C62B6/B9987AA4FE4011EE8FE74569C4F9AE02/wUoOYILw6SLK_iKWlSPoZMeo8dw.crl rsync://rpki.apnic.net/member_repository/A91C62B6/B9987AA4FE4011EE8FE74569C4F9AE02/wUoOYILw6SLK_iKWlSPoZMeo8dw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUoOYILw6SLK_iKWlSPoZMeo8dw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:34:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 269 (0x10d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C62B6, serialNumber=C14A0E6082F0E922CAFE22969523E864C7A8F1DC Validity Not Before: Jul 13 14:08:38 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6873bde6-fe6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:38:c0:da:10:d0:cc:39:d9:fe:44:b7:9a:cb: bf:41:6c:69:8d:19:8e:e2:2b:de:d7:83:8e:39:96: ac:e7:34:25:a6:e3:ed:94:97:80:8a:be:50:fd:0c: 9c:5f:51:68:0b:c8:c1:13:a8:b6:b0:3c:35:ef:cb: 9b:dd:82:05:f6:ae:79:67:e5:a0:80:da:52:db:07: 02:09:02:85:0c:2b:77:28:a0:98:38:ef:e5:6f:da: 1b:51:72:f9:01:3b:d9:7a:9e:ad:6c:0b:34:d1:18: 5a:3a:76:a9:4f:98:94:fd:10:f4:02:3d:b5:2c:70: 9e:98:04:73:49:97:f5:7d:66:e4:9c:f3:32:91:4d: b7:de:ea:e4:b0:68:d4:b5:15:38:ca:e2:1f:98:f0: 22:96:ab:4c:1f:1f:e7:7d:f3:6f:a5:e0:44:6f:c1: 9d:78:7b:7e:e2:d7:d4:e4:db:a6:06:47:f6:cc:a0: 36:2c:88:6d:3f:8e:c7:de:a2:d4:07:5e:44:7e:55: 05:ee:a7:75:cf:b2:f5:71:08:3c:f5:23:e4:b8:11: 6d:70:9b:e3:e3:94:79:50:a7:64:eb:5d:f1:c9:f4: 82:a0:89:0e:57:68:7c:c4:f0:b2:a3:30:77:82:03: 5a:10:ef:ba:9f:6d:16:57:e2:fd:7d:6e:37:4d:b0: 47:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:8C:45:1C:A9:79:EA:6F:B0:93:EF:7D:65:77:FD:53:01:F9:1C:C9 X509v3 Authority Key Identifier: keyid:C1:4A:0E:60:82:F0:E9:22:CA:FE:22:96:95:23:E8:64:C7:A8:F1:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C62B6/B9987AA4FE4011EE8FE74569C4F9AE02/wUoOYILw6SLK_iKWlSPoZMeo8dw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wUoOYILw6SLK_iKWlSPoZMeo8dw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C62B6/B9987AA4FE4011EE8FE74569C4F9AE02/DF79CCF45FF211F09950C36DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:9460::/32 Signature Algorithm: sha256WithRSAEncryption 2a:8e:92:dd:02:4f:e2:50:5e:40:78:2a:bc:4b:e9:86:6a:0e: 29:97:ce:04:ca:3c:e3:75:10:f7:62:53:c0:23:9b:81:b2:cf: 6a:15:0b:69:1f:3a:c2:bf:13:41:9e:27:c6:1a:9d:5a:20:79: cd:16:01:eb:0e:72:d1:9d:30:19:3f:54:ea:ef:77:ca:95:b7: ce:02:b5:51:43:f8:57:a6:cb:a2:f5:73:c3:39:29:0e:f4:68: 1c:bb:f8:8f:54:a8:7c:49:69:cf:e2:65:f3:c6:20:1f:45:8c: 2c:5c:0b:43:8a:ec:43:40:c0:32:c0:6f:ad:a2:9c:4d:e6:a2: 14:73:9b:af:cf:c1:7a:25:5f:2e:d9:e7:ec:bf:d3:a1:eb:0e: 13:39:0d:b8:91:1f:00:01:e9:c7:2c:30:25:0f:5b:42:b5:cb: d8:24:39:76:12:e5:8b:03:a7:61:1a:b3:33:4f:5b:4b:7d:04: 93:36:3d:90:86:c0:a0:f7:7f:47:0c:41:34:fe:47:98:16:73: 19:99:46:d3:5e:8c:d3:0c:9c:30:ed:8b:ae:65:f9:5c:8d:a5: 52:8b:ac:2f:d6:68:b4:a7:ba:7d:45:a2:e1:43:0c:f2:c6:26: eb:83:46:5b:ab:df:5a:d3:9a:b5:f1:fe:3a:61:09:1f:c7:70: b4:dc:be:73 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYyQjYxMTAvBgNVBAUTKEMxNEEwRTYwODJGMEU5MjJDQUZFMjI5Njk1MjNFODY0 QzdBOEYxREMwHhcNMjUwNzEzMTQwODM4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODczYmRlNi1mZTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzTjA2hDQzDnZ/kS3msu/QWxpjRmO4ive14OOOZas5zQlpuPtlJeAir5Q/Qyc X1FoC8jBE6i2sDw178ub3YIF9q55Z+WggNpS2wcCCQKFDCt3KKCYOO/lb9obUXL5 ATvZep6tbAs00RhaOnapT5iU/RD0Aj21LHCemARzSZf1fWbknPMykU233urksGjU tRU4yuIfmPAilqtMHx/nffNvpeBEb8GdeHt+4tfU5NumBkf2zKA2LIhtP47H3qLU B15EflUF7qd1z7L1cQg89SPkuBFtcJvj45R5UKdk613xyfSCoIkOV2h8xPCyozB3 ggNaEO+6n20WV+L9fW43TbBH4QIDAQABo4ICljCCApIwHQYDVR0OBBYEFMGMRRyp eepvsJPvfWV3/VMB+RzJMB8GA1UdIwQYMBaAFMFKDmCC8Okiyv4ilpUj6GTHqPHc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjJCNi9COTk4N0FBNEZF NDAxMUVFOEZFNzQ1NjlDNEY5QUUwMi93VW9PWUlMdzZTTEtfaUtXbFNQb1pNZW84 ZHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dVb09ZSUx3NlNMS19pS1dsU1BvWk1lbzhkdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzYyQjYvQjk5ODdBQTRGRTQwMTFFRThGRTc0NTY5QzRGOUFFMDIvREY3OUNDRjQ1 RkYyMTFGMDk5NTBDMzZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAZRgMA0GCSqGSIb3DQEBCwUAA4IBAQAqjpLdAk/iUF5A eCq8S+mGag4pl84EyjzjdRD3YlPAI5uBss9qFQtpHzrCvxNBnifGGp1aIHnNFgHr DnLRnTAZP1Tq73fKlbfOArVRQ/hXpsui9XPDOSkO9Ggcu/iPVKh8SWnP4mXzxiAf RYwsXAtDiuxDQMAywG+topxN5qIUc5uvz8F6JV8u2efsv9Oh6w4TOQ24kR8AAenH LDAlD1tCtcvYJDl2EuWLA6dhGrMzT1tLfQSTNj2QhsCg939HDEE0/keYFnMZmUbT XozTDJww7YuuZflcjaVSi6wv1mi0p7p9RaLhQwzyxibrg0Zbq99a05q18f46YQkf x3C03L5z -----END CERTIFICATE-----Generated at Sun Jul 20 17:26:42 2025 by rpki-client