$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/F14B18CE64C611F0A7F4DB79C4F9AE02.roa File: F14B18CE64C611F0A7F4DB79C4F9AE02.roa (raw, json) Hash identifier: 1OAyMVa0XBUo/ryUsoyI81mxhEqjOM4w6I8EktKs9g0= Subject key identifier: 13:0B:5B:B9:1F:77:97:28:A2:91:51:1B:52:73:96:17:08:45:13:88 Certificate issuer: /CN=A91EA80C/serialNumber=312440201B2EF74B7CAC6C31FB85F41E9C4686A0 Certificate serial: 4F Authority key identifier: 31:24:40:20:1B:2E:F7:4B:7C:AC:6C:31:FB:85:F4:1E:9C:46:86:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSRAIBsu90t8rGwx-4X0HpxGhqA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/F14B18CE64C611F0A7F4DB79C4F9AE02.roa Signing time: Sat 19 Jul 2025 17:36:46 +0000 ROA not before: Sat 19 Jul 2025 17:36:46 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 9516 IP address blocks: 2401:f460:2100::/48 maxlen: 48 2401:f460:2200::/48 maxlen: 48 2401:f460:2300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/MSRAIBsu90t8rGwx-4X0HpxGhqA.crl rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/MSRAIBsu90t8rGwx-4X0HpxGhqA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSRAIBsu90t8rGwx-4X0HpxGhqA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 07:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79 (0x4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA80C, serialNumber=312440201B2EF74B7CAC6C31FB85F41E9C4686A0 Validity Not Before: Jul 19 17:36:46 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=687bd7ae-7e37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9a:7d:ca:9a:8e:26:b4:7c:9e:6e:7d:47:28: 00:5f:07:46:e7:a4:f2:1a:03:0a:40:04:32:25:a9: af:42:66:87:27:7b:d7:d9:27:c9:59:ed:8d:be:97: fa:62:07:ea:6c:d4:dc:8d:63:c6:1b:d3:e4:7d:8b: f8:94:9f:5e:65:30:36:18:b8:7e:ba:3d:d8:29:2d: 21:52:e6:9d:43:cd:70:4b:fc:95:92:bc:27:a9:57: 8b:62:d5:9f:68:c9:9f:c6:6f:8e:96:a2:9e:01:25: 03:f7:1b:26:6b:5d:2e:78:66:bb:6c:ee:ac:a3:04: c7:49:7a:89:68:47:4d:52:60:3f:5f:85:af:07:be: 86:d5:de:7f:c1:e6:7a:1c:03:93:c1:3d:55:b3:f4: cf:48:e4:04:da:67:ea:de:81:ff:65:42:cf:af:33: e5:64:90:c1:11:40:ff:c1:38:27:88:fc:3e:c5:51: 56:ad:d1:22:cf:2b:1e:e8:e9:ab:05:26:0f:ae:61: 32:b1:c2:f4:7e:5f:f5:34:28:c1:12:5e:bb:ac:77: 38:d0:f6:d3:24:43:8f:7f:f7:83:bd:df:42:fa:05: 7e:49:93:54:3a:ac:bd:ee:a2:14:88:92:3b:c2:7c: 0e:de:53:66:12:73:11:f4:a7:42:16:d1:e9:7e:c7: 1d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:0B:5B:B9:1F:77:97:28:A2:91:51:1B:52:73:96:17:08:45:13:88 X509v3 Authority Key Identifier: keyid:31:24:40:20:1B:2E:F7:4B:7C:AC:6C:31:FB:85:F4:1E:9C:46:86:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/MSRAIBsu90t8rGwx-4X0HpxGhqA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSRAIBsu90t8rGwx-4X0HpxGhqA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA80C/DE98EAF0FB6511EFA376E449C4F9AE02/F14B18CE64C611F0A7F4DB79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:f460:2100::/48 2401:f460:2200::/48 2401:f460:2300::/48 Signature Algorithm: sha256WithRSAEncryption 80:e5:d4:34:9a:fd:ac:f9:31:dc:8a:e1:87:1a:64:8b:1a:c1: 2a:3f:21:d3:de:e7:c3:2e:e2:a4:c2:4f:7b:0f:ea:03:aa:68: cd:d1:3d:1b:0f:13:49:18:01:cd:8a:36:7a:25:f9:6c:f1:56: f3:45:b8:d5:3e:c3:13:ed:f8:17:9d:70:f6:dd:4e:76:8b:0a: 1c:0a:f9:61:32:4f:f1:9a:ec:37:cc:67:93:20:91:d3:93:b2: 48:2e:da:e3:d3:8f:8c:52:d6:d8:8b:ce:fe:e5:23:d4:70:d2: 7c:fa:b6:52:e2:dd:36:34:f1:6e:4d:ba:5e:bd:c1:88:ef:09: 67:f2:2f:43:f3:33:1a:55:d6:95:9e:00:d8:95:eb:b0:75:5e: 4f:16:50:3e:7f:c1:63:85:71:61:1a:3a:a7:a9:28:38:e9:92: 22:57:26:b6:17:24:73:5b:24:12:d0:af:d3:3c:15:3b:47:a9: d3:10:60:90:1a:52:99:9b:bd:17:ac:7e:bf:b5:8a:dd:a0:25: 33:b6:83:2c:de:22:23:05:29:12:49:2a:2f:37:2a:25:63:02: 8d:32:2b:bd:f8:1d:e5:2f:25:94:7a:65:4d:5f:76:88:cd:7c: eb:3b:88:4a:f8:7d:ee:ab:92:b4:e0:72:fb:25:0d:f6:9a:70: c5:99:db:4d -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBTzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTgwQzExMC8GA1UEBRMoMzEyNDQwMjAxQjJFRjc0QjdDQUM2QzMxRkI4NUY0MUU5 QzQ2ODZBMDAeFw0yNTA3MTkxNzM2NDZaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4N2JkN2FlLTdlMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1mn3Kmo4mtHyebn1HKABfB0bnpPIaAwpABDIlqa9CZocne9fZJ8lZ7Y2+l/pi B+ps1NyNY8Yb0+R9i/iUn15lMDYYuH66PdgpLSFS5p1DzXBL/JWSvCepV4ti1Z9o yZ/Gb46Wop4BJQP3GyZrXS54Zrts7qyjBMdJeoloR01SYD9fha8HvobV3n/B5noc A5PBPVWz9M9I5ATaZ+regf9lQs+vM+VkkMERQP/BOCeI/D7FUVat0SLPKx7o6asF Jg+uYTKxwvR+X/U0KMESXrusdzjQ9tMkQ49/94O930L6BX5Jk1Q6rL3uohSIkjvC fA7eU2YScxH0p0IW0el+xx1RAgMBAAGjggKqMIICpjAdBgNVHQ4EFgQUEwtbuR93 lyiikVEbUnOWFwhFE4gwHwYDVR0jBBgwFoAUMSRAIBsu90t8rGwx+4X0HpxGhqAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBODBDL0RFOThFQUYwRkI2 NTExRUZBMzc2RTQ0OUM0RjlBRTAyL01TUkFJQnN1OTB0OHJHd3gtNFgwSHB4R2hx QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTVNSQUlCc3U5MHQ4ckd3eC00WDBIcHhHaHFBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTgwQy9ERTk4RUFGMEZCNjUxMUVGQTM3NkU0NDlDNEY5QUUwMi9GMTRCMThDRTY0 QzYxMUYwQTdGNERCNzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwIQQCAAIwGwMHACQB9GAhAAMHACQB9GAiAAMHACQB9GAjADANBgkqhkiG9w0B AQsFAAOCAQEAgOXUNJr9rPkx3IrhhxpkixrBKj8h097nwy7ipMJPew/qA6pozdE9 Gw8TSRgBzYo2eiX5bPFW80W41T7DE+34F51w9t1OdosKHAr5YTJP8ZrsN8xnkyCR 05OySC7a49OPjFLW2IvO/uUj1HDSfPq2UuLdNjTxbk26Xr3BiO8JZ/IvQ/MzGlXW lZ4A2JXrsHVeTxZQPn/BY4VxYRo6p6koOOmSIlcmthckc1skEtCv0zwVO0ep0xBg kBpSmZu9F6x+v7WK3aAlM7aDLN4iIwUpEkkqLzcqJWMCjTIrvfgd5S8llHplTV92 iM186zuISvh97quStOBy+yUN9ppwxZnbTQ== -----END CERTIFICATE-----Generated at Wed Jul 23 12:54:26 2025 by rpki-client