$ rpki-client -vvf rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/9703DB3A870311F099FAB64CC4F9AE02.roa File: 9703DB3A870311F099FAB64CC4F9AE02.roa (raw, json) Hash identifier: o3x3WNu8DVpOALptWI63rwh2Z21Ks2owpGrEUHSGlCk= Subject key identifier: 77:35:13:79:2F:4E:23:65:06:5C:C7:4F:C4:1C:72:E1:2B:C1:16:BC Certificate issuer: /CN=A91A001E/serialNumber=8278F47DEC5B7ADC201897F99BCC6E2BFA88D015 Certificate serial: 3F9B Authority key identifier: 82:78:F4:7D:EC:5B:7A:DC:20:18:97:F9:9B:CC:6E:2B:FA:88:D0:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnj0fexbetwgGJf5m8xuK_qI0BU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/9703DB3A870311F099FAB64CC4F9AE02.roa Signing time: Mon 01 Sep 2025 07:16:34 +0000 ROA not before: Mon 01 Sep 2025 07:16:34 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 7619 IP address blocks: 2001:df7:5380::/48 maxlen: 48 2001:df7:5381::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/gnj0fexbetwgGJf5m8xuK_qI0BU.crl rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/gnj0fexbetwgGJf5m8xuK_qI0BU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnj0fexbetwgGJf5m8xuK_qI0BU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:20:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16283 (0x3f9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A001E, serialNumber=8278F47DEC5B7ADC201897F99BCC6E2BFA88D015 Validity Not Before: Sep 1 07:16:34 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68b54851-b5ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2e:4d:e7:e1:50:52:1f:17:b3:b3:83:cc:07: ae:77:6b:8b:d6:25:e8:59:11:80:98:d4:b5:0c:e9: e7:76:86:77:44:39:9f:e5:fd:1a:c7:7c:c9:58:8d: 82:a9:8f:de:d4:96:26:f8:22:c9:53:15:d4:c4:bd: c0:7d:56:5e:ba:cf:66:9b:14:b1:e8:6c:0a:35:eb: ed:c2:8e:6f:38:d8:87:4b:39:ed:7c:bb:4f:5a:3d: 5c:a7:5a:ad:d9:95:da:15:96:d6:61:62:9c:d3:2f: 4a:17:d1:ab:28:0f:93:a9:12:fb:9e:0a:b6:ac:94: b1:b4:b4:f5:f5:22:87:cb:6a:af:6b:4d:b2:cd:e7: 7d:77:09:61:8f:5c:aa:f1:56:5f:2b:2d:a7:d0:ae: 53:df:51:b9:26:27:14:72:c4:51:cb:ba:f3:f7:1b: 34:94:ea:b0:f1:85:48:3d:4b:4e:ee:38:9e:d2:91: 2d:f1:7d:a3:c5:2c:f8:ac:73:89:72:94:9a:c5:69: 9a:b6:8d:57:5c:1a:bb:db:12:67:2f:71:90:74:bf: 21:ab:05:3c:37:fa:fe:4a:e3:e5:b6:4c:54:d9:58: 61:06:dd:86:5b:90:fb:a3:cd:f3:8d:2b:29:82:c5: 7a:03:81:59:f4:ca:71:f9:fb:ba:bd:39:c5:e1:d8: 99:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:35:13:79:2F:4E:23:65:06:5C:C7:4F:C4:1C:72:E1:2B:C1:16:BC X509v3 Authority Key Identifier: keyid:82:78:F4:7D:EC:5B:7A:DC:20:18:97:F9:9B:CC:6E:2B:FA:88:D0:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/gnj0fexbetwgGJf5m8xuK_qI0BU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnj0fexbetwgGJf5m8xuK_qI0BU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/9703DB3A870311F099FAB64CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df7:5380::/47 Signature Algorithm: sha256WithRSAEncryption 9a:c0:9c:ee:a0:63:f2:6a:83:f1:97:70:9d:23:e7:ac:80:d4: 22:fa:f1:54:e4:e6:04:08:bc:6e:07:fb:ff:a1:52:68:8d:35: 92:53:ce:50:a1:5f:04:63:a7:97:e5:25:e4:4b:b9:59:9a:02: cd:b0:ea:a8:6b:0c:9c:ef:13:dd:5d:71:f7:03:2a:36:27:93: 7e:a4:0b:d4:81:2b:24:e5:19:65:de:65:ba:24:b7:ce:3e:75: b0:b5:5e:da:2b:49:f6:a1:f7:6a:f3:60:e7:44:61:33:4e:9e: 1d:ab:40:34:2c:67:4f:52:5d:36:2d:5c:88:e1:a1:15:14:ed: 9e:d4:b5:e7:6a:fb:6f:40:68:d3:6e:02:80:fd:4c:37:c6:8a: 85:7e:c4:74:9a:fd:ef:9c:40:02:27:b8:85:0c:67:fe:ef:3f: b3:91:9a:71:12:4d:fa:10:9f:d1:16:0e:5f:08:7f:22:00:95: 52:4b:8b:1d:94:2d:e4:eb:ad:06:13:41:ea:43:b2:42:5f:fa: f0:8f:e1:99:99:2f:8c:bc:dd:7f:ba:da:98:21:85:47:3e:16: 3b:ea:67:22:fd:73:bb:9f:d3:42:50:d6:c5:a5:36:ac:02:f6: 7c:fe:ca:dd:4e:0d:04:28:9f:22:47:ed:ab:ff:cd:93:33:27: 32:63:2c:64 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICP5swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAwMUUxMTAvBgNVBAUTKDgyNzhGNDdERUM1QjdBREMyMDE4OTdGOTlCQ0M2RTJC RkE4OEQwMTUwHhcNMjUwOTAxMDcxNjM0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI1NDg1MS1iNWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApS5N5+FQUh8Xs7ODzAeud2uL1iXoWRGAmNS1DOnndoZ3RDmf5f0ax3zJWI2C qY/e1JYm+CLJUxXUxL3AfVZeus9mmxSx6GwKNevtwo5vONiHSzntfLtPWj1cp1qt 2ZXaFZbWYWKc0y9KF9GrKA+TqRL7ngq2rJSxtLT19SKHy2qva02yzed9dwlhj1yq 8VZfKy2n0K5T31G5JicUcsRRy7rz9xs0lOqw8YVIPUtO7jie0pEt8X2jxSz4rHOJ cpSaxWmato1XXBq72xJnL3GQdL8hqwU8N/r+SuPltkxU2VhhBt2GW5D7o83zjSsp gsV6A4FZ9Mpx+fu6vTnF4diZwwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHc1E3kv TiNlBlzHT8QccuErwRa8MB8GA1UdIwQYMBaAFIJ49H3sW3rcIBiX+ZvMbiv6iNAV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDAxRS8zNUZBMEY1NjFE NzgxMUUyOTM3NzFGQzQwOEIwMkNEMi9nbmowZmV4YmV0d2dHSmY1bTh4dUtfcUkw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2duajBmZXhiZXR3Z0dKZjVtOHh1S19xSTBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTAwMUUvMzVGQTBGNTYxRDc4MTFFMjkzNzcxRkM0MDhCMDJDRDIvOTcwM0RCM0E4 NzAzMTFGMDk5RkFCNjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwEgAQ33U4AwDQYJKoZIhvcNAQELBQADggEBAJrAnO6gY/Jq g/GXcJ0j56yA1CL68VTk5gQIvG4H+/+hUmiNNZJTzlChXwRjp5flJeRLuVmaAs2w 6qhrDJzvE91dcfcDKjYnk36kC9SBKyTlGWXeZbokt84+dbC1XtorSfah92rzYOdE YTNOnh2rQDQsZ09SXTYtXIjhoRUU7Z7Utedq+29AaNNuAoD9TDfGioV+xHSa/e+c QAInuIUMZ/7vP7ORmnESTfoQn9EWDl8IfyIAlVJLix2ULeTrrQYTQepDskJf+vCP 4ZmZL4y83X+62pghhUc+FjvqZyL9c7uf00JQ1sWlNqwC9nz+yt1ODQQonyJH7av/ zZMzJzJjLGQ= -----END CERTIFICATE-----Generated at Sun Sep 7 04:54:59 2025 by rpki-client