$ rpki-client -vvf rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/D1C40E28183411EF99FD8776C4F9AE02.roa File: D1C40E28183411EF99FD8776C4F9AE02.roa (raw, json) Hash identifier: ovp+DvhtxAcfaLvm4B/msgxFKoL594Nnc6PIvhnqZGo= Subject key identifier: 8D:75:E8:45:68:3F:73:6F:98:D3:6A:95:0C:38:AB:33:56:0C:30:2C Certificate issuer: /CN=A91D604E/serialNumber=E4DCEC595A1BB673897223656AC639B95352DD73 Certificate serial: 0CE0 Authority key identifier: E4:DC:EC:59:5A:1B:B6:73:89:72:23:65:6A:C6:39:B9:53:52:DD:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/D1C40E28183411EF99FD8776C4F9AE02.roa Signing time: Sun 24 Aug 2025 18:27:27 +0000 ROA not before: Sun 24 Aug 2025 18:27:27 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135517 IP address blocks: 2400:f8c0::/32 maxlen: 36 2400:f8c0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.crl rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 31 Aug 2025 18:27:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3296 (0xce0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D604E, serialNumber=E4DCEC595A1BB673897223656AC639B95352DD73 Validity Not Before: Aug 24 18:27:27 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68ab598f-023b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:40:c2:bc:97:36:ce:0a:8a:2c:ca:78:dc:0a: b6:58:d7:f2:9b:66:c3:00:81:ed:ae:1a:ee:8d:4f: a6:39:c3:cb:5f:41:2a:71:fc:91:d9:f7:51:de:76: 28:1f:14:7d:cc:3a:a6:31:1a:ba:a2:6e:c8:95:7c: 4d:cc:fd:10:70:61:e4:7f:20:74:0f:47:60:f1:79: fe:a0:ba:a9:2d:b5:12:0c:b6:e1:4c:62:a7:db:e7: be:f5:a4:ed:a8:07:64:d6:15:27:91:35:af:ee:1c: a8:a2:36:0f:7b:6f:87:6a:13:18:d8:36:a0:af:d8: 38:df:84:6f:ff:72:9c:be:9a:ef:ee:e6:65:33:19: 02:1d:7a:fb:2a:05:0d:b2:ed:13:7a:c0:7d:7c:4f: 97:54:2a:7c:ec:83:bc:15:32:ed:c8:9e:8a:bb:80: bf:95:ad:31:52:c6:6f:5d:0b:c4:8a:fc:91:6f:f4: 73:31:d6:8e:72:9c:01:94:33:e2:9d:ce:70:bc:a3: 67:6c:11:01:e9:bb:73:b4:f9:b7:f2:3a:27:68:97: 87:04:89:ec:49:93:bb:de:3b:4a:dc:27:d9:73:c5: d2:aa:be:b0:df:9e:ac:1a:91:80:7f:f8:5a:86:ed: 66:52:98:03:66:ef:9a:e6:1a:c7:6f:21:f3:e4:5e: 35:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:75:E8:45:68:3F:73:6F:98:D3:6A:95:0C:38:AB:33:56:0C:30:2C X509v3 Authority Key Identifier: keyid:E4:DC:EC:59:5A:1B:B6:73:89:72:23:65:6A:C6:39:B9:53:52:DD:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/D1C40E28183411EF99FD8776C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:f8c0::/32 Signature Algorithm: sha256WithRSAEncryption 07:26:21:45:2b:c2:3d:fb:b2:40:bf:87:2c:86:26:91:06:72: ff:ac:8c:49:bd:cb:22:2e:99:77:c0:14:e4:f4:3b:cb:7e:cb: d9:a4:4f:78:81:eb:6e:2f:73:a1:9a:27:a9:9b:d1:e9:f3:65: 9c:6b:ec:ba:17:45:2e:8f:5a:87:b4:4e:2a:4c:01:59:dc:c5: dc:f0:db:5c:96:1f:f0:a1:c1:42:9b:d5:c9:60:f3:40:eb:d4: cc:91:29:ae:6b:f1:a9:d2:c1:f7:45:0b:1c:a4:9e:22:7b:28: 56:aa:99:1c:15:ea:a2:5d:a3:b5:ca:a9:a0:a6:24:3b:a2:16: 94:e8:78:4d:06:9a:55:c0:55:27:1e:17:c0:d2:71:f8:2e:1b: 1a:1b:f0:76:c8:8d:25:c2:2d:e0:d4:cf:07:4f:4f:ec:ec:eb: 62:28:05:8d:2d:1f:a2:60:c7:cd:22:72:63:10:de:51:28:ab: 83:2b:f6:9e:41:f3:b5:c4:70:cb:3f:c0:04:97:a7:1b:ef:3d: 49:cf:88:89:07:92:b0:4b:b6:a6:3d:5c:c9:d3:65:50:b6:96: d6:6e:3b:bf:4c:c4:84:05:ff:7e:2a:dc:07:66:d0:e9:b9:00: 48:51:0d:8a:fd:13:df:79:1b:a8:65:7d:d8:5e:78:a8:87:70: bf:a1:87:fe -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICDOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYwNEUxMTAvBgNVBAUTKEU0RENFQzU5NUExQkI2NzM4OTcyMjM2NTZBQzYzOUI5 NTM1MkRENzMwHhcNMjUwODI0MTgyNzI3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFiNTk4Zi0wMjNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0kDCvJc2zgqKLMp43Aq2WNfym2bDAIHtrhrujU+mOcPLX0EqcfyR2fdR3nYo HxR9zDqmMRq6om7IlXxNzP0QcGHkfyB0D0dg8Xn+oLqpLbUSDLbhTGKn2+e+9aTt qAdk1hUnkTWv7hyoojYPe2+HahMY2Dagr9g434Rv/3Kcvprv7uZlMxkCHXr7KgUN su0TesB9fE+XVCp87IO8FTLtyJ6Ku4C/la0xUsZvXQvEivyRb/RzMdaOcpwBlDPi nc5wvKNnbBEB6btztPm38jonaJeHBInsSZO73jtK3CfZc8XSqr6w356sGpGAf/ha hu1mUpgDZu+a5hrHbyHz5F41WQIDAQABo4ICljCCApIwHQYDVR0OBBYEFI116EVo P3NvmNNqlQw4qzNWDDAsMB8GA1UdIwQYMBaAFOTc7FlaG7ZziXIjZWrGOblTUt1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjA0RS85MUI1QzBDMEY0 RUQxMUU5OENCRkEwMTNDNEY5QUUwMi81TnpzV1ZvYnRuT0pjaU5sYXNZNXVWTlMz WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOenNXVm9idG5PSmNpTmxhc1k1dVZOUzNYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDYwNEUvOTFCNUMwQzBGNEVEMTFFOThDQkZBMDEzQzRGOUFFMDIvRDFDNDBFMjgx ODM0MTFFRjk5RkQ4Nzc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAPjAMA0GCSqGSIb3DQEBCwUAA4IBAQAHJiFFK8I9+7JA v4cshiaRBnL/rIxJvcsiLpl3wBTk9DvLfsvZpE94getuL3Ohmiepm9Hp82Wca+y6 F0Uuj1qHtE4qTAFZ3MXc8Ntclh/wocFCm9XJYPNA69TMkSmua/Gp0sH3RQscpJ4i eyhWqpkcFeqiXaO1yqmgpiQ7ohaU6HhNBppVwFUnHhfA0nH4LhsaG/B2yI0lwi3g 1M8HT0/s7OtiKAWNLR+iYMfNInJjEN5RKKuDK/aeQfO1xHDLP8AEl6cb7z1Jz4iJ B5KwS7amPVzJ02VQtpbWbju/TMSEBf9+KtwHZtDpuQBIUQ2K/RPfeRuoZX3YXnio h3C/oYf+ -----END CERTIFICATE-----Generated at Mon Aug 25 07:01:09 2025 by rpki-client