$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/312AAAD4BB7E11E9AFB49C42C4F9AE02.roa File: 312AAAD4BB7E11E9AFB49C42C4F9AE02.roa (raw, json) Hash identifier: tm6lZWT2jSaQ2mTovYZkiilxmKWiSUYMcY5Ywr80DlM= Subject key identifier: 76:3C:DA:BB:EC:64:46:10:3E:74:09:57:5B:F4:12:5C:37:7D:8F:39 Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 3634 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/312AAAD4BB7E11E9AFB49C42C4F9AE02.roa Signing time: Tue 02 Sep 2025 15:01:31 +0000 ROA not before: Tue 02 Sep 2025 15:01:31 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 45177 IP address blocks: 2403:cc00:4000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 14:50:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13876 (0x3634) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90, serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 2 15:01:31 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b706cb-a42f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:64:64:82:ed:8f:f0:ee:58:30:0e:fd:48:8a: 42:95:2a:32:e6:a0:13:45:e1:66:b1:86:a2:22:e6: b1:f3:65:2e:b1:e1:01:2d:28:60:d4:7b:5f:38:37: b3:cf:30:71:93:9d:d4:75:d4:d6:65:89:17:fb:fd: 9f:e6:85:70:13:d3:8c:5f:e9:ed:0d:31:e8:ef:9e: 7d:9c:23:ee:d8:d1:98:0c:a2:ae:c3:e0:2d:ce:fa: 3c:e9:18:e8:0a:c6:26:52:10:53:e1:0d:bc:a8:b1: ca:6f:c8:0f:0f:76:1f:cb:29:a8:16:a1:68:03:98: 34:1e:8d:a1:e1:32:31:91:1a:53:b0:43:73:2f:50: cb:ea:1c:94:68:c3:66:21:04:24:53:aa:6d:ec:c6: 09:3d:8f:b2:20:df:5e:91:11:63:cd:e1:eb:62:fb: a7:e9:90:26:3e:a3:b7:e1:67:ca:8f:1c:13:f0:54: 3e:25:8f:cc:bf:b3:5c:b1:48:a1:ee:0e:de:8f:5c: a4:82:a8:06:4f:cf:f3:7c:3a:a8:da:b0:7b:16:38: 0f:ea:4c:ab:1e:2f:04:8d:d9:62:b0:0c:c7:7b:c3: d0:05:93:c2:c1:81:d4:c4:36:f2:23:9c:55:2f:ac: 9f:f0:76:23:b4:f3:54:4e:06:b4:8e:89:40:f8:3c: 86:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:3C:DA:BB:EC:64:46:10:3E:74:09:57:5B:F4:12:5C:37:7D:8F:39 X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/312AAAD4BB7E11E9AFB49C42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:cc00:4000::/36 Signature Algorithm: sha256WithRSAEncryption 72:c9:82:8c:50:87:2e:75:fc:ef:94:15:81:22:82:1f:ae:08: 54:d1:1f:61:f7:76:ae:32:c1:90:df:c0:0d:f5:b8:3d:67:23: 1c:91:bf:25:22:15:0b:a7:0b:5e:fb:a6:1e:d8:85:a2:95:67: 3a:e6:78:bd:6c:41:81:e5:4e:93:64:86:3c:44:9c:7b:ea:12: ea:c1:f2:4a:76:a8:eb:ed:e8:6d:9a:f9:95:0b:3e:23:fc:7d: 85:e1:fb:00:ef:7a:35:6b:4e:20:f1:29:ca:fa:a6:9d:bc:ad: 0d:ef:eb:93:f8:79:70:93:11:3e:81:05:cd:22:32:cd:28:46: 27:da:73:d5:18:92:6e:f2:f8:6a:38:06:a7:fc:b2:ef:68:ce: fe:fa:c5:d0:12:37:6a:6a:dd:cf:3c:7f:da:6d:74:38:43:fe: d9:04:f6:8a:a4:ea:11:78:16:c6:80:3b:73:ea:5d:a7:3b:3d: 39:89:5f:3f:04:de:18:19:85:9d:de:6e:5e:2b:41:33:c1:31: 88:4c:59:7d:84:e8:7e:68:c2:db:4a:49:bc:76:d9:d2:c9:bb: c3:79:9c:56:46:8c:96:2b:e3:30:8b:80:94:bc:6c:24:58:b7: d2:41:77:30:40:d4:df:b4:23:fa:48:54:ca:ab:26:a5:1f:14: ad:dc:35:05 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICNjQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjUwOTAyMTUwMTMxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MDZjYi1hNDJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2mRkgu2P8O5YMA79SIpClSoy5qATReFmsYaiIuax82UuseEBLShg1HtfODez zzBxk53UddTWZYkX+/2f5oVwE9OMX+ntDTHo7559nCPu2NGYDKKuw+Atzvo86Rjo CsYmUhBT4Q28qLHKb8gPD3YfyymoFqFoA5g0Ho2h4TIxkRpTsENzL1DL6hyUaMNm IQQkU6pt7MYJPY+yIN9ekRFjzeHrYvun6ZAmPqO34WfKjxwT8FQ+JY/Mv7NcsUih 7g7ej1ykgqgGT8/zfDqo2rB7FjgP6kyrHi8EjdlisAzHe8PQBZPCwYHUxDbyI5xV L6yf8HYjtPNUTga0jolA+DyGBQIDAQABo4IClzCCApMwHQYDVR0OBBYEFHY82rvs ZEYQPnQJV1v0Elw3fY85MB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvMzEyQUFBRDRC QjdFMTFFOUFGQjQ5QzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgQkA8wAQDANBgkqhkiG9w0BAQsFAAOCAQEAcsmCjFCHLnX8 75QVgSKCH64IVNEfYfd2rjLBkN/ADfW4PWcjHJG/JSIVC6cLXvumHtiFopVnOuZ4 vWxBgeVOk2SGPESce+oS6sHySnao6+3obZr5lQs+I/x9heH7AO96NWtOIPEpyvqm nbytDe/rk/h5cJMRPoEFzSIyzShGJ9pz1RiSbvL4ajgGp/yy72jO/vrF0BI3amrd zzx/2m10OEP+2QT2iqTqEXgWxoA7c+pdpzs9OYlfPwTeGBmFnd5uXitBM8ExiExZ fYTofmjC20pJvHbZ0sm7w3mcVkaMlivjMIuAlLxsJFi30kF3MEDU37Qj+khUyqsm pR8Urdw1BQ== -----END CERTIFICATE-----Generated at Sat Sep 6 12:49:08 2025 by rpki-client