$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/E35133A60ED911EE8A4E0A23C4F9AE02.roa File: E35133A60ED911EE8A4E0A23C4F9AE02.roa (raw, json) Hash identifier: e25ru4BXX5TZKhE2N5BI3aO29RU1zFDKzTpZQJzhAu0= Subject key identifier: 5C:06:FE:6A:E5:F5:FC:08:65:93:86:3C:30:6D:04:42:6E:21:06:44 Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 0236 Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/E35133A60ED911EE8A4E0A23C4F9AE02.roa Signing time: Mon 15 Sep 2025 17:28:46 +0000 ROA not before: Mon 15 Sep 2025 17:28:46 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151407 IP address blocks: 2401:b60:6::/48 maxlen: 48 2401:b60:b::/48 maxlen: 48 2401:b60:2b::/48 maxlen: 48 2401:b60:100::/40 maxlen: 40 2401:b60:3000::/40 maxlen: 48 2401:b60:e203::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 04:40:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 566 (0x236) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B, serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Validity Not Before: Sep 15 17:28:46 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68c84cce-f534 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:99:c6:50:85:f1:26:0e:07:4b:08:30:60:48: 74:77:d3:09:39:ee:65:24:f6:f8:5e:41:69:0f:45: 5e:90:43:18:8b:5f:00:c2:31:74:02:6b:3d:8f:dd: 02:f8:1a:e3:5f:e4:17:05:94:7b:f0:9d:52:02:99: 8a:76:10:a1:cf:49:39:b2:44:1c:82:51:64:b6:9b: 6a:35:c8:dd:4c:67:9f:01:d1:6c:b1:38:d2:6f:d7: 7e:3d:00:9b:23:f7:dd:a6:31:dd:91:3a:84:f1:2d: 1d:fa:87:ee:b1:92:94:7b:76:eb:6b:94:e1:cc:bc: 8a:25:6a:0f:47:e9:f2:3e:cb:52:6c:e8:dd:8e:62: b3:dc:44:02:aa:04:6a:19:9c:6f:9e:65:6c:ab:5f: d7:f5:b0:d0:8b:c3:2c:f6:16:e1:21:e0:1e:38:e9: 5d:3c:9f:83:24:2f:83:70:95:3f:59:30:68:39:49: 41:c2:a3:0e:a7:75:eb:79:4a:6a:ce:37:64:d1:d1: 52:6a:df:9c:22:dc:4c:c7:42:f6:57:5e:43:09:7a: 8c:a4:71:b6:98:7b:79:81:9f:11:0c:5a:00:55:85: 0a:cd:a0:ab:dc:60:d7:ed:4f:55:1a:4a:e3:dd:ed: 7f:a6:d4:e2:ef:65:cc:73:6d:4c:0a:dc:8b:39:03: 8a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:06:FE:6A:E5:F5:FC:08:65:93:86:3C:30:6D:04:42:6E:21:06:44 X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/E35133A60ED911EE8A4E0A23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b60:6::/48 2401:b60:b::/48 2401:b60:2b::/48 2401:b60:100::/40 2401:b60:3000::/40 2401:b60:e203::/48 Signature Algorithm: sha256WithRSAEncryption 3a:1a:d8:24:56:16:6e:04:73:1f:b0:dd:51:e1:25:81:4f:07: 7f:be:d1:58:a0:51:51:67:70:5d:1a:87:2d:4b:e1:21:1d:52: 20:5c:c2:68:17:1d:a2:55:79:cd:97:99:b8:c5:00:24:a6:a1: 73:17:fc:e4:c0:6e:b7:77:68:85:c4:10:62:d7:85:b9:08:15: e4:2c:e6:66:98:d6:48:a4:40:45:fc:3d:d1:8d:bb:9f:a3:56: 45:6f:d8:44:d2:6d:5d:33:d3:36:22:dd:bb:47:60:1b:34:70: 7e:4d:d4:20:1a:11:7d:14:85:9e:06:42:8f:21:7c:18:c0:42: 69:50:cd:89:42:18:6e:a7:27:5c:00:9b:ad:60:38:88:1c:18: dd:bb:da:dc:bf:e7:2b:85:31:2a:2b:d1:c1:80:38:43:23:69: f7:ef:b7:bb:d2:45:e8:3c:b2:eb:e6:d2:45:70:5e:7e:40:13: e7:ff:30:ac:6b:64:dd:e9:87:a8:96:60:20:8f:fc:a2:d7:5b: 30:8c:a8:1e:3d:0d:bc:87:c5:0d:e4:c6:b8:11:1a:15:13:c4: 76:b6:dd:c8:2c:3e:e2:67:62:01:3d:ae:ef:c8:a9:77:1b:d2: 86:85:1a:37:db:97:32:ad:b2:f5:c6:54:a0:d2:99:63:e2:62: 44:f8:d4:eb -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICAjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjUwOTE1MTcyODQ2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM4NGNjZS1mNTM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA85nGUIXxJg4HSwgwYEh0d9MJOe5lJPb4XkFpD0VekEMYi18AwjF0Ams9j90C +BrjX+QXBZR78J1SApmKdhChz0k5skQcglFktptqNcjdTGefAdFssTjSb9d+PQCb I/fdpjHdkTqE8S0d+ofusZKUe3bra5ThzLyKJWoPR+nyPstSbOjdjmKz3EQCqgRq GZxvnmVsq1/X9bDQi8Ms9hbhIeAeOOldPJ+DJC+DcJU/WTBoOUlBwqMOp3XreUpq zjdk0dFSat+cItxMx0L2V15DCXqMpHG2mHt5gZ8RDFoAVYUKzaCr3GDX7U9VGkrj 3e1/ptTi72XMc21MCtyLOQOKpwIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFFwG/mrl 9fwIZZOGPDBtBEJuIQZEMB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwM0IvQUY5NjcxNjYwQjZFMTFFRUIyOUJCMTcwQzRGOUFFMDIvRTM1MTMzQTYw RUQ5MTFFRThBNEUwQTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MDoEAgACMDQDBwAkAQtgAAYDBwAkAQtgAAsDBwAkAQtgACsDBgAkAQtgAQMG ACQBC2AwAwcAJAELYOIDMA0GCSqGSIb3DQEBCwUAA4IBAQA6GtgkVhZuBHMfsN1R 4SWBTwd/vtFYoFFRZ3BdGoctS+EhHVIgXMJoFx2iVXnNl5m4xQAkpqFzF/zkwG63 d2iFxBBi14W5CBXkLOZmmNZIpEBF/D3Rjbufo1ZFb9hE0m1dM9M2It27R2AbNHB+ TdQgGhF9FIWeBkKPIXwYwEJpUM2JQhhupydcAJutYDiIHBjdu9rcv+crhTEqK9HB gDhDI2n377e70kXoPLLr5tJFcF5+QBPn/zCsa2Td6YeolmAgj/yi11swjKgePQ28 h8UN5Ma4ERoVE8R2tt3ILD7iZ2IBPa7vyKl3G9KGhRo325cyrbL1xlSg0plj4mJE +NTr -----END CERTIFICATE-----Generated at Fri Oct 24 10:37:45 2025 by rpki-client