$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/64B2DE72AC1011ED8592693FC4F9AE02.roa File: 64B2DE72AC1011ED8592693FC4F9AE02.roa (raw, json) Hash identifier: 8XCBqH3UeeuDPYwwqRpO+AoZOfKPyRMZ7ican69IhKU= Subject key identifier: A9:2D:C1:EB:7C:88:A7:E9:D6:BF:5D:FC:BC:FF:41:CA:19:A8:FA:C4 Certificate issuer: /CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Certificate serial: 0201 Authority key identifier: 44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/64B2DE72AC1011ED8592693FC4F9AE02.roa Signing time: Fri 05 Sep 2025 03:08:53 +0000 ROA not before: Fri 05 Sep 2025 03:08:53 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24234 IP address blocks: 2400:b400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 513 (0x201) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E9B, serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Validity Not Before: Sep 5 03:08:53 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ba5445-6190 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:10:95:3e:95:a6:2b:bb:86:a2:37:5b:43:60: 63:5f:c2:67:04:6c:a3:b2:f6:58:07:18:a0:35:f0: 22:12:27:69:49:a8:0a:15:e2:0a:a4:68:30:41:61: 84:3c:b4:b4:ef:6c:51:c1:67:23:7c:36:85:b8:ae: e8:3e:6b:81:fd:92:28:f4:d5:e5:bf:38:30:31:70: 17:7c:41:0c:5a:2b:08:2c:52:b2:f1:2c:07:82:d2: 89:68:53:86:b3:05:14:21:f1:f7:86:69:c3:e6:17: 75:f3:24:64:3b:04:77:7c:7f:9e:9a:c9:e3:97:4b: cc:c2:47:32:0c:2e:92:95:58:96:49:49:e5:69:ad: bd:41:4b:21:35:d0:26:a1:9b:43:32:9d:39:c1:ea: aa:53:42:73:fe:40:75:27:30:78:3a:43:73:d3:20: 6c:4b:b0:a6:bb:de:0d:79:55:22:7f:0d:eb:f8:34: 13:c0:34:37:5e:90:c7:c3:13:3b:dd:19:7d:bd:5e: 53:34:6b:a9:5d:db:b5:69:38:f6:e6:1f:20:4b:dd: 09:83:33:b2:d6:0b:07:81:00:ba:78:b2:d4:cb:52: 94:25:3c:27:06:4f:bf:e2:45:ba:4e:9b:97:64:51: 3b:e9:0c:bf:58:1f:5f:d6:37:bb:eb:2e:dc:d3:70: 49:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:2D:C1:EB:7C:88:A7:E9:D6:BF:5D:FC:BC:FF:41:CA:19:A8:FA:C4 X509v3 Authority Key Identifier: keyid:44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/64B2DE72AC1011ED8592693FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:b400::/32 Signature Algorithm: sha256WithRSAEncryption 6b:73:7e:1a:99:55:a2:7c:2c:a2:92:df:50:52:9a:5e:d9:8b: 07:50:98:4a:4b:ce:66:25:c2:32:91:01:46:21:18:0a:7e:7e: 21:52:97:66:1f:5d:0c:1c:01:75:b6:85:3d:ca:df:e4:41:09: e2:a9:8d:b2:d6:a8:ca:e4:8c:d3:11:9f:9e:58:bf:16:e0:ac: 1f:35:0f:82:e8:36:7c:5d:20:b4:83:e0:e8:a3:6e:a3:8a:bd: 83:53:e4:7a:a0:65:13:2f:26:d3:af:fc:15:a9:86:17:42:20: 4a:ce:19:2b:24:93:a9:2d:77:72:40:4f:57:67:fd:2f:84:4c: 94:62:36:70:ac:80:14:b2:fb:b4:e6:95:fd:5d:1a:9c:f1:73: 97:1d:a8:ac:b9:29:07:01:2e:4e:64:a7:94:ad:3b:5b:c0:24: ef:bd:6a:94:5f:94:35:62:2e:74:eb:21:33:a9:29:b9:bd:9d: 39:a8:3e:0e:ab:6b:1a:c7:e6:1a:05:75:89:be:13:39:29:d4: c3:47:ac:3e:6c:b8:27:72:fb:2a:97:71:45:82:1d:57:85:10: 70:dd:aa:08:c7:45:84:8d:a8:b7:3e:85:b0:29:7b:90:77:9c: db:eb:57:91:db:6e:c6:3e:dd:96:44:de:46:b6:6f:68:61:44: 2e:f5:04:50 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAgEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFOUIxMTAvBgNVBAUTKDQ0Njc5MjQzOTI1ODE4MkE3QTFFNERBNEIyQzA2RkFE MkFBRUU0QjkwHhcNMjUwOTA1MDMwODUzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJhNTQ0NS02MTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2BCVPpWmK7uGojdbQ2BjX8JnBGyjsvZYBxigNfAiEidpSagKFeIKpGgwQWGE PLS072xRwWcjfDaFuK7oPmuB/ZIo9NXlvzgwMXAXfEEMWisILFKy8SwHgtKJaFOG swUUIfH3hmnD5hd18yRkOwR3fH+emsnjl0vMwkcyDC6SlViWSUnlaa29QUshNdAm oZtDMp05weqqU0Jz/kB1JzB4OkNz0yBsS7Cmu94NeVUifw3r+DQTwDQ3XpDHwxM7 3Rl9vV5TNGupXdu1aTj25h8gS90JgzOy1gsHgQC6eLLUy1KUJTwnBk+/4kW6TpuX ZFE76Qy/WB9f1je76y7c03BJNwIDAQABo4ICljCCApIwHQYDVR0OBBYEFKktwet8 iKfp1r9d/Lz/QcoZqPrEMB8GA1UdIwQYMBaAFERnkkOSWBgqeh5NpLLAb60qruS5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEU5Qi82OUVCNDJDMDk2 MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdDcDZIazJrc3NCdnJTcXU1 TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JHZVNRNUpZR0NwNkhrMmtzc0J2clNxdTVMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhFOUIvNjlFQjQyQzA5NjBFMTFFRDlBNENFQTY1QzRGOUFFMDIvNjRCMkRFNzJB QzEwMTFFRDg1OTI2OTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkALQAMA0GCSqGSIb3DQEBCwUAA4IBAQBrc34amVWifCyi kt9QUppe2YsHUJhKS85mJcIykQFGIRgKfn4hUpdmH10MHAF1toU9yt/kQQniqY2y 1qjK5IzTEZ+eWL8W4KwfNQ+C6DZ8XSC0g+Doo26jir2DU+R6oGUTLybTr/wVqYYX QiBKzhkrJJOpLXdyQE9XZ/0vhEyUYjZwrIAUsvu05pX9XRqc8XOXHaisuSkHAS5O ZKeUrTtbwCTvvWqUX5Q1Yi506yEzqSm5vZ05qD4Oq2sax+YaBXWJvhM5KdTDR6w+ bLgncvsql3FFgh1XhRBw3aoIx0WEjai3PoWwKXuQd5zb61eR227GPt2WRN5Gtm9o YUQu9QRQ -----END CERTIFICATE-----Generated at Tue Sep 9 13:21:25 2025 by rpki-client