$ rpki-client -vvf rpki.apnic.net/member_repository/A91383F0/DCFCA6A20A8311EE9E6A9250C4F9AE02/F098580828C511EFB2C79E5FC4F9AE02.roa File: F098580828C511EFB2C79E5FC4F9AE02.roa (raw, json) Hash identifier: PKXjuoEZrlzUW0PjdUqu51WxN11R0HED8PlE1wRRsEI= Subject key identifier: B7:50:F7:EE:73:58:83:AC:C3:7D:F1:61:01:58:E2:B6:95:67:F5:43 Certificate issuer: /CN=A91383F0/serialNumber=1036C1E0FFE1CFC37D655D89FA65D65FE22E1F7A Certificate serial: 01BE Authority key identifier: 10:36:C1:E0:FF:E1:CF:C3:7D:65:5D:89:FA:65:D6:5F:E2:2E:1F:7A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDbB4P_hz8N9ZV2J-mXWX-IuH3o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91383F0/DCFCA6A20A8311EE9E6A9250C4F9AE02/F098580828C511EFB2C79E5FC4F9AE02.roa Signing time: Wed 23 Jul 2025 04:09:40 +0000 ROA not before: Wed 23 Jul 2025 04:09:40 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151403 IP address blocks: 2401:aa0::/32 maxlen: 32 2401:aa0::/34 maxlen: 34 2401:aa0::/48 maxlen: 48 2401:aa0:1::/48 maxlen: 48 2401:aa0:2::/48 maxlen: 48 2401:aa0:3::/48 maxlen: 48 2401:aa0:4::/48 maxlen: 48 2401:aa0:5::/48 maxlen: 48 2401:aa0:6::/48 maxlen: 48 2401:aa0:7::/48 maxlen: 48 2401:aa0:8::/48 maxlen: 48 2401:aa0:4000::/34 maxlen: 34 2401:aa0:8000::/34 maxlen: 34 2401:aa0:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91383F0/DCFCA6A20A8311EE9E6A9250C4F9AE02/EDbB4P_hz8N9ZV2J-mXWX-IuH3o.crl rsync://rpki.apnic.net/member_repository/A91383F0/DCFCA6A20A8311EE9E6A9250C4F9AE02/EDbB4P_hz8N9ZV2J-mXWX-IuH3o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDbB4P_hz8N9ZV2J-mXWX-IuH3o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 03:55:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 446 (0x1be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91383F0, serialNumber=1036C1E0FFE1CFC37D655D89FA65D65FE22E1F7A Validity Not Before: Jul 23 04:09:40 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68806084-a99d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:12:9a:b3:3c:ba:9d:5b:4c:a7:a4:36:bc:11: 02:cd:21:72:bb:75:1a:00:e4:52:9a:55:70:bb:5c: e9:10:96:8f:f0:52:15:bb:42:18:a2:26:3b:cf:10: fe:05:d9:30:cd:03:24:bd:ea:d8:fb:6b:ec:61:15: cf:0b:f7:62:9d:8d:1a:87:27:0e:c3:4e:6f:d3:52: 25:a9:f6:d0:d7:91:da:23:69:3d:db:25:5a:47:5f: 34:e9:4b:bc:c0:98:b6:ab:79:52:e1:cd:d5:c7:c9: c3:1d:46:4f:bb:68:33:3c:5f:7c:50:3a:fc:6e:53: b3:4b:4d:fb:37:68:11:fa:87:78:21:f3:e4:49:37: 36:f1:7e:8f:36:39:6f:6f:e9:d1:ec:0b:1a:6d:7d: 8b:c3:dc:19:09:ff:9b:21:f0:06:28:7b:bc:9c:83: 26:c8:93:a2:eb:9a:4e:66:06:31:ee:ed:39:3f:60: 66:d1:33:cb:b1:57:a3:84:3b:5c:28:ca:74:6d:8d: 6a:67:0d:c0:1d:ba:07:8d:f6:34:c6:93:77:96:57: 5c:66:72:d2:6c:a7:0b:f7:56:17:30:a7:4d:b0:c5: 9b:8a:34:4a:ae:3d:00:23:49:6a:b7:64:41:97:e6: b1:be:c0:e7:93:3e:db:ac:c1:31:d8:63:88:c4:8a: c9:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:50:F7:EE:73:58:83:AC:C3:7D:F1:61:01:58:E2:B6:95:67:F5:43 X509v3 Authority Key Identifier: keyid:10:36:C1:E0:FF:E1:CF:C3:7D:65:5D:89:FA:65:D6:5F:E2:2E:1F:7A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91383F0/DCFCA6A20A8311EE9E6A9250C4F9AE02/EDbB4P_hz8N9ZV2J-mXWX-IuH3o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EDbB4P_hz8N9ZV2J-mXWX-IuH3o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91383F0/DCFCA6A20A8311EE9E6A9250C4F9AE02/F098580828C511EFB2C79E5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:aa0::/32 Signature Algorithm: sha256WithRSAEncryption 7a:74:08:b9:cc:7b:67:68:43:2e:22:ba:83:09:66:d1:96:44: 2d:72:46:f2:14:1f:e1:5d:f1:83:e7:e8:db:90:a7:4d:c5:46: 7b:a3:26:c3:01:5b:46:02:ec:c7:ef:6b:82:5e:ff:84:76:d5: 8d:56:cf:63:f9:70:0d:f5:eb:10:c1:9a:6c:cd:5c:c9:ee:83: 46:b4:4c:3c:ea:dc:a1:cf:95:96:e7:42:76:72:c8:ee:b5:07: 3a:05:ed:f5:97:f2:8b:60:86:aa:be:88:42:e0:23:25:e1:c8: 25:b9:e8:ff:a3:0c:ad:ea:70:2e:90:3e:cc:3a:8c:63:ce:72: db:bc:3a:6f:ce:bb:84:65:68:6d:30:9e:26:93:5a:1a:ce:24: e7:fb:9a:cd:02:e2:42:e3:ec:a8:29:e8:bf:46:1f:dd:08:44: 34:a9:f2:31:1d:c5:bc:c9:32:90:41:31:eb:11:96:48:61:5c: c6:77:9a:50:56:58:fc:33:d8:f9:66:02:f0:2f:46:0b:7e:06: 9e:ef:80:5d:dc:d9:82:5c:4e:5b:b4:29:1f:01:e5:d9:c4:f3: fd:de:92:ab:14:b6:71:1a:df:d7:5f:ef:c8:d3:5b:6f:c9:d4: cc:ee:d2:df:61:c0:cb:f7:dd:c0:96:71:3a:6d:2f:f7:86:79: 9a:ac:41:3c -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzgzRjAxMTAvBgNVBAUTKDEwMzZDMUUwRkZFMUNGQzM3RDY1NUQ4OUZBNjVENjVG RTIyRTFGN0EwHhcNMjUwNzIzMDQwOTQwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgwNjA4NC1hOTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqxKaszy6nVtMp6Q2vBECzSFyu3UaAORSmlVwu1zpEJaP8FIVu0IYoiY7zxD+ BdkwzQMkverY+2vsYRXPC/dinY0ahycOw05v01IlqfbQ15HaI2k92yVaR1806Uu8 wJi2q3lS4c3Vx8nDHUZPu2gzPF98UDr8blOzS037N2gR+od4IfPkSTc28X6PNjlv b+nR7AsabX2Lw9wZCf+bIfAGKHu8nIMmyJOi65pOZgYx7u05P2Bm0TPLsVejhDtc KMp0bY1qZw3AHboHjfY0xpN3lldcZnLSbKcL91YXMKdNsMWbijRKrj0AI0lqt2RB l+axvsDnkz7brMEx2GOIxIrJTQIDAQABo4ICljCCApIwHQYDVR0OBBYEFLdQ9+5z WIOsw33xYQFY4raVZ/VDMB8GA1UdIwQYMBaAFBA2weD/4c/DfWVdifpl1l/iLh96 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODNGMC9EQ0ZDQTZBMjBB ODMxMUVFOUU2QTkyNTBDNEY5QUUwMi9FRGJCNFBfaHo4TjlaVjJKLW1YV1gtSXVI M28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VEYkI0UF9oejhOOVpWMkotbVhXWC1JdUgzby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzgzRjAvRENGQ0E2QTIwQTgzMTFFRTlFNkE5MjUwQzRGOUFFMDIvRjA5ODU4MDgy OEM1MTFFRkIyQzc5RTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAQqgMA0GCSqGSIb3DQEBCwUAA4IBAQB6dAi5zHtnaEMu IrqDCWbRlkQtckbyFB/hXfGD5+jbkKdNxUZ7oybDAVtGAuzH72uCXv+EdtWNVs9j +XAN9esQwZpszVzJ7oNGtEw86tyhz5WW50J2csjutQc6Be31l/KLYIaqvohC4CMl 4cgluej/owyt6nAukD7MOoxjznLbvDpvzruEZWhtMJ4mk1oaziTn+5rNAuJC4+yo Kei/Rh/dCEQ0qfIxHcW8yTKQQTHrEZZIYVzGd5pQVlj8M9j5ZgLwL0YLfgae74Bd 3NmCXE5btCkfAeXZxPP93pKrFLZxGt/XX+/I01tvydTM7tLfYcDL993AlnE6bS/3 hnmarEE8 -----END CERTIFICATE-----Generated at Sat Aug 9 01:12:34 2025 by rpki-client