$ rpki-client -vvf rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/05A966C652DB11EF990CB840C4F9AE02.roa File: 05A966C652DB11EF990CB840C4F9AE02.roa (raw, json) Hash identifier: uXZnZkbG2vzbvvdgakCXJGAe3jQgXul+4/g2eod9UgM= Subject key identifier: 18:AF:0F:1A:DE:C3:BD:C2:FC:1E:9B:BA:96:E3:65:9A:8F:CE:BE:29 Certificate issuer: /CN=A91393BE/serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Certificate serial: BF Authority key identifier: DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/05A966C652DB11EF990CB840C4F9AE02.roa Signing time: Sun 03 Aug 2025 06:13:35 +0000 ROA not before: Sun 03 Aug 2025 06:13:35 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132895 IP address blocks: 2401:5e80::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 06:27:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 191 (0xbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91393BE, serialNumber=DA47278A77BBDFF2AD9F98A011A2A7A2E7CD60D8 Validity Not Before: Aug 3 06:13:35 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688efe0e-48dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:0d:03:b5:b8:cc:32:04:6d:7b:2d:6c:c5:9c: fa:d5:d1:b7:4c:18:24:c3:10:ac:f3:c6:c6:09:96: b2:f7:08:19:db:ee:60:14:91:7d:3b:be:f8:37:85: ba:17:7e:6e:66:97:66:c6:e9:56:1e:64:2d:26:44: ec:29:21:a4:f5:e4:aa:5a:b4:33:2c:c3:ad:6d:3a: 94:06:43:d7:fe:64:93:ef:bc:09:f6:76:f3:a6:b7: 70:26:75:be:96:8c:c0:c0:a7:45:88:9b:d9:aa:4a: 4b:53:f9:f3:c4:1a:4b:a3:4a:d2:e6:e2:1b:76:80: b2:23:fd:85:34:6d:b0:d1:8d:73:09:fb:46:29:87: 4a:55:c5:12:e4:fa:87:28:5e:53:f7:ee:28:6a:ad: 78:73:bf:84:02:80:34:95:6e:12:e9:4c:3e:3f:cf: 8e:66:43:f5:24:f1:59:6d:1e:b7:66:f5:11:97:11: 83:77:93:26:6f:10:c6:9e:b6:0c:e5:37:6e:8a:f7: 09:82:8b:75:35:9b:48:2d:1e:be:75:8f:39:ce:1e: f9:d9:18:e2:3e:73:a4:ee:b9:ae:60:af:5e:b1:12: f8:07:fa:64:62:04:e5:4e:75:0d:b1:76:a2:29:07: 92:da:f2:0e:12:35:ed:1a:0f:82:4e:6c:f2:40:bc: 12:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:AF:0F:1A:DE:C3:BD:C2:FC:1E:9B:BA:96:E3:65:9A:8F:CE:BE:29 X509v3 Authority Key Identifier: keyid:DA:47:27:8A:77:BB:DF:F2:AD:9F:98:A0:11:A2:A7:A2:E7:CD:60:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/2kcnine73_Ktn5igEaKnoufNYNg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2kcnine73_Ktn5igEaKnoufNYNg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91393BE/7741614C52D311EFBAEDDC1EC4F9AE02/05A966C652DB11EF990CB840C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:5e80::/32 Signature Algorithm: sha256WithRSAEncryption 2c:c5:12:93:11:ee:50:1d:7a:48:8b:f4:86:29:4f:f7:c0:66: dd:3b:72:06:52:e5:61:9b:d7:7e:8f:47:ef:dd:1a:dd:05:aa: 4a:bb:56:bb:3d:df:47:b7:75:d1:45:32:98:af:87:f5:d8:bd: 89:4d:10:ee:f2:29:07:74:09:98:76:93:0e:a2:07:b1:9e:70: f6:5a:e0:72:f3:6d:bf:19:92:bf:be:9a:30:7c:60:69:75:9a: 9c:d2:b9:cc:b8:33:eb:29:20:b6:6e:d1:72:dd:0e:66:c3:b9: b5:ce:76:67:1a:8e:4b:fa:91:87:44:2c:de:d7:34:cf:77:94: 69:3e:25:7a:ea:6b:ac:e6:c8:97:ea:2c:41:fc:d7:a5:59:ad: 81:54:1e:7e:ce:9e:d4:c8:a4:f1:63:6f:ae:2a:50:39:1c:d4: 34:24:96:29:e7:8f:4a:ee:fe:30:9b:ee:78:48:10:cd:71:0a: e7:9f:62:22:1e:08:7d:47:51:d8:82:55:a3:ba:74:b0:36:f5: 09:ed:97:af:14:8c:2e:28:01:96:06:93:3e:cc:a6:46:15:99: 7e:46:fa:f1:77:18:45:fc:55:0f:98:b7:04:e5:9a:97:be:41: dc:3b:35:2d:c9:69:d7:4c:7a:c9:96:20:f5:4d:7b:f9:6b:61: d1:dd:bf:2e -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzQkUxMTAvBgNVBAUTKERBNDcyNzhBNzdCQkRGRjJBRDlGOThBMDExQTJBN0Ey RTdDRDYwRDgwHhcNMjUwODAzMDYxMzM1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlZmUwZS00OGRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5g0DtbjMMgRtey1sxZz61dG3TBgkwxCs88bGCZay9wgZ2+5gFJF9O774N4W6 F35uZpdmxulWHmQtJkTsKSGk9eSqWrQzLMOtbTqUBkPX/mST77wJ9nbzprdwJnW+ lozAwKdFiJvZqkpLU/nzxBpLo0rS5uIbdoCyI/2FNG2w0Y1zCftGKYdKVcUS5PqH KF5T9+4oaq14c7+EAoA0lW4S6Uw+P8+OZkP1JPFZbR63ZvURlxGDd5MmbxDGnrYM 5TduivcJgot1NZtILR6+dY85zh752RjiPnOk7rmuYK9esRL4B/pkYgTlTnUNsXai KQeS2vIOEjXtGg+CTmzyQLwS+QIDAQABo4ICljCCApIwHQYDVR0OBBYEFBivDxre w73C/B6bupbjZZqPzr4pMB8GA1UdIwQYMBaAFNpHJ4p3u9/yrZ+YoBGip6LnzWDY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTNCRS83NzQxNjE0QzUy RDMxMUVGQkFFRERDMUVDNEY5QUUwMi8ya2NuaW5lNzNfS3RuNWlnRWFLbm91Zk5Z TmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJrY25pbmU3M19LdG41aWdFYUtub3VmTllOZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzQkUvNzc0MTYxNEM1MkQzMTFFRkJBRUREQzFFQzRGOUFFMDIvMDVBOTY2QzY1 MkRCMTFFRjk5MENCODQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAV6AMA0GCSqGSIb3DQEBCwUAA4IBAQAsxRKTEe5QHXpI i/SGKU/3wGbdO3IGUuVhm9d+j0fv3RrdBapKu1a7Pd9Ht3XRRTKYr4f12L2JTRDu 8ikHdAmYdpMOogexnnD2WuBy822/GZK/vpowfGBpdZqc0rnMuDPrKSC2btFy3Q5m w7m1znZnGo5L+pGHRCze1zTPd5RpPiV66mus5siX6ixB/NelWa2BVB5+zp7UyKTx Y2+uKlA5HNQ0JJYp549K7v4wm+54SBDNcQrnn2IiHgh9R1HYglWjunSwNvUJ7Zev FIwuKAGWBpM+zKZGFZl+RvrxdxhF/FUPmLcE5ZqXvkHcOzUtyWnXTHrJliD1TXv5 a2HR3b8u -----END CERTIFICATE-----Generated at Wed Aug 13 16:06:02 2025 by rpki-client