$ rpki-client -vvf rpki.apnic.net/member_repository/A91425C3/2C9714EE660411F0A4C5192BC4F9AE02/44E524C6660611F0AC01FC4FC4F9AE02.roa File: 44E524C6660611F0AC01FC4FC4F9AE02.roa (raw, json) Hash identifier: bHIMWlurNqBIRWjjG4aQFJYKcLjVhjX4C0j7SqX+rCQ= Subject key identifier: 2B:EF:1C:83:D9:FC:05:3C:FB:79:23:AB:29:2E:40:FA:65:EE:7D:48 Certificate issuer: /CN=A91425C3/serialNumber=5AFBB9CBBC6546BD551D172630190AE81A9AF127 Certificate serial: 02 Authority key identifier: 5A:FB:B9:CB:BC:65:46:BD:55:1D:17:26:30:19:0A:E8:1A:9A:F1:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wvu5y7xlRr1VHRcmMBkK6Bqa8Sc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91425C3/2C9714EE660411F0A4C5192BC4F9AE02/44E524C6660611F0AC01FC4FC4F9AE02.roa Signing time: Mon 21 Jul 2025 07:42:36 +0000 ROA not before: Mon 21 Jul 2025 07:42:36 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154071 IP address blocks: 2001:df5:e4c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91425C3/2C9714EE660411F0A4C5192BC4F9AE02/Wvu5y7xlRr1VHRcmMBkK6Bqa8Sc.crl rsync://rpki.apnic.net/member_repository/A91425C3/2C9714EE660411F0A4C5192BC4F9AE02/Wvu5y7xlRr1VHRcmMBkK6Bqa8Sc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wvu5y7xlRr1VHRcmMBkK6Bqa8Sc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 08:24:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91425C3, serialNumber=5AFBB9CBBC6546BD551D172630190AE81A9AF127 Validity Not Before: Jul 21 07:42:36 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=687def6c-f9fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:8c:89:2f:cc:2c:37:09:36:bd:5b:d5:6d:18: 88:82:5f:e3:f8:c0:a9:8e:13:f2:f0:39:ba:28:a8: 34:58:6d:36:c0:64:c8:7d:fb:c0:eb:ea:e2:a3:55: ed:82:b5:47:4d:77:8c:f5:20:80:47:96:69:82:97: 8f:6c:be:51:42:e1:8b:0b:c1:81:fd:91:44:be:e8: 35:d9:78:c6:59:66:6f:0d:5b:81:91:ca:28:53:c0: d7:1f:cb:7b:85:17:d4:8c:87:c0:13:cb:e7:ca:24: 66:bb:c8:ff:af:15:6f:5a:a5:10:a9:10:27:3b:bf: 3d:f1:20:d2:93:c2:fb:f2:29:00:ac:3e:7b:5f:2e: ad:06:ef:5e:3b:c2:d4:f5:ca:96:0d:8e:70:41:66: cb:d8:23:fb:ef:8e:87:da:a4:c7:c2:94:5c:8b:c4: 51:e5:0b:12:d7:c3:ad:bc:c0:94:82:c4:34:01:45: 09:bf:14:a9:ef:87:c0:a4:a1:5b:48:ec:03:86:fb: 73:87:81:9c:19:d5:a9:e9:63:76:7d:53:a8:c7:de: ba:86:ad:32:50:50:93:b8:19:e8:a6:79:17:6c:4a: d3:83:d0:4e:ff:d9:18:4d:07:d9:98:fe:31:71:a9: 4e:7b:f2:c4:61:53:2e:d1:45:c4:7d:fb:d8:ee:15: b9:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:EF:1C:83:D9:FC:05:3C:FB:79:23:AB:29:2E:40:FA:65:EE:7D:48 X509v3 Authority Key Identifier: keyid:5A:FB:B9:CB:BC:65:46:BD:55:1D:17:26:30:19:0A:E8:1A:9A:F1:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91425C3/2C9714EE660411F0A4C5192BC4F9AE02/Wvu5y7xlRr1VHRcmMBkK6Bqa8Sc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Wvu5y7xlRr1VHRcmMBkK6Bqa8Sc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91425C3/2C9714EE660411F0A4C5192BC4F9AE02/44E524C6660611F0AC01FC4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:e4c0::/48 Signature Algorithm: sha256WithRSAEncryption 90:fa:41:32:ff:5b:d3:79:80:6b:48:f2:fc:43:bf:a7:aa:87: 89:15:54:cb:73:cb:14:93:93:90:76:e2:6a:1e:d8:37:fc:32: 89:4b:f4:1e:da:b6:c7:c7:26:c2:99:a4:51:79:fb:ad:7e:1a: 28:60:12:6a:69:22:76:87:51:b6:0e:4e:09:36:d4:20:c0:7b: d2:ce:79:f1:47:f8:38:99:41:1a:d0:0f:e0:29:22:de:24:f4: 04:0b:5a:85:6e:39:54:54:fe:76:4f:ec:05:39:8b:eb:cd:22: db:8c:99:74:51:25:83:3f:5b:5f:5a:46:00:56:7f:ef:7e:13: e9:c0:46:73:45:86:3e:89:7c:e6:83:30:ff:03:8f:10:51:33: 32:5e:95:65:f3:58:1d:df:9a:57:93:0c:6b:5b:82:e6:9b:dd: a6:5f:b3:8d:d2:82:a5:a7:2c:af:6d:7d:f9:49:ff:86:86:80: 2d:ae:c5:45:e5:a7:5a:d4:a6:93:98:81:23:d9:f5:7a:ff:8a: ee:aa:f7:f8:d7:c4:bd:69:fe:7c:75:56:45:45:83:eb:fb:66: e9:8f:9b:80:1f:c0:3a:f9:5e:50:64:41:bf:70:29:d9:ef:88: 8c:ea:51:45:4d:40:b7:8a:c8:ee:d3:c8:8c:4f:73:b7:b6:66: a3:3f:9c:31 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 MjVDMzExMC8GA1UEBRMoNUFGQkI5Q0JCQzY1NDZCRDU1MUQxNzI2MzAxOTBBRTgx QTlBRjEyNzAeFw0yNTA3MjEwNzQyMzZaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4N2RlZjZjLWY5ZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCyjIkvzCw3CTa9W9VtGIiCX+P4wKmOE/LwObooqDRYbTbAZMh9+8Dr6uKjVe2C tUdNd4z1IIBHlmmCl49svlFC4YsLwYH9kUS+6DXZeMZZZm8NW4GRyihTwNcfy3uF F9SMh8ATy+fKJGa7yP+vFW9apRCpECc7vz3xINKTwvvyKQCsPntfLq0G7147wtT1 ypYNjnBBZsvYI/vvjofapMfClFyLxFHlCxLXw628wJSCxDQBRQm/FKnvh8CkoVtI 7AOG+3OHgZwZ1anpY3Z9U6jH3rqGrTJQUJO4GeimeRdsStOD0E7/2RhNB9mY/jFx qU578sRhUy7RRcR9+9juFbmhAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUK+8cg9n8 BTz7eSOrKS5A+mXufUgwHwYDVR0jBBgwFoAUWvu5y7xlRr1VHRcmMBkK6Bqa8Scw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQyNUMzLzJDOTcxNEVFNjYw NDExRjBBNEM1MTkyQkM0RjlBRTAyL1d2dTV5N3hsUnIxVkhSY21NQmtLNkJxYThT Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvV3Z1NXk3eGxScjFWSFJjbU1Ca0s2QnFhOFNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 MjVDMy8yQzk3MTRFRTY2MDQxMUYwQTRDNTE5MkJDNEY5QUUwMi80NEU1MjRDNjY2 MDYxMUYwQUMwMUZDNEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfXkwDANBgkqhkiG9w0BAQsFAAOCAQEAkPpBMv9b03mA a0jy/EO/p6qHiRVUy3PLFJOTkHbiah7YN/wyiUv0Htq2x8cmwpmkUXn7rX4aKGAS amkidodRtg5OCTbUIMB70s558Uf4OJlBGtAP4Cki3iT0BAtahW45VFT+dk/sBTmL 680i24yZdFElgz9bX1pGAFZ/734T6cBGc0WGPol85oMw/wOPEFEzMl6VZfNYHd+a V5MMa1uC5pvdpl+zjdKCpacsr219+Un/hoaALa7FReWnWtSmk5iBI9n1ev+K7qr3 +NfEvWn+fHVWRUWD6/tm6Y+bgB/AOvleUGRBv3Ap2e+IjOpRRU1At4rI7tPIjE9z t7Zmoz+cMQ== -----END CERTIFICATE-----Generated at Wed Aug 13 04:29:18 2025 by rpki-client