$ rpki-client -vvf rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/D14C1FE06AB211F0976F001AC4F9AE02.roa File: D14C1FE06AB211F0976F001AC4F9AE02.roa (raw, json) Hash identifier: CNFybG+1Rnqg1iljhEw8ck5HDJaCoHmMcCeBkIlBTRM= Subject key identifier: BA:91:B8:81:59:63:74:DD:81:E2:8C:5E:F4:05:4A:01:3F:55:ED:1F Certificate issuer: /CN=A91685E9/serialNumber=F698B5B47A06D5307DEC608969063074B68FF5CA Certificate serial: 87 Authority key identifier: F6:98:B5:B4:7A:06:D5:30:7D:EC:60:89:69:06:30:74:B6:8F:F5:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/D14C1FE06AB211F0976F001AC4F9AE02.roa Signing time: Sun 27 Jul 2025 06:27:50 +0000 ROA not before: Sun 27 Jul 2025 06:27:50 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 150654 IP address blocks: 2401:e920:8800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.crl rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 07:33:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91685E9, serialNumber=F698B5B47A06D5307DEC608969063074B68FF5CA Validity Not Before: Jul 27 06:27:50 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6885c6e5-c8e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:5e:90:28:3e:ec:28:14:d7:fd:65:47:ac:f4: bb:6e:e8:9d:a8:2a:f3:8c:3a:19:84:e3:43:79:8b: 68:c9:0e:ec:fd:d7:f0:78:e1:f3:79:c7:12:9b:cb: 0c:e3:df:cb:5f:11:3f:95:84:8b:0e:bf:75:09:68: 43:cb:20:c7:17:f8:8d:3d:20:d5:d5:f6:d4:8c:4a: ad:9e:f0:38:3d:31:ef:a8:bb:01:f2:47:3f:af:a6: 31:1c:9e:4d:b4:99:92:8c:32:3d:62:8c:43:48:10: d6:c9:e2:28:58:15:90:28:4a:53:78:8c:7d:c6:b4: a4:06:39:a2:1a:f1:fb:d4:9d:a2:25:23:18:ab:8f: b1:08:93:26:85:8f:2e:4f:21:50:e2:3a:e8:77:f6: c2:e5:9e:5c:4a:f0:dc:cb:93:26:2c:c1:c6:15:fa: 47:1c:84:fa:bc:c0:09:ca:28:0d:f6:50:69:ed:31: 53:32:69:8f:b4:13:dd:d0:e9:b2:ef:41:f8:f5:81: 49:5e:4a:91:9f:10:03:f1:89:8a:c9:9a:de:65:db: 2a:8e:2b:96:51:07:bc:15:69:51:6f:a4:61:3c:6c: 0b:76:72:e2:7c:f1:cc:da:cc:4c:81:23:58:cf:92: 9d:6e:49:a2:f8:fe:c9:38:71:38:a8:d3:2c:9f:7f: 51:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:91:B8:81:59:63:74:DD:81:E2:8C:5E:F4:05:4A:01:3F:55:ED:1F X509v3 Authority Key Identifier: keyid:F6:98:B5:B4:7A:06:D5:30:7D:EC:60:89:69:06:30:74:B6:8F:F5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/D14C1FE06AB211F0976F001AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:e920:8800::/48 Signature Algorithm: sha256WithRSAEncryption 6e:10:83:da:bf:4c:42:33:8d:32:64:16:06:16:26:49:ca:47: 43:f8:13:35:07:f7:63:6d:5c:d2:ea:59:52:16:c6:7d:fa:53: 2a:ff:7f:73:dc:0a:e2:cd:a2:79:5e:cb:ca:62:52:9b:61:fd: 2b:53:7c:08:a0:19:3a:fa:94:76:06:05:ec:a9:28:32:9f:9e: 80:a1:f8:6a:9b:13:b6:a9:44:cb:a8:06:15:e8:d8:05:d6:06: be:3b:d2:24:27:74:78:92:75:ba:86:84:ff:81:ad:8f:4c:0e: e0:d7:69:b7:9a:b3:44:90:ae:df:3c:51:e8:1f:54:77:23:b9: 83:6f:23:0b:2b:7a:e9:4b:e2:98:83:3e:4f:62:d8:4b:2a:08: 64:b8:2b:83:51:59:70:90:f2:c8:bb:6b:8e:8f:76:42:49:12: 92:33:61:b4:2b:f9:59:23:1d:e2:dc:fd:a8:9a:21:6d:4c:64: e5:70:78:09:bb:5e:36:c5:c9:c1:51:11:e9:dd:73:61:15:23: 72:95:0a:dd:af:5a:33:ac:96:58:19:73:0a:7a:33:6b:84:78: 99:fc:81:d4:15:85:6f:96:50:c9:cf:2a:2d:12:77:49:d1:0b: dc:3c:23:98:c4:ee:c4:f9:d5:60:8c:1a:ab:b3:2e:dc:17:1e: 61:d6:c3:47 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg1RTkxMTAvBgNVBAUTKEY2OThCNUI0N0EwNkQ1MzA3REVDNjA4OTY5MDYzMDc0 QjY4RkY1Q0EwHhcNMjUwNzI3MDYyNzUwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg1YzZlNS1jOGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl16QKD7sKBTX/WVHrPS7buidqCrzjDoZhONDeYtoyQ7s/dfweOHzeccSm8sM 49/LXxE/lYSLDr91CWhDyyDHF/iNPSDV1fbUjEqtnvA4PTHvqLsB8kc/r6YxHJ5N tJmSjDI9YoxDSBDWyeIoWBWQKEpTeIx9xrSkBjmiGvH71J2iJSMYq4+xCJMmhY8u TyFQ4jrod/bC5Z5cSvDcy5MmLMHGFfpHHIT6vMAJyigN9lBp7TFTMmmPtBPd0Omy 70H49YFJXkqRnxAD8YmKyZreZdsqjiuWUQe8FWlRb6RhPGwLdnLifPHM2sxMgSNY z5Kdbkmi+P7JOHE4qNMsn39RdwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFLqRuIFZ Y3TdgeKMXvQFSgE/Ve0fMB8GA1UdIwQYMBaAFPaYtbR6BtUwfexgiWkGMHS2j/XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODVFOS9DOTI4MDQzQUQx NzYxMUVGOTVDNURFNUFDNEY5QUUwMi85cGkxdEhvRzFUQjk3R0NKYVFZd2RMYVA5 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlwaTF0SG9HMVRCOTdHQ0phUVl3ZExhUDljby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg1RTkvQzkyODA0M0FEMTc2MTFFRjk1QzVERTVBQzRGOUFFMDIvRDE0QzFGRTA2 QUIyMTFGMDk3NkYwMDFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAekgiAAwDQYJKoZIhvcNAQELBQADggEBAG4Qg9q/TEIz jTJkFgYWJknKR0P4EzUH92NtXNLqWVIWxn36Uyr/f3PcCuLNonley8piUpth/StT fAigGTr6lHYGBeypKDKfnoCh+GqbE7apRMuoBhXo2AXWBr470iQndHiSdbqGhP+B rY9MDuDXabeas0SQrt88UegfVHcjuYNvIwsreulL4piDPk9i2EsqCGS4K4NRWXCQ 8si7a46PdkJJEpIzYbQr+VkjHeLc/aiaIW1MZOVweAm7XjbFycFREendc2EVI3KV Ct2vWjOsllgZcwp6M2uEeJn8gdQVhW+WUMnPKi0Sd0nRC9w8I5jE7sT51WCMGquz LtwXHmHWw0c= -----END CERTIFICATE-----Generated at Thu Aug 7 02:00:52 2025 by rpki-client