$ rpki-client -vvf rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/4F6913406BBF11EFA2832A74C4F9AE02.roa File: 4F6913406BBF11EFA2832A74C4F9AE02.roa (raw, json) Hash identifier: dKNk5pPJbrzAnkXqkxI0ZuHUsGDU8sX1yqD52DpKuAQ= Subject key identifier: 21:BF:EC:A7:C9:D9:20:A2:9B:52:FC:4C:91:BC:C3:9C:83:D5:06:26 Certificate issuer: /CN=A91758DF/serialNumber=426B620C040C83946A4B7586436ECBD0FC4546CF Certificate serial: 0868 Authority key identifier: 42:6B:62:0C:04:0C:83:94:6A:4B:75:86:43:6E:CB:D0:FC:45:46:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmtiDAQMg5RqS3WGQ27L0PxFRs8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/4F6913406BBF11EFA2832A74C4F9AE02.roa Signing time: Mon 04 Aug 2025 21:32:46 +0000 ROA not before: Mon 04 Aug 2025 21:32:46 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 397763 IP address blocks: 2406:2d40:8200::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/QmtiDAQMg5RqS3WGQ27L0PxFRs8.crl rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/QmtiDAQMg5RqS3WGQ27L0PxFRs8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmtiDAQMg5RqS3WGQ27L0PxFRs8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2152 (0x868) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758DF, serialNumber=426B620C040C83946A4B7586436ECBD0FC4546CF Validity Not Before: Aug 4 21:32:46 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689126fe-9b5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:54:be:66:83:c2:88:80:5e:0a:db:c0:12:00: 50:74:da:dd:aa:af:e9:2c:bf:28:ba:6e:46:80:57: 2c:52:fb:12:a6:c4:2d:aa:95:8f:04:2a:89:0a:04: 29:85:f3:88:50:79:92:72:12:88:50:e0:a7:7e:ff: 96:c1:11:1b:ec:4a:02:e4:07:e7:a6:d1:a2:a5:89: 98:3a:4e:84:21:18:37:6c:ce:83:3b:83:f2:b7:ce: f1:04:81:ed:7b:a9:dc:42:d4:97:3a:da:e0:93:a9: de:dc:86:33:2c:26:4b:55:d9:d0:5f:76:91:3c:2d: 48:72:0e:22:45:a3:ae:87:a6:5e:15:19:78:13:fd: 91:bc:33:24:bf:5a:58:1e:22:0d:1d:f3:ca:7d:53: 48:27:a9:05:de:41:32:d2:12:c1:e1:04:9d:d4:60: 2f:9a:9c:da:5f:62:c6:a3:99:70:c4:bd:f5:d8:53: d1:83:35:a2:aa:11:78:99:10:62:14:a0:d0:cc:93: a7:51:80:7a:12:1e:3c:ab:10:2f:77:a5:93:22:9f: 38:56:ab:0b:54:71:e5:2c:3b:d6:e3:9f:cf:03:38: f1:07:05:60:91:00:0e:ab:0a:68:ed:90:77:92:2b: 6d:ea:f9:34:d6:3c:b0:58:25:e9:1a:79:f1:bc:e4: fc:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:BF:EC:A7:C9:D9:20:A2:9B:52:FC:4C:91:BC:C3:9C:83:D5:06:26 X509v3 Authority Key Identifier: keyid:42:6B:62:0C:04:0C:83:94:6A:4B:75:86:43:6E:CB:D0:FC:45:46:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/QmtiDAQMg5RqS3WGQ27L0PxFRs8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QmtiDAQMg5RqS3WGQ27L0PxFRs8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758DF/53191046DC2411EABD057F16C4F9AE02/4F6913406BBF11EFA2832A74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:2d40:8200::/40 Signature Algorithm: sha256WithRSAEncryption b0:ef:81:fd:6d:5c:c3:87:b1:a5:15:e3:37:43:79:80:38:ce: 6e:6d:65:8f:fb:5a:e9:1a:5e:ad:04:1e:6d:67:31:12:67:14: 93:fc:09:89:4d:63:e4:ea:af:8b:9f:fe:08:33:ab:38:f2:95: 09:cd:61:01:93:7c:35:9e:53:3a:c4:59:b3:2b:31:e2:a9:f4: f0:9f:79:48:aa:bc:1c:54:3e:2d:5d:79:b9:df:0c:06:62:f4: 91:71:89:43:60:33:85:cb:ec:90:25:93:fd:57:9f:b1:a8:41: 05:a2:ae:45:e1:7a:02:67:bb:17:11:37:d5:3e:e2:0e:30:39: d8:c9:26:1c:ac:49:dd:57:7c:87:c0:e7:af:07:ee:5f:b5:41: 94:11:fc:8d:51:85:04:07:4d:cc:cc:26:d3:f0:9f:bc:18:bf: 92:34:c4:15:6c:5f:b9:85:8f:21:63:a3:d0:79:7c:05:40:fe: c8:ae:50:e5:b7:8f:87:53:1d:f0:34:89:31:2c:d1:23:0b:06: f2:f1:d4:16:93:08:3e:5f:ce:e0:38:33:13:95:cc:89:48:35: c5:0d:b8:b0:5a:2f:84:ff:46:fe:de:ae:4f:7b:1f:21:01:1f: 61:33:99:c4:d2:28:3a:de:53:60:f7:31:58:51:2b:e8:c7:f4: 23:ff:26:78 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICCGgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU4REYxMTAvBgNVBAUTKDQyNkI2MjBDMDQwQzgzOTQ2QTRCNzU4NjQzNkVDQkQw RkM0NTQ2Q0YwHhcNMjUwODA0MjEzMjQ2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxMjZmZS05YjVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8VS+ZoPCiIBeCtvAEgBQdNrdqq/pLL8oum5GgFcsUvsSpsQtqpWPBCqJCgQp hfOIUHmSchKIUOCnfv+WwREb7EoC5AfnptGipYmYOk6EIRg3bM6DO4Pyt87xBIHt e6ncQtSXOtrgk6ne3IYzLCZLVdnQX3aRPC1Icg4iRaOuh6ZeFRl4E/2RvDMkv1pY HiINHfPKfVNIJ6kF3kEy0hLB4QSd1GAvmpzaX2LGo5lwxL312FPRgzWiqhF4mRBi FKDQzJOnUYB6Eh48qxAvd6WTIp84VqsLVHHlLDvW45/PAzjxBwVgkQAOqwpo7ZB3 kitt6vk01jywWCXpGnnxvOT8xwIDAQABo4IClzCCApMwHQYDVR0OBBYEFCG/7KfJ 2SCim1L8TJG8w5yD1QYmMB8GA1UdIwQYMBaAFEJrYgwEDIOUakt1hkNuy9D8RUbP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NThERi81MzE5MTA0NkRD MjQxMUVBQkQwNTdGMTZDNEY5QUUwMi9RbXRpREFRTWc1UnFTM1dHUTI3TDBQeEZS czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FtdGlEQVFNZzVScVMzV0dRMjdMMFB4RlJzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU4REYvNTMxOTEwNDZEQzI0MTFFQUJEMDU3RjE2QzRGOUFFMDIvNEY2OTEzNDA2 QkJGMTFFRkEyODMyQTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkBi1AgjANBgkqhkiG9w0BAQsFAAOCAQEAsO+B/W1cw4ex pRXjN0N5gDjObm1lj/ta6RperQQebWcxEmcUk/wJiU1j5Oqvi5/+CDOrOPKVCc1h AZN8NZ5TOsRZsysx4qn08J95SKq8HFQ+LV15ud8MBmL0kXGJQ2AzhcvskCWT/Vef sahBBaKuReF6Ame7FxE31T7iDjA52MkmHKxJ3Vd8h8DnrwfuX7VBlBH8jVGFBAdN zMwm0/CfvBi/kjTEFWxfuYWPIWOj0Hl8BUD+yK5Q5bePh1Md8DSJMSzRIwsG8vHU FpMIPl/O4DgzE5XMiUg1xQ24sFovhP9G/t6uT3sfIQEfYTOZxNIoOt5TYPcxWFEr 6Mf0I/8meA== -----END CERTIFICATE-----Generated at Mon Aug 11 02:07:18 2025 by rpki-client