$ rpki-client -vvf rpki.apnic.net/member_repository/A91758EC/74D35840663011F0B9DC4E64C4F9AE02/F88DC2766E1C11F0A9381E85C4F9AE02.roa File: F88DC2766E1C11F0A9381E85C4F9AE02.roa (raw, json) Hash identifier: i6WXTIBGM94y1QaV3vi+ZNcgxl/9nWzNVLRTa2F/avU= Subject key identifier: B3:84:EC:2D:82:E6:5B:77:EA:65:83:F7:59:8D:C5:01:7E:B4:48:C5 Certificate issuer: /CN=A91758EC/serialNumber=B6FB07E038DEF06C820BC6CD203514554D643D68 Certificate serial: 09 Authority key identifier: B6:FB:07:E0:38:DE:F0:6C:82:0B:C6:CD:20:35:14:55:4D:64:3D:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tvsH4Dje8GyCC8bNIDUUVU1kPWg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91758EC/74D35840663011F0B9DC4E64C4F9AE02/F88DC2766E1C11F0A9381E85C4F9AE02.roa Signing time: Thu 31 Jul 2025 14:45:16 +0000 ROA not before: Thu 31 Jul 2025 14:45:16 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 150683 IP address blocks: 2001:df5:e540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91758EC/74D35840663011F0B9DC4E64C4F9AE02/tvsH4Dje8GyCC8bNIDUUVU1kPWg.crl rsync://rpki.apnic.net/member_repository/A91758EC/74D35840663011F0B9DC4E64C4F9AE02/tvsH4Dje8GyCC8bNIDUUVU1kPWg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tvsH4Dje8GyCC8bNIDUUVU1kPWg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91758EC, serialNumber=B6FB07E038DEF06C820BC6CD203514554D643D68 Validity Not Before: Jul 31 14:45:16 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688b817b-8bbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:40:a1:f1:fe:06:93:e0:6b:d0:ba:51:c9:81: 84:dd:f1:bd:3d:2a:cb:ac:04:5d:f3:8d:4c:60:98: 32:42:a9:00:89:5b:5a:7f:5d:20:5d:03:47:06:53: d9:ce:e8:95:f1:ff:ed:b0:dc:54:47:10:8f:51:3f: 2f:ec:33:29:9d:a9:a4:1e:d1:fc:17:bb:a1:c7:55: a8:06:4a:3b:6f:cd:15:b6:ca:14:55:23:68:2e:5c: 00:53:3c:28:60:34:77:bc:97:ef:99:06:f2:bd:9f: 0c:54:75:62:99:cf:16:76:a6:92:f9:32:5e:e9:f7: e5:b6:f7:54:07:2b:a3:f3:15:64:0b:51:47:0f:22: ca:34:13:cd:bd:58:53:87:d2:c1:13:26:94:f6:98: bb:7c:eb:97:9e:36:f3:5f:67:5d:c5:69:5c:41:32: 03:56:5d:16:78:45:db:bf:fc:b8:e9:0e:23:93:99: c9:60:e7:48:6f:45:15:f0:4a:c5:8f:65:83:48:b8: 04:d2:a7:ae:24:5a:c2:95:2f:13:df:45:9f:7d:9b: 2d:4f:bd:34:80:1f:c3:6c:f4:6f:44:09:5d:34:41: 7e:af:79:05:04:6d:d5:49:20:e8:38:4a:11:98:2b: 72:6f:9a:8b:49:70:b7:a9:c9:cf:7e:a3:88:40:ec: 07:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:84:EC:2D:82:E6:5B:77:EA:65:83:F7:59:8D:C5:01:7E:B4:48:C5 X509v3 Authority Key Identifier: keyid:B6:FB:07:E0:38:DE:F0:6C:82:0B:C6:CD:20:35:14:55:4D:64:3D:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91758EC/74D35840663011F0B9DC4E64C4F9AE02/tvsH4Dje8GyCC8bNIDUUVU1kPWg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tvsH4Dje8GyCC8bNIDUUVU1kPWg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91758EC/74D35840663011F0B9DC4E64C4F9AE02/F88DC2766E1C11F0A9381E85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:e540::/48 Signature Algorithm: sha256WithRSAEncryption 9f:4e:86:26:8c:d6:c6:37:ac:0a:3f:25:25:e2:d9:38:a5:4b: ba:26:7b:b8:2b:cc:b7:00:bc:fc:f8:36:56:fd:9b:f0:0c:5c: fc:7b:42:16:9b:88:f4:ff:0d:d0:d7:b2:dc:e2:af:eb:1d:83: b3:57:c5:7d:cc:4d:fe:33:06:ad:5e:e0:26:27:f4:ff:4e:60: 35:b6:90:af:1f:56:1b:d5:3e:1c:82:8c:0b:cf:9c:19:ab:6a: ef:8a:4e:f4:5e:a7:22:72:65:07:23:70:44:2f:3e:1b:bc:d8: 77:7c:f9:cd:30:4c:80:14:55:75:e8:d0:52:12:a4:be:3d:9c: 22:8b:1e:1b:94:2d:2a:99:2e:a7:c7:2b:57:59:be:79:26:ce: ae:c4:d7:c1:1b:5e:eb:89:84:38:54:7c:b8:db:88:46:8a:64: ac:0b:d9:e5:12:a9:9d:8c:8f:14:32:71:f9:c5:00:57:e5:1f: 16:55:fc:d4:34:10:9d:19:05:32:7a:8c:9e:46:9b:70:72:d2: a3:4f:74:0f:d0:29:33:d7:94:97:c8:e8:98:3b:fa:59:80:50: c8:48:7d:4c:5b:a8:0e:0a:f9:47:ca:fb:4c:1f:09:b8:b9:de: d3:27:85:d7:f4:72:75:0c:9a:bf:b4:2d:57:19:ab:2d:32:e5: 81:07:4f:b6 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NThFQzExMC8GA1UEBRMoQjZGQjA3RTAzOERFRjA2QzgyMEJDNkNEMjAzNTE0NTU0 RDY0M0Q2ODAeFw0yNTA3MzExNDQ1MTZaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OGI4MTdiLThiYmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/QKHx/gaT4GvQulHJgYTd8b09KsusBF3zjUxgmDJCqQCJW1p/XSBdA0cGU9nO 6JXx/+2w3FRHEI9RPy/sMymdqaQe0fwXu6HHVagGSjtvzRW2yhRVI2guXABTPChg NHe8l++ZBvK9nwxUdWKZzxZ2ppL5Ml7p9+W291QHK6PzFWQLUUcPIso0E829WFOH 0sETJpT2mLt865eeNvNfZ13FaVxBMgNWXRZ4Rdu//LjpDiOTmclg50hvRRXwSsWP ZYNIuATSp64kWsKVLxPfRZ99my1PvTSAH8Ns9G9ECV00QX6veQUEbdVJIOg4ShGY K3JvmotJcLepyc9+o4hA7AcVAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUs4TsLYLm W3fqZYP3WY3FAX60SMUwHwYDVR0jBBgwFoAUtvsH4Dje8GyCC8bNIDUUVU1kPWgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1OEVDLzc0RDM1ODQwNjYz MDExRjBCOURDNEU2NEM0RjlBRTAyL3R2c0g0RGplOEd5Q0M4Yk5JRFVVVlUxa1BX Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdHZzSDREamU4R3lDQzhiTklEVVVWVTFrUFdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NThFQy83NEQzNTg0MDY2MzAxMUYwQjlEQzRFNjRDNEY5QUUwMi9GODhEQzI3NjZF MUMxMUYwQTkzODFFODVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfXlQDANBgkqhkiG9w0BAQsFAAOCAQEAn06GJozWxjes Cj8lJeLZOKVLuiZ7uCvMtwC8/Pg2Vv2b8Axc/HtCFpuI9P8N0Ney3OKv6x2Ds1fF fcxN/jMGrV7gJif0/05gNbaQrx9WG9U+HIKMC8+cGatq74pO9F6nInJlByNwRC8+ G7zYd3z5zTBMgBRVdejQUhKkvj2cIoseG5QtKpkup8crV1m+eSbOrsTXwRte64mE OFR8uNuIRopkrAvZ5RKpnYyPFDJx+cUAV+UfFlX81DQQnRkFMnqMnkabcHLSo090 D9ApM9eUl8jomDv6WYBQyEh9TFuoDgr5R8r7TB8JuLne0yeF1/RydQyav7QtVxmr LTLlgQdPtg== -----END CERTIFICATE-----Generated at Mon Aug 11 02:04:15 2025 by rpki-client