$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/8DA3D4E03F7E11F0B8EF8F28C4F9AE02.roa File: 8DA3D4E03F7E11F0B8EF8F28C4F9AE02.roa (raw, json) Hash identifier: /znaKV3KjWiiYiywi65esGpUip1B0gcKXgL7UimYW5U= Subject key identifier: 7E:73:2D:F4:F5:A7:C8:6B:CB:64:D4:19:A5:6C:5A:14:D4:60:37:2D Certificate issuer: /CN=A91B7770/serialNumber=7D55469926D1F934F3AF29645EB6C10BB6069BC9 Certificate serial: 0984 Authority key identifier: 7D:55:46:99:26:D1:F9:34:F3:AF:29:64:5E:B6:C1:0B:B6:06:9B:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fVVGmSbR-TTzrylkXrbBC7YGm8k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/8DA3D4E03F7E11F0B8EF8F28C4F9AE02.roa Signing time: Sat 02 Aug 2025 21:01:54 +0000 ROA not before: Sat 02 Aug 2025 21:01:54 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38656 IP address blocks: 2406:7ec0:1007::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/fVVGmSbR-TTzrylkXrbBC7YGm8k.crl rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/fVVGmSbR-TTzrylkXrbBC7YGm8k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fVVGmSbR-TTzrylkXrbBC7YGm8k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 20:49:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2436 (0x984) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7770, serialNumber=7D55469926D1F934F3AF29645EB6C10BB6069BC9 Validity Not Before: Aug 2 21:01:54 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688e7cc2-ee5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cd:e2:26:70:a0:2e:ad:47:eb:84:7d:b9:83: 16:92:23:19:5e:e2:12:0e:33:e0:d4:99:69:4c:08: a0:42:d5:5b:14:e2:56:03:a9:f4:b9:7b:ad:e9:34: 74:42:e8:bc:0d:3f:98:21:f1:99:ea:78:db:2d:01: bc:50:4b:f0:4f:dd:d9:5c:53:02:99:96:66:1e:83: 04:03:28:4b:60:53:0e:ba:b6:7b:19:79:72:5b:7c: cf:ea:bb:49:50:fa:ec:40:0b:23:25:71:61:ea:5f: a2:22:59:84:15:13:36:7e:5a:08:1e:d2:90:2f:4d: 2c:59:48:32:14:10:cd:a9:f2:ab:0d:bb:17:c7:c8: be:a6:1e:d3:9d:65:89:a0:fc:61:88:d3:06:21:fc: bf:25:9a:bb:41:75:69:73:66:6b:1b:fa:ef:48:6b: f1:6f:05:89:64:42:68:09:c7:59:26:c2:72:06:59: 86:b3:15:bc:05:85:66:72:df:67:97:cb:96:b4:8e: 99:9c:0a:66:04:93:95:8c:ee:d6:78:49:ca:bf:8a: b4:22:ae:d5:e9:33:c5:ca:d7:ab:07:60:be:4c:4b: 82:3f:58:07:f7:63:75:4b:88:7d:99:d9:8e:c1:97: dd:9b:b1:48:48:75:bf:1c:f3:a8:3d:62:d3:2f:f3: 0c:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:73:2D:F4:F5:A7:C8:6B:CB:64:D4:19:A5:6C:5A:14:D4:60:37:2D X509v3 Authority Key Identifier: keyid:7D:55:46:99:26:D1:F9:34:F3:AF:29:64:5E:B6:C1:0B:B6:06:9B:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/fVVGmSbR-TTzrylkXrbBC7YGm8k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fVVGmSbR-TTzrylkXrbBC7YGm8k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7770/E6810410C0AE11EAB95AB572C4F9AE02/8DA3D4E03F7E11F0B8EF8F28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:7ec0:1007::/48 Signature Algorithm: sha256WithRSAEncryption 65:ba:fd:28:75:87:ba:36:34:53:f4:f7:12:6e:ca:44:43:73: 83:d2:a3:ac:bc:87:d5:6e:44:11:14:c6:1a:9b:90:af:06:86: a3:22:73:48:0c:27:eb:05:54:01:27:6c:9a:ef:23:c5:2c:d9: a6:08:82:33:55:7f:3b:34:3f:c2:41:63:2b:17:94:88:0d:80: c4:e8:1a:52:99:6b:22:6c:bf:e6:73:89:63:08:dc:74:a1:d4: b1:7d:03:47:3f:70:9d:3c:b6:80:32:88:72:29:b6:7c:cc:93: 7f:53:7b:60:a4:75:d8:11:0e:86:3b:45:ca:af:e8:66:15:66: 75:17:b5:50:1f:4e:c3:09:6d:f8:4f:8a:63:24:d5:0d:8a:7b: 54:d1:c6:69:b1:19:a1:7f:b9:19:47:6f:5d:94:d7:db:b8:13: ca:f5:17:6b:b3:c6:b2:75:d2:06:7d:fa:e5:09:38:3c:8b:68: 12:43:c4:17:e9:73:6e:29:d2:98:50:ef:f3:aa:a5:9b:5a:9f: 1f:f6:9b:c1:53:ff:59:97:d6:dd:99:56:96:3e:b8:41:0b:7f: 02:b6:a9:de:fb:18:8e:d9:f8:ac:a5:ce:52:b7:fe:fd:df:5f: f7:c2:63:13:7e:12:ab:f3:4f:9b:ff:17:be:8f:bd:04:62:96: 89:c4:c1:11 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc3NzAxMTAvBgNVBAUTKDdENTU0Njk5MjZEMUY5MzRGM0FGMjk2NDVFQjZDMTBC QjYwNjlCQzkwHhcNMjUwODAyMjEwMTU0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlN2NjMi1lZTViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr83iJnCgLq1H64R9uYMWkiMZXuISDjPg1JlpTAigQtVbFOJWA6n0uXut6TR0 Qui8DT+YIfGZ6njbLQG8UEvwT93ZXFMCmZZmHoMEAyhLYFMOurZ7GXlyW3zP6rtJ UPrsQAsjJXFh6l+iIlmEFRM2floIHtKQL00sWUgyFBDNqfKrDbsXx8i+ph7TnWWJ oPxhiNMGIfy/JZq7QXVpc2ZrG/rvSGvxbwWJZEJoCcdZJsJyBlmGsxW8BYVmct9n l8uWtI6ZnApmBJOVjO7WeEnKv4q0Iq7V6TPFyterB2C+TEuCP1gH92N1S4h9mdmO wZfdm7FISHW/HPOoPWLTL/MMDwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFH5zLfT1 p8hry2TUGaVsWhTUYDctMB8GA1UdIwQYMBaAFH1VRpkm0fk0868pZF62wQu2BpvJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzc3MC9FNjgxMDQxMEMw QUUxMUVBQjk1QUI1NzJDNEY5QUUwMi9mVlZHbVNiUi1UVHpyeWxrWHJiQkM3WUdt OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZWVkdtU2JSLVRUenJ5bGtYcmJCQzdZR204ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjc3NzAvRTY4MTA0MTBDMEFFMTFFQUI5NUFCNTcyQzRGOUFFMDIvOERBM0Q0RTAz RjdFMTFGMEI4RUY4RjI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBn7AEAcwDQYJKoZIhvcNAQELBQADggEBAGW6/Sh1h7o2 NFP09xJuykRDc4PSo6y8h9VuRBEUxhqbkK8GhqMic0gMJ+sFVAEnbJrvI8Us2aYI gjNVfzs0P8JBYysXlIgNgMToGlKZayJsv+ZziWMI3HSh1LF9A0c/cJ08toAyiHIp tnzMk39Te2CkddgRDoY7Rcqv6GYVZnUXtVAfTsMJbfhPimMk1Q2Ke1TRxmmxGaF/ uRlHb12U19u4E8r1F2uzxrJ10gZ9+uUJODyLaBJDxBfpc24p0phQ7/OqpZtanx/2 m8FT/1mX1t2ZVpY+uEELfwK2qd77GI7Z+KylzlK3/v3fX/fCYxN+EqvzT5v/F76P vQRilonEwRE= -----END CERTIFICATE-----Generated at Wed Aug 13 00:38:02 2025 by rpki-client