$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/2F787ACA71DC11F0B648E61EC4F9AE02.roa File: 2F787ACA71DC11F0B648E61EC4F9AE02.roa (raw, json) Hash identifier: wE9Ja7ZzAfw7/oCX8jXb3Mmdvu+AmH7Xr6q2xftQxQg= Subject key identifier: 36:E8:38:D6:24:0B:D0:1B:52:CD:E2:0E:FB:7D:AC:3B:5E:C8:AF:B4 Certificate issuer: /CN=A91C2CC7/serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Certificate serial: 0FF6 Authority key identifier: 77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/2F787ACA71DC11F0B648E61EC4F9AE02.roa Signing time: Tue 05 Aug 2025 15:55:24 +0000 ROA not before: Tue 05 Aug 2025 15:55:24 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 16509 IP address blocks: 2401:df00:301::/48 maxlen: 48 2401:df00:331::/48 maxlen: 48 2401:df00:341::/48 maxlen: 48 2401:df00:351::/48 maxlen: 48 2401:df00:421::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4086 (0xff6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2CC7, serialNumber=77486B610D333AEBDA8F255C501411B01F18FF49 Validity Not Before: Aug 5 15:55:24 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=6892296c-dbcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:07:00:f9:b7:9d:f7:22:3a:d3:3b:f4:86:79: 5e:7b:71:d3:3c:4a:dc:23:bc:a9:fa:c7:51:7e:4a: 5b:be:70:91:33:0c:58:d3:e2:92:00:07:13:d1:d3: e9:6b:ea:8d:e4:cb:db:80:9d:9d:c2:c6:9c:b2:30: 5c:cb:a0:94:46:85:4b:1d:f4:32:f4:e9:14:bc:03: 96:fc:96:1a:3e:7e:36:f9:20:00:41:f3:ac:5c:8e: 46:a3:cf:70:53:f9:3a:9c:d2:7d:39:81:c3:9a:62: f4:06:32:f0:99:93:b2:09:ed:7c:1f:50:28:ef:8f: e4:95:77:8a:e3:d5:11:63:54:ef:31:e9:d1:a4:9a: e4:51:46:06:f8:d3:76:f2:1a:c9:09:36:c7:1d:10: 35:98:d0:ff:f6:1e:e9:f2:73:6d:d9:af:e3:2a:76: 07:bf:fa:2b:c7:bd:04:db:bc:fc:4b:df:7d:2c:b3: 59:91:b0:a1:5d:46:b5:95:e2:6d:ca:19:09:2d:04: 45:4c:5b:9d:d4:fd:0f:41:64:b6:f8:a3:ed:ee:4a: b8:b6:ec:c3:5d:a2:a5:75:d9:92:e3:d1:08:cd:c6: 93:a0:e4:8c:4b:17:cd:65:8c:f0:b7:f9:95:2f:d7: b7:86:cd:48:5b:53:de:4c:41:cb:e9:f5:f6:27:be: a2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:E8:38:D6:24:0B:D0:1B:52:CD:E2:0E:FB:7D:AC:3B:5E:C8:AF:B4 X509v3 Authority Key Identifier: keyid:77:48:6B:61:0D:33:3A:EB:DA:8F:25:5C:50:14:11:B0:1F:18:FF:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d0hrYQ0zOuvajyVcUBQRsB8Y_0k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2CC7/791C6A347B3811E9BC0D3B32C4F9AE02/2F787ACA71DC11F0B648E61EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:df00:301::/48 2401:df00:331::/48 2401:df00:341::/48 2401:df00:351::/48 2401:df00:421::/48 Signature Algorithm: sha256WithRSAEncryption db:22:15:01:8c:ab:be:46:0e:ec:0d:12:4a:15:d9:01:77:64: 64:5c:87:ad:d4:76:30:70:95:bf:26:99:eb:b9:57:c7:81:01: e9:fb:30:ee:cd:bb:0b:8a:d3:7c:c1:28:7a:9f:c6:82:59:18: 05:c9:cb:02:42:38:44:c2:c2:cc:ac:cc:c7:2d:28:25:66:2d: 50:b7:de:6e:1c:6d:74:66:c9:9b:57:23:b2:5a:43:73:5d:e1: 85:70:a2:39:7b:3a:d9:9d:da:5e:35:a7:48:c9:8e:ab:de:a0: 58:ba:4d:67:39:f3:6b:52:35:fc:3c:3b:ea:d7:1c:40:f0:c6: cc:cb:e3:3e:e7:a7:b5:9c:b8:0d:34:bf:24:21:a1:89:01:0a: 6f:4e:2f:31:69:85:a2:0b:c5:4d:01:b1:08:7d:1e:d3:06:e3: be:8b:fe:38:0c:6a:21:a8:e1:92:0e:7b:cd:0d:8f:a0:ba:25: 62:62:d7:f0:69:59:dd:bd:59:c6:1a:fd:3e:a5:fd:d7:8b:66: ea:b4:d5:1f:54:99:73:ce:57:12:24:96:c0:ec:2d:16:a7:70: 59:8f:d7:46:34:22:c9:69:be:fe:3b:df:66:39:2f:c2:ae:03: 14:2c:8c:c5:55:14:f7:4b:53:0b:9d:15:31:6d:ac:80:db:3c: 57:46:77:fd -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICD/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJDQzcxMTAvBgNVBAUTKDc3NDg2QjYxMEQzMzNBRUJEQThGMjU1QzUwMTQxMUIw MUYxOEZGNDkwHhcNMjUwODA1MTU1NTI0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODkyMjk2Yy1kYmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqQcA+bed9yI60zv0hnlee3HTPErcI7yp+sdRfkpbvnCRMwxY0+KSAAcT0dPp a+qN5MvbgJ2dwsacsjBcy6CURoVLHfQy9OkUvAOW/JYaPn42+SAAQfOsXI5Go89w U/k6nNJ9OYHDmmL0BjLwmZOyCe18H1Ao74/klXeK49URY1TvMenRpJrkUUYG+NN2 8hrJCTbHHRA1mND/9h7p8nNt2a/jKnYHv/orx70E27z8S999LLNZkbChXUa1leJt yhkJLQRFTFud1P0PQWS2+KPt7kq4tuzDXaKlddmS49EIzcaToOSMSxfNZYzwt/mV L9e3hs1IW1PeTEHL6fX2J76iEwIDAQABo4ICvDCCArgwHQYDVR0OBBYEFDboONYk C9AbUs3iDvt9rDteyK+0MB8GA1UdIwQYMBaAFHdIa2ENMzrr2o8lXFAUEbAfGP9J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkNDNy83OTFDNkEzNDdC MzgxMUU5QkMwRDNCMzJDNEY5QUUwMi9kMGhyWVEwek91dmFqeVZjVUJRUnNCOFlf MGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QwaHJZUTB6T3V2YWp5VmNVQlFSc0I4WV8way5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJDQzcvNzkxQzZBMzQ3QjM4MTFFOUJDMEQzQjMyQzRGOUFFMDIvMkY3ODdBQ0E3 MURDMTFGMEI2NDhFNjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MDMEAgACMC0DBwAkAd8AAwEDBwAkAd8AAzEDBwAkAd8AA0EDBwAkAd8AA1ED BwAkAd8ABCEwDQYJKoZIhvcNAQELBQADggEBANsiFQGMq75GDuwNEkoV2QF3ZGRc h63UdjBwlb8mmeu5V8eBAen7MO7NuwuK03zBKHqfxoJZGAXJywJCOETCwsyszMct KCVmLVC33m4cbXRmyZtXI7JaQ3Nd4YVwojl7Otmd2l41p0jJjqveoFi6TWc582tS Nfw8O+rXHEDwxszL4z7np7WcuA00vyQhoYkBCm9OLzFphaILxU0BsQh9HtMG476L /jgMaiGo4ZIOe80Nj6C6JWJi1/BpWd29WcYa/T6l/deLZuq01R9UmXPOVxIklsDs LRancFmP10Y0Islpvv4732Y5L8KuAxQsjMVVFPdLUwudFTFtrIDbPFdGd/0= -----END CERTIFICATE-----Generated at Mon Aug 11 07:32:06 2025 by rpki-client