$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/711115241AD911EA97EF1C30C4F9AE02.roa File: 711115241AD911EA97EF1C30C4F9AE02.roa (raw, json) Hash identifier: If6A0dtzlgPVB4CBNXQ4TMiF5xMEzeKvLljq5QFI3bk= Subject key identifier: 4B:FE:13:70:F9:3E:57:6C:AA:3D:1A:D5:6D:D3:E6:4E:A8:3B:FA:57 Certificate issuer: /CN=A91C4003/serialNumber=038A86F362B2557F94BE772EE0C5FD31845FE263 Certificate serial: 0C0F Authority key identifier: 03:8A:86:F3:62:B2:55:7F:94:BE:77:2E:E0:C5:FD:31:84:5F:E2:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4qG82KyVX-Uvncu4MX9MYRf4mM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/711115241AD911EA97EF1C30C4F9AE02.roa Signing time: Wed 30 Jul 2025 19:28:51 +0000 ROA not before: Wed 30 Jul 2025 19:28:51 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 131270 IP address blocks: 2403:4f80::/32 maxlen: 32 2404:2080::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/A4qG82KyVX-Uvncu4MX9MYRf4mM.crl rsync://rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/A4qG82KyVX-Uvncu4MX9MYRf4mM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4qG82KyVX-Uvncu4MX9MYRf4mM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3087 (0xc0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4003, serialNumber=038A86F362B2557F94BE772EE0C5FD31845FE263 Validity Not Before: Jul 30 19:28:51 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688a7273-f50a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:96:d0:ec:f5:2a:24:c5:4d:24:c1:da:99:ec: 7c:09:12:51:03:b7:8f:64:61:b1:f7:9f:ba:c8:60: 14:3a:f2:76:6c:83:cb:62:cf:36:dd:88:0d:db:25: 82:6c:8d:58:e7:ef:09:90:a7:be:ce:10:c1:9b:9c: 94:26:17:29:4a:41:68:7b:a6:7b:5f:7f:36:79:79: a7:62:c8:fc:ab:0f:28:84:d9:f1:64:ca:28:3a:43: 3e:66:9e:2d:5e:76:08:ed:68:57:bb:41:cf:93:15: 05:c7:03:19:9b:3e:a6:77:7e:78:4e:a0:57:22:9c: a7:50:00:60:d9:66:fc:04:41:69:e5:49:cb:60:f3: 92:22:b5:4a:e0:c7:c0:ab:5e:2f:10:98:72:12:ae: de:db:42:aa:52:01:98:33:26:70:a3:f2:8e:1f:65: 77:f5:5b:72:95:8c:dc:55:33:bb:f8:c4:7d:78:57: a1:9c:b4:79:60:48:03:29:51:80:b7:bf:49:3b:43: 9f:56:44:a6:79:5b:16:67:fe:8c:07:16:7d:86:55: 91:69:ff:c3:f9:8f:4b:40:af:e4:0e:7d:6e:76:6d: b6:8b:43:da:ad:86:d6:44:e0:2d:dd:27:f6:f2:74: 3e:36:49:08:a5:d5:c8:ad:c7:1d:fc:90:a7:2c:e0: 55:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:FE:13:70:F9:3E:57:6C:AA:3D:1A:D5:6D:D3:E6:4E:A8:3B:FA:57 X509v3 Authority Key Identifier: keyid:03:8A:86:F3:62:B2:55:7F:94:BE:77:2E:E0:C5:FD:31:84:5F:E2:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/A4qG82KyVX-Uvncu4MX9MYRf4mM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4qG82KyVX-Uvncu4MX9MYRf4mM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4003/B8E8AD721AD811EA82E74B2FC4F9AE02/711115241AD911EA97EF1C30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:4f80::/32 2404:2080::/32 Signature Algorithm: sha256WithRSAEncryption ba:97:c9:dc:d2:9f:c7:80:25:c0:23:59:08:09:40:a8:c3:a9: 6d:f0:09:b1:d1:a4:da:42:56:f2:a6:81:86:d4:eb:a2:52:c1: 52:88:ba:dc:4e:55:65:13:b0:e5:38:65:8d:d7:a5:f6:c4:04: 32:ea:2b:70:27:ae:72:7b:4f:b8:3c:93:66:0a:96:d4:42:c9: 9d:c6:87:5a:f5:25:de:e8:f0:3d:98:b5:ba:c2:ca:60:db:4d: b3:ab:e0:2c:d1:19:d4:9c:58:ad:5b:62:96:d0:f4:28:72:13: c3:07:5e:6d:77:f4:75:aa:38:95:29:18:62:e6:ef:d5:83:12: eb:7f:3b:43:f1:e5:4c:1b:57:7f:38:31:05:27:13:b5:27:e3: c2:ac:77:76:a4:d4:45:fe:1d:2f:f0:59:74:62:de:91:85:8f: d4:64:05:c3:4b:8b:71:d5:b7:e1:49:d3:a9:69:9c:73:40:a4: 6e:d8:20:6a:18:99:91:1c:16:7d:6a:e3:ed:f6:97:e0:b8:e7: e1:38:24:da:e8:a7:f6:16:2d:90:b1:8d:2b:2a:f0:2d:db:b4: 15:d2:d9:36:5f:35:5e:97:80:ca:ed:82:95:e2:61:d1:bc:0d: b9:f3:1a:7f:c2:34:ee:77:8d:dc:e9:f3:0c:27:54:de:7f:5a: ba:9b:a6:46 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICDA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQwMDMxMTAvBgNVBAUTKDAzOEE4NkYzNjJCMjU1N0Y5NEJFNzcyRUUwQzVGRDMx ODQ1RkUyNjMwHhcNMjUwNzMwMTkyODUxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhNzI3My1mNTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupbQ7PUqJMVNJMHamex8CRJRA7ePZGGx95+6yGAUOvJ2bIPLYs823YgN2yWC bI1Y5+8JkKe+zhDBm5yUJhcpSkFoe6Z7X382eXmnYsj8qw8ohNnxZMooOkM+Zp4t XnYI7WhXu0HPkxUFxwMZmz6md354TqBXIpynUABg2Wb8BEFp5UnLYPOSIrVK4MfA q14vEJhyEq7e20KqUgGYMyZwo/KOH2V39VtylYzcVTO7+MR9eFehnLR5YEgDKVGA t79JO0OfVkSmeVsWZ/6MBxZ9hlWRaf/D+Y9LQK/kDn1udm22i0ParYbWROAt3Sf2 8nQ+NkkIpdXIrccd/JCnLOBV9QIDAQABo4ICnTCCApkwHQYDVR0OBBYEFEv+E3D5 Pldsqj0a1W3T5k6oO/pXMB8GA1UdIwQYMBaAFAOKhvNislV/lL53LuDF/TGEX+Jj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDAwMy9COEU4QUQ3MjFB RDgxMUVBODJFNzRCMkZDNEY5QUUwMi9BNHFHODJLeVZYLVV2bmN1NE1YOU1ZUmY0 bU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0cUc4Mkt5VlgtVXZuY3U0TVg5TVlSZjRtTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzQwMDMvQjhFOEFENzIxQUQ4MTFFQTgyRTc0QjJGQzRGOUFFMDIvNzExMTE1MjQx QUQ5MTFFQTk3RUYxQzMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgACMA4DBQAkA0+AAwUAJAQggDANBgkqhkiG9w0BAQsFAAOCAQEAupfJ 3NKfx4AlwCNZCAlAqMOpbfAJsdGk2kJW8qaBhtTrolLBUoi63E5VZROw5Thljdel 9sQEMuorcCeucntPuDyTZgqW1ELJncaHWvUl3ujwPZi1usLKYNtNs6vgLNEZ1JxY rVtiltD0KHITwwdebXf0dao4lSkYYubv1YMS6387Q/HlTBtXfzgxBScTtSfjwqx3 dqTURf4dL/BZdGLekYWP1GQFw0uLcdW34UnTqWmcc0CkbtggahiZkRwWfWrj7faX 4Ljn4Tgk2uin9hYtkLGNKyrwLdu0FdLZNl81XpeAyu2CleJh0bwNufMaf8I07neN 3OnzDCdU3n9aupumRg== -----END CERTIFICATE-----Generated at Sat Aug 9 15:16:09 2025 by rpki-client