$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9B37/3D8AC5463CA311F08A495C2FC4F9AE02/7EBD7FAA6DFD11F09A43321EC4F9AE02.roa File: 7EBD7FAA6DFD11F09A43321EC4F9AE02.roa (raw, json) Hash identifier: tOvv14j7PVKjZOUCL/zHGwFCXfHBrWhMTrZ97/b78ms= Subject key identifier: 08:98:47:6A:44:AA:F7:40:A8:2A:0F:CE:05:89:AD:13:93:B5:24:F5 Certificate issuer: /CN=A91C9B37/serialNumber=8DE9D074FF3C8D515415EBF0F0E56AC03EEADD3A Certificate serial: 23 Authority key identifier: 8D:E9:D0:74:FF:3C:8D:51:54:15:EB:F0:F0:E5:6A:C0:3E:EA:DD:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jenQdP88jVFUFevw8OVqwD7q3To.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9B37/3D8AC5463CA311F08A495C2FC4F9AE02/7EBD7FAA6DFD11F09A43321EC4F9AE02.roa Signing time: Thu 31 Jul 2025 10:59:57 +0000 ROA not before: Thu 31 Jul 2025 10:59:57 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153912 IP address blocks: 2402:da0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9B37/3D8AC5463CA311F08A495C2FC4F9AE02/jenQdP88jVFUFevw8OVqwD7q3To.crl rsync://rpki.apnic.net/member_repository/A91C9B37/3D8AC5463CA311F08A495C2FC4F9AE02/jenQdP88jVFUFevw8OVqwD7q3To.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jenQdP88jVFUFevw8OVqwD7q3To.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9B37, serialNumber=8DE9D074FF3C8D515415EBF0F0E56AC03EEADD3A Validity Not Before: Jul 31 10:59:57 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=688b4cad-c6e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:e7:bc:8f:e7:7f:10:46:5f:14:2e:93:79:cc: ac:37:01:7b:59:66:7e:3f:4e:52:7c:ba:d9:8d:8c: 27:e2:2f:66:d7:55:2b:1e:b8:03:5f:e8:2c:d6:b7: b2:be:30:bd:61:65:d7:d2:42:b8:d0:8b:eb:b7:6d: b1:23:d2:ad:42:c2:29:f0:94:9b:af:6b:78:80:9e: 31:c4:81:8c:f2:22:bd:25:4a:74:f9:f1:a4:77:dd: 2b:ab:56:4c:5c:8d:47:cf:7e:d2:df:ba:d7:0c:3b: 1d:f1:90:3f:80:b1:54:ff:14:47:af:d4:bf:32:b4: c3:c2:86:6a:3d:48:36:6e:77:5c:6b:32:be:6f:b0: a4:e8:ef:be:41:2b:d4:cb:21:00:3f:b5:f9:d6:a4: e3:f3:49:93:8b:d6:bb:f6:f0:23:b2:fc:97:46:e7: 1b:12:c7:9b:49:c5:ea:c6:6e:e9:0f:db:56:66:aa: 6d:36:85:77:d0:0e:ab:42:e7:e5:c4:53:e8:f1:82: 2c:87:67:c1:29:13:95:c6:84:a7:71:d9:f3:96:7a: 79:f6:6d:30:0e:f5:a7:d5:f5:b3:a3:65:66:13:c8: 46:88:19:59:b4:1f:3e:1c:9f:ee:d8:5e:b8:ee:ec: ca:3b:61:f5:ec:34:1d:ac:e1:2c:aa:a7:1d:c5:27: 4c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:98:47:6A:44:AA:F7:40:A8:2A:0F:CE:05:89:AD:13:93:B5:24:F5 X509v3 Authority Key Identifier: keyid:8D:E9:D0:74:FF:3C:8D:51:54:15:EB:F0:F0:E5:6A:C0:3E:EA:DD:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9B37/3D8AC5463CA311F08A495C2FC4F9AE02/jenQdP88jVFUFevw8OVqwD7q3To.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jenQdP88jVFUFevw8OVqwD7q3To.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9B37/3D8AC5463CA311F08A495C2FC4F9AE02/7EBD7FAA6DFD11F09A43321EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:da0::/32 Signature Algorithm: sha256WithRSAEncryption c8:63:af:db:c9:07:2e:7e:60:22:8f:82:fd:35:27:eb:dc:3b: ff:e8:de:e7:f4:05:43:26:cb:5b:9d:fe:bf:62:59:f6:13:32: 79:17:63:03:41:8c:b8:97:95:bf:c2:74:b3:9c:36:ed:0f:81: cc:4b:34:6f:99:a4:ef:ad:0a:3f:1a:c6:96:25:85:86:16:f1: 3c:3e:1b:c6:d5:05:bd:47:6c:09:d5:54:da:b8:0a:4c:17:7e: ba:4d:c2:08:2a:c2:02:1f:91:bb:03:3e:2b:92:a6:24:33:6a: ee:9d:91:4f:44:e3:87:fc:df:c2:d0:17:ef:00:59:01:4f:74: eb:33:b7:02:b7:9f:11:f0:de:25:71:b7:41:f7:1e:1c:d4:61: d9:40:27:4d:b2:5a:f8:36:b5:3d:d6:ff:ed:bd:b5:67:20:c4: cd:d4:05:fa:ac:7c:cd:b5:93:b3:dc:30:7f:40:3c:df:a0:82: e9:09:ff:b1:55:4e:f0:7b:a4:f4:b3:ee:3f:7c:55:53:a3:4d: 81:9d:58:97:f3:53:07:a8:eb:c2:b4:ac:9e:53:56:6f:cd:61: 2d:fa:76:7f:d6:69:7a:b6:9b:47:be:8a:90:e0:89:ff:36:98: 63:ac:11:76:a0:db:af:a8:ca:e5:cf:e4:a9:b2:71:46:74:e4: 77:5f:25:cf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD OUIzNzExMC8GA1UEBRMoOERFOUQwNzRGRjNDOEQ1MTU0MTVFQkYwRjBFNTZBQzAz RUVBREQzQTAeFw0yNTA3MzExMDU5NTdaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OGI0Y2FkLWM2ZTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCp57yP538QRl8ULpN5zKw3AXtZZn4/TlJ8utmNjCfiL2bXVSseuANf6CzWt7K+ ML1hZdfSQrjQi+u3bbEj0q1CwinwlJuva3iAnjHEgYzyIr0lSnT58aR33SurVkxc jUfPftLfutcMOx3xkD+AsVT/FEev1L8ytMPChmo9SDZud1xrMr5vsKTo775BK9TL IQA/tfnWpOPzSZOL1rv28COy/JdG5xsSx5tJxerGbukP21Zmqm02hXfQDqtC5+XE U+jxgiyHZ8EpE5XGhKdx2fOWenn2bTAO9afV9bOjZWYTyEaIGVm0Hz4cn+7YXrju 7Mo7YfXsNB2s4Syqpx3FJ0z7AgMBAAGjggKWMIICkjAdBgNVHQ4EFgQUCJhHakSq 90CoKg/OBYmtE5O1JPUwHwYDVR0jBBgwFoAUjenQdP88jVFUFevw8OVqwD7q3Tow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM5QjM3LzNEOEFDNTQ2M0NB MzExRjA4QTQ5NUMyRkM0RjlBRTAyL2plblFkUDg4alZGVUZldnc4T1Zxd0Q3cTNU by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvamVuUWRQODhqVkZVRmV2dzhPVnF3RDdxM1RvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUIzNy8zRDhBQzU0NjNDQTMxMUYwOEE0OTVDMkZDNEY5QUUwMi83RUJEN0ZBQTZE RkQxMUYwOUE0MzMyMUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQCDaAwDQYJKoZIhvcNAQELBQADggEBAMhjr9vJBy5+YCKP gv01J+vcO//o3uf0BUMmy1ud/r9iWfYTMnkXYwNBjLiXlb/CdLOcNu0PgcxLNG+Z pO+tCj8axpYlhYYW8Tw+G8bVBb1HbAnVVNq4CkwXfrpNwggqwgIfkbsDPiuSpiQz au6dkU9E44f838LQF+8AWQFPdOsztwK3nxHw3iVxt0H3HhzUYdlAJ02yWvg2tT3W /+29tWcgxM3UBfqsfM21k7PcMH9APN+ggukJ/7FVTvB7pPSz7j98VVOjTYGdWJfz Uweo68K0rJ5TVm/NYS36dn/WaXq2m0e+ipDgif82mGOsEXag26+oyuXP5KmycUZ0 5HdfJc8= -----END CERTIFICATE-----Generated at Sun Aug 10 15:58:18 2025 by rpki-client