$ rpki-client -vvf rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/6E6485328C6211E9A888A528C4F9AE02.roa File: 6E6485328C6211E9A888A528C4F9AE02.roa (raw, json) Hash identifier: UR2Z7oMUzbnedaI2LVS9uGRBFC7eB54GSgDAmYPW63Q= Subject key identifier: 4B:17:DB:5B:98:93:0A:74:A0:EA:A6:34:2F:AF:3F:60:5C:E6:7F:0F Certificate issuer: /CN=A91D16A3/serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Certificate serial: 1123 Authority key identifier: 79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/6E6485328C6211E9A888A528C4F9AE02.roa Signing time: Wed 02 Apr 2025 17:46:32 +0000 ROA not before: Wed 02 Apr 2025 17:46:32 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 139216 IP address blocks: 2404:7ac0:607::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 17:25:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4387 (0x1123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D16A3, serialNumber=793766084EFC06250650F0FDC9DBC553C0CECA32 Validity Not Before: Apr 2 17:46:32 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ed77f7-b4e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8a:e4:a3:b1:7f:bc:08:43:9c:f5:c5:64:23: 4a:89:bf:9f:b9:0e:84:cd:f0:4d:4f:e1:fd:89:8f: ee:af:a9:d0:9b:22:ee:4e:14:01:d2:d4:4d:2d:22: 41:23:ce:3b:b8:f0:73:5d:74:8a:f7:17:44:f0:67: 5e:c9:03:67:85:34:9a:4e:c9:ac:b4:40:4d:fb:1c: b5:bd:e3:7f:c7:1b:85:c2:17:44:9c:f7:57:32:8a: 7d:c3:98:0d:53:ca:f6:9f:62:2b:68:91:f1:81:9b: 07:65:45:78:e3:92:22:3a:18:ab:61:13:a0:0a:99: 6c:7d:bb:db:4c:f7:16:94:e1:0c:b6:88:84:80:aa: 44:c8:51:e4:6d:79:5b:75:5f:76:94:59:f7:ed:b8: a7:bf:b8:aa:0a:37:6e:31:53:cf:c9:69:c9:f7:38: d8:ab:9d:d6:69:3d:9d:ff:0d:ae:d3:b5:46:75:04: c6:55:cd:7e:e6:99:d6:c0:42:a5:a5:f8:67:25:c4: 94:5e:f5:ee:b7:7c:69:59:49:da:61:8c:18:e2:f2: 07:c3:60:24:ec:39:fb:39:40:da:e7:23:26:13:4d: 9d:df:18:c3:e2:a3:71:0e:0b:f5:5c:33:d5:b8:fe: 64:3f:74:2a:56:fc:0c:13:fc:07:ed:33:6e:ca:00: 69:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:17:DB:5B:98:93:0A:74:A0:EA:A6:34:2F:AF:3F:60:5C:E6:7F:0F X509v3 Authority Key Identifier: keyid:79:37:66:08:4E:FC:06:25:06:50:F0:FD:C9:DB:C5:53:C0:CE:CA:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/eTdmCE78BiUGUPD9ydvFU8DOyjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eTdmCE78BiUGUPD9ydvFU8DOyjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D16A3/7727CE5C38C711E9A7B5C233C4F9AE02/6E6485328C6211E9A888A528C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:7ac0:607::/48 Signature Algorithm: sha256WithRSAEncryption 9d:4a:b8:b2:bd:8e:49:41:59:db:4b:fc:f0:ed:cf:1f:e3:15: a9:f1:a9:70:e4:70:f4:20:f5:bd:b6:ff:53:18:7a:46:81:fb: 03:2c:d3:7a:ec:4c:3c:a5:8d:cb:cb:46:f0:da:06:3a:b0:00: 32:16:26:a6:05:4c:16:d1:72:e7:5c:bc:b5:9a:f7:80:80:1a: 6a:f0:3f:fb:0a:2c:06:9d:64:a8:d4:3a:7c:e9:2f:86:a4:2a: 6c:3a:f8:0b:a7:86:1c:0c:0f:b1:e5:ef:08:66:5f:96:6c:f5: ee:36:8b:a5:a4:40:b4:62:c8:6a:82:a3:8f:85:dc:46:70:87: 79:b6:bb:da:0a:19:f4:92:93:ee:fb:81:06:25:b1:df:4e:de: 36:32:98:de:ac:15:31:b2:47:22:4d:86:2e:0f:01:44:cc:69: da:e9:8b:a5:28:e6:d0:de:0b:8e:ae:90:94:6f:22:66:68:45: 0c:ba:e4:1c:db:9b:98:db:64:fe:f7:df:b4:52:90:68:a6:a3: b4:9a:c0:b1:b4:d8:6f:56:0a:82:44:62:14:17:4d:83:a2:10: 48:e7:80:e5:a8:03:9a:18:1d:88:f3:bd:7e:2f:0b:24:e2:94: 75:0b:ae:b1:f1:4c:38:ca:71:13:98:a8:65:af:ad:28:e7:78: 46:80:a2:ae -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICESMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2QTMxMTAvBgNVBAUTKDc5Mzc2NjA4NEVGQzA2MjUwNjUwRjBGREM5REJDNTUz QzBDRUNBMzIwHhcNMjUwNDAyMTc0NjMyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkNzdmNy1iNGU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtorko7F/vAhDnPXFZCNKib+fuQ6EzfBNT+H9iY/ur6nQmyLuThQB0tRNLSJB I847uPBzXXSK9xdE8GdeyQNnhTSaTsmstEBN+xy1veN/xxuFwhdEnPdXMop9w5gN U8r2n2IraJHxgZsHZUV445IiOhirYROgCplsfbvbTPcWlOEMtoiEgKpEyFHkbXlb dV92lFn37binv7iqCjduMVPPyWnJ9zjYq53WaT2d/w2u07VGdQTGVc1+5pnWwEKl pfhnJcSUXvXut3xpWUnaYYwY4vIHw2Ak7Dn7OUDa5yMmE02d3xjD4qNxDgv1XDPV uP5kP3QqVvwME/wH7TNuygBpaQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFEsX21uY kwp0oOqmNC+vP2Bc5n8PMB8GA1UdIwQYMBaAFHk3ZghO/AYlBlDw/cnbxVPAzsoy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTZBMy83NzI3Q0U1QzM4 QzcxMUU5QTdCNUMyMzNDNEY5QUUwMi9lVGRtQ0U3OEJpVUdVUEQ5eWR2RlU4RE95 akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VUZG1DRTc4QmlVR1VQRDl5ZHZGVThET3lqSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE2QTMvNzcyN0NFNUMzOEM3MTFFOUE3QjVDMjMzQzRGOUFFMDIvNkU2NDg1MzI4 QzYyMTFFOUE4ODhBNTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkBHrABgcwDQYJKoZIhvcNAQELBQADggEBAJ1KuLK9jklB WdtL/PDtzx/jFanxqXDkcPQg9b22/1MYekaB+wMs03rsTDyljcvLRvDaBjqwADIW JqYFTBbRcudcvLWa94CAGmrwP/sKLAadZKjUOnzpL4akKmw6+AunhhwMD7Hl7whm X5Zs9e42i6WkQLRiyGqCo4+F3EZwh3m2u9oKGfSSk+77gQYlsd9O3jYymN6sFTGy RyJNhi4PAUTMadrpi6Uo5tDeC46ukJRvImZoRQy65Bzbm5jbZP7337RSkGimo7Sa wLG02G9WCoJEYhQXTYOiEEjngOWoA5oYHYjzvX4vCyTilHULrrHxTDjKcROYqGWv rSjneEaAoq4= -----END CERTIFICATE-----Generated at Wed Nov 5 05:12:04 2025 by rpki-client