$ rpki-client -vvf rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/D1C40E28183411EF99FD8776C4F9AE02.roa File: D1C40E28183411EF99FD8776C4F9AE02.roa (raw, json) Hash identifier: BW1R5F8lMobavVuSC6yNoOLGmek/bg4xwsTofEurscc= Subject key identifier: 5F:3D:DE:D5:23:EA:72:5B:6D:6B:EA:2F:1C:80:BA:ED:09:FD:67:1D Certificate issuer: /CN=A91D604E/serialNumber=E4DCEC595A1BB673897223656AC639B95352DD73 Certificate serial: 0CD1 Authority key identifier: E4:DC:EC:59:5A:1B:B6:73:89:72:23:65:6A:C6:39:B9:53:52:DD:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/D1C40E28183411EF99FD8776C4F9AE02.roa Signing time: Thu 31 Jul 2025 18:57:21 +0000 ROA not before: Thu 31 Jul 2025 18:57:21 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 135517 IP address blocks: 2400:f8c0::/32 maxlen: 36 2400:f8c0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.crl rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3281 (0xcd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D604E, serialNumber=E4DCEC595A1BB673897223656AC639B95352DD73 Validity Not Before: Jul 31 18:57:21 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=688bbc90-1174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:23:09:31:37:26:ee:cd:98:b4:a9:47:a7:c1: cd:93:5c:0f:08:d1:12:c9:e7:12:6f:9d:3f:8b:88: 37:32:d7:12:b1:38:c1:54:73:0a:d0:b6:c2:4c:e2: d7:f9:8a:bb:f8:a0:c2:e3:fc:b8:98:9e:fe:dd:ac: 4d:c8:9d:d0:20:f8:26:b4:0f:69:59:4c:c2:48:0a: 16:cf:f5:1e:07:d6:78:7d:f3:3c:31:47:63:30:e8: e0:10:f8:56:95:59:70:a1:31:7d:0d:12:22:a6:66: 10:71:89:f1:87:f1:6d:a3:9f:79:74:ae:44:d8:a1: b5:23:ed:88:cb:97:66:32:22:c5:9f:b9:32:55:ae: 03:4a:69:44:fe:83:af:ae:2e:11:c9:c4:ae:fd:a8: 54:af:81:3e:c8:b8:ed:85:41:fd:30:78:2f:ca:e2: fd:13:e3:d9:91:f7:c1:e4:9f:66:83:b1:ae:22:09: 44:90:cf:c5:2b:11:fd:b3:86:b3:3a:65:db:0c:26: 86:f6:18:f6:d5:6a:64:6e:b2:6b:42:d5:4f:b2:00: 12:25:df:ab:a7:72:8d:d7:b1:49:de:6f:8b:2d:1b: 30:93:a5:ef:36:f6:1f:ba:f8:30:ec:d6:d0:8a:28: cd:42:85:5d:36:22:44:df:e2:83:5c:69:48:ad:35: d8:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:3D:DE:D5:23:EA:72:5B:6D:6B:EA:2F:1C:80:BA:ED:09:FD:67:1D X509v3 Authority Key Identifier: keyid:E4:DC:EC:59:5A:1B:B6:73:89:72:23:65:6A:C6:39:B9:53:52:DD:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/5NzsWVobtnOJciNlasY5uVNS3XM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5NzsWVobtnOJciNlasY5uVNS3XM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D604E/91B5C0C0F4ED11E98CBFA013C4F9AE02/D1C40E28183411EF99FD8776C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:f8c0::/32 Signature Algorithm: sha256WithRSAEncryption 9d:2d:dd:62:30:d2:bf:5f:13:27:1f:76:2b:51:ee:39:1c:e1: 3b:1e:17:6f:9a:59:40:b6:ce:1f:e0:d9:6f:5e:1e:9c:54:e8: 1e:0a:21:ec:30:01:92:5b:7e:81:a6:b3:7e:ec:b9:b6:d5:4e: dc:98:4d:ce:34:33:6a:75:75:fd:2f:9e:45:b2:ca:50:39:3a: 5f:f1:3a:8f:9e:ae:f0:5a:bb:85:52:6a:78:18:16:17:f5:2c: 03:e1:44:42:42:97:71:c2:12:a8:96:35:ea:b4:6e:2a:a2:0d: fc:40:3f:59:ef:02:36:ee:1f:5d:c5:cd:59:a4:c7:0f:b4:15: f4:dc:00:e2:37:e5:35:cf:b8:e6:1c:df:fd:ff:30:f1:30:c6: 58:bb:d8:e2:58:7e:15:25:b6:58:5e:76:05:4a:79:0f:6a:e5: 20:09:39:56:d5:fe:fa:60:7f:a8:36:d8:9c:f4:f7:ab:62:92: 1c:3a:b9:ca:d2:f7:fe:b9:8f:d5:58:f9:b1:0d:5c:80:aa:28: 5a:da:b0:85:02:76:db:2c:5a:28:7a:04:9f:e3:34:85:f1:46: 3a:c5:c8:fe:17:75:65:eb:d6:4f:d3:e8:24:ed:ff:9f:40:52: 69:06:72:00:73:bb:91:55:2f:cf:96:5b:bb:bb:19:58:e0:65: 58:56:43:8d -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICDNEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYwNEUxMTAvBgNVBAUTKEU0RENFQzU5NUExQkI2NzM4OTcyMjM2NTZBQzYzOUI5 NTM1MkRENzMwHhcNMjUwNzMxMTg1NzIxWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhiYmM5MC0xMTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7yMJMTcm7s2YtKlHp8HNk1wPCNESyecSb50/i4g3MtcSsTjBVHMK0LbCTOLX +Yq7+KDC4/y4mJ7+3axNyJ3QIPgmtA9pWUzCSAoWz/UeB9Z4ffM8MUdjMOjgEPhW lVlwoTF9DRIipmYQcYnxh/Fto595dK5E2KG1I+2Iy5dmMiLFn7kyVa4DSmlE/oOv ri4RycSu/ahUr4E+yLjthUH9MHgvyuL9E+PZkffB5J9mg7GuIglEkM/FKxH9s4az OmXbDCaG9hj21WpkbrJrQtVPsgASJd+rp3KN17FJ3m+LLRswk6XvNvYfuvgw7NbQ iijNQoVdNiJE3+KDXGlIrTXYZwIDAQABo4ICljCCApIwHQYDVR0OBBYEFF893tUj 6nJbbWvqLxyAuu0J/WcdMB8GA1UdIwQYMBaAFOTc7FlaG7ZziXIjZWrGOblTUt1z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjA0RS85MUI1QzBDMEY0 RUQxMUU5OENCRkEwMTNDNEY5QUUwMi81TnpzV1ZvYnRuT0pjaU5sYXNZNXVWTlMz WE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVOenNXVm9idG5PSmNpTmxhc1k1dVZOUzNYTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDYwNEUvOTFCNUMwQzBGNEVEMTFFOThDQkZBMDEzQzRGOUFFMDIvRDFDNDBFMjgx ODM0MTFFRjk5RkQ4Nzc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAPjAMA0GCSqGSIb3DQEBCwUAA4IBAQCdLd1iMNK/XxMn H3YrUe45HOE7HhdvmllAts4f4NlvXh6cVOgeCiHsMAGSW36BprN+7Lm21U7cmE3O NDNqdXX9L55FsspQOTpf8TqPnq7wWruFUmp4GBYX9SwD4URCQpdxwhKoljXqtG4q og38QD9Z7wI27h9dxc1ZpMcPtBX03ADiN+U1z7jmHN/9/zDxMMZYu9jiWH4VJbZY XnYFSnkPauUgCTlW1f76YH+oNtic9PerYpIcOrnK0vf+uY/VWPmxDVyAqiha2rCF AnbbLFooegSf4zSF8UY6xcj+F3Vl69ZP0+gk7f+fQFJpBnIAc7uRVS/Pllu7uxlY 4GVYVkON -----END CERTIFICATE-----Generated at Sun Aug 10 04:26:28 2025 by rpki-client