$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/139300E4BA6911EFA78E2F66C4F9AE02.roa File: 139300E4BA6911EFA78E2F66C4F9AE02.roa (raw, json) Hash identifier: oK/gg2jz6l2+odqa+6HnN0t0SaDFmpXk6CPlQPqG6OA= Subject key identifier: 07:80:AB:9A:C2:27:33:6E:27:AE:64:F7:67:89:B4:C6:4B:EF:5F:55 Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 0219 Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/139300E4BA6911EFA78E2F66C4F9AE02.roa Signing time: Thu 31 Jul 2025 04:10:50 +0000 ROA not before: Thu 31 Jul 2025 04:10:50 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 32167 IP address blocks: 2401:b60:2d::/48 maxlen: 48 2401:b60:1000::/36 maxlen: 44 2401:b60:e300::/40 maxlen: 48 2401:b60:e400::/40 maxlen: 48 2401:b60:e500::/40 maxlen: 48 2401:b60:e600::/40 maxlen: 48 2401:b60:e700::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 537 (0x219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B, serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Validity Not Before: Jul 31 04:10:50 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688aecca-a4f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:72:e6:9a:67:1f:04:b6:1e:ea:61:0f:ef:21: 1a:69:4d:c0:65:50:67:15:ba:05:be:bf:9b:fd:61: ec:47:68:c5:8b:7d:ab:01:9d:41:69:56:c6:9d:35: 5f:2e:74:ec:9c:88:48:c7:ce:a9:c1:55:59:d7:b9: b8:70:f7:4e:bf:53:26:8c:07:fb:fa:86:ac:b7:ce: ed:71:d3:cc:8b:47:d0:00:92:6b:ac:a3:28:c1:dd: 82:5f:5b:fc:c3:36:ec:ec:4b:a6:2e:fd:f0:f9:ae: 6a:bb:f3:be:15:3a:d2:5f:52:1b:9c:8d:2c:a9:3a: 08:6e:94:ac:64:83:88:f7:74:95:1a:9d:cf:f1:24: bc:1e:2e:d6:e2:0f:be:7f:a1:af:7f:11:61:e0:e1: e1:18:95:42:08:71:89:98:f4:4b:27:bf:a3:3a:44: 2f:39:83:61:a3:32:e9:bb:4c:27:98:65:7e:ec:e0: d5:a2:6a:11:be:bf:2e:13:b1:37:35:49:8b:75:f8: 65:02:83:f3:ff:41:30:83:0b:04:ac:2c:a3:ce:82: d2:ef:fa:59:f1:49:bf:31:65:dc:9e:d5:57:d4:2d: 10:d8:d8:84:b9:fc:6d:d7:19:7b:99:0f:0b:11:c6: 8c:80:ad:3c:1a:1d:81:da:8b:65:8a:f3:dc:da:d3: fb:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:80:AB:9A:C2:27:33:6E:27:AE:64:F7:67:89:B4:C6:4B:EF:5F:55 X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/139300E4BA6911EFA78E2F66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b60:2d::/48 2401:b60:1000::/36 2401:b60:e300::-2401:b60:e7ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 1b:50:15:01:3d:e1:02:03:6e:dc:a8:ad:22:b8:fd:8f:e4:ef: f3:51:94:6d:cc:b9:49:fd:2c:ec:48:f8:fa:5f:83:a8:c0:3e: 49:e2:cd:b5:35:73:3f:d8:2a:c6:76:7c:87:a5:b6:25:ad:25: c0:45:6e:02:05:51:0d:a7:2b:24:0e:96:dc:04:ba:5c:f7:0f: 40:27:a9:03:9c:11:76:78:28:ff:b0:ee:7e:48:6d:26:81:a3: f1:1e:36:c2:ae:c2:ee:6b:33:14:03:e4:db:c5:94:9c:92:f6: 03:96:55:79:c6:59:79:35:87:eb:55:c3:70:ff:06:26:81:21: 8c:32:38:bf:1c:39:de:03:e3:62:16:98:21:03:0d:a8:64:56: 43:6f:d6:1c:c2:19:38:6d:b5:da:e0:53:9c:f3:dd:83:3d:40: 94:6a:63:a9:4a:13:35:b1:98:3f:6e:87:25:ae:14:f5:e3:0c: a7:1c:04:99:c1:88:9d:f1:fe:3d:ba:72:c4:43:82:3d:3d:34: da:80:44:ec:fc:2f:7b:49:17:d6:94:83:10:39:7a:f9:2c:4e: fe:c3:c6:6e:27:b5:b2:51:8c:bf:ca:93:f9:3a:48:c2:6c:f5: 76:c9:44:51:e2:8f:48:58:9c:2a:44:4c:2e:50:08:69:ee:42: 92:41:0d:97 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICAhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjUwNzMxMDQxMDUwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhZWNjYS1hNGYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuHLmmmcfBLYe6mEP7yEaaU3AZVBnFboFvr+b/WHsR2jFi32rAZ1BaVbGnTVf LnTsnIhIx86pwVVZ17m4cPdOv1MmjAf7+oast87tcdPMi0fQAJJrrKMowd2CX1v8 wzbs7EumLv3w+a5qu/O+FTrSX1IbnI0sqToIbpSsZIOI93SVGp3P8SS8Hi7W4g++ f6GvfxFh4OHhGJVCCHGJmPRLJ7+jOkQvOYNhozLpu0wnmGV+7ODVomoRvr8uE7E3 NUmLdfhlAoPz/0EwgwsErCyjzoLS7/pZ8Um/MWXcntVX1C0Q2NiEufxt1xl7mQ8L EcaMgK08Gh2B2otlivPc2tP7zQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFAeAq5rC JzNuJ65k92eJtMZL719VMB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwM0IvQUY5NjcxNjYwQjZFMTFFRUIyOUJCMTcwQzRGOUFFMDIvMTM5MzAwRTRC QTY5MTFFRkE3OEUyRjY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMCkEAgACMCMDBwAkAQtgAC0DBgQkAQtgEDAQAwYAJAELYOMDBgMkAQtg4DAN BgkqhkiG9w0BAQsFAAOCAQEAG1AVAT3hAgNu3KitIrj9j+Tv81GUbcy5Sf0s7Ej4 +l+DqMA+SeLNtTVzP9gqxnZ8h6W2Ja0lwEVuAgVRDacrJA6W3AS6XPcPQCepA5wR dngo/7DufkhtJoGj8R42wq7C7mszFAPk28WUnJL2A5ZVecZZeTWH61XDcP8GJoEh jDI4vxw53gPjYhaYIQMNqGRWQ2/WHMIZOG212uBTnPPdgz1AlGpjqUoTNbGYP26H Ja4U9eMMpxwEmcGInfH+PbpyxEOCPT002oBE7Pwve0kX1pSDEDl6+SxO/sPGbie1 slGMv8qT+TpIwmz1dslEUeKPSFicKkRMLlAIae5CkkENlw== -----END CERTIFICATE-----Generated at Sun Aug 10 10:44:14 2025 by rpki-client