$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/14C4C7D4002611EFBD462953C4F9AE02.roa File: 14C4C7D4002611EFBD462953C4F9AE02.roa (raw, json) Hash identifier: 8kJgm21octV347LA5b0+h9xqKVWz2z1gfuxOcYechGQ= Subject key identifier: CD:E8:74:4B:5B:60:66:9B:76:D4:7C:87:EB:98:DB:6F:61:B9:2A:EA Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 0216 Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/14C4C7D4002611EFBD462953C4F9AE02.roa Signing time: Thu 31 Jul 2025 04:10:47 +0000 ROA not before: Thu 31 Jul 2025 04:10:47 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 216183 IP address blocks: 2401:b60:19::/48 maxlen: 48 2401:b60:20::/48 maxlen: 48 2401:b60:21::/48 maxlen: 48 2401:b60:210::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 534 (0x216) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B, serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Validity Not Before: Jul 31 04:10:47 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688aecc7-7bd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:6b:ab:fc:b4:ae:45:22:86:e8:99:e2:0f:ae: 6d:d4:af:50:00:e7:8b:8a:f5:76:b9:ec:7a:09:d3: 0f:cc:61:85:ab:61:b6:05:44:54:5c:8c:ec:b5:d4: 99:7f:57:45:7a:39:59:d1:9b:23:a9:e7:1f:30:f3: b2:76:0c:6f:50:72:9a:f1:83:37:c4:a7:33:67:72: 29:88:9f:10:ff:07:35:a4:c5:3d:b5:92:d2:b9:c2: 45:96:6e:2e:78:7f:ee:37:c5:e4:07:8a:8a:f1:39: 64:50:69:c1:c9:a7:dd:ba:27:e5:d5:a8:08:8e:ba: 99:18:f7:9b:59:08:13:62:8d:38:a5:d9:c8:80:27: 6d:0a:31:3c:20:e6:eb:3b:f9:72:df:ae:b1:58:1c: 56:eb:1a:a5:78:e4:09:8c:37:f2:be:7b:2a:fc:9a: 87:25:eb:24:4b:e4:96:a2:d2:0a:03:ef:58:ab:8e: 06:05:1e:3a:b4:12:d0:61:f8:b5:e0:9b:a5:f0:7a: 4f:fb:4b:b2:79:c8:65:6d:4e:b0:c0:1f:21:75:c6: 82:b3:28:fe:52:68:47:4d:df:8d:eb:72:5a:c6:2a: 00:d7:e2:ae:05:04:c5:28:69:34:d8:99:bd:ea:e0: 2c:9a:23:34:fb:ec:d2:8b:bd:bd:8f:9f:b3:0e:ea: 1a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:E8:74:4B:5B:60:66:9B:76:D4:7C:87:EB:98:DB:6F:61:B9:2A:EA X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/14C4C7D4002611EFBD462953C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b60:19::/48 2401:b60:20::/47 2401:b60:210::/44 Signature Algorithm: sha256WithRSAEncryption 93:33:29:01:68:39:e0:4a:e8:82:ba:6a:9b:2d:0b:38:75:6c: 29:52:63:89:cc:67:0d:f5:62:99:6e:fd:5e:63:7b:dc:2d:ae: 45:25:69:d8:59:37:8c:7a:a6:a3:09:00:55:0c:40:72:d7:4e: 99:a4:84:cf:70:e1:f9:6d:87:52:86:5e:0a:0c:5e:17:38:f0: b4:3a:01:1b:3f:2b:06:61:17:d7:79:2c:85:c9:23:44:48:96: 69:35:2b:d1:0f:f8:2b:98:e1:90:13:11:44:30:84:87:78:e0: d5:b5:5b:fa:14:36:1e:df:90:67:d3:11:9e:d1:66:08:93:8b: bb:6e:6f:68:7a:90:bf:b4:4d:bc:7f:28:2f:b8:ca:41:e8:23: 45:bd:e3:dc:bc:49:25:5a:c5:32:07:f2:d6:d8:9e:6b:00:8c: 86:0f:f5:03:6b:fa:1c:13:66:22:98:5f:95:d9:02:95:cf:68: 8b:db:a7:bf:66:2e:8b:ea:b3:f6:34:43:74:b7:03:a0:aa:a9: 1f:5e:e1:f5:ff:8b:e7:38:c7:90:f8:e4:67:58:fa:9c:5c:56: 1c:f4:be:51:76:88:d2:c9:e9:83:b3:01:3d:b1:f2:4e:f7:bf: 8e:b6:1a:28:0b:6d:70:e5:e7:01:a5:a0:65:0d:1d:9a:cb:59: 48:32:e6:29 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAhYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjUwNzMxMDQxMDQ3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhZWNjNy03YmQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmur/LSuRSKG6JniD65t1K9QAOeLivV2uex6CdMPzGGFq2G2BURUXIzstdSZ f1dFejlZ0ZsjqecfMPOydgxvUHKa8YM3xKczZ3IpiJ8Q/wc1pMU9tZLSucJFlm4u eH/uN8XkB4qK8TlkUGnByafduifl1agIjrqZGPebWQgTYo04pdnIgCdtCjE8IObr O/ly366xWBxW6xqleOQJjDfyvnsq/JqHJeskS+SWotIKA+9Yq44GBR46tBLQYfi1 4Jul8HpP+0uyechlbU6wwB8hdcaCsyj+UmhHTd+N63JaxioA1+KuBQTFKGk02Jm9 6uAsmiM0++zSi729j5+zDuoabwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFM3odEtb YGabdtR8h+uY229huSrqMB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwM0IvQUY5NjcxNjYwQjZFMTFFRUIyOUJCMTcwQzRGOUFFMDIvMTRDNEM3RDQw MDI2MTFFRkJENDYyOTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMCEEAgACMBsDBwAkAQtgABkDBwEkAQtgACADBwQkAQtgAhAwDQYJKoZIhvcN AQELBQADggEBAJMzKQFoOeBK6IK6apstCzh1bClSY4nMZw31Yplu/V5je9wtrkUl adhZN4x6pqMJAFUMQHLXTpmkhM9w4flth1KGXgoMXhc48LQ6ARs/KwZhF9d5LIXJ I0RIlmk1K9EP+CuY4ZATEUQwhId44NW1W/oUNh7fkGfTEZ7RZgiTi7tub2h6kL+0 Tbx/KC+4ykHoI0W949y8SSVaxTIH8tbYnmsAjIYP9QNr+hwTZiKYX5XZApXPaIvb p79mLovqs/Y0Q3S3A6CqqR9e4fX/i+c4x5D45GdY+pxcVhz0vlF2iNLJ6YOzAT2x 8k73v462GigLbXDl5wGloGUNHZrLWUgy5ik= -----END CERTIFICATE-----Generated at Sun Aug 10 10:36:09 2025 by rpki-client