$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/D2DF3ACCE25911EF9C741573C4F9AE02.roa File: D2DF3ACCE25911EF9C741573C4F9AE02.roa (raw, json) Hash identifier: bZo0jjpEK53JojulYhh2uIoOsNZVtFikF4T0wNpVaTc= Subject key identifier: CD:74:91:28:F0:CB:01:DE:A9:80:2E:DF:2B:3D:21:6E:A0:7B:40:BA Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 021B Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/D2DF3ACCE25911EF9C741573C4F9AE02.roa Signing time: Thu 31 Jul 2025 04:10:52 +0000 ROA not before: Thu 31 Jul 2025 04:10:52 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 53835 IP address blocks: 2401:b60:e100::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 12 Aug 2025 03:54:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 539 (0x21b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B, serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Validity Not Before: Jul 31 04:10:52 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688aeccb-b385 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:eb:5b:6f:0e:08:2e:5f:e4:99:d9:6f:b4:cb: 50:e8:68:d3:bd:94:55:45:ca:4f:65:79:af:c4:36: 6a:df:c3:30:94:f2:01:86:e2:31:cb:98:f7:ff:eb: 67:ea:e8:9f:4d:d1:fc:6a:ce:a5:e9:d2:8a:37:9d: 06:50:b9:22:54:2c:2b:0a:76:46:cc:ff:7a:58:ee: d9:ee:e7:2f:8e:f3:7c:7f:78:76:3e:00:35:f4:e7: 34:cd:2f:be:43:5c:40:a8:00:3e:7b:9a:8c:ba:4c: 12:01:f1:a0:d0:a9:73:42:31:5d:e1:d7:4e:2a:7f: 8f:14:12:ab:6b:68:f2:63:11:82:dd:71:d7:a6:9c: 2e:b7:8d:3d:c3:93:a8:d8:aa:3c:b9:34:ac:6f:1f: 99:ee:5f:1f:ed:6b:53:51:33:2f:b0:23:79:0a:f3: 1c:bd:ad:e1:dc:b7:6c:a9:ba:c7:45:28:5e:50:4d: 73:63:18:f9:c7:6b:55:f8:0a:83:9a:a5:74:f2:d5: c7:e3:1f:eb:10:11:6b:7d:56:9a:df:7d:69:47:cf: 2a:f0:40:ac:18:6c:37:20:bf:a3:c1:48:57:93:1b: 43:a2:bf:6e:6a:50:a3:87:f3:66:2f:fd:90:ab:fc: 5d:2d:42:16:b1:59:77:59:d2:33:b8:de:72:1e:8d: a1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:74:91:28:F0:CB:01:DE:A9:80:2E:DF:2B:3D:21:6E:A0:7B:40:BA X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/D2DF3ACCE25911EF9C741573C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b60:e100::/40 Signature Algorithm: sha256WithRSAEncryption 4b:b2:dd:4b:e4:47:73:b7:9d:37:b4:e0:d8:c5:9b:38:52:1b: fd:67:89:69:14:39:d5:18:1d:89:e8:9b:47:84:2b:34:67:15: e9:14:c1:86:29:3d:d2:62:18:10:18:fb:35:1f:8b:5f:51:90: ae:b2:7a:74:9f:8f:e4:00:96:b0:47:77:94:84:7c:86:d8:8d: 2c:a8:72:aa:bd:70:ec:3d:ec:25:8a:ac:d3:41:18:52:63:e8: a1:50:b7:82:b0:69:3d:99:4c:89:d0:bc:7c:9a:e3:29:35:46: 63:2e:12:98:e3:53:cc:3a:82:e5:1f:d7:42:d8:66:d1:e6:ab: cb:4a:98:34:bd:e3:cf:25:0d:cb:4f:41:da:ae:c0:4f:22:a3: 49:68:2e:6f:dd:66:c9:66:4a:6f:a5:5a:d3:8a:13:7a:a2:6e: 61:58:ef:a7:3d:47:04:43:f4:9d:7a:9a:c2:01:72:1f:ed:3d: a0:21:b4:7c:3b:43:50:f2:cd:fa:c3:3d:3e:40:08:8c:bd:cb: 36:b3:ca:7a:b5:cb:09:28:65:c7:f3:f0:38:8f:4d:a6:51:0e: 38:f0:c7:58:61:99:73:ff:42:82:7c:a8:a9:0a:95:f4:5b:b6: a8:c3:33:f4:2e:0e:e3:6c:85:b8:c7:e0:ae:f9:f6:35:39:4f: 2d:e1:57:f1 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgICAhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjUwNzMxMDQxMDUyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhZWNjYi1iMzg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqOtbbw4ILl/kmdlvtMtQ6GjTvZRVRcpPZXmvxDZq38MwlPIBhuIxy5j3/+tn 6uifTdH8as6l6dKKN50GULkiVCwrCnZGzP96WO7Z7ucvjvN8f3h2PgA19Oc0zS++ Q1xAqAA+e5qMukwSAfGg0KlzQjFd4ddOKn+PFBKra2jyYxGC3XHXppwut409w5Oo 2Ko8uTSsbx+Z7l8f7WtTUTMvsCN5CvMcva3h3LdsqbrHRSheUE1zYxj5x2tV+AqD mqV08tXH4x/rEBFrfVaa331pR88q8ECsGGw3IL+jwUhXkxtDor9ualCjh/NmL/2Q q/xdLUIWsVl3WdIzuN5yHo2hkwIDAQABo4IClzCCApMwHQYDVR0OBBYEFM10kSjw ywHeqYAu3ys9IW6ge0C6MB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwM0IvQUY5NjcxNjYwQjZFMTFFRUIyOUJCMTcwQzRGOUFFMDIvRDJERjNBQ0NF MjU5MTFFRjlDNzQxNTczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIQYIKwYBBQUHAQcBAf8E EjAQMA4EAgACMAgDBgAkAQtg4TANBgkqhkiG9w0BAQsFAAOCAQEAS7LdS+RHc7ed N7Tg2MWbOFIb/WeJaRQ51RgdieibR4QrNGcV6RTBhik90mIYEBj7NR+LX1GQrrJ6 dJ+P5ACWsEd3lIR8htiNLKhyqr1w7D3sJYqs00EYUmPooVC3grBpPZlMidC8fJrj KTVGYy4SmONTzDqC5R/XQthm0eary0qYNL3jzyUNy09B2q7ATyKjSWgub91myWZK b6Va04oTeqJuYVjvpz1HBEP0nXqawgFyH+09oCG0fDtDUPLN+sM9PkAIjL3LNrPK erXLCShlx/PwOI9NplEOOPDHWGGZc/9CgnyoqQqV9Fu2qMMz9C4O42yFuMfgrvn2 NTlPLeFX8Q== -----END CERTIFICATE-----Generated at Wed Aug 6 05:28:22 2025 by rpki-client