$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/E35133A60ED911EE8A4E0A23C4F9AE02.roa File: E35133A60ED911EE8A4E0A23C4F9AE02.roa (raw, json) Hash identifier: J24XeGKSHMgr15vOmvjo3VznL//VuBbxY3mUjg6/Wbk= Subject key identifier: 82:6A:9B:C8:D9:92:A9:4E:99:18:66:4A:E5:FF:FD:6B:F4:D2:77:7C Certificate issuer: /CN=A91EE03B/serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Certificate serial: 020E Authority key identifier: B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/E35133A60ED911EE8A4E0A23C4F9AE02.roa Signing time: Thu 31 Jul 2025 04:10:40 +0000 ROA not before: Thu 31 Jul 2025 04:10:40 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 151407 IP address blocks: 2401:b60:6::/48 maxlen: 48 2401:b60:b::/48 maxlen: 48 2401:b60:2b::/48 maxlen: 48 2401:b60:100::/40 maxlen: 40 2401:b60:e203::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 526 (0x20e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE03B, serialNumber=B9E60CF179F4EACBDB9492BA5F7CACF45239CCF4 Validity Not Before: Jul 31 04:10:40 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688aecc0-1aa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4b:e9:bd:5d:86:03:ab:8e:8a:dd:d4:be:b6: 89:05:38:54:8d:dd:fe:88:6c:f5:6e:a8:33:14:0d: c9:ca:f9:db:43:5a:95:d7:7f:95:b5:87:a0:05:99: 18:08:12:bd:34:fb:cb:27:07:c8:e8:d6:e8:65:a5: 06:6e:04:02:52:36:a7:35:9c:5c:e7:8b:a0:b8:e8: db:b0:f8:f8:e0:d4:b5:2e:60:35:00:e4:7f:4e:15: c8:6f:a7:60:c8:2b:76:26:26:d1:38:05:0d:2c:6a: 41:74:37:c1:ae:00:83:2f:45:ba:0b:bb:02:01:7e: 46:e6:b5:40:9d:e2:0a:05:a3:76:57:77:d0:ac:e2: e2:67:1f:6a:a3:32:2d:c7:ac:11:b2:ce:4a:4c:77: 01:b3:bb:c8:da:8e:08:1c:0a:8a:2c:53:0c:fb:a8: cb:4d:69:1f:f3:a8:1f:ac:d7:0d:e5:22:d2:09:12: af:26:9f:89:56:63:66:52:12:9f:67:a1:1d:4b:37: e7:a1:08:7b:f8:2b:c7:d9:b1:6e:d5:ed:89:3b:52: 7e:41:32:a7:15:6b:a2:38:ca:77:66:c4:75:e2:b7: 24:85:fa:72:c2:36:a2:c3:e3:b1:2e:f3:71:b9:df: 32:19:2d:98:7d:0d:6a:12:b9:54:bb:61:d4:0b:04: e0:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:6A:9B:C8:D9:92:A9:4E:99:18:66:4A:E5:FF:FD:6B:F4:D2:77:7C X509v3 Authority Key Identifier: keyid:B9:E6:0C:F1:79:F4:EA:CB:DB:94:92:BA:5F:7C:AC:F4:52:39:CC:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/ueYM8Xn06svblJK6X3ys9FI5zPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ueYM8Xn06svblJK6X3ys9FI5zPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE03B/AF9671660B6E11EEB29BB170C4F9AE02/E35133A60ED911EE8A4E0A23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b60:6::/48 2401:b60:b::/48 2401:b60:2b::/48 2401:b60:100::/40 2401:b60:e203::/48 Signature Algorithm: sha256WithRSAEncryption 32:14:0c:fa:cb:1a:22:e5:ba:38:3f:aa:0c:6e:14:a6:96:bc: b2:25:ff:a9:1f:80:59:d3:97:c4:fb:7f:aa:19:6d:b8:f4:58: ec:79:dd:00:0c:78:2d:07:a0:f1:28:56:dd:aa:7a:c5:9c:9f: 4b:66:56:45:aa:42:26:f5:ec:94:5f:1e:79:3a:d3:7a:44:47: 0b:4e:a9:15:55:a9:43:3b:78:b9:53:9e:3d:b9:15:4e:11:fa: 0b:c0:08:86:02:02:95:18:85:b1:6a:de:fb:68:dc:f0:1c:06: 73:f5:37:9d:86:8f:a3:0a:fe:5f:df:2b:ce:e7:a5:14:1b:4c: 13:f9:cb:71:95:c3:04:48:70:1d:83:6b:37:55:3e:d0:39:76: 3c:ef:0a:c1:02:dd:36:40:21:cf:8c:19:d4:98:f2:c5:9b:c2: b3:a9:c3:26:e5:ef:92:65:41:c1:9b:92:b7:f0:25:7e:bf:29: 43:24:70:f1:35:9d:f4:23:4f:01:80:1f:5b:c2:c9:55:26:32: 91:32:4f:a5:90:e4:86:4c:dd:0e:68:98:f3:2a:4b:41:e4:a6: b7:d3:e3:13:fd:d5:92:34:26:4d:d8:74:09:48:fc:bf:6e:34: 70:fd:f0:f0:b9:16:6a:4b:96:90:cc:58:9b:49:39:df:b3:7a: 4d:6f:b6:eb -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICAg4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUwM0IxMTAvBgNVBAUTKEI5RTYwQ0YxNzlGNEVBQ0JEQjk0OTJCQTVGN0NBQ0Y0 NTIzOUNDRjQwHhcNMjUwNzMxMDQxMDQwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhhZWNjMC0xYWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkvpvV2GA6uOit3UvraJBThUjd3+iGz1bqgzFA3JyvnbQ1qV13+VtYegBZkY CBK9NPvLJwfI6NboZaUGbgQCUjanNZxc54uguOjbsPj44NS1LmA1AOR/ThXIb6dg yCt2JibROAUNLGpBdDfBrgCDL0W6C7sCAX5G5rVAneIKBaN2V3fQrOLiZx9qozIt x6wRss5KTHcBs7vI2o4IHAqKLFMM+6jLTWkf86gfrNcN5SLSCRKvJp+JVmNmUhKf Z6EdSzfnoQh7+CvH2bFu1e2JO1J+QTKnFWuiOMp3ZsR14rckhfpywjaiw+OxLvNx ud8yGS2YfQ1qErlUu2HUCwTgXQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFIJqm8jZ kqlOmRhmSuX//Wv00nd8MB8GA1UdIwQYMBaAFLnmDPF59OrL25SSul98rPRSOcz0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTAzQi9BRjk2NzE2NjBC NkUxMUVFQjI5QkIxNzBDNEY5QUUwMi91ZVlNOFhuMDZzdmJsSks2WDN5czlGSTV6 UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VlWU04WG4wNnN2YmxKSzZYM3lzOUZJNXpQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUwM0IvQUY5NjcxNjYwQjZFMTFFRUIyOUJCMTcwQzRGOUFFMDIvRTM1MTMzQTYw RUQ5MTFFRThBNEUwQTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgACMCwDBwAkAQtgAAYDBwAkAQtgAAsDBwAkAQtgACsDBgAkAQtgAQMH ACQBC2DiAzANBgkqhkiG9w0BAQsFAAOCAQEAMhQM+ssaIuW6OD+qDG4Uppa8siX/ qR+AWdOXxPt/qhltuPRY7HndAAx4LQeg8ShW3ap6xZyfS2ZWRapCJvXslF8eeTrT ekRHC06pFVWpQzt4uVOePbkVThH6C8AIhgIClRiFsWre+2jc8BwGc/U3nYaPowr+ X98rzuelFBtME/nLcZXDBEhwHYNrN1U+0Dl2PO8KwQLdNkAhz4wZ1JjyxZvCs6nD JuXvkmVBwZuSt/Alfr8pQyRw8TWd9CNPAYAfW8LJVSYykTJPpZDkhkzdDmiY8ypL QeSmt9PjE/3VkjQmTdh0CUj8v240cP3w8LkWakuWkMxYm0k537N6TW+26w== -----END CERTIFICATE-----Generated at Mon Aug 11 04:21:57 2025 by rpki-client