$ rpki-client -vvf rpki.apnic.net/member_repository/A91336DF/2318408C813F11EF9CCE1A1AC4F9AE02/F51067B4C65D11EF84CD2E17C4F9AE02.roa File: F51067B4C65D11EF84CD2E17C4F9AE02.roa (raw, json) Hash identifier: iI9yotfrL9J3LQc+csF8mlXtrJJ2hdKlLEmN7bc8pzs= Subject key identifier: 4A:57:1E:F8:AA:C7:C9:52:68:11:DB:76:D2:1A:A7:75:8F:3E:31:23 Certificate issuer: /CN=A91336DF/serialNumber=64F21CDE648B39B5282B8CB127928E2332488294 Certificate serial: A5 Authority key identifier: 64:F2:1C:DE:64:8B:39:B5:28:2B:8C:B1:27:92:8E:23:32:48:82:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPIc3mSLObUoK4yxJ5KOIzJIgpQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91336DF/2318408C813F11EF9CCE1A1AC4F9AE02/F51067B4C65D11EF84CD2E17C4F9AE02.roa Signing time: Wed 13 Aug 2025 07:16:54 +0000 ROA not before: Wed 13 Aug 2025 07:16:54 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153183 IP address blocks: 2401:b660::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91336DF/2318408C813F11EF9CCE1A1AC4F9AE02/ZPIc3mSLObUoK4yxJ5KOIzJIgpQ.crl rsync://rpki.apnic.net/member_repository/A91336DF/2318408C813F11EF9CCE1A1AC4F9AE02/ZPIc3mSLObUoK4yxJ5KOIzJIgpQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPIc3mSLObUoK4yxJ5KOIzJIgpQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:23:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91336DF, serialNumber=64F21CDE648B39B5282B8CB127928E2332488294 Validity Not Before: Aug 13 07:16:54 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689c3be6-0bba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b5:13:07:78:d4:4e:a0:a8:0d:67:da:6e:19: f6:40:24:50:2d:7f:be:f3:99:5f:44:0c:33:f1:8f: 3b:39:6b:50:eb:cc:0c:89:43:33:ba:8e:b9:69:21: 8a:87:b0:3a:dc:90:8f:ad:a5:5a:4f:3b:0a:c2:45: 0a:14:ec:b3:55:9a:d6:3a:7c:4f:2c:5c:88:27:4c: 10:17:ec:b8:e0:4f:40:4e:c1:3a:14:db:dd:05:cb: 45:0a:82:a2:6c:20:ec:91:ca:d6:59:72:a7:e0:15: e4:fd:26:3b:d8:3f:a1:23:2c:48:b1:4e:d0:e4:99: ae:7d:4b:57:3a:49:76:a0:d8:5b:45:70:83:66:69: 9d:40:1f:d0:46:5c:33:fa:41:2c:fd:07:9e:0e:8e: 6e:19:c2:2e:aa:ab:c0:50:a7:58:85:fa:5b:d5:bc: 28:35:df:f2:1f:7f:cf:92:31:5e:cb:ff:34:74:d4: ff:5c:c3:73:28:13:b6:fe:a4:4c:2f:4f:e2:cd:f3: a9:34:84:23:84:68:e5:6a:f1:82:8a:20:64:ab:14: 4b:50:1c:02:6c:5d:da:a7:1e:58:fe:6d:53:21:89: b5:57:73:bb:fb:fb:fa:c8:c2:3a:41:d3:74:19:d1: 24:26:d2:82:6e:bb:4a:76:88:23:14:eb:cb:97:18: 6d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:57:1E:F8:AA:C7:C9:52:68:11:DB:76:D2:1A:A7:75:8F:3E:31:23 X509v3 Authority Key Identifier: keyid:64:F2:1C:DE:64:8B:39:B5:28:2B:8C:B1:27:92:8E:23:32:48:82:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91336DF/2318408C813F11EF9CCE1A1AC4F9AE02/ZPIc3mSLObUoK4yxJ5KOIzJIgpQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZPIc3mSLObUoK4yxJ5KOIzJIgpQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91336DF/2318408C813F11EF9CCE1A1AC4F9AE02/F51067B4C65D11EF84CD2E17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:b660::/32 Signature Algorithm: sha256WithRSAEncryption a4:3d:6c:eb:20:f6:07:e1:8e:3c:57:9f:cc:25:95:61:38:81: ff:d6:0a:49:be:68:1c:6d:19:3d:24:2b:c7:19:e5:57:87:40: 9e:eb:c3:f1:71:64:60:75:79:86:7e:2c:32:64:fd:c9:d8:2f: b1:2f:ad:53:48:2b:e6:3f:54:f8:5e:56:8f:c1:31:d5:65:ca: e9:0d:c3:f8:c6:3e:f4:f3:f3:f8:41:c9:49:0a:82:f9:d9:cb: 1e:06:f1:75:d2:e7:0e:98:8d:bc:24:ed:90:c3:c8:ad:93:f7: 55:2a:10:80:ce:44:d7:d2:92:cf:30:ae:f9:1a:27:9b:f3:36: 2a:2d:92:91:aa:c9:1b:b7:bf:cd:a0:49:8c:f3:4c:08:ef:60: 60:ed:57:b5:58:b6:a0:38:87:05:a6:bf:84:a3:60:5a:69:ab: f3:6f:19:ef:f3:22:25:f1:76:48:a5:7a:50:30:0f:f9:d3:20: 7d:54:95:b6:25:cd:48:48:fb:c4:8a:2a:ee:01:a1:bc:47:0d: ba:f0:ea:97:96:a5:26:d1:23:91:b6:e3:00:98:46:fc:53:7b: a6:a2:2a:85:ea:2e:21:86:dc:7e:b6:b7:27:a6:38:bf:8b:b6: 3e:e8:49:a9:eb:0e:26:04:02:58:a7:71:7a:70:86:53:c7:c9: 58:02:46:01 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM2REYxMTAvBgNVBAUTKDY0RjIxQ0RFNjQ4QjM5QjUyODJCOENCMTI3OTI4RTIz MzI0ODgyOTQwHhcNMjUwODEzMDcxNjU0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODljM2JlNi0wYmJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu7UTB3jUTqCoDWfabhn2QCRQLX++85lfRAwz8Y87OWtQ68wMiUMzuo65aSGK h7A63JCPraVaTzsKwkUKFOyzVZrWOnxPLFyIJ0wQF+y44E9ATsE6FNvdBctFCoKi bCDskcrWWXKn4BXk/SY72D+hIyxIsU7Q5JmufUtXOkl2oNhbRXCDZmmdQB/QRlwz +kEs/QeeDo5uGcIuqqvAUKdYhfpb1bwoNd/yH3/PkjFey/80dNT/XMNzKBO2/qRM L0/izfOpNIQjhGjlavGCiiBkqxRLUBwCbF3apx5Y/m1TIYm1V3O7+/v6yMI6QdN0 GdEkJtKCbrtKdogjFOvLlxhtGwIDAQABo4ICljCCApIwHQYDVR0OBBYEFEpXHviq x8lSaBHbdtIap3WPPjEjMB8GA1UdIwQYMBaAFGTyHN5kizm1KCuMsSeSjiMySIKU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzZERi8yMzE4NDA4Qzgx M0YxMUVGOUNDRTFBMUFDNEY5QUUwMi9aUEljM21TTE9iVW9LNHl4SjVLT0l6Skln cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pQSWMzbVNMT2JVb0s0eXhKNUtPSXpKSWdwUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzM2REYvMjMxODQwOEM4MTNGMTFFRjlDQ0UxQTFBQzRGOUFFMDIvRjUxMDY3QjRD NjVEMTFFRjg0Q0QyRTE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAbZgMA0GCSqGSIb3DQEBCwUAA4IBAQCkPWzrIPYH4Y48 V5/MJZVhOIH/1gpJvmgcbRk9JCvHGeVXh0Ce68PxcWRgdXmGfiwyZP3J2C+xL61T SCvmP1T4XlaPwTHVZcrpDcP4xj708/P4QclJCoL52cseBvF10ucOmI28JO2Qw8it k/dVKhCAzkTX0pLPMK75Gieb8zYqLZKRqskbt7/NoEmM80wI72Bg7Ve1WLagOIcF pr+Eo2Baaavzbxnv8yIl8XZIpXpQMA/50yB9VJW2Jc1ISPvEiiruAaG8Rw268OqX lqUm0SORtuMAmEb8U3umoiqF6i4hhtx+trcnpji/i7Y+6Emp6w4mBAJYp3F6cIZT x8lYAkYB -----END CERTIFICATE-----Generated at Sun Aug 24 03:14:54 2025 by rpki-client