$ rpki-client -vvf rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/5BE6836E501B11F0928AD730C4F9AE02.roa File: 5BE6836E501B11F0928AD730C4F9AE02.roa (raw, json) Hash identifier: osJymXWvyeEbSd3fJszp+bN45618xj8y1ABpGIi5IYw= Subject key identifier: 17:97:92:7F:18:35:44:62:12:5E:C0:4F:9F:E5:2B:17:B7:C1:59:4E Certificate issuer: /CN=A91685E9/serialNumber=F698B5B47A06D5307DEC608969063074B68FF5CA Certificate serial: 9B Authority key identifier: F6:98:B5:B4:7A:06:D5:30:7D:EC:60:89:69:06:30:74:B6:8F:F5:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/5BE6836E501B11F0928AD730C4F9AE02.roa Signing time: Wed 20 Aug 2025 10:35:39 +0000 ROA not before: Wed 20 Aug 2025 10:35:39 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152565 IP address blocks: 2401:e920::/33 maxlen: 33 2401:e920:8000::/34 maxlen: 34 2401:e920:c00c::/48 maxlen: 48 2401:e920:fffc::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.crl rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 07:04:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155 (0x9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91685E9, serialNumber=F698B5B47A06D5307DEC608969063074B68FF5CA Validity Not Before: Aug 20 10:35:39 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68a5a4fb-f430 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:5e:07:2d:e5:96:92:b1:12:73:29:c9:2d:bc: b9:88:55:c3:6b:f6:3b:b4:b4:6b:7d:f6:c4:f1:7b: 7e:b3:1b:16:cf:e0:71:a3:e6:35:0e:17:88:7e:8b: c0:7e:51:71:c4:0e:1b:db:23:3b:c8:0a:f3:b1:b0: b6:f9:70:9c:b5:37:6d:5a:ef:2f:63:c7:37:9d:df: 74:cb:23:3c:2c:22:a9:0b:b9:eb:96:13:b0:bb:5d: 15:1c:0d:3e:15:25:af:f5:eb:04:8d:26:d5:71:89: b3:f4:99:5d:1f:56:c4:1c:42:7d:2d:58:03:e1:5b: 3b:74:73:94:af:27:75:f7:68:b7:2f:46:f4:96:59: fd:4b:29:ac:be:86:08:0f:93:bf:f5:b3:58:34:88: 21:24:d4:90:27:90:f2:b0:98:6d:9b:3a:11:08:97: ea:c3:4d:2b:59:38:48:20:e0:ff:b7:c6:60:00:fa: a5:d6:4a:5c:eb:6c:02:15:10:c8:e4:bc:a2:ca:5d: 4b:42:4d:86:13:cf:13:fd:cd:9f:19:89:1b:d0:56: d0:78:98:64:58:3d:33:01:b3:0d:3b:31:d6:69:d7: db:de:01:b7:a5:40:93:8d:8f:44:9d:86:2d:56:1a: 3d:38:73:8b:34:ce:ff:55:d1:fd:6b:7a:ce:da:69: 61:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:97:92:7F:18:35:44:62:12:5E:C0:4F:9F:E5:2B:17:B7:C1:59:4E X509v3 Authority Key Identifier: keyid:F6:98:B5:B4:7A:06:D5:30:7D:EC:60:89:69:06:30:74:B6:8F:F5:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/9pi1tHoG1TB97GCJaQYwdLaP9co.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9pi1tHoG1TB97GCJaQYwdLaP9co.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91685E9/C928043AD17611EF95C5DE5AC4F9AE02/5BE6836E501B11F0928AD730C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:e920::-2401:e920:bfff:ffff:ffff:ffff:ffff:ffff 2401:e920:c00c::/48 2401:e920:fffc::/48 Signature Algorithm: sha256WithRSAEncryption 2d:51:bd:4a:3d:64:e8:b8:4f:1b:4a:50:97:80:e0:17:02:e8: b1:01:6e:b1:80:c5:5f:a9:53:98:d9:c4:93:62:13:f0:bc:24: ce:e9:41:fb:4e:c2:0c:f4:4a:80:45:89:ae:56:1b:32:cf:ec: 1d:72:ad:37:2d:85:31:94:66:01:00:ac:40:ed:68:ef:01:43: ae:d1:3e:4d:d5:8f:be:77:64:67:36:40:78:9f:dc:04:d7:46: 35:cb:ad:29:f5:29:38:09:8f:dd:c6:92:6a:fe:d6:a9:f8:74: aa:c4:cd:4f:c6:e2:da:34:b9:08:7a:70:66:aa:07:b7:a4:44: e6:89:6f:fd:e1:66:4d:61:e2:52:a7:ac:ec:65:95:af:a3:24: 8b:2b:42:45:1e:4b:11:b1:28:e1:0b:9c:e7:05:de:ea:bc:b6: 42:c9:d8:34:50:ce:68:ad:29:46:43:a6:2f:82:89:cf:ff:7c: 46:84:a9:c4:a8:40:1c:a0:e7:99:94:ef:93:0e:f3:4a:44:d0: 7c:48:21:bc:64:21:3f:71:46:7c:28:c2:56:e3:c1:c4:0e:53: 61:58:4b:67:ad:65:2a:3e:1c:98:56:3c:2f:49:84:98:6a:0a: c8:37:20:94:f5:a1:83:ce:97:8e:12:47:2c:f3:70:30:33:e8: 2b:89:84:48 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICAJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg1RTkxMTAvBgNVBAUTKEY2OThCNUI0N0EwNkQ1MzA3REVDNjA4OTY5MDYzMDc0 QjY4RkY1Q0EwHhcNMjUwODIwMTAzNTM5WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE1YTRmYi1mNDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAk14HLeWWkrEScynJLby5iFXDa/Y7tLRrffbE8Xt+sxsWz+Bxo+Y1DheIfovA flFxxA4b2yM7yArzsbC2+XCctTdtWu8vY8c3nd90yyM8LCKpC7nrlhOwu10VHA0+ FSWv9esEjSbVcYmz9JldH1bEHEJ9LVgD4Vs7dHOUryd192i3L0b0lln9SymsvoYI D5O/9bNYNIghJNSQJ5DysJhtmzoRCJfqw00rWThIIOD/t8ZgAPql1kpc62wCFRDI 5Lyiyl1LQk2GE88T/c2fGYkb0FbQeJhkWD0zAbMNOzHWadfb3gG3pUCTjY9EnYYt Vho9OHOLNM7/VdH9a3rO2mlhAQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFBeXkn8Y NURiEl7AT5/lKxe3wVlOMB8GA1UdIwQYMBaAFPaYtbR6BtUwfexgiWkGMHS2j/XK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODVFOS9DOTI4MDQzQUQx NzYxMUVGOTVDNURFNUFDNEY5QUUwMi85cGkxdEhvRzFUQjk3R0NKYVFZd2RMYVA5 Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlwaTF0SG9HMVRCOTdHQ0phUVl3ZExhUDljby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg1RTkvQzkyODA0M0FEMTc2MTFFRjk1QzVERTVBQzRGOUFFMDIvNUJFNjgzNkU1 MDFCMTFGMDkyOEFENzMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMCkEAgACMCMwDwMFBSQB6SADBgYkAekggAMHACQB6SDADAMHACQB6SD//DAN BgkqhkiG9w0BAQsFAAOCAQEALVG9Sj1k6LhPG0pQl4DgFwLosQFusYDFX6lTmNnE k2IT8LwkzulB+07CDPRKgEWJrlYbMs/sHXKtNy2FMZRmAQCsQO1o7wFDrtE+TdWP vndkZzZAeJ/cBNdGNcutKfUpOAmP3caSav7Wqfh0qsTNT8bi2jS5CHpwZqoHt6RE 5olv/eFmTWHiUqes7GWVr6MkiytCRR5LEbEo4Quc5wXe6ry2QsnYNFDOaK0pRkOm L4KJz/98RoSpxKhAHKDnmZTvkw7zSkTQfEghvGQhP3FGfCjCVuPBxA5TYVhLZ61l Kj4cmFY8L0mEmGoKyDcglPWhg86XjhJHLPNwMDPoK4mESA== -----END CERTIFICATE-----Generated at Sat Aug 23 23:36:42 2025 by rpki-client