$ rpki-client -vvf rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/756E0BBCEAE711EE88CD8641C4F9AE02.roa File: 756E0BBCEAE711EE88CD8641C4F9AE02.roa (raw, json) Hash identifier: AIYT1vtMWjn+gqf3bfo7gJUDe3tZqbxGWI5bPkWziTI= Subject key identifier: C4:D8:20:FB:45:09:57:00:44:9F:13:EF:50:F2:5F:7B:6D:35:85:9E Certificate issuer: /CN=A91756B7/serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E Certificate serial: 074D Authority key identifier: 83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/756E0BBCEAE711EE88CD8641C4F9AE02.roa Signing time: Sat 28 Jun 2025 22:41:23 +0000 ROA not before: Sat 28 Jun 2025 22:41:23 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142045 IP address blocks: 2407:4ac0:1400::/38 maxlen: 40 2407:4ac0:1800::/37 maxlen: 40 2407:4ac0:2000::/35 maxlen: 40 2407:4ac0:2800::/37 maxlen: 40 2407:4ac0:3000::/36 maxlen: 40 2407:4ac0:6000::/35 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:57:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1869 (0x74d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756B7, serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E Validity Not Before: Jun 28 22:41:23 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68606f92-5c98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9e:0f:f8:45:9b:70:77:f1:cb:ab:0b:5b:9b: ba:8c:b6:21:79:e8:21:ca:05:f2:41:4e:4f:ea:c4: dd:38:3b:35:d8:9e:0a:36:84:50:50:b3:ec:d1:2a: f2:7b:48:a1:64:6d:fe:ec:e9:36:1f:e2:05:ca:c2: c2:3a:28:90:51:fd:a6:55:9a:4a:ba:0b:da:83:59: 0e:5a:25:f1:f1:2d:2d:69:61:be:02:16:fc:ed:7a: 25:f0:3f:24:a0:f6:c3:40:4a:55:1a:f9:49:06:a9: e2:4d:81:bb:23:33:3b:80:39:47:22:1b:b1:9a:01: 2a:eb:66:a0:22:86:10:70:65:30:29:51:46:77:34: 01:11:05:01:41:ae:b2:89:34:99:cb:90:c2:d4:49: ca:2d:f2:f6:9a:21:66:12:d8:55:ae:e9:ae:b1:76: e8:4e:04:f6:c7:42:b9:70:d8:d0:f2:4b:10:0f:c3: c7:7a:86:b4:fd:65:e5:77:e2:57:03:9a:ca:9b:25: d8:ac:af:ba:41:30:c0:2a:0d:ba:3e:48:1e:eb:be: b2:5a:73:4b:cf:3e:3b:32:18:53:f8:bd:7b:70:d7: 34:c5:c7:87:d8:d0:45:02:f6:e7:8b:1f:ea:1c:d5: 14:8f:05:ba:97:3b:a5:58:17:5c:62:37:72:67:bf: cd:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:D8:20:FB:45:09:57:00:44:9F:13:EF:50:F2:5F:7B:6D:35:85:9E X509v3 Authority Key Identifier: keyid:83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/756E0BBCEAE711EE88CD8641C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:4ac0:1400::-2407:4ac0:3fff:ffff:ffff:ffff:ffff:ffff 2407:4ac0:6000::/35 Signature Algorithm: sha256WithRSAEncryption 91:44:c5:f0:32:37:1a:ae:55:61:57:82:d5:15:e0:11:09:6e: 27:20:85:57:21:91:43:77:f3:45:c7:94:59:29:36:2d:da:d8: 4e:c8:17:84:89:5a:7e:fe:dc:6e:9b:53:89:53:53:f7:3c:83: e7:4f:d5:2e:ec:7c:3f:97:78:a1:ad:a4:ea:fd:71:07:5b:89: b1:15:de:28:94:c1:b3:a7:3e:55:4f:6b:a0:85:52:bb:49:c4: 6b:61:a6:e9:0a:54:4e:f1:53:a6:2f:75:79:49:9a:8e:80:6b: d9:97:d3:80:9b:e6:05:9c:b8:12:6d:7e:c3:01:35:ff:32:57: 40:ab:a7:6e:aa:30:b6:d5:a9:eb:98:7e:33:df:5b:86:c1:49: 80:3f:4e:87:6f:06:7f:b3:19:6a:a4:b8:b3:88:30:6d:55:6a: 9b:e0:5f:e9:1d:9b:ba:fb:8a:aa:a0:8a:95:94:bb:b5:1c:a6: 5b:83:67:72:6a:39:5d:b5:4c:f6:2b:24:45:dc:bb:64:20:f6: c2:14:1b:60:3e:8c:d3:e3:c8:0e:1b:f4:c3:d2:87:8f:07:66: 42:0f:e9:47:86:ee:60:a5:a0:d0:bd:1b:9a:cc:92:a1:02:e5: 65:21:d4:ce:4d:1d:2f:7a:26:65:fb:73:d2:f7:b1:cc:cd:ae: 93:71:ca:c2 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICB00wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU2QjcxMTAvBgNVBAUTKDgzRDk2RjFERUE3MkE5OUQyMzRCNDQ1NkQ2RjY2NzVE QzdFNjA2MUUwHhcNMjUwNjI4MjI0MTIzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYwNmY5Mi01Yzk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApZ4P+EWbcHfxy6sLW5u6jLYheeghygXyQU5P6sTdODs12J4KNoRQULPs0Sry e0ihZG3+7Ok2H+IFysLCOiiQUf2mVZpKugvag1kOWiXx8S0taWG+Ahb87Xol8D8k oPbDQEpVGvlJBqniTYG7IzM7gDlHIhuxmgEq62agIoYQcGUwKVFGdzQBEQUBQa6y iTSZy5DC1EnKLfL2miFmEthVrumusXboTgT2x0K5cNjQ8ksQD8PHeoa0/WXld+JX A5rKmyXYrK+6QTDAKg26Pkge676yWnNLzz47MhhT+L17cNc0xceH2NBFAvbnix/q HNUUjwW6lzulWBdcYjdyZ7/NxQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFMTYIPtF CVcARJ8T71DyX3ttNYWeMB8GA1UdIwQYMBaAFIPZbx3qcqmdI0tEVtb2Z13H5gYe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTZCNy85NUVGN0RCQTk2 N0QxMUVCQURENTBEMkNDNEY5QUUwMi9nOWx2SGVweXFaMGpTMFJXMXZablhjZm1C aDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c5bHZIZXB5cVowalMwUlcxdlpuWGNmbUJoNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU2QjcvOTVFRjdEQkE5NjdEMTFFQkFERDUwRDJDQzRGOUFFMDIvNzU2RTBCQkNF QUU3MTFFRTg4Q0Q4NjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgACMBowEAMGAiQHSsAUAwYGJAdKwAADBgUkB0rAYDANBgkqhkiG9w0B AQsFAAOCAQEAkUTF8DI3Gq5VYVeC1RXgEQluJyCFVyGRQ3fzRceUWSk2LdrYTsgX hIlafv7cbptTiVNT9zyD50/VLux8P5d4oa2k6v1xB1uJsRXeKJTBs6c+VU9roIVS u0nEa2Gm6QpUTvFTpi91eUmajoBr2ZfTgJvmBZy4Em1+wwE1/zJXQKunbqowttWp 65h+M99bhsFJgD9Oh28Gf7MZaqS4s4gwbVVqm+Bf6R2buvuKqqCKlZS7tRymW4Nn cmo5XbVM9iskRdy7ZCD2whQbYD6M0+PIDhv0w9KHjwdmQg/pR4buYKWg0L0bmsyS oQLlZSHUzk0dL3omZftz0vexzM2uk3HKwg== -----END CERTIFICATE-----Generated at Thu Jul 3 06:17:50 2025 by rpki-client