$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/71043990C4D811EA88E6B21FC4F9AE02.roa File: 71043990C4D811EA88E6B21FC4F9AE02.roa (raw, json) Hash identifier: rou/LDou6+V/KVPUUd+xyuvJOo9d0Agu7Kr+809dbVM= Subject key identifier: 0F:9A:84:EF:A8:03:D4:55:83:F5:49:20:DB:5A:43:7C:50:07:75:1C Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 116B Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/71043990C4D811EA88E6B21FC4F9AE02.roa Signing time: Wed 20 Aug 2025 17:57:32 +0000 ROA not before: Wed 20 Aug 2025 17:57:32 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 22944 IP address blocks: 2404:f4c0:1009::/48 maxlen: 48 2404:f4c0:10b8::/45 maxlen: 48 2404:f4c0:10c0::/42 maxlen: 48 2404:f4c0:10c2::/47 maxlen: 48 2404:f4c0:10c4::/46 maxlen: 48 2404:f4c0:10c8::/45 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4459 (0x116b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Aug 20 17:57:32 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a60c8c-daa2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:18:e8:fb:0c:ab:ab:f3:b6:79:c9:ae:2b:95: 45:d4:ec:47:2d:91:c2:42:40:91:a6:1a:ee:d6:b6: 8d:6c:94:37:90:bc:59:94:76:56:e4:a9:ef:68:c6: d3:4a:e3:47:df:ff:36:a8:2f:e9:9f:ea:b9:48:a3: 01:4c:c8:0a:8f:d9:34:76:46:7e:06:ae:27:68:58: 75:e0:9e:b0:bd:69:db:3a:c3:0c:d9:9d:87:18:d8: 30:f0:90:82:47:6b:67:2c:ca:d1:9e:14:c7:38:17: e9:83:0f:1b:66:f4:7a:eb:d8:16:e9:db:5d:06:b6: 90:e1:ff:86:54:f9:ea:ef:ce:94:4d:c2:a1:f8:3e: d8:6c:c4:67:f9:b5:b9:60:51:67:e9:53:99:3f:21: 44:93:87:f9:d0:b2:e9:3b:08:7a:91:c5:5a:89:3b: b3:41:bb:f6:3b:33:9d:0a:17:a6:85:0f:28:39:76: 13:0d:c2:e3:2e:2b:ee:da:22:e6:9d:80:5e:83:f7: db:6d:5c:8a:25:d4:82:b0:40:b5:45:8a:ab:a9:2f: 46:a6:53:41:a5:92:c3:98:34:af:9f:22:d7:8c:69: ee:be:31:b5:6d:e2:1c:6d:bf:bc:a4:58:d8:b7:6d: be:22:8e:d7:13:f7:f2:3b:25:47:33:0e:88:8c:25: fc:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:9A:84:EF:A8:03:D4:55:83:F5:49:20:DB:5A:43:7C:50:07:75:1C X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/71043990C4D811EA88E6B21FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:f4c0:1009::/48 2404:f4c0:10b8::-2404:f4c0:10ff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 03:66:fc:3a:0b:e4:f4:a3:e0:a7:6e:6b:93:e2:4b:2f:9f:1c: 7c:98:ff:d4:36:ea:be:96:94:df:75:26:0a:59:66:4d:03:70: d8:98:26:7c:2d:ad:c2:6d:41:02:0a:6c:b9:e8:ab:63:7b:8a: 9f:f3:52:55:4c:ad:28:2f:5c:7c:60:bc:1c:2f:ca:4c:eb:2f: fe:74:d6:53:86:b6:e1:48:6d:4d:58:3b:6b:2e:0f:98:af:30: 49:b4:85:6e:0a:36:f0:57:cc:b9:34:ba:b1:b5:43:d6:07:5b: 6f:c8:ca:e3:3d:b0:a1:07:f2:ea:1e:bc:71:ff:48:1f:3b:e2: 89:4b:4e:70:5e:b7:62:d9:53:ba:88:d4:2a:8e:ca:4e:d0:55: b4:68:bb:57:b0:fe:e7:1d:f7:da:02:0a:a1:28:1e:3e:18:6b: 71:f5:3b:28:6e:27:bd:14:22:72:31:da:f5:34:2f:65:78:6c: 2c:b7:cf:84:b1:dc:3e:2a:2e:0c:a6:17:59:2d:81:a1:6b:99: 04:ea:14:a2:ca:59:45:2d:67:ea:d5:48:9d:34:fc:f8:13:fd: 10:da:3b:b4:db:d9:47:1b:7f:fc:a9:1e:5c:fc:03:d8:fd:fc: cf:fa:c5:d1:92:a6:93:a3:59:1c:3c:8a:f2:4a:47:6b:94:46: 74:a6:21:45 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICEWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjUwODIwMTc1NzMyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2MGM4Yy1kYWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnhjo+wyrq/O2ecmuK5VF1OxHLZHCQkCRphru1raNbJQ3kLxZlHZW5KnvaMbT SuNH3/82qC/pn+q5SKMBTMgKj9k0dkZ+Bq4naFh14J6wvWnbOsMM2Z2HGNgw8JCC R2tnLMrRnhTHOBfpgw8bZvR669gW6dtdBraQ4f+GVPnq786UTcKh+D7YbMRn+bW5 YFFn6VOZPyFEk4f50LLpOwh6kcVaiTuzQbv2OzOdChemhQ8oOXYTDcLjLivu2iLm nYBeg/fbbVyKJdSCsEC1RYqrqS9GplNBpZLDmDSvnyLXjGnuvjG1beIcbb+8pFjY t22+Io7XE/fyOyVHMw6IjCX89wIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFA+ahO+o A9RVg/VJINtaQ3xQB3UcMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzREIvMERDMzVEM0U4REQ0MTFFOUJGRTJDNTU2QzRGOUFFMDIvNzEwNDM5OTBD NEQ4MTFFQTg4RTZCMjFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgACMBwDBwAkBPTAEAkwEQMHAyQE9MAQuAMGACQE9MAQMA0GCSqGSIb3 DQEBCwUAA4IBAQADZvw6C+T0o+CnbmuT4ksvnxx8mP/UNuq+lpTfdSYKWWZNA3DY mCZ8La3CbUECCmy56Ktje4qf81JVTK0oL1x8YLwcL8pM6y/+dNZThrbhSG1NWDtr Lg+YrzBJtIVuCjbwV8y5NLqxtUPWB1tvyMrjPbChB/LqHrxx/0gfO+KJS05wXrdi 2VO6iNQqjspO0FW0aLtXsP7nHffaAgqhKB4+GGtx9Tsobie9FCJyMdr1NC9leGws t8+Esdw+Ki4MphdZLYGha5kE6hSiyllFLWfq1UidNPz4E/0Q2ju029lHG3/8qR5c /APY/fzP+sXRkqaTo1kcPIrySkdrlEZ0piFF -----END CERTIFICATE-----Generated at Sun Aug 24 03:37:47 2025 by rpki-client