$ rpki-client -vvf rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/4594F026524811F0B86E6427C4F9AE02.roa File: 4594F026524811F0B86E6427C4F9AE02.roa (raw, json) Hash identifier: 9vMxDfxZcecTBNMP0xoJf/aShTkktCzlUi2w0tCp2go= Subject key identifier: 7F:8B:F0:0D:82:5F:B2:7A:B5:2B:12:14:10:44:59:98:11:84:2D:A4 Certificate issuer: /CN=A91C99B4/serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Certificate serial: 0722 Authority key identifier: 34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/4594F026524811F0B86E6427C4F9AE02.roa Signing time: Thu 26 Jun 2025 04:44:41 +0000 ROA not before: Thu 26 Jun 2025 04:44:41 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 60021 IP address blocks: 2406:bcc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1826 (0x722) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C99B4, serialNumber=348BE6694ED7041AAF28D0EC8C6C6565591F2DDA Validity Not Before: Jun 26 04:44:41 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=685cd038-428f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:17:90:4f:91:ea:3d:9c:47:60:6e:db:7e:7a: a0:35:3c:9c:e6:03:08:6f:c6:42:f5:c4:6c:70:d6: f2:e7:2c:e7:90:99:23:46:8f:15:00:16:91:95:6e: f3:b1:8b:fa:e7:23:38:a7:dc:dd:b3:5a:79:75:7d: 4d:7b:34:0b:cc:5e:8d:e7:04:d8:57:4d:a8:8c:6d: 50:3e:09:22:f6:35:56:ec:e8:a2:91:d2:f2:63:c4: fb:b4:d1:5c:5c:26:05:25:d2:3e:ff:4e:ad:e4:d8: e9:ae:3f:1e:f9:c9:ff:3c:05:00:ed:7c:d4:ba:12: 29:d4:bd:86:5f:ae:07:de:75:e3:fe:23:fd:9f:de: d1:a9:64:71:7b:57:eb:7e:03:96:b8:b1:d9:41:73: 3b:37:9d:14:f3:d4:39:c7:5b:21:08:38:64:62:84: ee:9f:1c:80:b4:e7:57:7a:bf:e3:db:9d:05:67:da: 5a:66:58:79:84:90:18:35:b0:40:8c:7c:1f:e4:fa: ce:20:c2:f5:6e:04:5c:eb:48:3c:2c:f6:28:a3:49: ec:8c:16:1e:bb:34:eb:3f:54:f5:b6:47:a6:e5:5e: a9:7e:72:35:cf:32:00:a4:73:ba:01:e4:26:7e:e5: fd:5d:39:bc:85:fa:3c:70:4b:30:6c:7a:4e:a3:50: 4d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:8B:F0:0D:82:5F:B2:7A:B5:2B:12:14:10:44:59:98:11:84:2D:A4 X509v3 Authority Key Identifier: keyid:34:8B:E6:69:4E:D7:04:1A:AF:28:D0:EC:8C:6C:65:65:59:1F:2D:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/NIvmaU7XBBqvKNDsjGxlZVkfLdo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NIvmaU7XBBqvKNDsjGxlZVkfLdo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C99B4/5DE59696594911EBA48C7871C4F9AE02/4594F026524811F0B86E6427C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2406:bcc0::/32 Signature Algorithm: sha256WithRSAEncryption 9c:c5:d8:e1:84:fe:e5:60:1c:e8:ee:9e:aa:ca:b9:52:f6:66: 32:70:43:c5:70:b3:75:b0:f3:6f:da:b6:2c:82:b4:c1:6c:ac: c4:12:00:81:7b:29:ec:f5:19:c3:d8:52:a1:a6:5c:2e:ca:20: 7d:ba:0c:53:47:98:b3:0e:a4:71:c4:b9:26:5d:82:fc:6c:73: 51:f1:2b:21:51:1a:27:8b:bd:64:04:ed:8c:db:85:23:50:db: 00:92:45:3a:61:66:27:54:89:ed:a3:73:85:7a:57:5c:4c:ca: 92:f9:27:88:a8:b5:b4:e5:d8:e5:c4:7d:70:eb:6d:62:54:7c: e0:d5:a7:13:ff:cc:4b:57:d9:6d:4e:25:ea:f5:25:90:5a:2a: b1:b3:af:0b:d2:fc:38:7d:ae:7a:b1:bb:da:5f:de:0b:06:76: 75:ea:e2:dd:a4:41:67:1d:3c:1d:dc:2b:1f:a1:1f:f0:a3:59: ce:15:3b:15:9f:d7:12:14:bd:ae:3d:3a:c2:d3:32:70:36:57: 90:96:12:51:68:74:eb:dd:58:14:8c:35:7f:1a:99:49:8b:f8: 01:b2:a5:8b:2e:f7:b1:24:ac:f2:03:81:9c:5a:3f:69:bc:f3: 7c:28:aa:a0:19:c5:16:be:09:f2:bf:c3:e0:e1:70:95:87:8f: 73:d8:c2:da -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICByIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk5QjQxMTAvBgNVBAUTKDM0OEJFNjY5NEVENzA0MUFBRjI4RDBFQzhDNkM2NTY1 NTkxRjJEREEwHhcNMjUwNjI2MDQ0NDQxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVjZDAzOC00MjhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwReQT5HqPZxHYG7bfnqgNTyc5gMIb8ZC9cRscNby5yznkJkjRo8VABaRlW7z sYv65yM4p9zds1p5dX1NezQLzF6N5wTYV02ojG1QPgki9jVW7OiikdLyY8T7tNFc XCYFJdI+/06t5Njprj8e+cn/PAUA7XzUuhIp1L2GX64H3nXj/iP9n97RqWRxe1fr fgOWuLHZQXM7N50U89Q5x1shCDhkYoTunxyAtOdXer/j250FZ9paZlh5hJAYNbBA jHwf5PrOIML1bgRc60g8LPYoo0nsjBYeuzTrP1T1tkem5V6pfnI1zzIApHO6AeQm fuX9XTm8hfo8cEswbHpOo1BNPwIDAQABo4ICljCCApIwHQYDVR0OBBYEFH+L8A2C X7J6tSsSFBBEWZgRhC2kMB8GA1UdIwQYMBaAFDSL5mlO1wQaryjQ7IxsZWVZHy3a MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTlCNC81REU1OTY5NjU5 NDkxMUVCQTQ4Qzc4NzFDNEY5QUUwMi9OSXZtYVU3WEJCcXZLTkRzakd4bFpWa2ZM ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05Jdm1hVTdYQkJxdktORHNqR3hsWlZrZkxkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzk5QjQvNURFNTk2OTY1OTQ5MTFFQkE0OEM3ODcxQzRGOUFFMDIvNDU5NEYwMjY1 MjQ4MTFGMEI4NkU2NDI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkBrzAMA0GCSqGSIb3DQEBCwUAA4IBAQCcxdjhhP7lYBzo 7p6qyrlS9mYycEPFcLN1sPNv2rYsgrTBbKzEEgCBeyns9RnD2FKhplwuyiB9ugxT R5izDqRxxLkmXYL8bHNR8SshURoni71kBO2M24UjUNsAkkU6YWYnVInto3OFeldc TMqS+SeIqLW05djlxH1w621iVHzg1acT/8xLV9ltTiXq9SWQWiqxs68L0vw4fa56 sbvaX94LBnZ16uLdpEFnHTwd3CsfoR/wo1nOFTsVn9cSFL2uPTrC0zJwNleQlhJR aHTr3VgUjDV/GplJi/gBsqWLLvexJKzyA4GcWj9pvPN8KKqgGcUWvgnyv8Pg4XCV h49z2MLa -----END CERTIFICATE-----Generated at Thu Jul 3 01:04:18 2025 by rpki-client