$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/38D25300639D11EFB668775FC4F9AE02.roa File: 38D25300639D11EFB668775FC4F9AE02.roa (raw, json) Hash identifier: GCMBGFfjL07x7SqicgzDicIqCejugsZ+LueaE228tBc= Subject key identifier: A2:7B:7E:FC:97:E4:12:94:4C:34:EC:9C:4B:E4:63:F9:80:C1:7D:20 Certificate issuer: /CN=A91CA735/serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Certificate serial: D4 Authority key identifier: 53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/38D25300639D11EFB668775FC4F9AE02.roa Signing time: Wed 01 Oct 2025 13:23:37 +0000 ROA not before: Wed 01 Oct 2025 13:23:37 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 135102 IP address blocks: 2401:9ce0::/44 maxlen: 48 2401:9ce0:10::/44 maxlen: 48 2401:9ce0:20::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:37:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA735, serialNumber=537B1BA1C01B48634738AA1159AE2B95590DDD91 Validity Not Before: Oct 1 13:23:37 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68dd2b59-c6c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f4:7e:39:86:ad:89:3d:1e:6e:04:74:fe:cc: 4e:29:1f:48:72:6b:2a:ef:e0:8f:68:8c:93:66:0f: ad:02:14:de:20:08:bb:87:7c:3b:83:27:28:a5:8a: bd:19:f1:31:26:12:5a:92:ae:30:6e:ae:b1:90:ab: b2:33:2f:32:6b:6f:f9:21:56:2b:00:b9:ae:75:dd: fc:c9:d7:e7:86:86:cb:5a:59:b8:95:e4:d4:0f:fd: 68:7d:93:ad:43:3b:cd:fe:63:59:f2:7a:37:b4:8f: a9:18:28:2d:62:3d:ea:8d:34:d2:79:11:0c:40:97: 78:06:84:49:f4:a3:c1:27:5f:bb:62:6e:b8:ad:8e: 4c:1f:c7:16:b8:85:ca:5f:2f:66:a0:25:b2:85:3d: d8:87:5a:b6:a7:99:5b:d3:54:c2:c5:ec:7b:01:c6: ba:af:59:04:85:88:dc:f4:9c:de:78:81:64:98:1b: b5:f5:4d:7c:f5:dd:2c:b8:cc:ae:63:70:79:32:e3: 1d:16:da:60:c5:a6:b8:6b:c9:f6:d3:b4:6c:ad:46: 77:da:3c:d3:34:c8:75:a6:38:dc:b5:85:e5:25:8f: fc:f1:95:d3:ec:99:df:74:26:14:5b:71:31:88:60: c3:24:e9:20:3e:ab:1e:cb:75:d2:23:2c:48:63:80: 12:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:7B:7E:FC:97:E4:12:94:4C:34:EC:9C:4B:E4:63:F9:80:C1:7D:20 X509v3 Authority Key Identifier: keyid:53:7B:1B:A1:C0:1B:48:63:47:38:AA:11:59:AE:2B:95:59:0D:DD:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/U3sbocAbSGNHOKoRWa4rlVkN3ZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U3sbocAbSGNHOKoRWa4rlVkN3ZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA735/D0E9B1EE639B11EF9B4D2A5DC4F9AE02/38D25300639D11EFB668775FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:9ce0::-2401:9ce0:2f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 0a:78:00:ee:a6:74:fe:9c:59:df:b2:1f:a5:ae:2b:20:6f:38: 1b:7b:ef:08:42:25:d1:38:76:1e:7f:ab:f7:4d:d0:7b:40:09: 63:74:f8:1d:73:b4:2e:3d:7b:b7:8a:ea:dc:2f:b6:e2:62:6d: 9d:51:a3:ed:10:dc:00:d5:6d:f0:da:13:82:6b:d6:55:07:36: 5b:36:7d:98:c6:c0:63:db:bc:4c:c9:10:15:a9:d5:18:56:54: 5d:16:ec:65:93:88:85:14:54:7c:cb:6e:66:9c:ba:f8:13:08: 1f:f4:2e:5e:b2:5b:50:6b:8a:d0:39:62:8b:69:9b:bd:68:83: 3f:a6:32:99:d7:2a:3d:85:88:94:f8:ab:02:c9:f1:06:20:a6: 86:3a:c7:30:64:23:1c:66:be:8c:0b:0f:cc:9e:08:9f:58:dd: c9:de:ef:ab:c4:b9:4b:17:28:a7:19:aa:54:d4:03:88:b5:d1: cd:9d:78:b5:3e:cf:ab:be:40:a6:2e:3e:89:5d:81:7c:ca:fd: 38:75:8d:10:17:60:98:23:bb:45:b7:ed:3e:94:f4:52:04:0b: ea:af:01:e1:c7:c7:8a:1e:97:9d:3d:60:b5:44:9c:4f:55:e4: b2:d2:f2:f4:7d:97:cd:8c:5a:8c:a3:bb:f8:c8:50:93:6d:b4: 69:22:5f:2c -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0E3MzUxMTAvBgNVBAUTKDUzN0IxQkExQzAxQjQ4NjM0NzM4QUExMTU5QUUyQjk1 NTkwREREOTEwHhcNMjUxMDAxMTMyMzM3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRkMmI1OS1jNmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsfR+OYatiT0ebgR0/sxOKR9Icmsq7+CPaIyTZg+tAhTeIAi7h3w7gycopYq9 GfExJhJakq4wbq6xkKuyMy8ya2/5IVYrALmudd38ydfnhobLWlm4leTUD/1ofZOt QzvN/mNZ8no3tI+pGCgtYj3qjTTSeREMQJd4BoRJ9KPBJ1+7Ym64rY5MH8cWuIXK Xy9moCWyhT3Yh1q2p5lb01TCxex7Aca6r1kEhYjc9JzeeIFkmBu19U189d0suMyu Y3B5MuMdFtpgxaa4a8n207RsrUZ32jzTNMh1pjjctYXlJY/88ZXT7JnfdCYUW3Ex iGDDJOkgPqsey3XSIyxIY4AS9QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKJ7fvyX 5BKUTDTsnEvkY/mAwX0gMB8GA1UdIwQYMBaAFFN7G6HAG0hjRziqEVmuK5VZDd2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQTczNS9EMEU5QjFFRTYz OUIxMUVGOUI0RDJBNURDNEY5QUUwMi9VM3Nib2NBYlNHTkhPS29SV2E0cmxWa04z WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Uzc2JvY0FiU0dOSE9Lb1JXYTRybFZrTjNaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0E3MzUvRDBFOUIxRUU2MzlCMTFFRjlCNEQyQTVEQzRGOUFFMDIvMzhEMjUzMDA2 MzlEMTFFRkI2Njg3NzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIwEAMFBSQBnOADBwQkAZzgACAwDQYJKoZIhvcNAQELBQADggEB AAp4AO6mdP6cWd+yH6WuKyBvOBt77whCJdE4dh5/q/dN0HtACWN0+B1ztC49e7eK 6twvtuJibZ1Ro+0Q3ADVbfDaE4Jr1lUHNls2fZjGwGPbvEzJEBWp1RhWVF0W7GWT iIUUVHzLbmacuvgTCB/0Ll6yW1BritA5Yotpm71ogz+mMpnXKj2FiJT4qwLJ8QYg poY6xzBkIxxmvowLD8yeCJ9Y3cne76vEuUsXKKcZqlTUA4i10c2deLU+z6u+QKYu PoldgXzK/Th1jRAXYJgju0W37T6U9FIEC+qvAeHHx4oel509YLVEnE9V5LLS8vR9 l82MWoyju/jIUJNttGkiXyw= -----END CERTIFICATE-----Generated at Tue Oct 21 01:24:52 2025 by rpki-client