$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/0B725F44496D11EF9F7F2116C4F9AE02.roa File: 0B725F44496D11EF9F7F2116C4F9AE02.roa (raw, json) Hash identifier: SsTEks9DzvfjnZoXdnmZIWjNSHqbFmVLR2wVP5eTyr8= Subject key identifier: DD:64:88:F3:FE:00:50:60:98:28:56:15:0D:79:84:7C:9B:82:33:AF Certificate issuer: /CN=A91E1604/serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Certificate serial: B7 Authority key identifier: E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/0B725F44496D11EF9F7F2116C4F9AE02.roa Signing time: Mon 23 Jun 2025 05:25:25 +0000 ROA not before: Mon 23 Jun 2025 05:25:25 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 152919 IP address blocks: 2401:a8e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 183 (0xb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1604, serialNumber=E2F17737B84C1F67869C03A47F8C419FD420016C Validity Not Before: Jun 23 05:25:25 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6858e545-e077 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:99:0c:d1:96:e1:43:99:39:b6:e6:f3:c5:4f: 36:cb:96:66:c1:86:a8:79:93:7c:4f:67:9c:ec:2a: 3f:86:d0:f0:65:d5:92:a3:15:4d:3b:ea:25:a8:ae: 1c:49:81:ff:ca:8b:e0:c8:5c:99:15:59:88:bd:40: f1:ab:64:c8:35:4a:d2:f8:64:f9:0a:ee:79:a9:64: 5b:00:15:84:b6:2a:87:24:4b:58:0b:f3:f9:d1:7d: 97:e0:fd:32:d7:ca:14:48:81:b6:e8:8b:98:98:52: 7b:cf:4d:39:a4:da:b7:7e:7f:d0:16:1d:79:76:c1: db:76:29:eb:e3:ab:b5:27:de:ac:fe:64:bf:38:cc: b0:fc:3c:51:30:ae:73:71:dd:6d:ee:98:ac:ab:e3: e3:95:13:1e:3a:3d:a1:48:8f:b4:67:3b:70:31:35: 6a:37:f7:12:12:d9:14:1e:16:6c:35:f2:28:3b:d6: 0d:e6:79:96:de:0b:91:49:15:7e:f8:c1:c5:7e:82: 2f:75:53:b0:79:89:0f:19:17:4c:81:ed:ed:90:75: 38:e0:e5:29:00:4d:cd:7b:2f:c7:5d:15:9d:5c:ae: bd:87:8d:81:39:b4:1d:dd:6b:5e:02:d6:36:b4:33: 0c:fc:58:f5:ea:65:86:68:64:ed:6f:28:23:1c:40: 46:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:64:88:F3:FE:00:50:60:98:28:56:15:0D:79:84:7C:9B:82:33:AF X509v3 Authority Key Identifier: keyid:E2:F1:77:37:B8:4C:1F:67:86:9C:03:A4:7F:8C:41:9F:D4:20:01:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/4vF3N7hMH2eGnAOkf4xBn9QgAWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4vF3N7hMH2eGnAOkf4xBn9QgAWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1604/120C2C743CEB11EF94E24F59C4F9AE02/0B725F44496D11EF9F7F2116C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:a8e0::/32 Signature Algorithm: sha256WithRSAEncryption 38:b5:c0:41:3c:78:5b:ec:26:14:4e:ea:0f:64:f8:c7:2c:c5: 0c:28:d3:91:ff:3a:ee:e0:a0:e4:b9:fb:6d:cc:75:c7:92:ab: f2:eb:d0:20:67:66:4c:4a:fb:66:09:43:17:1f:32:4a:20:09: 7b:fc:97:52:ec:8a:02:c7:1c:74:86:8e:c0:db:5c:db:1c:39: 2e:94:ad:80:99:c7:0b:df:a9:04:52:b3:64:04:bb:00:3f:b7: 7d:f3:92:92:34:bf:7e:bf:66:cb:86:a2:34:51:22:af:9d:16: ff:d9:16:5d:e0:dd:21:57:a0:87:a5:94:26:59:a4:e2:0e:07: 76:51:db:47:b7:9e:86:88:8e:4d:37:52:dd:62:92:1b:a5:2f: a3:af:28:53:7d:65:b1:7b:01:cd:86:44:c2:ea:6f:48:53:a3: e4:7a:b3:fe:4c:f8:af:ed:5d:5c:28:8e:c4:fa:ad:ce:74:36: c0:5f:53:b8:72:ce:b3:3a:a1:55:bf:8f:5a:36:cb:2f:49:96: db:5a:93:73:e0:d3:3a:b3:d5:28:84:74:27:a2:e3:02:5d:1c: 66:36:04:4f:63:ba:3e:ea:ae:c1:8e:fb:6e:b6:29:a7:99:a7: 84:4f:95:b5:b5:b0:49:e7:f9:bd:83:fb:54:3c:1c:b6:a5:2e: fe:97:c4:a4 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICALcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE2MDQxMTAvBgNVBAUTKEUyRjE3NzM3Qjg0QzFGNjc4NjlDMDNBNDdGOEM0MTlG RDQyMDAxNkMwHhcNMjUwNjIzMDUyNTI1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU4ZTU0NS1lMDc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5JkM0ZbhQ5k5tubzxU82y5ZmwYaoeZN8T2ec7Co/htDwZdWSoxVNO+olqK4c SYH/yovgyFyZFVmIvUDxq2TINUrS+GT5Cu55qWRbABWEtiqHJEtYC/P50X2X4P0y 18oUSIG26IuYmFJ7z005pNq3fn/QFh15dsHbdinr46u1J96s/mS/OMyw/DxRMK5z cd1t7pisq+PjlRMeOj2hSI+0ZztwMTVqN/cSEtkUHhZsNfIoO9YN5nmW3guRSRV+ +MHFfoIvdVOweYkPGRdMge3tkHU44OUpAE3Ney/HXRWdXK69h42BObQd3WteAtY2 tDMM/Fj16mWGaGTtbygjHEBG3QIDAQABo4ICljCCApIwHQYDVR0OBBYEFN1kiPP+ AFBgmChWFQ15hHybgjOvMB8GA1UdIwQYMBaAFOLxdze4TB9nhpwDpH+MQZ/UIAFs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTYwNC8xMjBDMkM3NDND RUIxMUVGOTRFMjRGNTlDNEY5QUUwMi80dkYzTjdoTUgyZUduQU9rZjR4Qm45UWdB V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzR2RjNON2hNSDJlR25BT2tmNHhCbjlRZ0FXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE2MDQvMTIwQzJDNzQzQ0VCMTFFRjk0RTI0RjU5QzRGOUFFMDIvMEI3MjVGNDQ0 OTZEMTFFRjlGN0YyMTE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAajgMA0GCSqGSIb3DQEBCwUAA4IBAQA4tcBBPHhb7CYU TuoPZPjHLMUMKNOR/zru4KDkufttzHXHkqvy69AgZ2ZMSvtmCUMXHzJKIAl7/JdS 7IoCxxx0ho7A21zbHDkulK2AmccL36kEUrNkBLsAP7d985KSNL9+v2bLhqI0USKv nRb/2RZd4N0hV6CHpZQmWaTiDgd2UdtHt56GiI5NN1LdYpIbpS+jryhTfWWxewHN hkTC6m9IU6PkerP+TPiv7V1cKI7E+q3OdDbAX1O4cs6zOqFVv49aNssvSZbbWpNz 4NM6s9UohHQnouMCXRxmNgRPY7o+6q7BjvtutimnmaeET5W1tbBJ5/m9g/tUPBy2 pS7+l8Sk -----END CERTIFICATE-----Generated at Thu Jul 3 15:23:21 2025 by rpki-client