$ rpki-client -vvf rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9D003F28621711E9B8C69E15C4F9AE02.roa File: 9D003F28621711E9B8C69E15C4F9AE02.roa (raw, json) Hash identifier: 9dqK7fwX1U+8A9fcOv7N2ng0+RyVg5lfklaoSqiStho= Subject key identifier: 7F:6B:31:43:5F:1A:1B:41:D4:29:2F:A7:9D:17:4C:15:E0:06:CD:31 Certificate issuer: /CN=A91EC7F2/serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Certificate serial: 1223 Authority key identifier: 83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9D003F28621711E9B8C69E15C4F9AE02.roa Signing time: Tue 14 Oct 2025 18:16:16 +0000 ROA not before: Tue 14 Oct 2025 18:16:16 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 13335 IP address blocks: 2405:8100:57::/48 maxlen: 48 2405:8100:8001::/48 maxlen: 48 2405:8100:8002::/48 maxlen: 48 2405:8100:8003::/48 maxlen: 48 2405:8100:8004::/48 maxlen: 48 2405:8100:8005::/48 maxlen: 48 2405:8100:c000::/38 maxlen: 38 2405:8100:c400::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:40:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4643 (0x1223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EC7F2, serialNumber=83BD47ADE302259C758C74C830B29E6F3A5773DB Validity Not Before: Oct 14 18:16:16 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ee9370-83ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:8c:19:98:ee:cf:94:37:4a:72:20:c2:1a:c2: 96:79:54:14:10:44:b1:20:db:b3:7d:58:9c:71:ca: 42:20:4e:c1:b4:81:62:7c:9f:ff:54:19:0d:7c:19: 96:89:16:e1:fa:0c:a0:ba:95:ae:ab:27:a1:d4:ad: f4:77:5b:e0:cb:f4:72:6c:e0:80:7b:0c:7f:d1:86: bb:5e:6a:fe:97:38:04:82:69:9b:a3:94:d2:2a:1c: d1:78:51:b9:ad:96:c8:7d:ac:a0:db:18:5f:09:f2: 46:bf:1c:f9:c3:15:ad:ee:f7:e3:f6:d3:1f:88:b3: 3e:54:a8:a2:70:b1:5d:c1:df:86:2d:1f:8d:83:3a: a9:8a:3f:8d:d3:b8:ac:12:f1:78:e8:3f:d4:51:55: bf:2a:7c:23:1c:52:53:da:ce:fb:44:21:89:e1:59: e0:06:0d:9b:b2:7c:f4:2c:3f:54:b7:ca:84:46:ef: 1f:18:78:8b:fc:dc:f2:ca:01:40:4f:44:e1:71:d2: 01:b1:0b:fd:a0:32:a6:4d:45:0c:d3:e7:70:73:3b: 85:a6:53:31:51:1e:f0:1d:f1:a0:55:50:bb:bc:c2: 0b:d5:f9:2d:a1:0c:97:ab:31:e8:f5:3a:0e:c2:61: ce:27:a6:67:0a:be:77:13:cc:ff:22:d2:b3:6b:88: 6d:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:6B:31:43:5F:1A:1B:41:D4:29:2F:A7:9D:17:4C:15:E0:06:CD:31 X509v3 Authority Key Identifier: keyid:83:BD:47:AD:E3:02:25:9C:75:8C:74:C8:30:B2:9E:6F:3A:57:73:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/g71HreMCJZx1jHTIMLKebzpXc9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g71HreMCJZx1jHTIMLKebzpXc9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EC7F2/48EFD17CF1A711E8AA614F51C4F9AE02/9D003F28621711E9B8C69E15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2405:8100:57::/48 2405:8100:8001::-2405:8100:8005:ffff:ffff:ffff:ffff:ffff 2405:8100:c000::-2405:8100:c400:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption b7:4d:44:e6:2d:04:dd:f0:4c:f4:7c:6f:57:ce:f6:28:aa:c6: 8e:8c:5a:b0:87:b0:12:9c:b8:5c:ed:ec:d3:7e:ec:6c:73:cc: 78:d8:53:6b:32:6c:40:cd:ff:71:26:d5:ea:e0:61:4f:67:d9: 01:fe:62:fa:a0:c8:85:82:77:b2:a6:00:97:02:39:a9:06:fe: 17:ef:5b:33:ff:77:70:c6:b3:3a:c0:02:a8:31:47:5a:75:a7: fd:7b:c4:21:71:af:f7:15:63:ce:22:03:92:32:38:ab:ba:b0: 38:23:27:48:d7:26:5a:27:ec:67:9d:b3:38:51:c8:54:b9:fe: c3:dd:bd:8c:97:0a:73:98:48:22:5e:fd:a4:fe:6c:33:5d:61: 8d:48:76:ee:85:2b:42:7a:7e:7a:44:92:f8:4d:f2:bb:3b:4e: 37:08:a9:5d:7c:62:43:5c:2f:a6:72:40:87:2c:ed:fb:d2:e9: 60:2f:b2:75:2f:91:70:3d:8f:dd:24:13:2d:9b:8d:2a:b4:24: 1f:2f:9c:60:9c:cd:7f:85:17:cb:50:4b:4c:31:e2:c9:19:30: 0c:1b:08:8e:33:b9:97:6f:fa:95:bc:10:3f:38:08:8b:9d:f3: 1b:a9:7d:fc:ad:d7:db:bc:a5:0a:6b:e1:aa:45:90:76:50:ee: 5a:57:87:57 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICEiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUM3RjIxMTAvBgNVBAUTKDgzQkQ0N0FERTMwMjI1OUM3NThDNzRDODMwQjI5RTZG M0E1NzczREIwHhcNMjUxMDE0MTgxNjE2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGVlOTM3MC04M2VjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYwZmO7PlDdKciDCGsKWeVQUEESxINuzfVicccpCIE7BtIFifJ//VBkNfBmW iRbh+gygupWuqyeh1K30d1vgy/RybOCAewx/0Ya7Xmr+lzgEgmmbo5TSKhzReFG5 rZbIfayg2xhfCfJGvxz5wxWt7vfj9tMfiLM+VKiicLFdwd+GLR+Ngzqpij+N07is EvF46D/UUVW/KnwjHFJT2s77RCGJ4VngBg2bsnz0LD9Ut8qERu8fGHiL/NzyygFA T0ThcdIBsQv9oDKmTUUM0+dwczuFplMxUR7wHfGgVVC7vMIL1fktoQyXqzHo9ToO wmHOJ6ZnCr53E8z/ItKza4htEwIDAQABo4ICvzCCArswHQYDVR0OBBYEFH9rMUNf GhtB1Ckvp50XTBXgBs0xMB8GA1UdIwQYMBaAFIO9R63jAiWcdYx0yDCynm86V3Pb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQzdGMi80OEVGRDE3Q0Yx QTcxMUU4QUE2MTRGNTFDNEY5QUUwMi9nNzFIcmVNQ0paeDFqSFRJTUxLZWJ6cFhj OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c3MUhyZU1DSlp4MWpIVElNTEtlYnpwWGM5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUM3RjIvNDhFRkQxN0NGMUE3MTFFOEFBNjE0RjUxQzRGOUFFMDIvOUQwMDNGMjg2 MjE3MTFFOUI4QzY5RTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MDYEAgACMDADBwAkBYEAAFcwEgMHACQFgQCAAQMHASQFgQCABDARAwYGJAWB AMADBwAkBYEAxAAwDQYJKoZIhvcNAQELBQADggEBALdNROYtBN3wTPR8b1fO9iiq xo6MWrCHsBKcuFzt7NN+7GxzzHjYU2sybEDN/3Em1ergYU9n2QH+YvqgyIWCd7Km AJcCOakG/hfvWzP/d3DGszrAAqgxR1p1p/17xCFxr/cVY84iA5IyOKu6sDgjJ0jX Jlon7GedszhRyFS5/sPdvYyXCnOYSCJe/aT+bDNdYY1Idu6FK0J6fnpEkvhN8rs7 TjcIqV18YkNcL6ZyQIcs7fvS6WAvsnUvkXA9j90kEy2bjSq0JB8vnGCczX+FF8tQ S0wx4skZMAwbCI4zuZdv+pW8ED84CIud8xupffyt19u8pQpr4apFkHZQ7lpXh1c= -----END CERTIFICATE-----Generated at Mon Oct 20 10:16:12 2025 by rpki-client