
$ rpki-client -vvf rpki.apnic.net/member_repository/A91EFCFF/18ACE3F6821F11EFA1DB4C75C4F9AE02/F042F19A911311EF9A1A7F54C4F9AE02.roa
File: F042F19A911311EF9A1A7F54C4F9AE02.roa (raw, json)
Hash identifier: CzzyWpV/kbPRrBt4wcSz4e9q0X8Oic3AxKbWsSi5+TY=
Subject key identifier: 28:87:60:DB:55:9B:85:37:E1:86:ED:F3:F0:FA:46:42:D3:D6:4C:53
Certificate issuer: /CN=A91EFCFF/serialNumber=EBFBD4CB9B58AC082D3F382987A597A58C96BA91
Certificate serial: B2
Authority key identifier: EB:FB:D4:CB:9B:58:AC:08:2D:3F:38:29:87:A5:97:A5:8C:96:BA:91
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6_vUy5tYrAgtPzgph6WXpYyWupE.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A91EFCFF/18ACE3F6821F11EFA1DB4C75C4F9AE02/F042F19A911311EF9A1A7F54C4F9AE02.roa
Signing time: Mon 01 Sep 2025 06:25:32 +0000
ROA not before: Mon 01 Sep 2025 06:25:32 +0000
ROA not after: Wed 30 Sep 2026 00:00:00 +0000
asID: 142165
IP address blocks: 2401:bfe0::/32 maxlen: 32
Validation: OK
Signature path: rsync://rpki.apnic.net/member_repository/A91EFCFF/18ACE3F6821F11EFA1DB4C75C4F9AE02/6_vUy5tYrAgtPzgph6WXpYyWupE.crl
rsync://rpki.apnic.net/member_repository/A91EFCFF/18ACE3F6821F11EFA1DB4C75C4F9AE02/6_vUy5tYrAgtPzgph6WXpYyWupE.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6_vUy5tYrAgtPzgph6WXpYyWupE.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sun 26 Oct 2025 08:55:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 178 (0xb2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91EFCFF, serialNumber=EBFBD4CB9B58AC082D3F382987A597A58C96BA91
Validity
Not Before: Sep 1 06:25:32 2025 GMT
Not After : Sep 30 00:00:00 2026 GMT
Subject: CN=68b53c5c-a5a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:87:29:ac:ff:9a:25:ea:1b:ea:ee:c5:c2:19:
bf:04:5b:1f:b7:d1:5c:f6:71:a5:30:1c:17:42:ec:
68:a6:41:89:1d:2c:52:53:51:56:bb:43:66:83:c6:
65:9b:86:1f:79:e4:37:5c:2e:05:48:69:a3:95:47:
db:15:a0:ca:93:e2:b1:86:33:a2:0f:f6:13:e2:71:
ae:b1:14:fd:e1:58:74:0f:d7:75:6a:55:a0:83:1b:
81:43:09:43:cd:a1:7a:32:69:8c:16:12:3f:20:67:
27:00:55:25:da:a1:d6:63:4f:3a:e6:66:ce:75:50:
f3:0a:64:e5:0d:17:8f:b5:e1:cf:de:69:c8:d3:cd:
d2:11:5e:c2:e3:c5:f5:5d:e4:de:2c:7e:0e:f2:00:
a1:c7:66:84:d6:f4:dd:e2:2e:76:f0:8c:f3:44:5b:
be:00:c2:7b:81:f4:dc:6a:50:64:00:d7:35:e2:12:
91:a0:2a:1e:41:79:3d:33:d4:08:99:c1:e7:c8:1e:
43:08:46:d9:b8:43:32:77:52:12:44:7f:91:86:0c:
87:de:c5:ab:78:01:13:46:b0:e7:46:9f:49:04:cd:
c6:e1:ee:3e:a9:66:32:b5:bf:f5:84:42:fe:1f:f4:
c1:c6:f7:68:59:2b:2e:7f:e8:77:ab:3f:f1:26:19:
54:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:87:60:DB:55:9B:85:37:E1:86:ED:F3:F0:FA:46:42:D3:D6:4C:53
X509v3 Authority Key Identifier:
keyid:EB:FB:D4:CB:9B:58:AC:08:2D:3F:38:29:87:A5:97:A5:8C:96:BA:91
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A91EFCFF/18ACE3F6821F11EFA1DB4C75C4F9AE02/6_vUy5tYrAgtPzgph6WXpYyWupE.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6_vUy5tYrAgtPzgph6WXpYyWupE.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EFCFF/18ACE3F6821F11EFA1DB4C75C4F9AE02/F042F19A911311EF9A1A7F54C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2401:bfe0::/32
Signature Algorithm: sha256WithRSAEncryption
d2:f4:87:7d:3a:84:b1:77:d5:d8:f6:94:60:46:cf:b7:49:2c:
1b:7c:dd:7e:c8:11:c5:93:7f:14:7f:0f:e0:64:52:eb:8c:98:
db:2b:45:5d:60:9e:20:82:02:85:0b:df:8d:21:09:81:be:bb:
f2:32:b8:75:0d:4d:06:73:23:55:db:ea:a9:80:13:4f:e8:e8:
97:8e:e9:3d:f6:42:e3:1c:5f:da:5a:a9:04:86:cf:45:fb:0a:
3d:82:3a:48:8d:85:87:94:d1:f3:60:cb:34:f6:1e:bd:5d:03:
10:ca:76:ab:51:56:6e:f2:b0:14:14:7f:f3:7d:a2:86:27:30:
38:bb:3d:23:93:71:f8:bf:e4:79:8b:d8:76:a0:2b:6d:b2:95:
a1:36:2a:b2:20:68:b4:6b:04:8c:4a:e0:13:41:82:cd:c7:dd:
5d:95:cc:aa:fd:7f:88:2d:9f:95:e6:7a:f2:7d:b6:d0:45:de:
e0:df:cd:0b:48:c8:fb:fb:f2:7a:3a:9f:bb:28:71:dc:07:44:
e0:f1:f9:df:9c:f7:0e:27:a7:87:f5:b0:86:69:97:a9:d3:8d:
ff:84:25:ae:d6:57:d9:1e:e2:01:ab:94:2e:0c:37:43:49:f3:
40:98:db:dd:78:d3:93:2a:ab:a7:f9:a3:d5:84:47:60:9f:39:
c3:b2:a8:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 20 21:24:03 2025 by rpki-client