$ rpki-client -vvf rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/5F652B164A0311EC84EFD42FC4F9AE02.roa File: 5F652B164A0311EC84EFD42FC4F9AE02.roa (raw, json) Hash identifier: osBPg0SLfRG0eb1YC88FnRgXyZmnCWV1UAz6jQOFPa8= Subject key identifier: 77:DB:39:59:CB:D9:38:CD:81:3C:32:24:E4:B1:30:F4:62:1C:58:D9 Certificate issuer: /CN=A91128E3/serialNumber=71C1E8E054049ACFD9AA2193AF1D48C6D1D025E1 Certificate serial: 057C Authority key identifier: 71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/5F652B164A0311EC84EFD42FC4F9AE02.roa Signing time: Fri 15 Aug 2025 00:05:28 +0000 ROA not before: Fri 15 Aug 2025 00:05:28 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38323 IP address blocks: 2001:df7:1480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.crl rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Nov 2025 01:46:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1404 (0x57c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91128E3, serialNumber=71C1E8E054049ACFD9AA2193AF1D48C6D1D025E1 Validity Not Before: Aug 15 00:05:28 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689e79c8-eb56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:17:f0:65:32:47:60:8c:fe:da:f0:c7:7f:3d: db:d4:46:41:c6:3f:6c:83:16:71:4b:dd:35:24:41: ba:c0:86:fd:ed:65:3c:85:b0:d4:6f:77:ab:6c:6d: a8:32:3d:c0:86:de:ab:01:d9:c2:40:8d:78:ed:9f: 2d:06:6e:d5:59:fd:d7:bc:ce:03:14:e4:c6:93:f1: 44:b2:8e:b7:2f:2d:fd:38:7b:28:15:96:72:cb:39: e2:10:f3:10:8a:d2:4e:c9:23:4b:b2:e6:1b:06:98: 51:07:e8:42:dd:37:ea:54:c0:d4:0a:cc:3d:67:75: 89:98:e5:84:13:d0:b7:9d:3f:8c:f4:82:03:05:35: e1:3e:1f:57:9c:f1:85:04:22:42:f2:61:cf:54:96: b2:fa:4d:e9:c7:1d:78:75:76:c1:1f:2e:f1:93:ff: d3:58:ea:13:15:b5:08:03:cf:6f:f4:20:22:5b:17: 94:7a:18:87:06:23:b3:4a:48:2e:97:33:2a:17:96: a3:fd:69:00:e4:89:8b:0b:2e:7f:46:5e:46:4d:e8: e0:9e:5a:50:4c:87:95:62:2e:1d:b9:1e:a9:3d:c4: f0:cf:42:76:31:13:2f:a7:af:de:0d:27:94:55:2d: 3f:85:8a:ba:8b:c9:8e:d5:95:e7:9d:36:a9:8e:4e: 89:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:DB:39:59:CB:D9:38:CD:81:3C:32:24:E4:B1:30:F4:62:1C:58:D9 X509v3 Authority Key Identifier: keyid:71:C1:E8:E0:54:04:9A:CF:D9:AA:21:93:AF:1D:48:C6:D1:D0:25:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/ccHo4FQEms_ZqiGTrx1IxtHQJeE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ccHo4FQEms_ZqiGTrx1IxtHQJeE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91128E3/5393C0EE002611ECA4061614C4F9AE02/5F652B164A0311EC84EFD42FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df7:1480::/48 Signature Algorithm: sha256WithRSAEncryption a5:cd:79:3a:ee:eb:f2:98:72:bb:55:14:7c:d0:2c:28:a3:be: 7c:e2:26:4d:c2:8b:ad:5e:5d:d9:85:e6:11:fe:19:44:c0:5e: 5b:32:fe:41:14:f7:90:74:67:29:31:c7:dc:ee:9b:65:da:a4: 3f:60:c8:96:89:a9:53:d2:62:62:24:59:7a:f5:99:19:94:18: 5b:51:ca:4c:4f:bd:57:3d:98:15:ba:9d:e9:d2:17:dd:16:22: d6:67:30:bd:18:88:f4:52:3c:61:fe:90:29:83:73:cd:ee:88: 87:af:30:27:7d:d2:c3:18:21:76:90:ab:65:e8:a0:0c:c9:5e: 41:c5:ce:63:7e:0a:36:32:6a:d7:94:97:4a:fd:11:c8:96:15: 6c:0c:86:03:d8:08:7c:68:dc:46:e7:70:fe:cb:ca:ae:5e:3c: 2f:b4:8b:a1:72:e2:1f:4d:50:a7:9a:59:2a:46:18:13:ae:9d: b6:4d:7b:42:d1:20:f8:fc:04:35:42:cf:5b:ad:d5:41:60:fe: 99:84:3e:e9:63:a1:0d:be:04:51:30:99:cc:bc:d1:26:fb:a5: 44:c5:87:67:db:cf:6e:bd:e4:5d:74:64:10:d1:c3:16:20:30: e7:13:43:27:73:9a:60:28:0f:91:21:81:db:92:06:c4:15:5d: 17:81:ad:5b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBXwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI4RTMxMTAvBgNVBAUTKDcxQzFFOEUwNTQwNDlBQ0ZEOUFBMjE5M0FGMUQ0OEM2 RDFEMDI1RTEwHhcNMjUwODE1MDAwNTI4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllNzljOC1lYjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhfwZTJHYIz+2vDHfz3b1EZBxj9sgxZxS901JEG6wIb97WU8hbDUb3erbG2o Mj3Aht6rAdnCQI147Z8tBm7VWf3XvM4DFOTGk/FEso63Ly39OHsoFZZyyzniEPMQ itJOySNLsuYbBphRB+hC3TfqVMDUCsw9Z3WJmOWEE9C3nT+M9IIDBTXhPh9XnPGF BCJC8mHPVJay+k3pxx14dXbBHy7xk//TWOoTFbUIA89v9CAiWxeUehiHBiOzSkgu lzMqF5aj/WkA5ImLCy5/Rl5GTejgnlpQTIeVYi4duR6pPcTwz0J2MRMvp6/eDSeU VS0/hYq6i8mO1ZXnnTapjk6JBQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFHfbOVnL 2TjNgTwyJOSxMPRiHFjZMB8GA1UdIwQYMBaAFHHB6OBUBJrP2aohk68dSMbR0CXh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjhFMy81MzkzQzBFRTAw MjYxMUVDQTQwNjE2MTRDNEY5QUUwMi9jY0hvNEZRRW1zX1pxaUdUcngxSXh0SFFK ZUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NjSG80RlFFbXNfWnFpR1RyeDFJeHRIUUplRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI4RTMvNTM5M0MwRUUwMDI2MTFFQ0E0MDYxNjE0QzRGOUFFMDIvNUY2NTJCMTY0 QTAzMTFFQzg0RUZENDJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ33FIAwDQYJKoZIhvcNAQELBQADggEBAKXNeTru6/KY crtVFHzQLCijvnziJk3Ci61eXdmF5hH+GUTAXlsy/kEU95B0Zykxx9zum2XapD9g yJaJqVPSYmIkWXr1mRmUGFtRykxPvVc9mBW6nenSF90WItZnML0YiPRSPGH+kCmD c83uiIevMCd90sMYIXaQq2XooAzJXkHFzmN+CjYyateUl0r9EciWFWwMhgPYCHxo 3EbncP7Lyq5ePC+0i6Fy4h9NUKeaWSpGGBOunbZNe0LRIPj8BDVCz1ut1UFg/pmE PuljoQ2+BFEwmcy80Sb7pUTFh2fbz2695F10ZBDRwxYgMOcTQydzmmAoD5EhgduS BsQVXReBrVs= -----END CERTIFICATE-----Generated at Sun Oct 26 03:55:08 2025 by rpki-client