$ rpki-client -vvf rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/B28CA9F85F3711EFA108CA0CC4F9AE02.roa File: B28CA9F85F3711EFA108CA0CC4F9AE02.roa (raw, json) Hash identifier: hNKZg5U6CuduqjU9m9FE6idsp6kIvYIqECKnhkzHT9Y= Subject key identifier: CC:C8:8A:2A:EC:7F:B9:3A:A8:75:C1:B4:FF:73:E0:94:38:FE:EE:F0 Certificate issuer: /CN=A91813ED/serialNumber=C29597B258AD660CE0BA79758309EB8C57959435 Certificate serial: C5 Authority key identifier: C2:95:97:B2:58:AD:66:0C:E0:BA:79:75:83:09:EB:8C:57:95:94:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wpWXslitZgzgunl1gwnrjFeVlDU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/B28CA9F85F3711EFA108CA0CC4F9AE02.roa Signing time: Wed 03 Sep 2025 06:28:24 +0000 ROA not before: Wed 03 Sep 2025 06:28:24 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 135559 IP address blocks: 2001:df4:2040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/wpWXslitZgzgunl1gwnrjFeVlDU.crl rsync://rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/wpWXslitZgzgunl1gwnrjFeVlDU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wpWXslitZgzgunl1gwnrjFeVlDU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 06:21:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91813ED, serialNumber=C29597B258AD660CE0BA79758309EB8C57959435 Validity Not Before: Sep 3 06:28:24 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7e008-d40b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:6c:58:09:9b:59:b9:47:8c:68:3a:15:87:44: eb:96:46:41:7b:5e:25:b5:2e:b4:a0:a9:d2:0c:94: c9:ed:32:e2:cf:bd:27:1a:82:fe:cd:59:bc:a3:3b: 97:90:8c:d0:c4:22:7b:4b:af:25:6d:2f:89:04:ad: 12:57:eb:1f:04:89:3f:d1:27:2c:e5:96:8d:a3:26: 76:b4:75:e1:89:f6:44:c0:99:fa:0e:a9:0c:13:b9: eb:05:1a:94:a5:5b:0b:da:47:55:b1:ca:44:77:8f: b7:d7:67:98:30:df:89:20:ab:c2:97:8a:98:1a:36: 02:8e:b4:e6:a7:3e:8f:97:05:3c:bf:1e:8c:90:2b: f6:50:03:42:d6:b8:84:75:f4:09:50:84:c0:23:3f: 26:bf:29:3f:05:68:01:60:a8:17:99:7d:15:ff:d1: 7a:79:a0:a0:d6:ce:e9:5c:7c:f7:20:d1:fb:76:d6: da:82:4b:a8:3a:9e:8d:a7:6c:fd:0e:9d:d2:5d:6c: a6:a9:35:aa:a1:6c:e2:40:4f:f3:ef:2e:08:4c:bd: bc:f9:52:2b:f3:89:f4:8e:cc:58:5c:68:f1:0c:05: 27:46:5f:dd:69:15:df:d9:cb:fb:9e:8e:fb:ae:aa: 7d:95:4b:2a:11:1c:1b:e3:bd:b6:40:04:07:41:85: 0a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:C8:8A:2A:EC:7F:B9:3A:A8:75:C1:B4:FF:73:E0:94:38:FE:EE:F0 X509v3 Authority Key Identifier: keyid:C2:95:97:B2:58:AD:66:0C:E0:BA:79:75:83:09:EB:8C:57:95:94:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/wpWXslitZgzgunl1gwnrjFeVlDU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wpWXslitZgzgunl1gwnrjFeVlDU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91813ED/7028C6C85F3711EFBF369E58C4F9AE02/B28CA9F85F3711EFA108CA0CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:2040::/48 Signature Algorithm: sha256WithRSAEncryption 14:b4:dd:1e:93:cc:50:5f:1b:49:51:b1:50:01:c7:61:6b:1c: fa:d5:7a:cf:7d:c9:2d:d4:e7:f5:24:f9:fd:10:e8:ca:6c:cd: cd:11:7f:0f:62:34:d7:f3:3c:53:19:92:8e:cd:bd:4d:31:84: 88:fc:2e:e1:c2:04:a6:36:17:81:35:80:cc:40:23:f5:46:c1: 35:3c:ce:4b:f6:e5:f1:b9:95:d1:0d:38:e9:24:d6:f4:c3:c8: 38:74:72:80:f7:14:72:91:73:bf:57:ad:90:24:19:23:d8:13: 3e:1d:ff:84:71:3f:3a:a1:90:e2:77:99:0d:7c:c6:ea:53:22: 07:cd:3b:5a:6c:aa:92:f3:86:48:dc:da:42:31:88:9f:13:7a: 31:cd:32:6e:6c:e0:e9:4e:db:ed:bc:1c:17:6f:02:29:75:48: 64:b7:3b:56:9d:e6:49:eb:39:3d:cf:e7:4b:7e:5c:90:a7:d2: d1:29:97:61:86:40:e8:4a:97:82:a8:4c:50:ea:2e:92:8b:81: cf:aa:74:ec:96:e9:a2:45:cb:4e:1b:58:aa:c5:4d:d9:01:c8: 60:75:44:45:e1:ab:a1:de:b4:e6:b5:6d:2e:31:1f:e4:4c:4f: f8:ce:79:09:9d:e3:af:38:b0:7f:79:48:ad:23:28:56:6d:36: 16:12:2d:26 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEzRUQxMTAvBgNVBAUTKEMyOTU5N0IyNThBRDY2MENFMEJBNzk3NTgzMDlFQjhD NTc5NTk0MzUwHhcNMjUwOTAzMDYyODI0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3ZTAwOC1kNDBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwmxYCZtZuUeMaDoVh0TrlkZBe14ltS60oKnSDJTJ7TLiz70nGoL+zVm8ozuX kIzQxCJ7S68lbS+JBK0SV+sfBIk/0Scs5ZaNoyZ2tHXhifZEwJn6DqkME7nrBRqU pVsL2kdVscpEd4+312eYMN+JIKvCl4qYGjYCjrTmpz6PlwU8vx6MkCv2UANC1riE dfQJUITAIz8mvyk/BWgBYKgXmX0V/9F6eaCg1s7pXHz3INH7dtbagkuoOp6Np2z9 Dp3SXWymqTWqoWziQE/z7y4ITL28+VIr84n0jsxYXGjxDAUnRl/daRXf2cv7no77 rqp9lUsqERwb4722QAQHQYUK9QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMzIiirs f7k6qHXBtP9z4JQ4/u7wMB8GA1UdIwQYMBaAFMKVl7JYrWYM4Lp5dYMJ64xXlZQ1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTNFRC83MDI4QzZDODVG MzcxMUVGQkYzNjlFNThDNEY5QUUwMi93cFdYc2xpdFpnemd1bmwxZ3ducmpGZVZs RFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dwV1hzbGl0Wmd6Z3VubDFnd25yakZlVmxEVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODEzRUQvNzAyOEM2Qzg1RjM3MTFFRkJGMzY5RTU4QzRGOUFFMDIvQjI4Q0E5Rjg1 RjM3MTFFRkExMDhDQTBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30IEAwDQYJKoZIhvcNAQELBQADggEBABS03R6TzFBf G0lRsVABx2FrHPrVes99yS3U5/Uk+f0Q6Mpszc0Rfw9iNNfzPFMZko7NvU0xhIj8 LuHCBKY2F4E1gMxAI/VGwTU8zkv25fG5ldENOOkk1vTDyDh0coD3FHKRc79XrZAk GSPYEz4d/4RxPzqhkOJ3mQ18xupTIgfNO1psqpLzhkjc2kIxiJ8TejHNMm5s4OlO 2+28HBdvAil1SGS3O1ad5knrOT3P50t+XJCn0tEpl2GGQOhKl4KoTFDqLpKLgc+q dOyW6aJFy04bWKrFTdkByGB1REXhq6HetOa1bS4xH+RMT/jOeQmd4684sH95SK0j KFZtNhYSLSY= -----END CERTIFICATE-----Generated at Fri Sep 19 13:26:44 2025 by rpki-client