$ rpki-client -vvf rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/F0F17BEC9D5911EEAA9F0413C4F9AE02.roa File: F0F17BEC9D5911EEAA9F0413C4F9AE02.roa (raw, json) Hash identifier: zIbTXKElzSRDJDgFmgpHOKMMizwQLMFjRvUcTHCmSxI= Subject key identifier: D7:7A:DA:72:54:F3:4C:C5:58:EC:FC:03:31:79:0D:26:23:16:6E:77 Certificate issuer: /CN=A91A001E/serialNumber=8278F47DEC5B7ADC201897F99BCC6E2BFA88D015 Certificate serial: 3F88 Authority key identifier: 82:78:F4:7D:EC:5B:7A:DC:20:18:97:F9:9B:CC:6E:2B:FA:88:D0:15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnj0fexbetwgGJf5m8xuK_qI0BU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/F0F17BEC9D5911EEAA9F0413C4F9AE02.roa Signing time: Sat 02 Aug 2025 14:50:14 +0000 ROA not before: Sat 02 Aug 2025 14:50:14 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 666 IP address blocks: 2001:df7:5381::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/gnj0fexbetwgGJf5m8xuK_qI0BU.crl rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/gnj0fexbetwgGJf5m8xuK_qI0BU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnj0fexbetwgGJf5m8xuK_qI0BU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 14:20:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16264 (0x3f88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A001E, serialNumber=8278F47DEC5B7ADC201897F99BCC6E2BFA88D015 Validity Not Before: Aug 2 14:50:14 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688e25a6-ae8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2a:3d:a0:3b:6a:63:f6:45:da:4a:f1:b7:a5: ed:cd:79:27:75:10:3f:50:56:f4:c2:87:25:ef:a6: 79:5c:ee:b1:31:fd:9f:6a:95:c4:3c:63:7b:71:96: 0f:31:81:4e:50:98:63:af:8e:32:6d:7d:38:f5:19: 96:fc:cc:c8:a6:05:5a:fe:a9:e9:07:51:0c:2f:f0: 10:49:03:ae:d5:dd:4d:23:97:76:63:e5:9a:8b:28: 41:5f:3f:92:8a:b7:e2:1e:5a:cd:b4:f5:26:e9:95: c5:7f:1f:ca:b5:e9:3f:69:4f:83:e4:5d:05:32:23: ea:9a:3c:bb:4b:50:06:a6:e3:58:be:85:be:0c:8e: eb:39:93:0f:21:16:c5:15:2e:dd:7f:a0:75:d5:d6: c1:08:03:d8:6a:b1:de:2b:be:f5:77:e1:0d:d7:90: 8d:a4:2d:87:a8:f1:10:fa:c2:5f:9c:0e:11:9a:ab: cc:94:c7:da:30:70:77:e6:a5:ae:0e:43:bf:b1:9d: 7d:cf:f6:3e:ce:11:94:84:99:4d:18:7b:f2:df:16: 4f:d5:a6:65:b3:d3:dd:2b:92:30:f7:40:96:31:30: 46:7b:75:35:19:a4:e1:08:16:f1:5a:52:7d:d0:8c: 17:67:b7:aa:a8:55:ed:af:13:82:c2:be:22:de:5f: 52:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:7A:DA:72:54:F3:4C:C5:58:EC:FC:03:31:79:0D:26:23:16:6E:77 X509v3 Authority Key Identifier: keyid:82:78:F4:7D:EC:5B:7A:DC:20:18:97:F9:9B:CC:6E:2B:FA:88:D0:15 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/gnj0fexbetwgGJf5m8xuK_qI0BU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gnj0fexbetwgGJf5m8xuK_qI0BU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A001E/35FA0F561D7811E293771FC408B02CD2/F0F17BEC9D5911EEAA9F0413C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df7:5381::/48 Signature Algorithm: sha256WithRSAEncryption bc:cc:65:b1:6c:58:0f:a3:52:da:70:6e:cc:05:7e:8a:61:ce: fa:11:5c:81:f8:2f:14:36:68:e0:a0:68:3b:24:a1:c2:1e:a3: e6:6f:bc:c4:60:60:f8:58:51:44:3d:18:cb:cb:38:09:c0:ac: f4:bd:6b:03:eb:f3:00:b9:09:5a:f2:95:99:45:e6:05:53:bd: b3:c8:d5:57:32:15:63:ba:e2:4d:5d:02:08:6d:c6:f3:d4:c3: 40:05:44:89:87:56:f2:e0:50:95:60:b6:00:07:6c:0f:33:48: d1:ed:30:c4:24:62:1e:0d:ba:86:cf:3c:95:ca:5f:b5:2b:5b: 67:fd:58:f7:e2:6a:3c:df:67:b0:67:d8:70:d2:d9:b5:e5:47: b0:11:b7:09:53:e2:53:a3:7a:47:d3:ac:21:cf:04:2e:3f:de: 2c:80:8d:13:2b:df:52:4e:83:67:51:32:d1:fe:82:98:97:56: 15:d7:7b:37:c7:ea:90:50:af:9b:84:9e:d5:e5:13:41:27:81: 5d:ae:73:65:3e:eb:a0:c7:99:87:21:13:a7:12:ba:78:50:64: b0:48:6f:b1:ec:22:a0:f6:4f:f6:0a:6f:ec:8e:9b:a8:50:72: bc:86:6b:60:c4:2a:4e:79:3f:dd:42:c9:70:45:7e:1e:14:ad: 20:43:ca:5c -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICP4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTAwMUUxMTAvBgNVBAUTKDgyNzhGNDdERUM1QjdBREMyMDE4OTdGOTlCQ0M2RTJC RkE4OEQwMTUwHhcNMjUwODAyMTQ1MDE0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlMjVhNi1hZThkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwCo9oDtqY/ZF2krxt6XtzXkndRA/UFb0wocl76Z5XO6xMf2fapXEPGN7cZYP MYFOUJhjr44ybX049RmW/MzIpgVa/qnpB1EML/AQSQOu1d1NI5d2Y+WaiyhBXz+S irfiHlrNtPUm6ZXFfx/Ktek/aU+D5F0FMiPqmjy7S1AGpuNYvoW+DI7rOZMPIRbF FS7df6B11dbBCAPYarHeK771d+EN15CNpC2HqPEQ+sJfnA4RmqvMlMfaMHB35qWu DkO/sZ19z/Y+zhGUhJlNGHvy3xZP1aZls9PdK5Iw90CWMTBGe3U1GaThCBbxWlJ9 0IwXZ7eqqFXtrxOCwr4i3l9S7wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNd62nJU 80zFWOz8AzF5DSYjFm53MB8GA1UdIwQYMBaAFIJ49H3sW3rcIBiX+ZvMbiv6iNAV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDAxRS8zNUZBMEY1NjFE NzgxMUUyOTM3NzFGQzQwOEIwMkNEMi9nbmowZmV4YmV0d2dHSmY1bTh4dUtfcUkw QlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2duajBmZXhiZXR3Z0dKZjVtOHh1S19xSTBCVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTAwMUUvMzVGQTBGNTYxRDc4MTFFMjkzNzcxRkM0MDhCMDJDRDIvRjBGMTdCRUM5 RDU5MTFFRUFBOUYwNDEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ33U4EwDQYJKoZIhvcNAQELBQADggEBALzMZbFsWA+j UtpwbswFfophzvoRXIH4LxQ2aOCgaDskocIeo+ZvvMRgYPhYUUQ9GMvLOAnArPS9 awPr8wC5CVrylZlF5gVTvbPI1VcyFWO64k1dAghtxvPUw0AFRImHVvLgUJVgtgAH bA8zSNHtMMQkYh4NuobPPJXKX7UrW2f9WPfiajzfZ7Bn2HDS2bXlR7ARtwlT4lOj ekfTrCHPBC4/3iyAjRMr31JOg2dRMtH+gpiXVhXXezfH6pBQr5uEntXlE0EngV2u c2U+66DHmYchE6cSunhQZLBIb7HsIqD2T/YKb+yOm6hQcryGa2DEKk55P91CyXBF fh4UrSBDylw= -----END CERTIFICATE-----Generated at Sun Oct 26 01:23:06 2025 by rpki-client