$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1B8AE2C6AB0F11EF98900631C4F9AE02.roa File: 1B8AE2C6AB0F11EF98900631C4F9AE02.roa (raw, json) Hash identifier: e3/2zqHpCZZJCQ4iSqQnZf7A1Q/4j3bjc1MxP5/+je8= Subject key identifier: 20:CA:82:34:7C:B6:7B:D9:76:DE:53:EA:09:57:2A:F5:19:E5:E8:12 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DD3 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1B8AE2C6AB0F11EF98900631C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:56:20 +0000 ROA not before: Thu 28 Aug 2025 14:56:20 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153410 IP address blocks: 2001:df4:97c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19923 (0x4dd3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:20 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e14-6f42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:df:1a:92:81:c4:a5:a8:19:f3:17:41:43:6f: ea:ba:08:1f:e8:84:53:0c:9c:ff:3f:77:79:6a:3c: be:e8:c7:43:cd:21:27:7b:41:66:63:25:16:ad:65: 81:7a:21:9b:31:79:eb:17:ac:0b:9b:9b:82:eb:31: a2:43:d3:01:2f:e3:0c:b0:a0:04:13:0a:7b:ea:37: 25:e5:a9:60:8d:3d:50:84:97:70:13:8d:2f:34:06: 0f:4b:58:5e:cb:86:3c:7e:cf:b5:82:97:d8:46:af: 36:ca:a1:03:f1:f1:0b:87:60:f7:61:f3:5a:53:ec: 70:bd:e5:77:b9:81:02:78:9b:fc:da:62:1e:62:97: 1f:dd:dc:5c:d4:24:01:70:f8:50:fb:4b:23:66:f1: c8:4f:58:a6:51:7b:ed:59:6f:03:58:7d:b4:56:7f: c0:41:e0:7c:8c:be:f8:2b:f7:d8:ed:65:c0:db:51: 40:2e:b9:e3:7a:a0:8e:e3:12:12:95:af:bc:f7:28: 2d:18:c0:04:73:70:04:89:f5:12:00:c8:6d:25:95: e1:da:56:30:85:e4:11:11:66:c5:56:2b:09:cd:b0: f3:c5:97:0b:25:af:6f:f7:05:51:a0:ee:32:b6:63: 8a:92:30:95:fc:78:04:52:3a:a8:50:ee:45:6a:e5: 3f:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:CA:82:34:7C:B6:7B:D9:76:DE:53:EA:09:57:2A:F5:19:E5:E8:12 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1B8AE2C6AB0F11EF98900631C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:97c0::/48 Signature Algorithm: sha256WithRSAEncryption 18:2a:f3:f5:a1:f7:72:38:f9:b2:01:56:54:71:7e:9d:2e:90: a8:51:61:50:f5:56:aa:0d:bc:c9:f3:66:be:bc:71:10:34:19: fc:f2:0b:39:cf:08:70:45:14:61:c7:7c:9a:ca:83:f1:b8:85: 10:8f:07:40:21:66:d8:ac:02:cc:07:8c:a5:fe:d4:1c:00:8d: a2:48:e9:eb:9d:ff:c1:6b:90:24:6f:ae:9a:00:be:bb:64:a5: d2:5c:af:dc:37:be:4b:57:24:0f:06:97:66:cf:b9:c7:ad:40: 70:ef:ea:0c:e7:85:bf:5a:d4:32:f7:26:22:cd:64:9a:79:e5: ee:22:7a:19:10:5c:93:73:d6:4c:5d:18:f2:6f:9d:26:fb:f1: fb:f5:40:5d:1b:04:76:32:69:c9:5d:5c:24:12:62:8b:ea:d9: d5:78:f0:c4:f6:79:b7:d2:74:2d:ae:4b:a4:87:eb:bf:e1:65: a9:50:bc:5d:7f:a5:d0:3b:36:d8:d5:51:3d:1e:85:be:d6:6f: 7d:6a:95:81:16:fc:15:65:83:4c:15:5a:b6:05:9d:16:6f:6b: f9:38:cd:61:55:ca:73:1d:89:26:f3:eb:b6:fd:d9:31:be:e5: bb:3e:f3:b4:18:e1:a5:ff:42:22:62:88:d6:fe:0a:e2:b4:1e: 4c:5f:e2:5f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICTdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjIwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmUxNC02ZjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyd8akoHEpagZ8xdBQ2/quggf6IRTDJz/P3d5ajy+6MdDzSEne0FmYyUWrWWB eiGbMXnrF6wLm5uC6zGiQ9MBL+MMsKAEEwp76jcl5algjT1QhJdwE40vNAYPS1he y4Y8fs+1gpfYRq82yqED8fELh2D3YfNaU+xwveV3uYECeJv82mIeYpcf3dxc1CQB cPhQ+0sjZvHIT1imUXvtWW8DWH20Vn/AQeB8jL74K/fY7WXA21FALrnjeqCO4xIS la+89ygtGMAEc3AEifUSAMhtJZXh2lYwheQREWbFVisJzbDzxZcLJa9v9wVRoO4y tmOKkjCV/HgEUjqoUO5FauU/xQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFCDKgjR8 tnvZdt5T6glXKvUZ5egSMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMUI4QUUyQzZB QjBGMTFFRjk4OTAwNjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30l8AwDQYJKoZIhvcNAQELBQADggEBABgq8/Wh93I4 +bIBVlRxfp0ukKhRYVD1VqoNvMnzZr68cRA0GfzyCznPCHBFFGHHfJrKg/G4hRCP B0AhZtisAswHjKX+1BwAjaJI6eud/8FrkCRvrpoAvrtkpdJcr9w3vktXJA8Gl2bP ucetQHDv6gznhb9a1DL3JiLNZJp55e4iehkQXJNz1kxdGPJvnSb78fv1QF0bBHYy acldXCQSYovq2dV48MT2ebfSdC2uS6SH67/hZalQvF1/pdA7NtjVUT0ehb7Wb31q lYEW/BVlg0wVWrYFnRZva/k4zWFVynMdiSbz67b92TG+5bs+87QY4aX/QiJiiNb+ CuK0Hkxf4l8= -----END CERTIFICATE-----Generated at Mon Sep 8 00:37:11 2025 by rpki-client