$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/37F88500B23311EF8B03B736C4F9AE02.roa File: 37F88500B23311EF8B03B736C4F9AE02.roa (raw, json) Hash identifier: RvROJ+CI31+WqS0UgOEPsxKuoSO3gWtBdV2w/fpDHAs= Subject key identifier: 5F:07:44:44:A3:A2:07:A5:B2:C0:50:E6:F6:49:DF:8E:F6:9F:D8:3A Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4D8C Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/37F88500B23311EF8B03B736C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:55:22 +0000 ROA not before: Thu 28 Aug 2025 14:55:22 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150859 IP address blocks: 2001:df3:e8c0::/48 maxlen: 48 2001:df4:1cc0::/48 maxlen: 48 2401:9320::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19852 (0x4d8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:55:22 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06dda-3f77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:35:57:a3:ca:64:92:7e:05:79:a1:ba:f1:09: ac:bc:e9:2d:d0:92:2a:04:07:54:24:b2:50:b5:30: 16:32:b6:9d:c8:17:67:4e:3d:1e:96:a9:ae:3d:0b: 04:e5:35:12:f3:23:2d:91:09:5f:e4:32:e5:94:00: 1c:f4:98:7f:9c:e7:3c:f7:49:b7:5b:c7:3e:f7:7e: 9d:be:e5:12:b4:18:08:48:ed:1f:10:95:1a:3f:6c: 98:53:69:71:3e:3d:63:1a:f0:8f:18:84:cf:4b:30: f1:8f:cc:ad:8b:70:19:5d:be:d4:10:00:c3:d1:9d: cb:90:b6:f6:76:40:63:8e:9f:ea:0c:cd:01:cb:e0: 70:c6:9e:e4:88:85:42:46:c1:7a:9c:91:a2:84:33: be:80:20:c5:cc:cf:8c:f5:b9:19:1a:17:48:2b:e1: ba:e2:41:bf:ad:17:78:00:b2:8c:a4:a7:1a:d7:30: 22:cb:31:71:5c:22:31:15:ad:4d:f6:7b:09:fc:d4: 8d:c8:11:12:2e:47:69:3b:de:68:b5:e6:d7:ad:53: 00:2c:27:96:91:d5:1f:67:c3:aa:db:ea:84:27:ef: d9:75:5b:f2:d2:77:b0:67:ef:f3:1b:52:94:65:f0: 85:51:e7:1e:bc:0c:b4:6b:2d:3e:8e:c4:76:10:88: 87:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:07:44:44:A3:A2:07:A5:B2:C0:50:E6:F6:49:DF:8E:F6:9F:D8:3A X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/37F88500B23311EF8B03B736C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:e8c0::/48 2001:df4:1cc0::/48 2401:9320::/48 Signature Algorithm: sha256WithRSAEncryption 0f:81:4f:23:b1:93:e0:4b:5d:f1:f8:70:ae:00:2d:64:56:88: 73:3f:70:ba:7f:53:02:63:90:00:4f:a2:13:dc:91:e8:ce:c9: 0d:97:95:17:e9:19:5b:55:a3:82:a5:17:4d:85:1e:65:d6:e6: 6f:e9:8d:e6:45:d0:24:8f:4a:b7:01:b7:85:24:a0:6d:17:09: cb:3d:71:34:be:37:03:0a:93:14:f5:e7:cb:b6:bd:d7:77:98: 55:54:93:63:db:e1:05:c6:12:0a:57:6a:79:d8:18:75:5c:2c: 57:22:43:46:50:40:68:3a:c7:b2:24:10:c5:9e:cb:83:60:9b: 4f:af:c3:ae:c8:27:82:cf:7d:f2:87:d4:00:5d:71:d6:c7:34: 2d:3d:87:c7:19:12:0a:0e:9a:0e:83:25:f6:ad:0e:80:c7:e6: 16:1d:e4:cd:1d:f2:f8:df:b4:a8:7c:66:6b:d0:de:7f:b0:a7: 01:ec:03:66:49:04:3a:49:b4:e5:50:1f:3a:18:ae:2a:4a:01: 91:1a:1f:0a:c1:1c:8d:06:02:a2:6f:3c:8c:cd:25:5f:18:96: 05:f0:92:a1:6b:ca:8c:5c:dd:f5:d8:ca:47:e2:f2:e5:d3:2c: 63:6c:22:d6:05:40:c2:0e:19:47:d6:62:2e:f6:53:e9:8b:e5: 40:ff:f9:5c -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICTYwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NTIyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRkYS0zZjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjVXo8pkkn4FeaG68QmsvOkt0JIqBAdUJLJQtTAWMradyBdnTj0elqmuPQsE 5TUS8yMtkQlf5DLllAAc9Jh/nOc890m3W8c+936dvuUStBgISO0fEJUaP2yYU2lx Pj1jGvCPGITPSzDxj8yti3AZXb7UEADD0Z3LkLb2dkBjjp/qDM0By+Bwxp7kiIVC RsF6nJGihDO+gCDFzM+M9bkZGhdIK+G64kG/rRd4ALKMpKca1zAiyzFxXCIxFa1N 9nsJ/NSNyBESLkdpO95otebXrVMALCeWkdUfZ8Oq2+qEJ+/ZdVvy0newZ+/zG1KU ZfCFUecevAy0ay0+jsR2EIiHxQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFF8HRESj ogelssBQ5vZJ3472n9g6MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMzdGODg1MDBC MjMzMTFFRjhCMDNCNzM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMCEEAgACMBsDBwAgAQ3z6MADBwAgAQ30HMADBwAkAZMgAAAwDQYJKoZIhvcN AQELBQADggEBAA+BTyOxk+BLXfH4cK4ALWRWiHM/cLp/UwJjkABPohPckejOyQ2X lRfpGVtVo4KlF02FHmXW5m/pjeZF0CSPSrcBt4UkoG0XCcs9cTS+NwMKkxT158u2 vdd3mFVUk2Pb4QXGEgpXannYGHVcLFciQ0ZQQGg6x7IkEMWey4Ngm0+vw67IJ4LP ffKH1ABdcdbHNC09h8cZEgoOmg6DJfatDoDH5hYd5M0d8vjftKh8ZmvQ3n+wpwHs A2ZJBDpJtOVQHzoYripKAZEaHwrBHI0GAqJvPIzNJV8YlgXwkqFryoxc3fXYykfi 8uXTLGNsItYFQMIOGUfWYi72U+mL5UD/+Vw= -----END CERTIFICATE-----Generated at Mon Sep 8 05:44:49 2025 by rpki-client