$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3816FE9844B211EFA3EEED58C4F9AE02.roa File: 3816FE9844B211EFA3EEED58C4F9AE02.roa (raw, json) Hash identifier: jH/zj/sfUSg7FdmX/20CkYDN5bj4o2VDzz0BHTQ42r4= Subject key identifier: 58:E7:20:11:DB:E2:C5:1C:D7:C8:7A:D8:9E:92:68:E9:73:25:B9:39 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DBD Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3816FE9844B211EFA3EEED58C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:55:59 +0000 ROA not before: Thu 28 Aug 2025 14:55:59 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 152949 IP address blocks: 2001:df4:dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 14:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19901 (0x4dbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:55:59 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06dff-14b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:0a:9f:2f:49:a0:33:19:1a:2c:63:c4:53:27: d2:a7:b6:08:75:73:cd:88:56:29:4c:82:40:d3:ed: c4:e8:bd:00:e1:5f:f5:89:fe:93:3c:f9:e0:be:85: e0:98:e2:67:8e:36:12:24:13:14:d8:3e:0f:be:e3: d1:7f:8d:e7:51:e7:17:5b:98:52:27:d7:11:eb:96: b3:f5:d1:79:c4:f2:6a:f0:b1:eb:45:e5:80:ec:32: 64:c8:70:09:3d:a0:b6:b8:cf:d1:8c:1a:8e:ea:bf: 84:90:18:31:3a:6d:e2:03:9f:67:10:02:b1:de:ac: 2f:5a:2c:2a:5e:c1:70:5b:78:6f:37:ed:36:68:46: d9:86:79:f0:24:11:d2:92:e9:a0:98:ab:1f:49:90: de:3f:a6:84:11:e9:a3:ca:14:cc:91:ba:57:95:5d: f6:fd:16:a3:9b:a9:aa:a7:d8:f8:f2:fe:0b:1f:ae: be:07:37:d6:b5:67:67:11:b8:9c:32:a2:a2:60:50: dc:a7:f7:10:47:34:94:97:78:c3:5e:6b:92:c9:88: f0:d7:b3:d8:8d:c4:9b:32:90:c8:c7:1b:28:31:7f: 42:28:fe:91:e4:de:0c:2d:dc:9b:85:96:47:46:65: 18:d2:a7:e9:39:bf:ad:ab:51:4e:09:38:73:de:4f: be:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:E7:20:11:DB:E2:C5:1C:D7:C8:7A:D8:9E:92:68:E9:73:25:B9:39 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3816FE9844B211EFA3EEED58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:dc0::/48 Signature Algorithm: sha256WithRSAEncryption 1c:74:2e:83:02:c9:98:b9:16:24:7f:04:45:41:be:51:4c:9d: 41:6b:05:5d:6d:1b:05:dd:ef:25:58:3f:16:34:b9:21:59:59: ab:3c:d3:bc:ef:04:63:fd:cd:1f:cd:8a:9a:6d:6f:4a:bd:73: fd:c3:2f:ed:fc:bf:3e:c1:f5:8b:a3:37:81:bf:10:bf:bb:51: d5:cf:90:1d:fd:d2:8e:aa:2c:49:93:31:53:6d:18:77:fa:71: f8:13:95:bd:95:ef:dd:ca:6b:08:95:6a:c7:1f:2c:11:09:de: 35:71:6e:7b:7e:62:bc:0f:f3:e4:0c:50:67:ee:2d:88:28:64: 21:d2:01:e0:09:40:13:9b:ba:69:50:69:71:a0:d7:de:c6:1b: 5f:e4:0e:bc:3e:a8:c7:5d:89:05:90:51:3a:c8:37:72:cf:d3: b8:9f:d8:7d:7a:80:92:93:69:87:ca:cb:02:91:d2:2a:c6:bd: 7c:d8:d2:dd:66:9d:6b:3a:9a:2a:a2:62:5e:bc:f6:fb:1f:80: fc:d2:cb:7e:de:94:38:89:d8:46:6d:fd:5c:c5:29:22:01:cd: 35:b9:4e:bf:6e:07:56:6d:a1:f9:ad:f9:d8:94:fc:52:8e:b2: 71:bb:c8:62:00:32:72:9b:7d:bb:a0:2b:be:4b:10:b5:21:af: 8a:af:61:81 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICTb0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NTU5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRmZi0xNGIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3AqfL0mgMxkaLGPEUyfSp7YIdXPNiFYpTIJA0+3E6L0A4V/1if6TPPngvoXg mOJnjjYSJBMU2D4PvuPRf43nUecXW5hSJ9cR65az9dF5xPJq8LHrReWA7DJkyHAJ PaC2uM/RjBqO6r+EkBgxOm3iA59nEAKx3qwvWiwqXsFwW3hvN+02aEbZhnnwJBHS kumgmKsfSZDeP6aEEemjyhTMkbpXlV32/Rajm6mqp9j48v4LH66+BzfWtWdnEbic MqKiYFDcp/cQRzSUl3jDXmuSyYjw17PYjcSbMpDIxxsoMX9CKP6R5N4MLdybhZZH RmUY0qfpOb+tq1FOCThz3k++lwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFFjnIBHb 4sUc18h62J6SaOlzJbk5MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMzgxNkZFOTg0 NEIyMTFFRkEzRUVFRDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30DcAwDQYJKoZIhvcNAQELBQADggEBABx0LoMCyZi5 FiR/BEVBvlFMnUFrBV1tGwXd7yVYPxY0uSFZWas807zvBGP9zR/Nipptb0q9c/3D L+38vz7B9YujN4G/EL+7UdXPkB390o6qLEmTMVNtGHf6cfgTlb2V793KawiVascf LBEJ3jVxbnt+YrwP8+QMUGfuLYgoZCHSAeAJQBObumlQaXGg197GG1/kDrw+qMdd iQWQUTrIN3LP07if2H16gJKTaYfKywKR0irGvXzY0t1mnWs6miqiYl689vsfgPzS y37elDiJ2EZt/VzFKSIBzTW5Tr9uB1Ztofmt+diU/FKOsnG7yGIAMnKbfbugK75L ELUhr4qvYYE= -----END CERTIFICATE-----Generated at Mon Sep 8 16:15:38 2025 by rpki-client