$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5DB4FB7CE3AA11EFA9ED913FC4F9AE02.roa File: 5DB4FB7CE3AA11EFA9ED913FC4F9AE02.roa (raw, json) Hash identifier: s616jCAKQ6MnIw/f7qRwu2SfT7szqPe4XrU1aBX73gY= Subject key identifier: 97:C1:BE:80:F3:B3:DA:AD:2E:71:0D:BD:2D:91:63:E7:A1:BE:9C:F8 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DE2 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5DB4FB7CE3AA11EFA9ED913FC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:56:32 +0000 ROA not before: Thu 28 Aug 2025 14:56:32 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153543 IP address blocks: 2001:df4:ef40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19938 (0x4de2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:32 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e20-487c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:1a:8a:e4:de:33:1b:ca:ab:a9:e9:a0:c4:b0: fb:4d:f6:8b:82:91:df:87:c7:b4:49:df:09:3b:5a: a2:81:5a:76:76:86:ab:28:bb:36:de:6a:28:d7:a9: bd:71:fc:21:81:9b:53:c5:7f:72:7b:8a:ab:8d:b9: 94:15:2c:7a:e5:fe:e7:c0:3c:89:bd:39:11:f2:06: 81:bc:c5:df:1d:f1:a6:ff:6f:0d:48:54:ee:81:3f: db:0d:75:79:cc:16:1e:ff:ce:40:4e:49:6d:d4:05: 58:fc:4e:bc:d6:cd:87:a2:33:29:a5:8d:6e:f1:33: ec:55:e9:a6:90:0d:e8:de:50:7c:ef:08:5c:8c:3e: c2:f5:c0:c9:7d:03:78:59:2f:8a:a3:00:1e:a3:da: ab:f4:42:79:67:48:dc:a7:15:cc:ca:72:54:d0:26: b5:8f:da:23:5f:02:cd:58:5f:a4:3f:2f:5b:08:92: 79:02:a1:d7:41:c0:0e:6e:e5:a3:54:fa:3a:54:ad: bd:0b:99:a5:f4:f9:e0:2a:f5:b5:38:c2:74:86:da: 97:9c:30:59:1a:58:92:8f:bb:1a:08:bb:79:eb:2e: b9:0f:46:87:84:60:60:fe:69:ed:ce:94:2a:af:5e: 28:06:80:89:f8:4e:a2:a2:6b:14:23:e7:11:05:85: 2e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:C1:BE:80:F3:B3:DA:AD:2E:71:0D:BD:2D:91:63:E7:A1:BE:9C:F8 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/5DB4FB7CE3AA11EFA9ED913FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:ef40::/48 Signature Algorithm: sha256WithRSAEncryption be:ec:a1:42:d4:4f:de:b8:80:00:cc:b4:2f:e0:18:11:e8:94: d1:a7:b8:ea:8a:d4:5f:ab:2b:c0:01:23:43:e8:98:e4:8b:12: 8d:bd:f8:84:9d:3e:59:0f:a2:1b:24:bc:de:04:86:6a:cf:7b: 32:c7:42:18:dd:6c:a7:b1:f3:10:ce:32:fb:94:05:8f:7f:d4: 47:d4:a3:6d:7d:c9:8c:59:bf:71:3e:e0:9a:76:2b:ab:28:74: a1:59:5f:11:44:cf:02:f1:70:f5:71:15:d4:02:d0:a4:e6:6f: 8b:4c:6d:13:a0:ff:17:57:25:5c:55:0e:f0:41:4d:dc:d1:c0: 1d:f1:1d:43:96:aa:ac:dd:df:88:ad:6a:c5:03:aa:84:9c:b8: 46:86:74:f3:90:cb:57:77:bc:91:28:86:5f:9e:56:7d:a1:c7: 24:9e:db:a8:39:6e:10:ce:f9:9d:c4:c1:4a:02:57:fb:d0:5f: b5:15:d4:ab:df:36:70:95:23:ee:e7:c2:79:ea:cd:d5:41:19: bb:5b:9b:92:59:0c:8b:9b:2c:dc:da:67:0c:69:46:c3:43:65: c8:4d:5e:50:f0:bc:1d:c0:64:93:0f:0a:73:9e:8c:36:dc:20: e0:0e:d3:37:3f:d5:ac:ff:2d:93:31:32:d4:11:f5:93:09:cf: 01:e6:7c:99 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICTeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjMyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmUyMC00ODdjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhqK5N4zG8qrqemgxLD7TfaLgpHfh8e0Sd8JO1qigVp2doarKLs23moo16m9 cfwhgZtTxX9ye4qrjbmUFSx65f7nwDyJvTkR8gaBvMXfHfGm/28NSFTugT/bDXV5 zBYe/85ATklt1AVY/E681s2HojMppY1u8TPsVemmkA3o3lB87whcjD7C9cDJfQN4 WS+KowAeo9qr9EJ5Z0jcpxXMynJU0Ca1j9ojXwLNWF+kPy9bCJJ5AqHXQcAObuWj VPo6VK29C5ml9PngKvW1OMJ0htqXnDBZGliSj7saCLt56y65D0aHhGBg/mntzpQq r14oBoCJ+E6iomsUI+cRBYUuywIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJfBvoDz s9qtLnENvS2RY+ehvpz4MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNURCNEZCN0NF M0FBMTFFRkE5RUQ5MTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3070AwDQYJKoZIhvcNAQELBQADggEBAL7soULUT964 gADMtC/gGBHolNGnuOqK1F+rK8ABI0PomOSLEo29+ISdPlkPohskvN4EhmrPezLH QhjdbKex8xDOMvuUBY9/1EfUo219yYxZv3E+4Jp2K6sodKFZXxFEzwLxcPVxFdQC 0KTmb4tMbROg/xdXJVxVDvBBTdzRwB3xHUOWqqzd34itasUDqoScuEaGdPOQy1d3 vJEohl+eVn2hxySe26g5bhDO+Z3EwUoCV/vQX7UV1KvfNnCVI+7nwnnqzdVBGbtb m5JZDIubLNzaZwxpRsNDZchNXlDwvB3AZJMPCnOejDbcIOAO0zc/1az/LZMxMtQR 9ZMJzwHmfJk= -----END CERTIFICATE-----Generated at Mon Sep 8 15:53:54 2025 by rpki-client