$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/82EC4B80EB4D11EE811A330FC4F9AE02.roa File: 82EC4B80EB4D11EE811A330FC4F9AE02.roa (raw, json) Hash identifier: 53XI7Ie+PIU2uBvHMK6myuUF5i3w3GDAtLXIXv35tkU= Subject key identifier: A6:10:53:9C:9E:1A:8D:EA:FC:E2:16:81:DC:96:CA:3A:C3:05:07:26 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DB1 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/82EC4B80EB4D11EE811A330FC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:55:50 +0000 ROA not before: Thu 28 Aug 2025 14:55:50 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 151884 IP address blocks: 2001:df3:4cc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19889 (0x4db1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:55:50 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06df6-39b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:11:ca:bf:38:6d:5c:be:cc:e9:b6:91:a6:a6: df:c4:91:79:61:63:ec:29:4a:28:d9:9b:43:21:02: 78:8d:b5:13:24:3f:7e:95:eb:22:6d:b2:28:28:28: e8:4a:88:5b:54:55:e8:a6:0b:6d:52:52:a1:29:84: e4:77:ce:de:71:54:99:a9:c7:bc:ef:40:81:0f:ae: f2:6c:5b:87:08:18:8f:e1:78:4a:b7:20:b7:97:5e: 4b:6b:78:2d:63:44:65:b5:81:b8:c1:81:b0:c4:2f: ba:54:7c:50:0f:9e:cd:ee:59:2c:5d:0b:21:2b:bf: a9:dc:d2:5f:26:5f:38:c1:be:78:1c:1b:05:00:ff: d3:71:42:74:3e:1f:98:c3:6b:55:86:a4:42:3b:76: e2:80:28:31:ce:1f:79:1e:04:8b:7c:f9:b3:78:10: 8a:0b:83:75:a1:59:26:a8:37:91:38:e7:8c:96:45: 7a:5f:4d:d4:7c:19:0e:c7:08:31:c6:86:22:80:3d: 7e:da:99:fd:ee:11:eb:97:2c:c2:b6:8b:f2:d7:f3: d7:8c:50:3a:6f:4a:fb:83:cb:f9:1d:c6:34:7a:fc: 7b:e0:d9:5e:4a:09:6e:f6:2c:94:a9:03:83:be:04: 0b:c7:a4:93:e4:59:e7:ef:ec:02:e5:78:fb:8e:6c: a5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:10:53:9C:9E:1A:8D:EA:FC:E2:16:81:DC:96:CA:3A:C3:05:07:26 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/82EC4B80EB4D11EE811A330FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:4cc0::/48 Signature Algorithm: sha256WithRSAEncryption 3f:70:90:c5:1d:c1:6a:d5:5b:d3:51:98:a7:d9:70:27:01:f8: 6c:d2:81:ec:0c:06:8d:b3:eb:0b:aa:c0:78:f7:d8:ec:cc:4d: 5a:7d:e7:bf:e0:df:9b:2a:53:47:02:37:84:49:19:cc:83:14: bb:18:c2:4d:7c:c3:84:3d:e1:36:2b:1f:c0:da:67:58:10:dc: fb:7b:c3:b8:5d:84:6c:c1:98:d1:9f:03:7b:b0:8e:05:67:8e: 67:e0:5d:82:bf:54:d9:92:1e:c1:a9:2b:c4:82:d5:7e:cb:6b: 6a:a0:f8:58:97:20:ad:65:28:f2:85:ac:fc:f3:37:c3:2a:69: af:42:30:cd:20:08:46:a5:9c:9e:91:08:62:b2:56:92:ca:b5: 15:37:94:c1:0a:97:91:61:26:03:75:e7:fe:17:9a:e7:c1:eb: d0:c6:e2:5b:89:83:b0:22:d9:2e:68:54:26:34:a3:36:84:10: fd:6e:0e:03:42:c9:34:4a:e7:a3:ed:21:31:d1:62:42:67:a7: f2:03:23:ad:da:67:04:9d:27:74:b6:4c:59:be:5b:4e:15:d3: 7b:b6:38:bc:93:16:02:b0:8a:f2:00:38:5d:2a:84:09:cf:0f: 3f:ed:ab:00:a1:19:b2:4c:2a:6b:c0:a6:51:59:b9:0d:e2:2f: 88:6d:6f:c0 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICTbEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NTUwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRmNi0zOWI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7hHKvzhtXL7M6baRpqbfxJF5YWPsKUoo2ZtDIQJ4jbUTJD9+lesibbIoKCjo SohbVFXopgttUlKhKYTkd87ecVSZqce870CBD67ybFuHCBiP4XhKtyC3l15La3gt Y0RltYG4wYGwxC+6VHxQD57N7lksXQshK7+p3NJfJl84wb54HBsFAP/TcUJ0Ph+Y w2tVhqRCO3bigCgxzh95HgSLfPmzeBCKC4N1oVkmqDeROOeMlkV6X03UfBkOxwgx xoYigD1+2pn97hHrlyzCtovy1/PXjFA6b0r7g8v5HcY0evx74NleSglu9iyUqQOD vgQLx6ST5Fnn7+wC5Xj7jmyl7wIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKYQU5ye Go3q/OIWgdyWyjrDBQcmMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvODJFQzRCODBF QjREMTFFRTgxMUEzMzBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zTMAwDQYJKoZIhvcNAQELBQADggEBAD9wkMUdwWrV W9NRmKfZcCcB+GzSgewMBo2z6wuqwHj32OzMTVp957/g35sqU0cCN4RJGcyDFLsY wk18w4Q94TYrH8DaZ1gQ3Pt7w7hdhGzBmNGfA3uwjgVnjmfgXYK/VNmSHsGpK8SC 1X7La2qg+FiXIK1lKPKFrPzzN8Mqaa9CMM0gCEalnJ6RCGKyVpLKtRU3lMEKl5Fh JgN15/4XmufB69DG4luJg7Ai2S5oVCY0ozaEEP1uDgNCyTRK56PtITHRYkJnp/ID I63aZwSdJ3S2TFm+W04V03u2OLyTFgKwivIAOF0qhAnPDz/tqwChGbJMKmvAplFZ uQ3iL4htb8A= -----END CERTIFICATE-----Generated at Mon Sep 8 05:36:03 2025 by rpki-client