$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/87221D64592111EF8909412FC4F9AE02.roa File: 87221D64592111EF8909412FC4F9AE02.roa (raw, json) Hash identifier: Tp511U7O2PESSHD26ptLj4B3vGkNkE/ZzLHjO12VtZw= Subject key identifier: 1D:31:9B:41:A5:96:EE:0F:39:93:68:42:73:56:2D:8E:1D:37:E6:82 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DC0 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/87221D64592111EF8909412FC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:56:01 +0000 ROA not before: Thu 28 Aug 2025 14:56:01 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 152963 IP address blocks: 2001:df4:1f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19904 (0x4dc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:01 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e01-1cba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6f:c2:0c:2d:e7:b3:d7:84:26:99:ec:b8:66: f1:3e:a6:40:5a:47:79:c7:7f:b0:10:0f:c7:3f:aa: 9e:ac:06:7c:6c:1d:a0:26:a0:91:a3:3d:fb:dd:a4: 63:a3:66:c4:9e:47:e8:37:45:45:09:56:1a:04:59: f0:1a:de:de:99:88:89:c4:54:bb:15:7a:f5:53:8e: 81:01:55:d8:dc:e5:52:dc:ad:d0:5a:49:0f:40:cf: f1:2e:31:21:39:37:7b:57:ee:6f:67:25:b4:37:d7: 25:68:7e:81:97:89:bf:86:95:7e:3c:85:0f:83:00: 10:36:b5:0f:a3:46:34:44:34:1f:73:15:b5:26:e7: b7:ee:a5:59:a5:4e:ae:c9:44:06:50:81:05:47:01: 54:28:ed:b3:47:05:ba:4d:3f:0d:13:2e:5c:b4:47: a2:5f:c0:89:1c:fd:36:8f:6b:0b:6b:13:96:d1:4c: 5a:75:1d:a1:73:c5:72:bb:1c:e8:38:db:b3:99:a3: 5e:ec:c3:c0:a3:72:e8:d8:5c:4f:2b:a4:4c:dc:40: c8:d6:00:ae:b5:3a:d9:ea:4b:20:93:43:69:d8:21: 52:2e:66:59:6b:13:b8:2a:5d:6b:d3:20:f8:58:bf: 49:25:8e:a0:00:1c:25:1e:32:26:1f:ba:4d:c8:77: d6:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:31:9B:41:A5:96:EE:0F:39:93:68:42:73:56:2D:8E:1D:37:E6:82 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/87221D64592111EF8909412FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:1f40::/48 Signature Algorithm: sha256WithRSAEncryption ba:31:f2:35:c1:6c:4e:36:e7:e3:ad:77:0a:df:e3:4b:3c:51: 3c:ee:61:37:27:3f:5a:20:ad:47:af:b5:1d:e0:05:7b:16:21: 06:a8:f5:aa:2e:bc:63:6c:cb:61:0b:dd:e4:4a:8b:fb:d9:38: d5:9d:2b:e8:26:aa:c7:58:e5:bd:d4:74:fc:8c:77:18:95:44: 44:84:62:03:c8:12:01:cf:c4:75:87:46:25:62:d2:94:64:35: 05:f6:ad:4d:5c:df:e7:36:04:66:ad:4c:43:c0:c0:7e:c2:a8: e1:2f:bb:11:44:2b:67:b2:7b:92:77:c6:a7:a3:ae:9e:02:eb: 2b:4a:36:8a:8a:b9:06:12:01:30:a5:51:ac:f6:a9:26:30:60: bf:ad:de:b0:c0:cb:b3:d5:ae:52:76:13:df:2c:8c:7e:07:e4: 22:8d:7e:80:75:13:ef:3c:23:fa:5d:40:09:4a:eb:96:ea:4a: d1:51:c0:9b:1b:7f:49:4a:59:17:0d:9a:79:c8:c4:28:81:80: aa:ab:b6:c3:39:cd:68:84:db:31:e2:a7:3e:1e:b8:c0:92:10: 38:fa:08:c1:28:37:77:7b:89:4c:67:b0:7e:02:50:d8:7b:ba: 59:09:55:8a:1c:de:69:6e:a6:5c:78:8c:01:0d:ca:48:5b:d7: 19:a5:4c:d6 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICTcAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjAxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmUwMS0xY2JhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAum/CDC3ns9eEJpnsuGbxPqZAWkd5x3+wEA/HP6qerAZ8bB2gJqCRoz373aRj o2bEnkfoN0VFCVYaBFnwGt7emYiJxFS7FXr1U46BAVXY3OVS3K3QWkkPQM/xLjEh OTd7V+5vZyW0N9claH6Bl4m/hpV+PIUPgwAQNrUPo0Y0RDQfcxW1Jue37qVZpU6u yUQGUIEFRwFUKO2zRwW6TT8NEy5ctEeiX8CJHP02j2sLaxOW0UxadR2hc8Vyuxzo ONuzmaNe7MPAo3Lo2FxPK6RM3EDI1gCutTrZ6ksgk0Np2CFSLmZZaxO4Kl1r0yD4 WL9JJY6gABwlHjImH7pNyHfWPwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFB0xm0Gl lu4POZNoQnNWLY4dN+aCMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvODcyMjFENjQ1 OTIxMTFFRjg5MDk0MTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30H0AwDQYJKoZIhvcNAQELBQADggEBALox8jXBbE42 5+Otdwrf40s8UTzuYTcnP1ogrUevtR3gBXsWIQao9aouvGNsy2EL3eRKi/vZONWd K+gmqsdY5b3UdPyMdxiVRESEYgPIEgHPxHWHRiVi0pRkNQX2rU1c3+c2BGatTEPA wH7CqOEvuxFEK2eye5J3xqejrp4C6ytKNoqKuQYSATClUaz2qSYwYL+t3rDAy7PV rlJ2E98sjH4H5CKNfoB1E+88I/pdQAlK65bqStFRwJsbf0lKWRcNmnnIxCiBgKqr tsM5zWiE2zHipz4euMCSEDj6CMEoN3d7iUxnsH4CUNh7ulkJVYoc3mluplx4jAEN ykhb1xmlTNY= -----END CERTIFICATE-----Generated at Mon Sep 8 05:39:22 2025 by rpki-client