$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8DFF3E8E736D11F0AA6D9947C4F9AE02.roa File: 8DFF3E8E736D11F0AA6D9947C4F9AE02.roa (raw, json) Hash identifier: q+XXhNirbwtwjVfTWU+d/66VmCRi/I7/dZfv3XwsZpM= Subject key identifier: 0F:C8:A4:9C:F5:54:D3:88:EF:76:31:41:36:E2:F8:B9:4C:26:F0:C4 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DF0 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8DFF3E8E736D11F0AA6D9947C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:56:43 +0000 ROA not before: Thu 28 Aug 2025 14:56:43 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154091 IP address blocks: 2001:df5:e940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19952 (0x4df0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:43 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e2b-cc4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b1:59:51:25:00:b2:0c:5e:44:7a:1e:27:0e: 5e:f9:6f:60:9d:9b:6f:f6:b6:4b:5b:e6:e2:88:ed: fe:32:61:56:96:a9:20:1b:f8:00:cb:5e:d9:58:82: 33:8f:d1:4a:bb:3a:bd:33:c8:c0:03:df:91:15:d2: ce:85:62:cc:c4:86:26:cc:90:db:85:51:ea:14:03: 00:6f:bb:c9:b5:eb:db:5a:84:64:24:6d:de:56:df: 31:f5:bb:82:d5:f0:59:ac:7a:a5:ff:fb:e3:99:3c: df:79:05:8f:d0:01:ca:bc:d8:49:17:34:3c:19:91: 1b:20:39:0f:64:f9:3a:40:84:39:20:58:d1:c9:76: 82:f9:98:0c:cf:e0:79:75:c2:22:fd:35:aa:9d:5a: 7e:69:98:f0:a7:23:48:a4:db:d3:8f:aa:3e:89:12: 56:8e:95:77:db:38:b6:e0:db:4a:5c:ef:48:e3:0b: 00:62:a7:c1:01:c3:b5:15:f6:a5:cd:18:a9:fb:e0: 0d:c9:07:97:d3:65:98:ff:2b:09:19:9b:6a:9f:98: c2:7d:d3:7c:4b:51:4c:68:f3:77:00:99:b7:f2:e4: f2:6c:b9:97:b9:34:0f:ec:34:db:94:cc:1a:7d:7b: da:f4:6f:01:98:84:56:6e:52:87:1c:20:6c:bc:e4: 48:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:C8:A4:9C:F5:54:D3:88:EF:76:31:41:36:E2:F8:B9:4C:26:F0:C4 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/8DFF3E8E736D11F0AA6D9947C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:e940::/48 Signature Algorithm: sha256WithRSAEncryption 86:90:00:a6:59:26:38:d0:f3:44:67:be:7c:1b:cf:72:f1:a4: f0:38:aa:d9:5c:58:6a:4d:8a:61:db:0f:1e:46:e5:3f:e5:5f: e5:5c:1c:f3:f2:8f:a2:8d:e5:6f:c2:d8:01:76:af:e6:58:76: 74:a0:a6:9b:ab:e6:c6:f5:d6:74:db:89:82:96:0b:51:f6:7a: 3e:de:e5:23:dd:97:02:b5:08:61:a0:55:69:69:a9:79:a6:65: 8d:cd:33:c4:5d:fa:db:e2:3d:e4:e8:4c:65:93:e0:8d:2b:5b: 12:5e:0a:40:79:9e:57:68:3c:6a:67:91:8c:77:bb:f8:04:a2: 40:6d:09:bf:33:2f:9f:79:f9:7f:bf:9a:2e:7e:3e:04:ea:0e: 3e:05:61:84:0b:db:5c:cc:05:de:6b:2b:9a:69:7b:47:58:e4: 57:8e:e5:4e:83:cd:a1:72:a7:81:d3:68:46:1a:57:60:6f:b4: 67:14:d2:03:42:54:cf:21:5f:93:40:d4:0b:b3:bf:9a:31:52: 67:88:5f:2a:cb:ec:9a:f1:3a:f2:e9:77:57:9e:29:97:d7:17: af:3a:19:6a:e0:5d:5f:45:9d:47:65:bd:10:29:88:ad:8d:cb: dc:7f:b0:72:89:50:c6:18:75:05:e7:b0:cb:e9:53:44:91:46: 39:ca:cd:f3 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICTfAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjQzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmUyYi1jYzRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyLFZUSUAsgxeRHoeJw5e+W9gnZtv9rZLW+biiO3+MmFWlqkgG/gAy17ZWIIz j9FKuzq9M8jAA9+RFdLOhWLMxIYmzJDbhVHqFAMAb7vJtevbWoRkJG3eVt8x9buC 1fBZrHql//vjmTzfeQWP0AHKvNhJFzQ8GZEbIDkPZPk6QIQ5IFjRyXaC+ZgMz+B5 dcIi/TWqnVp+aZjwpyNIpNvTj6o+iRJWjpV32zi24NtKXO9I4wsAYqfBAcO1Ffal zRip++ANyQeX02WY/ysJGZtqn5jCfdN8S1FMaPN3AJm38uTybLmXuTQP7DTblMwa fXva9G8BmIRWblKHHCBsvORIUwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFA/IpJz1 VNOI73YxQTbi+LlMJvDEMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOERGRjNFOEU3 MzZEMTFGMEFBNkQ5OTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ316UAwDQYJKoZIhvcNAQELBQADggEBAIaQAKZZJjjQ 80Rnvnwbz3LxpPA4qtlcWGpNimHbDx5G5T/lX+VcHPPyj6KN5W/C2AF2r+ZYdnSg ppur5sb11nTbiYKWC1H2ej7e5SPdlwK1CGGgVWlpqXmmZY3NM8Rd+tviPeToTGWT 4I0rWxJeCkB5nldoPGpnkYx3u/gEokBtCb8zL595+X+/mi5+PgTqDj4FYYQL21zM Bd5rK5ppe0dY5FeO5U6DzaFyp4HTaEYaV2BvtGcU0gNCVM8hX5NA1Auzv5oxUmeI XyrL7JrxOvLpd1eeKZfXF686GWrgXV9FnUdlvRApiK2Ny9x/sHKJUMYYdQXnsMvp U0SRRjnKzfM= -----END CERTIFICATE-----Generated at Mon Sep 8 05:43:27 2025 by rpki-client