$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/944B4FC0717B11EF8588F70CC4F9AE02.roa File: 944B4FC0717B11EF8588F70CC4F9AE02.roa (raw, json) Hash identifier: wk9RaUd7xffYisUmLKJtFARq1CnLLgWUPUnnCj5JMfk= Subject key identifier: 2D:60:FC:9B:07:1C:92:7C:03:45:DB:31:20:C8:F8:B9:9E:8E:2E:64 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DBF Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/944B4FC0717B11EF8588F70CC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:56:00 +0000 ROA not before: Thu 28 Aug 2025 14:56:00 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 152959 IP address blocks: 2001:df4:1b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19903 (0x4dbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:00 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e00-e0d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:27:71:95:64:97:18:02:a2:af:16:0f:35:ff: 1e:91:f2:cd:55:4a:76:59:21:3e:75:0e:1e:eb:4d: ca:b4:76:16:77:2a:40:e3:34:20:01:be:42:26:18: 9f:aa:e8:92:69:23:33:77:ff:04:88:87:96:af:de: 4a:b8:cd:98:9e:a6:49:4f:ea:0f:0b:b1:b1:dc:06: 1a:b4:df:6d:71:5f:23:14:70:17:ea:4b:4b:9b:3a: 73:88:8a:38:33:b9:64:e7:55:b7:a1:86:63:99:cf: 77:45:21:33:36:5c:37:04:94:71:b0:0d:78:01:39: de:6d:02:74:1e:f2:e3:6d:36:f0:ca:e1:bd:84:9c: 5a:5d:f7:cf:b9:af:f8:6d:b7:c7:ac:c3:0a:34:03: c0:c1:55:9b:2e:06:d1:c3:21:9f:4d:02:1b:c7:24: c4:87:76:ed:03:11:92:bd:23:0d:89:53:9d:c1:73: 39:b6:74:ac:60:04:ee:69:e7:cf:18:3b:be:ef:ff: f3:64:cb:0c:cb:eb:6c:94:b6:23:84:18:f0:6a:cf: 82:62:8a:40:4c:a5:6c:67:8f:e9:66:f7:18:9f:73: 42:1b:03:1f:de:35:4b:1e:81:26:e9:27:f2:55:54: e7:0d:5a:29:ac:df:f8:fc:e7:fa:f9:e4:1f:d7:87: 8d:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:60:FC:9B:07:1C:92:7C:03:45:DB:31:20:C8:F8:B9:9E:8E:2E:64 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/944B4FC0717B11EF8588F70CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:1b40::/48 Signature Algorithm: sha256WithRSAEncryption 0d:e3:12:8f:05:3e:5a:b0:bb:73:b1:7b:bf:0e:0c:11:4a:f6: 79:f0:e3:ad:cc:e8:18:d8:1f:b3:61:19:1c:60:ed:7a:f8:02: 10:f0:44:fd:7f:5d:d9:b6:a2:e0:63:6c:35:f3:32:4c:1f:cd: 7b:32:86:83:01:64:7f:25:de:fb:94:c9:b1:93:70:10:14:21: fe:71:5a:94:11:17:4e:98:e5:ba:de:7b:64:3a:13:97:b0:5d: 43:78:87:ee:65:98:7a:25:ed:40:90:e5:a7:7e:22:37:2e:32: 8d:cc:89:29:60:4d:c5:c9:81:29:bc:35:68:36:9c:8f:5b:c1: 8c:d2:fb:5e:6e:f8:6d:38:93:41:0d:ee:f7:fa:64:dd:29:eb: 55:d7:c1:e0:b7:5c:73:e5:35:90:29:fd:e1:71:6b:92:f4:4e: 1a:b7:68:31:c7:60:04:4b:bf:4e:68:3e:9f:3e:8b:94:9a:bf: 48:98:a2:f4:06:9f:c1:0f:b1:a3:dd:af:14:9c:1c:f0:26:9a: c9:82:54:a7:7d:52:b0:9e:94:7f:09:e8:2b:1f:d4:82:98:39: 26:48:8a:02:7b:91:8d:51:d4:c4:c7:f6:30:7d:5e:05:a7:28: b0:b5:55:1e:d9:a9:cf:25:47:4c:67:d3:4f:92:59:e2:dd:d8: af:fc:65:50 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICTb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjAwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmUwMC1lMGQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSdxlWSXGAKirxYPNf8ekfLNVUp2WSE+dQ4e603KtHYWdypA4zQgAb5CJhif quiSaSMzd/8EiIeWr95KuM2YnqZJT+oPC7Gx3AYatN9tcV8jFHAX6ktLmzpziIo4 M7lk51W3oYZjmc93RSEzNlw3BJRxsA14ATnebQJ0HvLjbTbwyuG9hJxaXffPua/4 bbfHrMMKNAPAwVWbLgbRwyGfTQIbxyTEh3btAxGSvSMNiVOdwXM5tnSsYATuaefP GDu+7//zZMsMy+tslLYjhBjwas+CYopATKVsZ4/pZvcYn3NCGwMf3jVLHoEm6Sfy VVTnDVoprN/4/Of6+eQf14eNbwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFC1g/JsH HJJ8A0XbMSDI+Lmeji5kMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOTQ0QjRGQzA3 MTdCMTFFRjg1ODhGNzBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30G0AwDQYJKoZIhvcNAQELBQADggEBAA3jEo8FPlqw u3Oxe78ODBFK9nnw463M6BjYH7NhGRxg7Xr4AhDwRP1/Xdm2ouBjbDXzMkwfzXsy hoMBZH8l3vuUybGTcBAUIf5xWpQRF06Y5bree2Q6E5ewXUN4h+5lmHol7UCQ5ad+ IjcuMo3MiSlgTcXJgSm8NWg2nI9bwYzS+15u+G04k0EN7vf6ZN0p61XXweC3XHPl NZAp/eFxa5L0Thq3aDHHYARLv05oPp8+i5Sav0iYovQGn8EPsaPdrxScHPAmmsmC VKd9UrCelH8J6Csf1IKYOSZIigJ7kY1R1MTH9jB9XgWnKLC1VR7Zqc8lR0xn00+S WeLd2K/8ZVA= -----END CERTIFICATE-----Generated at Mon Sep 8 01:54:24 2025 by rpki-client