$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/99A8B15A699D11EFA9CA5639C4F9AE02.roa File: 99A8B15A699D11EFA9CA5639C4F9AE02.roa (raw, json) Hash identifier: YbX8ZM6fhyg33IZ1umOVNsXy/jOqxPjAIyYJkwesrug= Subject key identifier: 8F:53:C2:B4:AA:FC:60:47:AB:24:33:F2:46:05:DF:67:D3:1D:91:80 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DC9 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/99A8B15A699D11EFA9CA5639C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:56:11 +0000 ROA not before: Thu 28 Aug 2025 14:56:11 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 152983 IP address blocks: 2001:df4:3040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 14:32:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19913 (0x4dc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:11 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e0a-5e77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c5:8a:1b:0a:30:a5:61:c4:87:9b:ce:7b:72: 44:79:15:a4:0a:6d:28:04:7d:86:7f:6e:e2:73:7d: 36:78:22:7a:5f:98:b4:57:ec:31:46:07:3c:90:f2: 82:a0:66:0a:ee:81:c6:ff:3b:59:9a:be:a1:94:6b: 06:d1:b9:14:8b:a4:df:39:57:fe:d1:e5:94:bc:c6: ae:a5:3d:74:dc:f5:16:7e:d8:31:89:70:1f:2e:a0: c7:6c:ce:ee:00:c8:58:7d:35:84:2e:94:21:6e:d9: 97:10:36:29:89:f8:fb:98:1d:6f:25:fb:6b:dc:f1: 13:53:d9:e1:e9:f2:7c:10:fd:e5:54:03:48:55:09: fd:3a:70:36:82:7c:6b:d4:e0:d9:4e:0c:43:15:b4: a5:2d:87:13:08:69:ac:0f:01:23:af:d4:16:68:eb: 49:49:81:d4:72:3b:46:17:7e:dc:c0:e0:8e:a7:f4: 47:21:41:3a:24:ec:3c:24:5b:27:9c:8c:ac:4c:23: 12:7d:48:98:a1:b1:39:69:a4:4f:ce:2d:33:df:1d: 86:08:24:91:0a:57:1d:ee:86:d8:ab:2a:b0:e3:a8: 0c:af:6a:81:7e:23:7e:9c:50:f2:54:70:5f:d6:7a: 08:dd:48:c0:19:a2:2d:55:0e:1e:14:18:64:f3:9c: 51:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:53:C2:B4:AA:FC:60:47:AB:24:33:F2:46:05:DF:67:D3:1D:91:80 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/99A8B15A699D11EFA9CA5639C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:3040::/48 Signature Algorithm: sha256WithRSAEncryption 9a:72:c1:0d:26:8e:12:0f:a8:eb:0c:86:be:53:d0:59:19:18: c7:1f:b8:ad:54:31:e2:cd:de:45:4f:f4:3b:1e:de:3a:71:22: a3:f8:b3:92:dd:3d:68:87:3d:b1:5b:61:b5:25:c4:e2:ae:74: cd:0e:e4:2d:72:08:30:ef:ee:6c:de:02:82:23:4a:7a:f7:2c: 1d:39:09:dc:86:f9:50:82:9e:d4:03:5e:db:5d:3a:66:f0:03: b1:b9:ea:6f:17:68:61:f9:da:d0:6b:5e:ec:d0:16:6e:1a:d6: 5a:bc:15:d5:8d:34:1f:20:26:45:93:9f:15:0f:54:b6:33:99: 94:be:73:86:a9:fc:79:5e:e0:b9:ad:17:cf:88:1b:ab:1f:7d: 52:04:f9:e9:7a:ae:0f:7d:e8:c7:8b:ca:e3:7f:72:74:e7:43: 03:22:ca:ca:06:0c:2d:92:9d:49:0b:5c:e0:80:05:7e:d3:46: 17:0d:c7:33:90:d8:70:55:cd:2a:93:2f:68:e8:96:8a:47:98: c5:e3:4e:e8:4e:20:b8:14:f7:44:cd:ab:c6:19:1d:5f:35:64: 18:38:f1:ea:55:c7:ee:06:85:ed:3d:fc:7e:1c:fe:d8:59:67: 36:2f:3a:5e:65:d5:9e:84:9d:06:d6:56:34:3b:82:90:c5:d1: c4:bf:a1:9e -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICTckwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjExWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmUwYS01ZTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArcWKGwowpWHEh5vOe3JEeRWkCm0oBH2Gf27ic302eCJ6X5i0V+wxRgc8kPKC oGYK7oHG/ztZmr6hlGsG0bkUi6TfOVf+0eWUvMaupT103PUWftgxiXAfLqDHbM7u AMhYfTWELpQhbtmXEDYpifj7mB1vJftr3PETU9nh6fJ8EP3lVANIVQn9OnA2gnxr 1ODZTgxDFbSlLYcTCGmsDwEjr9QWaOtJSYHUcjtGF37cwOCOp/RHIUE6JOw8JFsn nIysTCMSfUiYobE5aaRPzi0z3x2GCCSRClcd7obYqyqw46gMr2qBfiN+nFDyVHBf 1noI3UjAGaItVQ4eFBhk85xRewIDAQABo4ICmDCCApQwHQYDVR0OBBYEFI9TwrSq /GBHqyQz8kYF32fTHZGAMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvOTlBOEIxNUE2 OTlEMTFFRkE5Q0E1NjM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30MEAwDQYJKoZIhvcNAQELBQADggEBAJpywQ0mjhIP qOsMhr5T0FkZGMcfuK1UMeLN3kVP9Dse3jpxIqP4s5LdPWiHPbFbYbUlxOKudM0O 5C1yCDDv7mzeAoIjSnr3LB05CdyG+VCCntQDXttdOmbwA7G56m8XaGH52tBrXuzQ Fm4a1lq8FdWNNB8gJkWTnxUPVLYzmZS+c4ap/Hle4LmtF8+IG6sffVIE+el6rg99 6MeLyuN/cnTnQwMiysoGDC2SnUkLXOCABX7TRhcNxzOQ2HBVzSqTL2jolopHmMXj TuhOILgU90TNq8YZHV81ZBg48epVx+4Ghe09/H4c/thZZzYvOl5l1Z6EnQbWVjQ7 gpDF0cS/oZ4= -----END CERTIFICATE-----Generated at Mon Sep 8 16:12:48 2025 by rpki-client