$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AFF917909DA211EFAAD6D010C4F9AE02.roa File: AFF917909DA211EFAAD6D010C4F9AE02.roa (raw, json) Hash identifier: kK1B22Lle5JiRBTbKgMv07axEGPyEFXKrFFgrk+ryqY= Subject key identifier: D6:BE:95:8B:82:19:80:A7:93:4C:35:45:76:E1:58:5B:BE:21:A1:E8 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DD1 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AFF917909DA211EFAAD6D010C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:56:18 +0000 ROA not before: Thu 28 Aug 2025 14:56:18 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153032 IP address blocks: 2001:df4:8740::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19921 (0x4dd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:18 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e12-604d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:0a:cb:32:69:9e:58:4c:36:7f:dc:ce:6a:2e: cc:31:eb:9f:d7:f1:cb:0e:fc:13:c6:b2:5c:0e:d5: ec:4a:16:81:4b:96:d5:93:f6:99:0c:10:67:7d:6e: be:24:e6:ed:71:7f:f9:1e:f8:17:ac:d1:fe:75:0f: 24:13:6f:34:98:c6:6f:58:12:6c:c0:48:6b:77:e9: 6c:e8:21:62:0c:c6:f1:64:b2:b0:5b:8b:93:51:75: f5:3f:b8:47:2a:70:2e:ed:e1:83:88:d2:d5:16:5e: 75:33:39:86:47:a7:4c:ee:6e:91:fb:53:95:cb:a9: e7:f1:9a:0d:18:95:d8:97:01:92:b8:9c:cd:d9:ba: e9:39:3b:d7:f4:cf:5d:fd:42:68:4f:0b:40:ac:4d: b0:2c:b0:30:d3:22:a0:9e:53:31:18:72:98:75:4f: e5:a7:be:1c:4c:f0:7f:7c:1c:53:8b:4f:53:69:4f: 9e:b3:5e:58:e2:4c:7b:df:bd:e5:cb:88:40:a6:15: f7:d2:bf:55:b7:fb:de:9a:c4:37:8e:f8:26:90:b7: b4:68:b2:af:0d:53:98:26:81:60:3b:ee:38:09:36: 4e:1f:e7:93:c2:ab:4a:63:e1:51:02:a1:e2:61:57: 96:9a:46:1f:d1:c0:09:dc:50:b0:46:41:62:21:9a: ea:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:BE:95:8B:82:19:80:A7:93:4C:35:45:76:E1:58:5B:BE:21:A1:E8 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AFF917909DA211EFAAD6D010C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:8740::/48 Signature Algorithm: sha256WithRSAEncryption b3:ea:4b:31:24:2d:6b:b7:a8:f4:6e:bc:3f:7d:92:d1:80:79: 59:ea:e9:c2:3d:a8:11:37:78:4f:2f:3e:55:53:5b:4b:65:85: 47:c1:18:ba:4a:9e:0e:a3:fd:0b:5d:c4:6e:b4:ff:70:07:44: 10:0d:3d:0f:25:72:3b:4e:48:0c:a8:15:3b:b2:20:12:14:40: 5a:5d:2b:43:5a:42:90:c3:c6:b7:6e:36:55:83:ca:2f:43:f5: 27:27:a0:fd:1e:3e:68:e8:02:ea:2b:b1:c8:50:07:00:30:fd: ee:3f:7a:5a:58:62:78:27:b7:ce:f5:4a:25:09:c3:bc:e9:3c: 04:56:7a:12:35:81:0c:1d:3e:bf:49:44:6a:4a:7c:db:88:9f: 8f:49:6a:d2:dc:cc:21:03:64:1a:12:10:f9:27:3d:f9:fd:1a: 0e:0c:df:f2:e7:0d:5d:8e:62:e1:c2:cc:b3:04:7b:63:65:a8: 05:e9:1e:fb:3c:7d:a3:82:d2:3f:38:e0:b7:93:da:64:67:de: 82:f1:32:c1:58:12:e6:62:78:b5:1a:14:0b:e5:b7:01:9b:79: 83:97:f7:74:e3:56:26:7e:26:2c:da:dd:58:0c:34:f2:33:9e: 92:15:bb:06:6a:b7:f6:f5:cd:89:2a:8f:bc:b3:03:c7:8b:44: d2:c2:1b:ff -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICTdEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjE4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmUxMi02MDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmwrLMmmeWEw2f9zOai7MMeuf1/HLDvwTxrJcDtXsShaBS5bVk/aZDBBnfW6+ JObtcX/5HvgXrNH+dQ8kE280mMZvWBJswEhrd+ls6CFiDMbxZLKwW4uTUXX1P7hH KnAu7eGDiNLVFl51MzmGR6dM7m6R+1OVy6nn8ZoNGJXYlwGSuJzN2brpOTvX9M9d /UJoTwtArE2wLLAw0yKgnlMxGHKYdU/lp74cTPB/fBxTi09TaU+es15Y4kx7373l y4hAphX30r9Vt/vemsQ3jvgmkLe0aLKvDVOYJoFgO+44CTZOH+eTwqtKY+FRAqHi YVeWmkYf0cAJ3FCwRkFiIZrqlQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNa+lYuC GYCnk0w1RXbhWFu+IaHoMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQUZGOTE3OTA5 REEyMTFFRkFBRDZEMDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30h0AwDQYJKoZIhvcNAQELBQADggEBALPqSzEkLWu3 qPRuvD99ktGAeVnq6cI9qBE3eE8vPlVTW0tlhUfBGLpKng6j/QtdxG60/3AHRBAN PQ8lcjtOSAyoFTuyIBIUQFpdK0NaQpDDxrduNlWDyi9D9ScnoP0ePmjoAuorschQ BwAw/e4/elpYYngnt871SiUJw7zpPARWehI1gQwdPr9JRGpKfNuIn49JatLczCED ZBoSEPknPfn9Gg4M3/LnDV2OYuHCzLMEe2NlqAXpHvs8faOC0j844LeT2mRn3oLx MsFYEuZieLUaFAvltwGbeYOX93TjViZ+Jiza3VgMNPIznpIVuwZqt/b1zYkqj7yz A8eLRNLCG/8= -----END CERTIFICATE-----Generated at Mon Sep 8 05:38:35 2025 by rpki-client