$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C12F4320609011F09ABA7A5BC4F9AE02.roa File: C12F4320609011F09ABA7A5BC4F9AE02.roa (raw, json) Hash identifier: VKz9c030LVUaurn1RCHAvNzdYUL2OfSVZtuTOlRX3Ng= Subject key identifier: 08:2F:44:19:59:5F:65:06:95:8F:C2:E8:81:20:7A:F8:B6:1A:27:73 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DC6 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C12F4320609011F09ABA7A5BC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:56:09 +0000 ROA not before: Thu 28 Aug 2025 14:56:09 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 152978 IP address blocks: 2001:df4:2e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19910 (0x4dc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:09 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e08-a562 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:60:12:36:48:b4:d5:95:dc:d7:8c:96:26:13: 6f:5f:81:40:f7:e8:2a:f4:99:4e:c3:bf:cd:6f:6a: f3:ba:40:ff:6c:56:74:f4:fa:91:fd:ce:e2:bb:96: 9b:09:99:03:1b:c7:d4:55:2b:91:5c:50:96:bb:23: 65:f6:58:66:8f:c3:d1:00:92:7f:fc:7d:7f:92:1d: b3:12:e2:1c:d4:6b:14:b4:53:fe:78:d0:aa:f0:95: 5d:80:76:c7:cf:f6:99:79:db:ff:da:e5:3a:05:77: 91:a1:69:0a:b6:82:38:ef:dd:95:95:07:76:4e:bd: cd:6b:1b:c1:9c:f4:54:90:d7:34:be:75:f3:01:af: 3f:ee:e9:fc:70:3d:29:b6:9f:ae:cd:72:b7:e5:fc: b5:c0:ed:1e:65:22:4a:ed:2b:b3:e3:2a:34:1c:3a: 65:3f:8e:bb:52:7d:ea:b5:39:d9:17:4b:f6:2f:a6: 42:e9:5c:ee:a0:b7:e2:3d:57:f3:26:6e:90:8f:80: b9:d7:05:5d:39:82:3e:82:fa:b1:d7:ef:d2:93:4d: 7a:be:97:a7:58:f1:02:4e:6f:d0:68:7b:d0:fa:34: fc:4c:f4:bd:24:4d:24:0d:1d:fe:c7:f1:31:a8:20: e9:21:a0:ec:42:e1:1f:f0:d2:7c:d1:f9:60:3f:44: f1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:2F:44:19:59:5F:65:06:95:8F:C2:E8:81:20:7A:F8:B6:1A:27:73 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C12F4320609011F09ABA7A5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:2e40::/48 Signature Algorithm: sha256WithRSAEncryption 3b:7e:15:7d:0f:2f:ea:a3:84:44:01:a6:e0:af:45:3f:f4:88: 9a:ce:bd:ee:74:50:15:2b:d3:d5:3d:0d:99:e6:c2:52:9b:87: f2:d2:1a:46:73:06:65:1a:f4:12:77:f3:aa:59:06:20:48:be: 7f:49:0e:17:d8:3f:cf:b2:f8:cb:72:7a:fe:6a:70:71:cb:d4: 67:14:db:45:85:93:b9:4d:9d:99:39:46:08:70:7a:ba:7f:1b: 02:f0:22:23:be:35:d7:6a:6d:40:47:fc:8f:78:f9:cf:12:c3: a4:9d:19:14:55:5f:37:ae:10:38:cc:51:9f:83:dc:46:05:f4: 77:70:d4:e8:5d:2f:70:0b:4f:e3:a3:e1:1e:fd:f0:e5:2a:e0: 48:48:e3:a8:ca:00:19:08:bc:46:4b:57:d1:b5:17:c7:c6:88: 0c:48:98:37:27:33:8a:d9:12:0b:eb:99:e6:eb:17:f6:bc:2f: 50:eb:58:85:e8:02:e2:9a:13:fd:41:be:cd:e3:31:30:6d:ed: ba:1e:d7:fe:f0:f6:5f:ae:63:4d:d0:77:d0:7b:23:c4:6e:0a: 52:23:69:c9:cc:a2:21:65:41:1d:b5:c7:d9:47:67:d0:41:d3: 0b:b9:2a:5b:02:9b:cd:fd:8a:ec:ae:f7:14:c9:21:05:d7:1f: cb:a2:c4:9c -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICTcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjA5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmUwOC1hNTYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGASNki01ZXc14yWJhNvX4FA9+gq9JlOw7/Nb2rzukD/bFZ09PqR/c7iu5ab CZkDG8fUVSuRXFCWuyNl9lhmj8PRAJJ//H1/kh2zEuIc1GsUtFP+eNCq8JVdgHbH z/aZedv/2uU6BXeRoWkKtoI4792VlQd2Tr3NaxvBnPRUkNc0vnXzAa8/7un8cD0p tp+uzXK35fy1wO0eZSJK7Suz4yo0HDplP467Un3qtTnZF0v2L6ZC6VzuoLfiPVfz Jm6Qj4C51wVdOYI+gvqx1+/Sk016vpenWPECTm/QaHvQ+jT8TPS9JE0kDR3+x/Ex qCDpIaDsQuEf8NJ80flgP0TxzwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFAgvRBlZ X2UGlY/C6IEgevi2GidzMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQzEyRjQzMjA2 MDkwMTFGMDlBQkE3QTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30LkAwDQYJKoZIhvcNAQELBQADggEBADt+FX0PL+qj hEQBpuCvRT/0iJrOve50UBUr09U9DZnmwlKbh/LSGkZzBmUa9BJ386pZBiBIvn9J DhfYP8+y+Mtyev5qcHHL1GcU20WFk7lNnZk5Rghwerp/GwLwIiO+NddqbUBH/I94 +c8Sw6SdGRRVXzeuEDjMUZ+D3EYF9Hdw1OhdL3ALT+Oj4R798OUq4EhI46jKABkI vEZLV9G1F8fGiAxImDcnM4rZEgvrmebrF/a8L1DrWIXoAuKaE/1Bvs3jMTBt7boe 1/7w9l+uY03Qd9B7I8RuClIjacnMoiFlQR21x9lHZ9BB0wu5KlsCm839iuyu9xTJ IQXXH8uixJw= -----END CERTIFICATE-----Generated at Mon Sep 8 05:38:31 2025 by rpki-client