$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D2E0D5363DD011EF883E3225C4F9AE02.roa File: D2E0D5363DD011EF883E3225C4F9AE02.roa (raw, json) Hash identifier: lQBq3e7CyMM12fkB6zoLt+7Xa+5YHMKLLa4XTVLoANE= Subject key identifier: DB:F9:28:6D:AE:D8:97:A8:8D:71:11:57:79:26:29:30:80:E1:38:DF Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DBA Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D2E0D5363DD011EF883E3225C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:55:56 +0000 ROA not before: Thu 28 Aug 2025 14:55:56 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 152940 IP address blocks: 2001:df4:440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19898 (0x4dba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:55:56 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06dfc-54c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:73:07:d7:3f:40:5b:66:14:3a:7d:36:cc:ef: 30:0a:ba:82:07:a8:89:f7:90:54:19:12:7a:e1:95: 0b:ac:63:8d:a2:94:92:8e:ed:dc:9e:07:df:79:2c: eb:68:cd:2e:a2:e2:fe:c7:7b:05:c9:0b:09:83:ed: d6:b1:16:f4:96:a4:02:2b:11:37:41:8d:0f:78:90: 2c:fe:77:f9:64:d9:9f:b7:a0:53:14:15:e3:bb:8c: 4e:e1:86:66:a7:e7:6b:35:2f:9b:d0:9b:a1:cf:eb: 6d:13:41:cc:5a:05:d1:8b:60:f5:34:71:fa:f1:6c: 8a:72:86:70:a1:25:d3:ed:24:fc:fa:76:37:d2:e9: 0b:cd:c1:f2:f0:a1:28:d5:44:a3:48:72:fa:67:0e: 57:b9:67:5d:d4:5c:9b:96:b6:fd:54:bb:13:3c:02: 42:82:ac:fb:9f:f5:18:55:6b:b9:a1:83:8a:1b:21: 70:fb:79:58:2d:95:a4:1a:a5:69:36:d7:26:4d:a3: f1:0d:73:97:d9:9e:81:ad:b3:a4:7c:88:2f:09:29: 60:f9:40:ff:7b:49:32:15:a4:fd:25:0c:65:29:4a: d8:79:fc:9f:03:cc:64:62:39:16:14:2f:cc:47:c3: 8b:1a:3b:15:16:82:8a:9d:ad:5a:5c:c2:7d:2a:b6: 62:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:F9:28:6D:AE:D8:97:A8:8D:71:11:57:79:26:29:30:80:E1:38:DF X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/D2E0D5363DD011EF883E3225C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:440::/48 Signature Algorithm: sha256WithRSAEncryption b0:b6:0b:82:a5:10:89:9b:f2:02:4c:0f:92:ea:8d:01:4f:31: 4d:db:80:cb:05:08:65:67:1a:b5:3c:1d:75:c9:f4:a2:bc:9b: 61:13:58:e9:16:92:35:e3:cb:8b:ad:53:f5:8d:d2:e8:af:e0: 05:32:9b:a5:ca:e0:5d:4b:ca:e9:86:ee:e4:14:8d:e9:47:50: c0:26:49:57:ec:ba:48:15:57:3a:44:86:c4:18:b8:98:41:fd: 96:47:f0:2d:d1:26:9a:3f:8d:86:1d:d0:59:fb:f5:e9:3f:fb: b6:63:9c:bb:ac:2c:9e:90:7e:61:d0:6c:04:8a:90:70:13:3f: 2a:72:63:37:52:6e:59:b5:ba:07:76:1d:e7:f9:fb:21:7f:9e: a6:b3:03:4f:a2:f9:f4:63:f6:74:4b:21:29:ca:a9:e6:a7:4b: 01:5c:70:2d:f7:14:ce:f2:3b:62:e4:ad:59:d8:19:1f:c0:fc: 8e:9c:f9:0d:5c:9d:70:db:8a:e3:44:11:81:16:5e:29:68:a3: db:0a:cb:cc:77:bc:83:be:e0:66:15:e8:2c:cd:58:84:7f:ab: df:14:41:b9:e6:0a:98:1c:07:8c:fb:3a:32:56:b3:c6:4a:ae: f4:c6:dc:07:ba:1a:4a:9e:f0:6b:5c:8a:c8:0c:d4:69:68:ee: 82:28:c3:ac -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICTbowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NTU2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRmYy01NGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArnMH1z9AW2YUOn02zO8wCrqCB6iJ95BUGRJ64ZULrGONopSSju3cngffeSzr aM0uouL+x3sFyQsJg+3WsRb0lqQCKxE3QY0PeJAs/nf5ZNmft6BTFBXju4xO4YZm p+drNS+b0Juhz+ttE0HMWgXRi2D1NHH68WyKcoZwoSXT7ST8+nY30ukLzcHy8KEo 1USjSHL6Zw5XuWdd1Fyblrb9VLsTPAJCgqz7n/UYVWu5oYOKGyFw+3lYLZWkGqVp NtcmTaPxDXOX2Z6BrbOkfIgvCSlg+UD/e0kyFaT9JQxlKUrYefyfA8xkYjkWFC/M R8OLGjsVFoKKna1aXMJ9KrZijwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFNv5KG2u 2JeojXERV3kmKTCA4TjfMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvRDJFMEQ1MzYz REQwMTFFRjg4M0UzMjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30BEAwDQYJKoZIhvcNAQELBQADggEBALC2C4KlEImb 8gJMD5LqjQFPMU3bgMsFCGVnGrU8HXXJ9KK8m2ETWOkWkjXjy4utU/WN0uiv4AUy m6XK4F1LyumG7uQUjelHUMAmSVfsukgVVzpEhsQYuJhB/ZZH8C3RJpo/jYYd0Fn7 9ek/+7ZjnLusLJ6QfmHQbASKkHATPypyYzdSblm1ugd2Hef5+yF/nqazA0+i+fRj 9nRLISnKqeanSwFccC33FM7yO2LkrVnYGR/A/I6c+Q1cnXDbiuNEEYEWXiloo9sK y8x3vIO+4GYV6CzNWIR/q98UQbnmCpgcB4z7OjJWs8ZKrvTG3Ae6Gkqe8GtcisgM 1Glo7oIow6w= -----END CERTIFICATE-----Generated at Mon Sep 8 05:42:16 2025 by rpki-client