$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/808D8B4AB40211F0AD5B7354C4F9AE02.roa File: 808D8B4AB40211F0AD5B7354C4F9AE02.roa (raw, json) Hash identifier: S+5qUnemcpQGoSOv79wtTvxOi8xqGPx0E74Y3KFGkhU= Subject key identifier: 96:FB:4C:70:14:0D:8B:3D:40:72:CC:2E:8C:24:44:FA:48:B8:60:EF Certificate issuer: /CN=A91A5BCD/serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Certificate serial: 0A45 Authority key identifier: 85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/808D8B4AB40211F0AD5B7354C4F9AE02.roa Signing time: Tue 28 Oct 2025 13:32:09 +0000 ROA not before: Tue 28 Oct 2025 13:32:09 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138471 IP address blocks: 2001:df3:5c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2629 (0xa45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5BCD, serialNumber=859D184F41C34898B7298C991075CCCF51679AF1 Validity Not Before: Oct 28 13:32:09 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6900c5d9-2be8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:15:73:01:3b:8a:f2:73:f8:23:52:a4:fa:af: 38:98:3f:e3:38:61:64:86:b8:13:1b:2e:85:08:2a: 4d:8a:e4:72:2b:a3:22:bb:12:a7:19:f0:5d:e4:34: c0:13:ca:f7:85:42:c8:f4:8a:66:11:b2:3e:c4:1b: d2:74:a3:04:93:72:51:2e:04:7d:e2:53:f0:06:3d: e9:f4:ca:a9:92:d7:c8:49:96:8a:3e:4e:15:37:5f: a4:cc:4d:22:08:38:bf:42:2c:39:3f:13:ca:e4:a2: 0d:c4:d8:04:49:4a:7e:a7:b0:2a:84:58:3f:ae:8d: 34:ac:bf:19:fb:ad:90:9e:96:ed:58:a4:77:8b:49: 84:aa:a8:2f:73:d1:0a:45:97:40:dd:a0:67:55:e5: 15:b5:07:b2:eb:b1:d9:2e:55:12:bd:35:23:a0:6e: de:16:fb:ce:7e:72:94:0b:84:b8:84:ea:25:75:03: a5:0d:28:d3:7d:8d:84:dd:bd:fc:15:1a:45:b4:f3: 0e:b3:39:52:be:20:11:3f:c5:41:34:3c:62:fb:12: 0b:da:e8:1c:b4:d3:2f:80:06:88:e5:9c:e3:15:47: d3:51:8c:10:a2:77:e0:4e:c9:75:4a:3a:cc:f3:42: 6c:f2:33:05:ea:ca:dc:bc:62:d2:ab:eb:22:58:73: c2:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:FB:4C:70:14:0D:8B:3D:40:72:CC:2E:8C:24:44:FA:48:B8:60:EF X509v3 Authority Key Identifier: keyid:85:9D:18:4F:41:C3:48:98:B7:29:8C:99:10:75:CC:CF:51:67:9A:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hZ0YT0HDSJi3KYyZEHXMz1FnmvE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5BCD/61D0C4867A3A11EABF8B5826C4F9AE02/808D8B4AB40211F0AD5B7354C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:5c80::/48 Signature Algorithm: sha256WithRSAEncryption 10:ff:0c:ba:41:b0:64:3c:83:1b:53:3b:7a:b6:27:a7:8f:3a: b1:a7:89:2b:17:e9:ff:37:ea:f2:df:9c:0c:5d:44:d9:d0:81: 7f:5c:d7:21:75:2d:e3:59:1f:46:02:07:9b:79:fa:e1:f7:e8: 94:4c:09:07:f4:31:af:47:c9:02:74:34:d9:35:a0:39:94:43: 28:09:99:98:25:17:f9:d8:56:cc:1e:aa:0b:ae:e9:da:3f:34: eb:4c:e6:19:68:13:8d:d4:9d:f8:07:bc:e9:e7:df:02:23:d3: b4:50:ad:9f:20:d7:fd:5a:6c:b7:9e:4d:67:f6:f9:31:a0:66: 51:51:f6:d7:85:33:d6:d0:80:f1:e0:4d:7d:12:d9:71:c4:74: ac:04:4d:1c:ad:60:bd:37:cb:f0:77:b7:cf:f1:50:3b:66:b7: e6:27:73:43:a3:81:cb:49:d9:01:b9:cb:5c:a8:c3:a4:25:b8: 8c:c7:b3:63:72:21:e7:55:d1:e1:74:b1:ff:55:52:7b:45:5f: 82:3b:41:07:58:55:30:46:82:9d:0a:8a:d2:7f:bb:ff:f4:d4: 36:35:9b:1c:3e:ea:fb:04:80:a3:db:e6:32:74:e8:ad:b9:24: c9:dc:5f:37:19:ae:1f:4b:74:03:26:9a:d5:88:8e:60:f6:6e: 23:a5:07:50 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCkUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVCQ0QxMTAvBgNVBAUTKDg1OUQxODRGNDFDMzQ4OThCNzI5OEM5OTEwNzVDQ0NG NTE2NzlBRjEwHhcNMjUxMDI4MTMzMjA5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAwYzVkOS0yYmU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxhVzATuK8nP4I1Kk+q84mD/jOGFkhrgTGy6FCCpNiuRyK6MiuxKnGfBd5DTA E8r3hULI9IpmEbI+xBvSdKMEk3JRLgR94lPwBj3p9MqpktfISZaKPk4VN1+kzE0i CDi/Qiw5PxPK5KINxNgESUp+p7AqhFg/ro00rL8Z+62QnpbtWKR3i0mEqqgvc9EK RZdA3aBnVeUVtQey67HZLlUSvTUjoG7eFvvOfnKUC4S4hOoldQOlDSjTfY2E3b38 FRpFtPMOszlSviARP8VBNDxi+xIL2ugctNMvgAaI5ZzjFUfTUYwQonfgTsl1SjrM 80Js8jMF6srcvGLSq+siWHPCdwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFJb7THAU DYs9QHLMLowkRPpIuGDvMB8GA1UdIwQYMBaAFIWdGE9Bw0iYtymMmRB1zM9RZ5rx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUJDRC82MUQwQzQ4NjdB M0ExMUVBQkY4QjU4MjZDNEY5QUUwMi9oWjBZVDBIRFNKaTNLWXlaRUhYTXoxRm5t dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2haMFlUMEhEU0ppM0tZeVpFSFhNejFGbm12RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVCQ0QvNjFEMEM0ODY3QTNBMTFFQUJGOEI1ODI2QzRGOUFFMDIvODA4RDhCNEFC NDAyMTFGMEFENUI3MzU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zXIAwDQYJKoZIhvcNAQELBQADggEBABD/DLpBsGQ8 gxtTO3q2J6ePOrGniSsX6f836vLfnAxdRNnQgX9c1yF1LeNZH0YCB5t5+uH36JRM CQf0Ma9HyQJ0NNk1oDmUQygJmZglF/nYVsweqguu6do/NOtM5hloE43UnfgHvOnn 3wIj07RQrZ8g1/1abLeeTWf2+TGgZlFR9teFM9bQgPHgTX0S2XHEdKwETRytYL03 y/B3t8/xUDtmt+Ync0OjgctJ2QG5y1yow6QluIzHs2NyIedV0eF0sf9VUntFX4I7 QQdYVTBGgp0KitJ/u//01DY1mxw+6vsEgKPb5jJ06K25JMncXzcZrh9LdAMmmtWI jmD2biOlB1A= -----END CERTIFICATE-----Generated at Tue Nov 4 17:01:14 2025 by rpki-client