$ rpki-client -vvf rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8AAF803A1C8A11EABAA73A62C4F9AE02.roa File: 8AAF803A1C8A11EABAA73A62C4F9AE02.roa (raw, json) Hash identifier: P1+1DUz+vfXoEUhgbF6Z4GWZWQs4iS84lJdf+sr/ADs= Subject key identifier: AC:06:50:50:70:FD:FD:BE:91:C1:30:AE:6B:7B:21:CA:38:98:D9:B4 Certificate issuer: /CN=A91A865F/serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Certificate serial: 0C01 Authority key identifier: 16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8AAF803A1C8A11EABAA73A62C4F9AE02.roa Signing time: Thu 28 Aug 2025 19:10:14 +0000 ROA not before: Thu 28 Aug 2025 19:10:14 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131270 IP address blocks: 2403:4e80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:58:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3073 (0xc01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A865F, serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Validity Not Before: Aug 28 19:10:14 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b0a995-41ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3c:0c:e5:ff:8b:1e:90:07:aa:40:88:8b:58: eb:6e:62:bc:ca:a4:0d:8f:6b:c7:dc:b0:05:ff:a6: 88:66:99:99:f0:dc:8e:9d:9b:7e:90:bf:c3:62:84: a0:2e:31:94:0d:f7:ec:07:b1:64:42:95:ef:a4:b5: 5e:48:1d:05:43:62:4a:79:4b:b9:ed:57:f3:3d:dd: 78:72:00:19:34:c5:cd:80:cf:5d:47:ea:1f:c6:6c: ae:3e:9a:6c:7f:e2:9c:26:86:2d:cd:b3:c6:a7:da: d8:a4:30:07:1d:20:4c:18:c3:e3:15:39:ab:c7:67: c2:7b:db:fe:20:b4:04:9e:83:d6:c2:f8:d1:74:1c: 63:40:ff:15:1e:60:8a:33:f9:b4:df:d1:04:d1:b8: 8f:55:48:ca:8d:58:e1:85:70:5f:b8:56:6a:84:49: 99:af:cc:d0:0e:ce:8d:54:0a:0c:fc:8e:7d:c8:80: b8:fb:28:b7:03:0c:bf:8f:14:a8:4c:9b:b9:04:af: f0:61:c2:81:04:87:65:f4:bf:d3:10:f9:44:00:83: c0:82:a8:80:25:3b:e2:b5:b4:a3:67:18:fe:26:ff: c5:d1:28:63:96:10:c1:00:eb:52:75:c4:c0:d3:7a: 1a:99:6b:8b:00:da:29:31:e8:37:6b:ef:7c:76:1b: 42:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:06:50:50:70:FD:FD:BE:91:C1:30:AE:6B:7B:21:CA:38:98:D9:B4 X509v3 Authority Key Identifier: keyid:16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8AAF803A1C8A11EABAA73A62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:4e80::/32 Signature Algorithm: sha256WithRSAEncryption aa:8a:f2:64:72:32:01:47:24:e0:d3:93:c5:41:b6:8a:7e:0e: 64:4b:c2:e3:81:e9:0f:27:73:12:19:60:a9:75:44:f2:3e:e4: 7e:17:29:70:e0:35:3b:5c:58:10:19:de:19:c0:d5:56:b8:82: 49:41:42:fe:63:71:4a:7f:92:dc:14:36:25:66:a9:65:81:8f: c2:19:9c:69:2c:ea:ef:6e:6e:78:8f:ef:21:ec:04:98:c5:69: 2a:4a:d8:61:a2:64:e1:37:40:0c:2f:16:62:21:a6:de:d5:9e: 2b:9d:ee:31:c3:d1:d2:05:55:2f:f9:c4:fd:af:08:2b:dc:71: c6:e8:cb:77:76:cb:a9:77:96:83:4d:50:85:2e:15:b2:b7:b3: 19:38:57:76:ae:74:51:0a:98:57:af:6d:41:32:8c:63:ea:a4: e1:1e:71:7e:f9:72:15:c0:d9:41:75:de:35:65:b2:20:d4:b2: 3f:32:c7:cd:53:3e:ec:7f:67:b9:2c:20:fc:61:39:4b:f4:71: 91:76:92:db:9a:7f:8d:6e:69:0f:93:87:00:49:95:b6:a5:de: 2f:fd:15:38:67:71:a4:2a:31:e7:73:89:cd:06:14:16:be:10: b4:88:c5:2e:d2:cc:43:3a:33:a3:19:70:c5:52:e1:52:95:99: 08:f5:9c:2d -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICDAEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NUYxMTAvBgNVBAUTKDE2MUUwMjJBRTg5NzUxMTJFRTc1ODlENDlCMzE2NjBD QTkwQTA0MTAwHhcNMjUwODI4MTkxMDE0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwYTk5NS00MWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsDwM5f+LHpAHqkCIi1jrbmK8yqQNj2vH3LAF/6aIZpmZ8NyOnZt+kL/DYoSg LjGUDffsB7FkQpXvpLVeSB0FQ2JKeUu57VfzPd14cgAZNMXNgM9dR+ofxmyuPpps f+KcJoYtzbPGp9rYpDAHHSBMGMPjFTmrx2fCe9v+ILQEnoPWwvjRdBxjQP8VHmCK M/m039EE0biPVUjKjVjhhXBfuFZqhEmZr8zQDs6NVAoM/I59yIC4+yi3Awy/jxSo TJu5BK/wYcKBBIdl9L/TEPlEAIPAgqiAJTvitbSjZxj+Jv/F0ShjlhDBAOtSdcTA 03oamWuLANopMeg3a+98dhtCFwIDAQABo4ICljCCApIwHQYDVR0OBBYEFKwGUFBw /f2+kcEwrmt7Ico4mNm0MB8GA1UdIwQYMBaAFBYeAirol1ES7nWJ1JsxZgypCgQQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY1Ri9CRjk2NkU0QTFD ODkxMUVBQTlCOTU3NjFDNEY5QUUwMi9GaDRDS3VpWFVSTHVkWW5VbXpGbURLa0tC QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZoNENLdWlYVVJMdWRZblVtekZtREtrS0JCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg2NUYvQkY5NjZFNEExQzg5MTFFQUE5Qjk1NzYxQzRGOUFFMDIvOEFBRjgwM0Ex QzhBMTFFQUJBQTczQTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkA06AMA0GCSqGSIb3DQEBCwUAA4IBAQCqivJkcjIBRyTg 05PFQbaKfg5kS8LjgekPJ3MSGWCpdUTyPuR+Fylw4DU7XFgQGd4ZwNVWuIJJQUL+ Y3FKf5LcFDYlZqllgY/CGZxpLOrvbm54j+8h7ASYxWkqSthhomThN0AMLxZiIabe 1Z4rne4xw9HSBVUv+cT9rwgr3HHG6Mt3dsupd5aDTVCFLhWyt7MZOFd2rnRRCphX r21BMoxj6qThHnF++XIVwNlBdd41ZbIg1LI/MsfNUz7sf2e5LCD8YTlL9HGRdpLb mn+NbmkPk4cASZW2pd4v/RU4Z3GkKjHnc4nNBhQWvhC0iMUu0sxDOjOjGXDFUuFS lZkI9Zwt -----END CERTIFICATE-----Generated at Thu Sep 18 23:27:46 2025 by rpki-client