$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/F7F2D20ABCE911EFB7786B63C4F9AE02.roa File: F7F2D20ABCE911EFB7786B63C4F9AE02.roa (raw, json) Hash identifier: SY9pZakTz+Y+bprs2Qaz2rmG63LM9RAeEr8PBsMxkEI= Subject key identifier: B8:7E:61:09:B5:1B:39:79:3E:65:83:B2:04:F9:CE:A8:11:47:FA:DA Certificate issuer: /CN=A91AF3C6/serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Certificate serial: 0814 Authority key identifier: 60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/F7F2D20ABCE911EFB7786B63C4F9AE02.roa Signing time: Thu 28 Aug 2025 21:43:44 +0000 ROA not before: Thu 28 Aug 2025 21:43:44 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 132857 IP address blocks: 43.243.56.0/23 maxlen: 24 2407:2b00::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 21:12:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2068 (0x814) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF3C6, serialNumber=606EE85DC3C467FC464A894ED47A9F1BD321B441 Validity Not Before: Aug 28 21:43:44 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68b0cd90-4e3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:18:1c:50:31:cf:d4:ca:a3:ea:fa:3e:22:1c: f5:10:74:71:a0:d1:33:34:1a:37:91:d3:6a:bf:8d: d4:42:f4:b6:5d:59:f2:b5:d3:93:aa:82:c8:23:24: d5:3a:0f:c1:73:d6:1d:b1:f7:02:96:26:d6:d9:09: 5d:06:ff:d8:12:57:3a:54:aa:82:35:24:58:64:18: 7d:01:aa:59:de:fc:93:fb:61:f3:b6:59:82:b6:48: 61:51:eb:37:82:f4:50:75:6e:93:3e:68:17:2e:9e: c1:cc:29:f7:1c:59:e8:40:cd:1a:1c:11:99:eb:07: 2e:27:cd:39:81:2f:d3:40:40:6b:fc:0a:11:85:cf: 6d:8f:b2:b3:8d:1c:16:77:b5:0d:da:43:95:c2:cc: 36:dd:23:41:0c:e3:40:11:7f:75:96:55:35:cb:65: 3a:98:d1:c3:86:42:3a:5c:46:34:64:3a:41:27:84: 98:b4:fd:34:a2:d0:04:9a:95:8f:8f:4e:e9:73:ee: 7f:4f:ff:3d:9b:2d:1a:66:cd:a3:c2:d9:2b:9a:9e: b7:f0:8f:ff:2b:28:51:89:3b:5a:d0:9e:01:2d:b1: 57:da:05:3b:84:8c:13:1c:9d:16:b2:f0:38:38:21: 2b:21:a7:5f:ba:e5:d5:11:d8:8a:55:a0:95:49:e5: 69:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:7E:61:09:B5:1B:39:79:3E:65:83:B2:04:F9:CE:A8:11:47:FA:DA X509v3 Authority Key Identifier: keyid:60:6E:E8:5D:C3:C4:67:FC:46:4A:89:4E:D4:7A:9F:1B:D3:21:B4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/YG7oXcPEZ_xGSolO1HqfG9MhtEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YG7oXcPEZ_xGSolO1HqfG9MhtEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF3C6/631CC160F33811EAA63D4154C4F9AE02/F7F2D20ABCE911EFB7786B63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.56.0/23 IPv6: 2407:2b00::/32 Signature Algorithm: sha256WithRSAEncryption 52:59:8b:27:dd:88:f8:f1:a7:f1:84:f6:6c:35:05:78:25:ec: f6:f3:37:2c:92:2c:b0:8b:e4:e3:69:42:c8:f7:b5:6e:0a:66: fb:2a:c3:43:f0:c2:79:e3:2f:76:ad:55:8b:e6:ad:0b:72:93: e0:10:aa:c3:8e:75:4d:a8:74:ea:76:ca:f4:ad:53:5c:9b:f4: 66:33:11:a7:f1:53:93:12:68:38:6b:b4:68:7e:49:01:59:55: fc:a7:38:6c:a1:54:21:8e:8c:38:88:f6:b7:da:76:0c:a9:3e: b4:69:45:77:04:52:00:16:c4:34:b0:f9:bb:19:0a:8a:9b:1e: b0:43:8c:b5:79:79:3d:33:ad:a4:e7:4d:e6:0c:fa:9b:9a:36: 46:3a:22:fe:e3:33:bf:f8:50:99:9e:88:53:2f:cf:84:63:04: da:0f:8b:17:10:05:ce:38:44:29:45:5e:08:53:fd:96:fc:dc: 41:59:93:fc:90:4f:af:38:24:26:f3:72:ea:db:c0:38:d7:1c: 6e:af:67:5f:95:2e:32:6a:83:0e:f3:04:d1:2b:2b:10:21:b2: 55:1f:e0:fd:77:3c:83:91:89:b3:6d:77:8a:82:07:c4:72:0b: c3:3e:74:02:76:2f:71:52:b4:a5:30:b9:b6:32:dd:32:0a:78: 64:6d:9b:89 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCBQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYzQzYxMTAvBgNVBAUTKDYwNkVFODVEQzNDNDY3RkM0NjRBODk0RUQ0N0E5RjFC RDMyMUI0NDEwHhcNMjUwODI4MjE0MzQ0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwY2Q5MC00ZTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1RgcUDHP1Mqj6vo+Ihz1EHRxoNEzNBo3kdNqv43UQvS2XVnytdOTqoLIIyTV Og/Bc9YdsfcClibW2QldBv/YElc6VKqCNSRYZBh9AapZ3vyT+2HztlmCtkhhUes3 gvRQdW6TPmgXLp7BzCn3HFnoQM0aHBGZ6wcuJ805gS/TQEBr/AoRhc9tj7KzjRwW d7UN2kOVwsw23SNBDONAEX91llU1y2U6mNHDhkI6XEY0ZDpBJ4SYtP00otAEmpWP j07pc+5/T/89my0aZs2jwtkrmp638I//KyhRiTta0J4BLbFX2gU7hIwTHJ0WsvA4 OCErIadfuuXVEdiKVaCVSeVpvwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLh+YQm1 Gzl5PmWDsgT5zqgRR/raMB8GA1UdIwQYMBaAFGBu6F3DxGf8RkqJTtR6nxvTIbRB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjNDNi82MzFDQzE2MEYz MzgxMUVBQTYzRDQxNTRDNEY5QUUwMi9ZRzdvWGNQRVpfeEdTb2xPMUhxZkc5TWh0 RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lHN29YY1BFWl94R1NvbE8xSHFmRzlNaHRFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYzQzYvNjMxQ0MxNjBGMzM4MTFFQUE2M0Q0MTU0QzRGOUFFMDIvRjdGMkQyMEFC Q0U5MTFFRkI3Nzg2QjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAEr8zgwDQQCAAIwBwMFACQHKwAwDQYJKoZIhvcNAQELBQAD ggEBAFJZiyfdiPjxp/GE9mw1BXgl7PbzNyySLLCL5ONpQsj3tW4KZvsqw0Pwwnnj L3atVYvmrQtyk+AQqsOOdU2odOp2yvStU1yb9GYzEafxU5MSaDhrtGh+SQFZVfyn OGyhVCGOjDiI9rfadgypPrRpRXcEUgAWxDSw+bsZCoqbHrBDjLV5eT0zraTnTeYM +puaNkY6Iv7jM7/4UJmeiFMvz4RjBNoPixcQBc44RClFXghT/Zb83EFZk/yQT684 JCbzcurbwDjXHG6vZ1+VLjJqgw7zBNErKxAhslUf4P13PIORibNtd4qCB8RyC8M+ dAJ2L3FStKUwubYy3TIKeGRtm4k= -----END CERTIFICATE-----Generated at Fri Sep 19 20:53:16 2025 by rpki-client