$ rpki-client -vvf rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/A0A96F80AD8511F08B0A1857C4F9AE02.roa File: A0A96F80AD8511F08B0A1857C4F9AE02.roa (raw, json) Hash identifier: t9ZR43HnAKoalgiXujun76aYHrEWcp3GaNOsCcUWGPs= Subject key identifier: E1:B2:26:3A:CF:B3:E4:A6:C8:F5:69:5B:B6:FB:1F:DE:30:82:89:27 Certificate issuer: /CN=A91B65E6/serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Certificate serial: 06DA Authority key identifier: 88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/A0A96F80AD8511F08B0A1857C4F9AE02.roa Signing time: Mon 20 Oct 2025 07:23:09 +0000 ROA not before: Mon 20 Oct 2025 07:23:09 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 55201 IP address blocks: 2401:d3c0::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 07:23:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1754 (0x6da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B65E6, serialNumber=88782F831F369E96F979A2585CF273C916C7B4FD Validity Not Before: Oct 20 07:23:09 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68f5e35c-a37f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c1:9a:ee:af:2b:7e:85:ac:c4:90:ec:b0:16: 5a:1d:3d:b2:87:f8:55:5a:90:c1:3a:bc:bf:d7:0e: e0:37:22:f0:1e:b6:e4:37:73:26:82:eb:ea:02:14: 74:be:5e:fd:7e:e3:89:f9:a5:32:a3:7d:dd:f1:95: 64:38:2e:d4:02:fd:af:43:52:56:56:c5:0c:47:c7: 81:95:44:e1:e3:5f:a8:1b:c3:bf:17:51:f4:1e:18: 41:ae:c4:a0:66:11:0b:88:55:6f:2a:01:69:f7:52: 8b:91:bf:2b:c5:da:a8:b5:31:55:c3:de:b1:3a:f6: 81:67:16:07:ad:ca:ce:20:35:51:86:6f:23:58:09: 19:69:eb:49:71:d4:ed:52:3b:5a:33:3c:69:66:c4: 91:83:df:c7:f2:e5:62:ae:b6:e3:06:83:39:d6:bc: a3:7b:4c:29:a0:35:b3:01:ef:00:af:5d:23:30:f2: e6:1d:8f:82:66:ca:c4:7e:a4:4c:3f:b9:7e:bc:5c: fb:d9:f7:e2:cb:bb:e6:92:02:b3:d8:da:6a:29:ed: c4:94:1c:ae:9d:1a:6f:80:65:e7:85:6f:c0:96:c9: a3:89:e7:d9:50:67:36:7a:b7:44:a9:4d:03:16:35: b3:ec:60:1a:9d:e6:f4:dc:1c:81:aa:2f:d7:0b:bd: 96:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:B2:26:3A:CF:B3:E4:A6:C8:F5:69:5B:B6:FB:1F:DE:30:82:89:27 X509v3 Authority Key Identifier: keyid:88:78:2F:83:1F:36:9E:96:F9:79:A2:58:5C:F2:73:C9:16:C7:B4:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/iHgvgx82npb5eaJYXPJzyRbHtP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iHgvgx82npb5eaJYXPJzyRbHtP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B65E6/87D1ED067A8711EB908EBD63C4F9AE02/A0A96F80AD8511F08B0A1857C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:d3c0::/32 Signature Algorithm: sha256WithRSAEncryption 6e:59:36:bb:e5:de:c1:73:e0:5c:30:5b:88:5b:f4:11:7d:30: df:8e:fb:77:06:fa:6c:86:91:6d:7b:5f:56:3c:90:8f:77:4c: 2c:a2:aa:b5:12:9b:5c:93:74:c7:de:d6:09:72:2f:d6:04:c2: 00:39:5f:75:95:aa:72:7b:f0:c2:83:b0:99:82:7f:fd:4c:cd: fa:be:ae:fd:2b:70:12:15:02:45:c4:6f:61:0c:1c:6b:19:fe: 48:0c:43:f7:82:65:72:1b:9d:ed:e5:6f:49:2b:fa:29:bf:6e: 9f:cc:63:21:43:c8:a5:1c:ee:41:64:53:e6:99:01:8c:e1:88: 0d:e4:c8:c8:31:ca:13:a7:7c:b0:da:48:1f:72:ed:fb:72:70: 90:4a:60:bc:b1:7c:92:cc:0d:87:b6:64:56:5b:38:b6:a1:c0: e7:1f:25:27:b1:08:b1:40:60:60:1b:fe:b3:ce:df:4c:48:50: dc:ee:82:ae:6a:99:2b:8f:fd:28:23:bb:14:2f:33:bc:ad:bd: 3d:55:f7:f0:b1:08:67:f0:e1:8d:d2:27:9b:ea:9c:f7:e0:de: ce:aa:ac:76:7b:72:53:db:72:dd:d4:ee:69:37:a5:c5:7d:cf: df:b3:8a:83:b5:e5:72:c9:60:d9:dd:f6:a2:5c:34:a1:3d:28: 04:d1:0d:11 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1RTYxMTAvBgNVBAUTKDg4NzgyRjgzMUYzNjlFOTZGOTc5QTI1ODVDRjI3M0M5 MTZDN0I0RkQwHhcNMjUxMDIwMDcyMzA5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY1ZTM1Yy1hMzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsGa7q8rfoWsxJDssBZaHT2yh/hVWpDBOry/1w7gNyLwHrbkN3MmguvqAhR0 vl79fuOJ+aUyo33d8ZVkOC7UAv2vQ1JWVsUMR8eBlUTh41+oG8O/F1H0HhhBrsSg ZhELiFVvKgFp91KLkb8rxdqotTFVw96xOvaBZxYHrcrOIDVRhm8jWAkZaetJcdTt UjtaMzxpZsSRg9/H8uVirrbjBoM51ryje0wpoDWzAe8Ar10jMPLmHY+CZsrEfqRM P7l+vFz72ffiy7vmkgKz2NpqKe3ElByunRpvgGXnhW/AlsmjiefZUGc2erdEqU0D FjWz7GAaneb03ByBqi/XC72WYQIDAQABo4ICljCCApIwHQYDVR0OBBYEFOGyJjrP s+SmyPVpW7b7H94wgoknMB8GA1UdIwQYMBaAFIh4L4MfNp6W+XmiWFzyc8kWx7T9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjVFNi84N0QxRUQwNjdB ODcxMUVCOTA4RUJENjNDNEY5QUUwMi9pSGd2Z3g4Mm5wYjVlYUpZWFBKenlSYkh0 UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lIZ3ZneDgybnBiNWVhSllYUEp6eVJiSHRQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1RTYvODdEMUVEMDY3QTg3MTFFQjkwOEVCRDYzQzRGOUFFMDIvQTBBOTZGODBB RDg1MTFGMDhCMEExODU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAdPAMA0GCSqGSIb3DQEBCwUAA4IBAQBuWTa75d7Bc+Bc MFuIW/QRfTDfjvt3BvpshpFte19WPJCPd0wsoqq1Eptck3TH3tYJci/WBMIAOV91 lapye/DCg7CZgn/9TM36vq79K3ASFQJFxG9hDBxrGf5IDEP3gmVyG53t5W9JK/op v26fzGMhQ8ilHO5BZFPmmQGM4YgN5MjIMcoTp3yw2kgfcu37cnCQSmC8sXySzA2H tmRWWzi2ocDnHyUnsQixQGBgG/6zzt9MSFDc7oKuapkrj/0oI7sULzO8rb09Vffw sQhn8OGN0ieb6pz34N7Oqqx2e3JT23Ld1O5pN6XFfc/fs4qDteVyyWDZ3faiXDSh PSgE0Q0R -----END CERTIFICATE-----Generated at Tue Oct 21 22:24:40 2025 by rpki-client