$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEA8B/C27E37964B8111F08F65507EC4F9AE02/D6E8451C889611F0B5CFE458C4F9AE02.roa File: D6E8451C889611F0B5CFE458C4F9AE02.roa (raw, json) Hash identifier: o6qskbuLkzt0B6DeqPyqMtn3vK2zO8Pni4GeYykc/7w= Subject key identifier: C0:73:82:86:8B:E7:FC:2B:0B:F5:F5:CB:B2:3D:68:5A:59:B6:0A:B7 Certificate issuer: /CN=A91BEA8B/serialNumber=B15B4057AB5096B324ABCB1C7F027B6FA366C8D5 Certificate serial: 2C Authority key identifier: B1:5B:40:57:AB:50:96:B3:24:AB:CB:1C:7F:02:7B:6F:A3:66:C8:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sVtAV6tQlrMkq8scfwJ7b6NmyNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEA8B/C27E37964B8111F08F65507EC4F9AE02/D6E8451C889611F0B5CFE458C4F9AE02.roa Signing time: Wed 03 Sep 2025 07:23:08 +0000 ROA not before: Wed 03 Sep 2025 07:23:08 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38264 IP address blocks: 2001:df5:a9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEA8B/C27E37964B8111F08F65507EC4F9AE02/sVtAV6tQlrMkq8scfwJ7b6NmyNU.crl rsync://rpki.apnic.net/member_repository/A91BEA8B/C27E37964B8111F08F65507EC4F9AE02/sVtAV6tQlrMkq8scfwJ7b6NmyNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sVtAV6tQlrMkq8scfwJ7b6NmyNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 08:14:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44 (0x2c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEA8B, serialNumber=B15B4057AB5096B324ABCB1C7F027B6FA366C8D5 Validity Not Before: Sep 3 07:23:08 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68b7ecdc-f30b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:62:ba:d1:f2:a3:7d:b6:86:6d:62:be:9d:47: 64:b5:0f:bd:60:e9:9a:01:3e:d4:e7:5d:5c:69:98: fa:43:bf:15:c9:da:0e:2a:02:25:04:3e:e1:6c:ff: 91:e8:77:55:36:68:50:ec:38:0b:12:09:f0:81:38: f6:c7:d5:08:6f:3c:8e:12:59:00:5a:8e:9a:ba:45: e3:4f:96:2f:17:57:95:65:14:9d:03:29:5a:38:7d: bd:aa:42:57:e2:9e:48:02:e5:5b:19:c1:35:de:5c: 47:9a:3d:51:0a:b1:1f:41:fe:43:91:bd:02:05:ea: 6d:2a:19:5d:af:ad:66:f9:2c:1b:b8:85:53:5e:8d: 20:9f:44:9d:d2:51:7d:5e:0c:0f:f4:7c:da:05:ad: 92:3f:d7:e7:09:ae:af:e3:dc:a2:ca:1c:06:ce:f5: b6:08:75:4b:54:9b:b9:af:04:74:a6:26:18:be:75: a8:af:fc:8b:63:ad:a8:32:35:2c:ce:b3:e2:d5:bb: 4d:f4:d3:3c:2c:12:22:fc:1c:ad:3f:22:8e:ee:34: 30:9c:a8:50:33:73:9c:d8:4e:f6:f2:50:1a:3e:3f: 47:21:a4:b0:71:8d:bd:06:ef:9c:77:32:18:0b:5b: 68:b7:79:2d:c6:43:f9:b8:e5:6a:ab:66:87:11:c2: bf:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:73:82:86:8B:E7:FC:2B:0B:F5:F5:CB:B2:3D:68:5A:59:B6:0A:B7 X509v3 Authority Key Identifier: keyid:B1:5B:40:57:AB:50:96:B3:24:AB:CB:1C:7F:02:7B:6F:A3:66:C8:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/C27E37964B8111F08F65507EC4F9AE02/sVtAV6tQlrMkq8scfwJ7b6NmyNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sVtAV6tQlrMkq8scfwJ7b6NmyNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEA8B/C27E37964B8111F08F65507EC4F9AE02/D6E8451C889611F0B5CFE458C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:a9c0::/48 Signature Algorithm: sha256WithRSAEncryption 48:95:8c:4e:a0:e2:e4:d9:4c:82:aa:ac:dd:d6:70:c7:75:8c: 6f:ba:0f:b3:97:1f:52:d6:72:0c:8b:92:64:2c:46:6d:6c:51: cc:eb:dc:86:05:88:ee:f8:41:20:25:a9:22:c9:9f:6e:2a:a3: 1d:6f:ac:ec:72:bf:dd:ea:07:90:21:c9:6a:6f:36:68:43:6e: a6:68:90:2f:4d:a3:ff:9b:34:5a:88:b0:8a:9c:ae:e6:fb:12: c7:a6:94:59:9e:23:97:65:3f:b9:e5:e7:ad:cc:cf:de:ae:32: 42:6e:d5:0b:3c:9a:9b:29:72:fb:fb:1a:49:ee:5d:b3:a6:1a: 89:df:b9:5a:e1:ba:18:db:88:07:bf:b9:10:32:77:3a:91:12: 1e:b7:f2:c3:40:12:9d:e1:19:05:7f:0d:fc:fc:64:e4:4e:e7: b9:0f:1d:15:ce:be:9e:18:9f:4c:9d:87:95:41:64:b6:ae:87: e6:ab:1d:43:53:aa:24:90:4d:96:bb:6f:cf:a5:dc:c5:26:d6: aa:28:e5:78:ed:b8:4f:1f:35:8f:f9:0c:ef:28:00:db:1c:23: be:0c:04:51:c9:17:ef:29:38:32:03:c9:9d:bf:82:50:48:30: 4f:37:a9:5e:9e:26:db:15:08:73:96:b5:f0:93:dc:ef:50:ce: 05:53:48:15 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBLDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RUE4QjExMC8GA1UEBRMoQjE1QjQwNTdBQjUwOTZCMzI0QUJDQjFDN0YwMjdCNkZB MzY2QzhENTAeFw0yNTA5MDMwNzIzMDhaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YjdlY2RjLWYzMGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDaYrrR8qN9toZtYr6dR2S1D71g6ZoBPtTnXVxpmPpDvxXJ2g4qAiUEPuFs/5Ho d1U2aFDsOAsSCfCBOPbH1QhvPI4SWQBajpq6ReNPli8XV5VlFJ0DKVo4fb2qQlfi nkgC5VsZwTXeXEeaPVEKsR9B/kORvQIF6m0qGV2vrWb5LBu4hVNejSCfRJ3SUX1e DA/0fNoFrZI/1+cJrq/j3KLKHAbO9bYIdUtUm7mvBHSmJhi+daiv/ItjragyNSzO s+LVu0300zwsEiL8HK0/Io7uNDCcqFAzc5zYTvbyUBo+P0chpLBxjb0G75x3MhgL W2i3eS3GQ/m45WqrZocRwr8BAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUwHOChovn /CsL9fXLsj1oWlm2CrcwHwYDVR0jBBgwFoAUsVtAV6tQlrMkq8scfwJ7b6NmyNUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFQThCL0MyN0UzNzk2NEI4 MTExRjA4RjY1NTA3RUM0RjlBRTAyL3NWdEFWNnRRbHJNa3E4c2Nmd0o3YjZObXlO VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc1Z0QVY2dFFsck1rcThzY2Z3SjdiNk5teU5VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RUE4Qi9DMjdFMzc5NjRCODExMUYwOEY2NTUwN0VDNEY5QUUwMi9ENkU4NDUxQzg4 OTYxMUYwQjVDRkU0NThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfWpwDANBgkqhkiG9w0BAQsFAAOCAQEASJWMTqDi5NlM gqqs3dZwx3WMb7oPs5cfUtZyDIuSZCxGbWxRzOvchgWI7vhBICWpIsmfbiqjHW+s 7HK/3eoHkCHJam82aENupmiQL02j/5s0Woiwipyu5vsSx6aUWZ4jl2U/ueXnrczP 3q4yQm7VCzyamyly+/saSe5ds6Yaid+5WuG6GNuIB7+5EDJ3OpESHrfyw0ASneEZ BX8N/Pxk5E7nuQ8dFc6+nhifTJ2HlUFktq6H5qsdQ1OqJJBNlrtvz6XcxSbWqijl eO24Tx81j/kM7ygA2xwjvgwEUckX7yk4MgPJnb+CUEgwTzepXp4m2xUIc5a18JPc 71DOBVNIFQ== -----END CERTIFICATE-----Generated at Sun Sep 7 13:06:15 2025 by rpki-client