$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/FA39CA70790E11EE86665E43C4F9AE02.roa File: FA39CA70790E11EE86665E43C4F9AE02.roa (raw, json) Hash identifier: PywpmG3Ulp9yYEUj3QCP+G6Bg3pUo/7QBSMXR75Q4mE= Subject key identifier: 46:30:26:E4:DC:55:9B:23:25:3B:C7:BF:E4:A4:9D:CD:C4:9E:1D:D4 Certificate issuer: /CN=A91D6DBD/serialNumber=B1C58C0785159ED73696AFB312D235CF40F3C441 Certificate serial: 0130 Authority key identifier: B1:C5:8C:07:85:15:9E:D7:36:96:AF:B3:12:D2:35:CF:40:F3:C4:41 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scWMB4UVntc2lq-zEtI1z0DzxEE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/FA39CA70790E11EE86665E43C4F9AE02.roa Signing time: Thu 05 Jun 2025 04:32:54 +0000 ROA not before: Thu 05 Jun 2025 04:32:54 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9792 IP address blocks: 203.1.240.0/21 maxlen: 21 2406:11c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/scWMB4UVntc2lq-zEtI1z0DzxEE.crl rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/scWMB4UVntc2lq-zEtI1z0DzxEE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scWMB4UVntc2lq-zEtI1z0DzxEE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:55:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6DBD, serialNumber=B1C58C0785159ED73696AFB312D235CF40F3C441 Validity Not Before: Jun 5 04:32:54 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68411df6-db4d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3f:2f:84:e0:49:95:6d:12:e7:a9:ee:8f:c7: 76:e8:f0:c8:ed:68:1b:66:f1:e6:b5:32:70:b1:0e: 7b:88:6b:46:f9:d8:9c:e6:20:e2:dd:56:0d:fe:4d: a1:90:c7:34:93:db:a0:cc:04:0d:c6:07:db:57:d7: 3f:a1:e0:77:b1:41:87:6f:9f:2d:fa:8c:c2:0d:f6: 0c:57:f0:df:4a:a4:96:00:6f:40:93:0d:45:8d:3e: 6c:b3:ac:f2:d3:4a:41:6c:5d:a3:90:aa:3a:cd:38: a8:3d:34:d8:59:7b:99:6d:e9:38:a4:d6:c6:56:cd: 96:f3:42:0c:63:8c:f6:41:72:2f:13:69:26:ba:da: 10:41:30:d5:18:4e:7b:7b:1d:b9:56:11:36:20:fe: 3d:98:8b:67:41:c3:13:78:94:72:71:a0:02:be:c3: 10:c5:4a:34:b7:ed:96:fc:19:82:fe:1a:ec:89:bf: f9:ec:76:27:bc:a1:ee:77:82:47:07:fa:9b:a5:c8: 52:a2:e4:37:6b:db:81:b2:ad:f8:1f:f5:a3:aa:b6: 5d:63:8e:73:67:ff:ee:fd:79:72:24:67:81:65:97: f0:26:24:ed:88:e0:e9:a6:c9:c6:28:bc:45:5d:11: 07:45:50:98:ee:11:79:3e:80:d3:2d:34:48:34:60: ca:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:30:26:E4:DC:55:9B:23:25:3B:C7:BF:E4:A4:9D:CD:C4:9E:1D:D4 X509v3 Authority Key Identifier: keyid:B1:C5:8C:07:85:15:9E:D7:36:96:AF:B3:12:D2:35:CF:40:F3:C4:41 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/scWMB4UVntc2lq-zEtI1z0DzxEE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scWMB4UVntc2lq-zEtI1z0DzxEE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/02AA4950790A11EE99EDD11FC4F9AE02/FA39CA70790E11EE86665E43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.1.240.0/21 IPv6: 2406:11c0::/32 Signature Algorithm: sha256WithRSAEncryption 48:34:f7:db:a1:98:2b:82:21:0d:d8:34:22:10:39:7c:cd:e6: 1f:d1:cf:d9:7e:26:e2:16:aa:31:e2:00:eb:49:9a:63:fe:00: 50:56:75:2d:50:25:2b:01:ac:a8:b5:15:70:fe:b7:aa:f9:54: 9e:30:18:66:00:a7:fe:7a:c8:c1:5b:6a:27:d6:7d:84:7e:77: 2e:e9:e8:ad:61:c2:de:ef:6e:a5:bf:6d:d7:17:4d:e9:75:f9: a7:51:b9:eb:4b:ce:4f:18:f8:68:2f:a0:c3:af:5f:65:27:87: 6e:ab:11:80:e3:f2:15:6d:aa:5b:71:f2:5d:fa:1a:07:d9:e1: e9:dd:c4:60:7c:4e:13:f2:25:1f:b4:67:e5:53:36:98:b1:69: de:5a:a8:fb:48:bf:aa:99:b4:06:b7:9a:a8:40:a6:c4:56:a8: db:d3:d0:2a:fb:24:8b:31:19:ca:22:0f:7a:45:1e:97:3c:b1: 47:23:23:f5:dd:a8:b9:39:ae:47:53:5f:fb:62:ee:ca:92:98: df:d3:7d:e0:35:4e:49:38:9d:ea:68:c5:71:90:be:6f:ef:6f: 9b:d5:0b:f2:a2:5a:8d:2e:13:eb:06:04:94:7b:0d:e2:14:e5: d9:2e:67:6b:94:fd:30:95:7d:ce:5b:da:d3:63:ec:de:65:fb: 04:91:89:1c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZEQkQxMTAvBgNVBAUTKEIxQzU4QzA3ODUxNTlFRDczNjk2QUZCMzEyRDIzNUNG NDBGM0M0NDEwHhcNMjUwNjA1MDQzMjU0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQxMWRmNi1kYjRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArz8vhOBJlW0S56nuj8d26PDI7WgbZvHmtTJwsQ57iGtG+dic5iDi3VYN/k2h kMc0k9ugzAQNxgfbV9c/oeB3sUGHb58t+ozCDfYMV/DfSqSWAG9Akw1FjT5ss6zy 00pBbF2jkKo6zTioPTTYWXuZbek4pNbGVs2W80IMY4z2QXIvE2kmutoQQTDVGE57 ex25VhE2IP49mItnQcMTeJRycaACvsMQxUo0t+2W/BmC/hrsib/57HYnvKHud4JH B/qbpchSouQ3a9uBsq34H/WjqrZdY45zZ//u/XlyJGeBZZfwJiTtiODppsnGKLxF XREHRVCY7hF5PoDTLTRINGDKLQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEYwJuTc VZsjJTvHv+Sknc3Enh3UMB8GA1UdIwQYMBaAFLHFjAeFFZ7XNpavsxLSNc9A88RB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkRCRC8wMkFBNDk1MDc5 MEExMUVFOTlFREQxMUZDNEY5QUUwMi9zY1dNQjRVVm50YzJscS16RXRJMXowRHp4 RUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NjV01CNFVWbnRjMmxxLXpFdEkxejBEenhFRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDZEQkQvMDJBQTQ5NTA3OTBBMTFFRTk5RUREMTFGQzRGOUFFMDIvRkEzOUNBNzA3 OTBFMTFFRTg2NjY1RTQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAPLAfAwDQQCAAIwBwMFACQGEcAwDQYJKoZIhvcNAQELBQAD ggEBAEg099uhmCuCIQ3YNCIQOXzN5h/Rz9l+JuIWqjHiAOtJmmP+AFBWdS1QJSsB rKi1FXD+t6r5VJ4wGGYAp/56yMFbaifWfYR+dy7p6K1hwt7vbqW/bdcXTel1+adR uetLzk8Y+GgvoMOvX2Unh26rEYDj8hVtqltx8l36GgfZ4endxGB8ThPyJR+0Z+VT Npixad5aqPtIv6qZtAa3mqhApsRWqNvT0Cr7JIsxGcoiD3pFHpc8sUcjI/XdqLk5 rkdTX/ti7sqSmN/TfeA1Tkk4nepoxXGQvm/vb5vVC/KiWo0uE+sGBJR7DeIU5dku Z2uU/TCVfc5b2tNj7N5l+wSRiRw= -----END CERTIFICATE-----Generated at Wed Nov 5 21:27:59 2025 by rpki-client