$ rpki-client -vvf rpki.apnic.net/member_repository/A91D901E/E6E880D878DA11F0B0FBE216C4F9AE02/58F7915E78DC11F084C71D2BC4F9AE02.roa File: 58F7915E78DC11F084C71D2BC4F9AE02.roa (raw, json) Hash identifier: jTESa3U73YRI0+Qom5Rj/Y57jrY10Y9T/v9pDSvTy48= Subject key identifier: 49:89:A8:99:CB:2D:35:54:F9:FE:0E:A0:DF:C3:C0:F1:FE:90:18:70 Certificate issuer: /CN=A91D901E/serialNumber=0BBBA4124BA4C7C8A7F9D097EEEAA9832F097967 Certificate serial: 02 Authority key identifier: 0B:BB:A4:12:4B:A4:C7:C8:A7:F9:D0:97:EE:EA:A9:83:2F:09:79:67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7ukEkukx8in-dCX7uqpgy8JeWc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D901E/E6E880D878DA11F0B0FBE216C4F9AE02/58F7915E78DC11F084C71D2BC4F9AE02.roa Signing time: Thu 14 Aug 2025 07:00:23 +0000 ROA not before: Thu 14 Aug 2025 07:00:23 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 152595 IP address blocks: 2001:df5:c9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D901E/E6E880D878DA11F0B0FBE216C4F9AE02/C7ukEkukx8in-dCX7uqpgy8JeWc.crl rsync://rpki.apnic.net/member_repository/A91D901E/E6E880D878DA11F0B0FBE216C4F9AE02/C7ukEkukx8in-dCX7uqpgy8JeWc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7ukEkukx8in-dCX7uqpgy8JeWc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 08:23:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D901E, serialNumber=0BBBA4124BA4C7C8A7F9D097EEEAA9832F097967 Validity Not Before: Aug 14 07:00:23 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689d8987-1145 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:63:0f:dc:b6:45:db:5d:71:4d:00:34:34:8c: 99:e5:6c:08:2e:3e:63:38:a8:89:2f:9a:db:d0:a9: 18:28:95:10:7d:98:ff:56:05:ef:dd:d7:a9:9a:2b: 58:7a:7b:68:d5:b1:0d:2f:19:0d:17:31:c8:a5:71: 7c:ee:61:77:c5:5f:e9:39:f4:b3:25:6e:e4:75:6c: 9e:b6:7a:10:29:97:5c:a4:6c:25:96:92:0d:03:b1: f1:2a:47:10:9f:80:f1:2c:74:db:74:37:43:d0:d7: 50:f5:9c:24:6c:e1:28:d9:ab:bd:81:61:5b:55:d9: 5d:50:55:96:a8:63:04:d2:a3:5d:c7:0f:cd:af:71: d4:d5:f9:02:a9:0e:0b:d0:73:c8:3f:36:81:ab:06: bb:b4:3a:1d:38:58:d7:ed:d0:fd:30:b7:88:85:20: da:fa:b7:de:d7:35:62:3c:f9:de:98:d7:86:3b:34: 36:05:36:48:6f:35:6b:61:c5:59:29:13:91:8f:99: 7d:0f:d1:c6:5a:d6:15:ea:e1:5f:15:f2:b5:2a:ca: 96:c7:8a:79:a7:34:a8:f1:c7:6a:33:7e:85:61:13: 01:c2:fc:e1:fb:72:75:02:dd:bf:af:1c:1d:0c:8a: 87:0b:a2:1c:73:67:a9:59:fa:47:3f:5e:62:d9:1c: 63:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:89:A8:99:CB:2D:35:54:F9:FE:0E:A0:DF:C3:C0:F1:FE:90:18:70 X509v3 Authority Key Identifier: keyid:0B:BB:A4:12:4B:A4:C7:C8:A7:F9:D0:97:EE:EA:A9:83:2F:09:79:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D901E/E6E880D878DA11F0B0FBE216C4F9AE02/C7ukEkukx8in-dCX7uqpgy8JeWc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C7ukEkukx8in-dCX7uqpgy8JeWc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D901E/E6E880D878DA11F0B0FBE216C4F9AE02/58F7915E78DC11F084C71D2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:c9c0::/48 Signature Algorithm: sha256WithRSAEncryption 57:29:5f:e7:06:ac:b9:92:f3:7b:70:04:6b:c4:2e:70:05:f1: 89:3b:c3:0b:05:62:b5:69:ab:12:77:81:ae:a3:81:7c:0b:ff: ab:19:c9:41:a7:29:c5:5a:74:ef:21:a3:46:a2:41:e0:f4:28: 34:86:8f:08:38:3a:6f:6b:c8:83:2b:a3:c0:89:62:03:2d:cd: 4c:91:91:f8:4a:1c:88:ea:9f:82:a0:46:a7:0c:ac:e7:f8:09: 8d:c8:b1:fd:ba:4d:0a:7f:0e:d0:13:9d:b0:96:a7:70:f4:bf: 72:1f:be:2b:c1:46:1b:f3:2f:33:22:6a:71:4d:d2:e3:04:10: 15:18:fc:72:1b:67:19:cf:6c:ef:47:94:78:9e:f7:a8:7d:d1: 8f:84:2b:e3:80:33:53:b7:98:20:1c:46:c8:34:21:35:6b:95: 02:cb:62:06:c6:4c:68:a5:1e:64:2a:d6:73:ca:85:49:0d:b9: 85:b9:1c:6a:3b:5e:ed:75:c5:db:3c:6a:bb:96:bd:ae:78:ef: 68:09:cb:ea:3e:37:c5:dd:ab:b4:06:ab:b0:11:10:58:35:31: 34:b4:62:7b:6e:fa:01:69:4d:6c:15:ba:e4:f1:4b:83:41:d9: 20:81:9d:ef:a2:6e:89:ec:91:fb:cb:1d:fc:c3:79:d4:6d:e9: a7:68:06:d3 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OTAxRTExMC8GA1UEBRMoMEJCQkE0MTI0QkE0QzdDOEE3RjlEMDk3RUVFQUE5ODMy RjA5Nzk2NzAeFw0yNTA4MTQwNzAwMjNaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OWQ4OTg3LTExNDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKYw/ctkXbXXFNADQ0jJnlbAguPmM4qIkvmtvQqRgolRB9mP9WBe/d16maK1h6 e2jVsQ0vGQ0XMcilcXzuYXfFX+k59LMlbuR1bJ62ehApl1ykbCWWkg0DsfEqRxCf gPEsdNt0N0PQ11D1nCRs4SjZq72BYVtV2V1QVZaoYwTSo13HD82vcdTV+QKpDgvQ c8g/NoGrBru0Oh04WNft0P0wt4iFINr6t97XNWI8+d6Y14Y7NDYFNkhvNWthxVkp E5GPmX0P0cZa1hXq4V8V8rUqypbHinmnNKjxx2ozfoVhEwHC/OH7cnUC3b+vHB0M iocLohxzZ6lZ+kc/XmLZHGPRAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUSYmomcst NVT5/g6g38PA8f6QGHAwHwYDVR0jBBgwFoAUC7ukEkukx8in+dCX7uqpgy8JeWcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5MDFFL0U2RTg4MEQ4NzhE QTExRjBCMEZCRTIxNkM0RjlBRTAyL0M3dWtFa3VreDhpbi1kQ1g3dXFwZ3k4SmVX Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQzd1a0VrdWt4OGluLWRDWDd1cXBneThKZVdjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTAxRS9FNkU4ODBEODc4REExMUYwQjBGQkUyMTZDNEY5QUUwMi81OEY3OTE1RTc4 REMxMUYwODRDNzFEMkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfXJwDANBgkqhkiG9w0BAQsFAAOCAQEAVylf5wasuZLz e3AEa8QucAXxiTvDCwVitWmrEneBrqOBfAv/qxnJQacpxVp07yGjRqJB4PQoNIaP CDg6b2vIgyujwIliAy3NTJGR+EociOqfgqBGpwys5/gJjcix/bpNCn8O0BOdsJan cPS/ch++K8FGG/MvMyJqcU3S4wQQFRj8chtnGc9s70eUeJ73qH3Rj4Qr44AzU7eY IBxGyDQhNWuVAstiBsZMaKUeZCrWc8qFSQ25hbkcajte7XXF2zxqu5a9rnjvaAnL 6j43xd2rtAarsBEQWDUxNLRie276AWlNbBW65PFLg0HZIIGd76JuieyR+8sd/MN5 1G3pp2gG0w== -----END CERTIFICATE-----Generated at Fri Aug 22 18:26:50 2025 by rpki-client