$ rpki-client -vvf rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/A71814CA984F11F0B7A01E76C4F9AE02.roa File: A71814CA984F11F0B7A01E76C4F9AE02.roa (raw, json) Hash identifier: 3U7vBnQl/Kdt2pXpdCyuzs/qAnaveVs4aYr8QCEMg6M= Subject key identifier: D7:DA:6F:A4:A4:88:D2:7E:11:5D:EB:C1:26:FC:80:AB:A9:D4:B4:96 Certificate issuer: /CN=A91D9928/serialNumber=B5B35F924EB5C32FBB41867D3A166E4A96BBECA2 Certificate serial: 02 Authority key identifier: B5:B3:5F:92:4E:B5:C3:2F:BB:41:86:7D:3A:16:6E:4A:96:BB:EC:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbNfkk61wy-7QYZ9OhZuSpa77KI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/A71814CA984F11F0B7A01E76C4F9AE02.roa Signing time: Tue 23 Sep 2025 07:33:52 +0000 ROA not before: Tue 23 Sep 2025 07:33:52 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 15830 IP address blocks: 2402:2ce0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.crl rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbNfkk61wy-7QYZ9OhZuSpa77KI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:49:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D9928, serialNumber=B5B35F924EB5C32FBB41867D3A166E4A96BBECA2 Validity Not Before: Sep 23 07:33:52 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d24d60-a56d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:92:f1:3f:77:5e:67:8b:b6:7e:9e:b3:ca:2f: 83:b6:a5:8c:74:04:50:20:b1:62:0c:4d:fc:73:ac: 9e:b8:74:78:20:56:c6:f8:5f:0a:74:1c:85:c5:20: 57:e4:fd:70:17:a3:58:f1:41:13:d8:97:26:68:d4: 4b:d5:21:75:84:8a:e8:3a:56:e7:ec:23:37:01:9b: 5d:c1:06:a6:37:5c:f0:eb:2d:69:3c:79:27:22:73: ff:61:9e:e7:f6:c5:b3:c1:8d:82:44:f8:dd:f2:80: e0:7d:d0:92:03:c9:d7:fd:2b:c7:2f:b2:b0:cc:66: 21:62:01:57:7d:3e:52:fe:a5:59:c8:c0:94:1b:2c: 88:e1:66:01:4f:b0:cd:cb:c7:70:d8:98:5c:66:23: 95:cd:4a:77:79:ff:1d:88:a4:4f:27:56:87:e7:fa: 90:5b:b6:e4:16:12:89:99:7e:19:e2:f0:af:a0:f1: 41:f3:e9:ee:28:5f:f3:e0:78:36:c8:17:2b:66:b0: c7:4d:f8:c7:a8:b1:34:23:48:63:0b:0d:d3:09:18: 04:f2:7e:a1:d2:d3:56:43:de:e4:dd:22:03:7b:5a: b8:44:78:0a:f7:31:d9:02:f4:54:40:03:9f:4c:60: d9:b2:13:63:1f:c1:27:53:dd:fb:33:17:4e:b5:d5: 54:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:DA:6F:A4:A4:88:D2:7E:11:5D:EB:C1:26:FC:80:AB:A9:D4:B4:96 X509v3 Authority Key Identifier: keyid:B5:B3:5F:92:4E:B5:C3:2F:BB:41:86:7D:3A:16:6E:4A:96:BB:EC:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/tbNfkk61wy-7QYZ9OhZuSpa77KI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tbNfkk61wy-7QYZ9OhZuSpa77KI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D9928/57DFBEBC984F11F085402975C4F9AE02/A71814CA984F11F0B7A01E76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:2ce0::/32 Signature Algorithm: sha256WithRSAEncryption 8f:a2:42:0a:5b:41:cb:34:67:e5:54:b3:24:d9:f5:2c:7f:9d: 5b:67:ff:09:ac:c5:00:30:b2:58:8a:ea:ab:5f:9c:93:d3:67: eb:99:ae:3c:f5:22:cb:a5:25:ba:2b:29:bc:56:3d:70:28:b3: 5c:0f:bb:46:61:26:5a:a3:6e:d5:cf:b9:0a:c0:0c:ba:79:5a: 80:5a:37:af:e2:c2:24:76:8b:b5:49:da:8d:2a:c1:1c:82:53: 80:f1:4b:c6:f8:8b:fe:b0:13:3e:77:b4:d7:f4:cf:5c:67:93: 99:20:3e:f2:59:c1:f9:71:57:6f:2f:5c:75:cf:02:e9:a7:c5: 43:df:ad:b3:33:8e:fb:c3:aa:75:de:38:d7:3c:44:de:c1:c4: ce:57:e0:7f:63:e4:37:ba:9f:f0:f0:f8:a5:61:0a:50:23:da: d0:53:0c:d1:10:46:89:19:c5:e4:ea:66:80:e9:64:75:90:35: 98:b3:1a:59:0e:26:2c:fa:69:da:bd:6a:de:a2:e2:aa:7e:9d: 6e:e0:f5:ab:fe:3d:df:01:f6:24:e2:3c:a1:d2:54:4a:87:b5: 97:ac:8f:df:1e:5e:10:69:08:c2:eb:96:01:d5:06:87:e1:e2: ab:90:4f:67:78:9f:15:2c:07:fb:90:d2:03:86:56:79:26:e4: e4:fe:b8:fc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OTkyODExMC8GA1UEBRMoQjVCMzVGOTI0RUI1QzMyRkJCNDE4NjdEM0ExNjZFNEE5 NkJCRUNBMjAeFw0yNTA5MjMwNzMzNTJaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZDI0ZDYwLWE1NmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5kvE/d15ni7Z+nrPKL4O2pYx0BFAgsWIMTfxzrJ64dHggVsb4Xwp0HIXFIFfk /XAXo1jxQRPYlyZo1EvVIXWEiug6VufsIzcBm13BBqY3XPDrLWk8eScic/9hnuf2 xbPBjYJE+N3ygOB90JIDydf9K8cvsrDMZiFiAVd9PlL+pVnIwJQbLIjhZgFPsM3L x3DYmFxmI5XNSnd5/x2IpE8nVofn+pBbtuQWEomZfhni8K+g8UHz6e4oX/PgeDbI FytmsMdN+MeosTQjSGMLDdMJGATyfqHS01ZD3uTdIgN7WrhEeAr3MdkC9FRAA59M YNmyE2MfwSdT3fszF0611VSnAgMBAAGjggKWMIICkjAdBgNVHQ4EFgQU19pvpKSI 0n4RXevBJvyAq6nUtJYwHwYDVR0jBBgwFoAUtbNfkk61wy+7QYZ9OhZuSpa77KIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5OTI4LzU3REZCRUJDOTg0 RjExRjA4NTQwMjk3NUM0RjlBRTAyL3RiTmZrazYxd3ktN1FZWjlPaFp1U3BhNzdL SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdGJOZmtrNjF3eS03UVlaOU9oWnVTcGE3N0tJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTkyOC81N0RGQkVCQzk4NEYxMUYwODU0MDI5NzVDNEY5QUUwMi9BNzE4MTRDQTk4 NEYxMUYwQjdBMDFFNzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAgBggrBgEFBQcBBwEB/wQR MA8wDQQCAAIwBwMFACQCLOAwDQYJKoZIhvcNAQELBQADggEBAI+iQgpbQcs0Z+VU syTZ9Sx/nVtn/wmsxQAwsliK6qtfnJPTZ+uZrjz1IsulJborKbxWPXAos1wPu0Zh JlqjbtXPuQrADLp5WoBaN6/iwiR2i7VJ2o0qwRyCU4DxS8b4i/6wEz53tNf0z1xn k5kgPvJZwflxV28vXHXPAumnxUPfrbMzjvvDqnXeONc8RN7BxM5X4H9j5De6n/Dw +KVhClAj2tBTDNEQRokZxeTqZoDpZHWQNZizGlkOJiz6adq9at6i4qp+nW7g9av+ Pd8B9iTiPKHSVEqHtZesj98eXhBpCMLrlgHVBofh4quQT2d4nxUsB/uQ0gOGVnkm 5OT+uPw= -----END CERTIFICATE-----Generated at Sun Oct 19 08:12:31 2025 by rpki-client