$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/B2B63AAC93CF11F0AFB6CD40C4F9AE02.roa File: B2B63AAC93CF11F0AFB6CD40C4F9AE02.roa (raw, json) Hash identifier: QZkJm8VBjgXrSCDM+VZ1EYZWVut/5O77RoipwMHofMU= Subject key identifier: 74:D8:06:A9:EC:C6:95:95:9D:F7:F3:06:22:1F:CB:F0:23:31:02:8A Certificate issuer: /CN=A91DF195/serialNumber=615775A4DE23E46A8B57C8F7B9C9E1E886E5D8D5 Certificate serial: 03 Authority key identifier: 61:57:75:A4:DE:23:E4:6A:8B:57:C8:F7:B9:C9:E1:E8:86:E5:D8:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/B2B63AAC93CF11F0AFB6CD40C4F9AE02.roa Signing time: Wed 17 Sep 2025 14:07:51 +0000 ROA not before: Wed 17 Sep 2025 14:07:51 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 7545 IP address blocks: 2001:df5:f042::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.crl rsync://rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 08:55:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF195, serialNumber=615775A4DE23E46A8B57C8F7B9C9E1E886E5D8D5 Validity Not Before: Sep 17 14:07:51 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68cac0b7-aa8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b2:09:01:24:81:8c:d0:80:cb:fc:eb:96:d4: d9:83:0c:15:4e:fd:58:7d:a0:27:73:5c:19:f1:e9: 6d:20:7f:21:9b:09:ba:15:c4:f2:85:01:9c:28:2a: 47:93:86:63:54:6e:cc:98:0e:17:95:46:f0:ee:d8: d7:4a:be:e4:14:24:91:cf:76:d7:39:7c:cc:a9:da: 32:d9:86:79:7f:0d:10:b7:93:f2:9b:90:d7:91:64: db:00:a9:06:a1:13:10:9f:ae:fc:c1:21:40:bf:1a: 51:70:b4:7c:29:e4:17:11:04:2e:07:1f:87:f4:8d: fd:06:a3:61:c6:a8:ae:f4:07:ce:15:03:2e:41:db: 24:d7:7b:41:98:94:0d:4b:7f:81:84:48:e4:90:b1: 72:1e:d1:2f:16:03:1c:fd:22:64:b7:dd:d6:21:7f: 78:5e:71:a2:ed:37:64:e7:f0:e4:26:ec:43:2d:7a: 73:8e:83:65:26:b2:6a:7a:a8:22:84:86:c8:4c:b6: bf:93:1b:6a:63:fd:6e:7c:03:dd:da:99:0c:4e:d3: ff:22:c1:51:31:10:d5:ed:be:60:6e:e5:3a:43:4a: ee:28:96:36:1f:08:02:c1:83:00:56:5c:67:b0:cd: f9:36:b5:1a:72:ea:11:2b:a7:13:92:33:d9:c2:e3: 4d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:D8:06:A9:EC:C6:95:95:9D:F7:F3:06:22:1F:CB:F0:23:31:02:8A X509v3 Authority Key Identifier: keyid:61:57:75:A4:DE:23:E4:6A:8B:57:C8:F7:B9:C9:E1:E8:86:E5:D8:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/B2B63AAC93CF11F0AFB6CD40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:f042::/47 Signature Algorithm: sha256WithRSAEncryption 80:2f:fc:ca:44:b9:82:33:56:a4:0d:8b:45:92:86:20:4f:9d: e6:c5:fc:78:9f:ee:6e:0a:7a:9a:7a:f5:00:b8:17:6f:3d:4b: e9:41:21:96:7f:09:c6:a3:e0:94:52:88:34:0a:97:04:28:31: 24:c6:ff:e8:09:34:21:b1:41:50:69:d7:a9:be:ad:ee:7f:c3: 55:13:20:3d:fd:b5:25:28:95:25:48:48:ad:bb:b5:9e:82:af: c3:eb:0c:29:e6:6a:63:3d:b2:17:22:cf:e8:a9:6c:97:fd:48: 95:7c:3f:39:e3:a2:f0:70:33:ac:b7:f0:c1:3f:55:42:fa:4e: 18:11:b2:99:ad:02:03:0c:11:72:73:fc:43:c7:bb:7b:b4:82: 4f:b6:fa:07:15:24:6e:a8:cb:33:eb:d9:c8:f7:f7:40:c8:37: b1:32:83:19:79:84:06:91:8c:b6:b1:57:11:c3:27:c1:e0:d8: 71:14:bc:cc:6e:65:54:44:6f:f2:fa:5e:f2:17:a7:90:4a:b0: b4:ea:ac:4d:56:72:87:95:ce:fb:88:98:0b:e1:a5:fa:46:89: 02:48:56:dd:cb:e0:6c:04:9f:e4:6e:cc:01:98:0c:ca:69:af: bb:3e:74:cd:89:0c:34:86:ea:de:a6:2c:0a:8d:26:a1:c4:03: ad:06:e8:56 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RjE5NTExMC8GA1UEBRMoNjE1Nzc1QTRERTIzRTQ2QThCNTdDOEY3QjlDOUUxRTg4 NkU1RDhENTAeFw0yNTA5MTcxNDA3NTFaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Y2FjMGI3LWFhOGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9sgkBJIGM0IDL/OuW1NmDDBVO/Vh9oCdzXBnx6W0gfyGbCboVxPKFAZwoKkeT hmNUbsyYDheVRvDu2NdKvuQUJJHPdtc5fMyp2jLZhnl/DRC3k/KbkNeRZNsAqQah ExCfrvzBIUC/GlFwtHwp5BcRBC4HH4f0jf0Go2HGqK70B84VAy5B2yTXe0GYlA1L f4GESOSQsXIe0S8WAxz9ImS33dYhf3hecaLtN2Tn8OQm7EMtenOOg2Umsmp6qCKE hshMtr+TG2pj/W58A93amQxO0/8iwVExENXtvmBu5TpDSu4oljYfCALBgwBWXGew zfk2tRpy6hErpxOSM9nC400JAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUdNgGqezG lZWd9/MGIh/L8CMxAoowHwYDVR0jBBgwFoAUYVd1pN4j5GqLV8j3ucnh6Ibl2NUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGMTk1Lzc0QzE4RjcwOTM4 QTExRjBCQkQ2MjM4NUM0RjlBRTAyL1lWZDFwTjRqNUdxTFY4ajN1Y25oNklibDJO VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWVZkMXBONGo1R3FMVjhqM3Vjbmg2SWJsMk5VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjE5NS83NEMxOEY3MDkzOEExMUYwQkJENjIzODVDNEY5QUUwMi9CMkI2M0FBQzkz Q0YxMUYwQUZCNkNENDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHASABDfXwQjANBgkqhkiG9w0BAQsFAAOCAQEAgC/8ykS5gjNW pA2LRZKGIE+d5sX8eJ/ubgp6mnr1ALgXbz1L6UEhln8JxqPglFKINAqXBCgxJMb/ 6Ak0IbFBUGnXqb6t7n/DVRMgPf21JSiVJUhIrbu1noKvw+sMKeZqYz2yFyLP6Kls l/1IlXw/OeOi8HAzrLfwwT9VQvpOGBGyma0CAwwRcnP8Q8e7e7SCT7b6BxUkbqjL M+vZyPf3QMg3sTKDGXmEBpGMtrFXEcMnweDYcRS8zG5lVERv8vpe8henkEqwtOqs TVZyh5XO+4iYC+Gl+kaJAkhW3cvgbASf5G7MAZgMymmvuz50zYkMNIbq3qYsCo0m ocQDrQboVg== -----END CERTIFICATE-----Generated at Fri Sep 19 19:04:15 2025 by rpki-client