$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/DD3F28CC93D111F0B0A32B0BC4F9AE02.roa File: DD3F28CC93D111F0B0A32B0BC4F9AE02.roa (raw, json) Hash identifier: OJep3Jj5FjQRgEx+dN34IpTpsR0/ZkQ1f2GGqPdjPgg= Subject key identifier: 7D:3D:9F:2C:97:A6:5D:DF:0B:71:FD:2C:1F:43:9B:E1:09:81:A3:01 Certificate issuer: /CN=A91DF195/serialNumber=615775A4DE23E46A8B57C8F7B9C9E1E886E5D8D5 Certificate serial: 05 Authority key identifier: 61:57:75:A4:DE:23:E4:6A:8B:57:C8:F7:B9:C9:E1:E8:86:E5:D8:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/DD3F28CC93D111F0B0A32B0BC4F9AE02.roa Signing time: Wed 17 Sep 2025 14:23:22 +0000 ROA not before: Wed 17 Sep 2025 14:23:22 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 63956 IP address blocks: 2001:df5:f040::/47 maxlen: 47 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.crl rsync://rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 08:55:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF195, serialNumber=615775A4DE23E46A8B57C8F7B9C9E1E886E5D8D5 Validity Not Before: Sep 17 14:23:22 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68cac45a-e90c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7d:30:d6:0d:e2:5c:0e:23:b2:fd:fb:8e:61: 9a:8d:7f:c0:01:6c:0d:a8:5f:6f:04:5e:5f:68:2a: 29:84:2d:ed:db:b2:95:0e:1d:d6:80:f9:34:67:02: 43:4d:97:87:0e:36:36:fd:67:4b:e6:ef:dd:69:c6: dd:dc:28:8a:8f:5b:bd:4f:af:6f:8f:57:c6:89:e0: 66:2c:7c:e0:1f:22:1a:0e:0c:09:a0:f7:d1:e8:51: 9d:22:0c:d3:63:dc:bc:b1:32:b8:fc:a4:e2:ff:a1: 04:fc:c2:44:85:da:6e:4e:44:2f:98:16:7b:80:69: 02:80:8e:67:9c:1a:7f:2a:a1:d8:f1:63:f8:a8:c5: d4:62:8c:2a:06:aa:ea:d9:2f:77:7c:a1:e3:0f:a8: 6b:a7:d4:58:53:a7:aa:a1:e9:67:12:e6:89:30:77: 74:32:0f:ba:9c:e0:3d:dc:ca:d9:0e:d9:f4:35:a1: 1b:57:85:ec:f6:e5:92:a7:3b:af:4c:3a:99:87:80: 60:63:98:5e:8b:cd:2a:e9:96:a5:60:12:c3:78:b3: 0c:0c:68:32:02:fc:46:de:a1:2a:e3:51:3f:c7:2a: 74:41:c7:67:17:1d:c1:a9:39:37:b7:2f:9b:47:6e: 5c:4f:cd:5c:25:2f:e3:d4:61:69:86:9c:ba:9e:bd: 69:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:3D:9F:2C:97:A6:5D:DF:0B:71:FD:2C:1F:43:9B:E1:09:81:A3:01 X509v3 Authority Key Identifier: keyid:61:57:75:A4:DE:23:E4:6A:8B:57:C8:F7:B9:C9:E1:E8:86:E5:D8:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YVd1pN4j5GqLV8j3ucnh6Ibl2NU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF195/74C18F70938A11F0BBD62385C4F9AE02/DD3F28CC93D111F0B0A32B0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:f040::/47 Signature Algorithm: sha256WithRSAEncryption 0d:d2:65:31:20:2a:99:d6:79:1b:b0:2e:80:7e:75:72:45:e8: 13:59:b7:12:76:55:24:ac:25:0b:0d:e6:4b:e7:44:60:2a:1a: a2:2d:f9:ff:84:f1:77:97:43:d7:97:b8:b4:52:ca:84:a8:61: be:6d:3f:c8:27:d5:a3:40:3e:61:03:86:ff:dd:f5:55:15:03: b6:9a:59:a1:10:f7:86:35:f8:85:e6:48:eb:85:74:21:81:47: c3:5e:72:97:39:1f:b4:d5:db:85:30:9d:05:9e:cd:9c:f5:75: d6:d8:3b:c0:5a:bf:d7:24:51:fa:df:da:6d:8c:d0:2c:4b:c5: ac:47:f2:87:3a:9f:6c:e9:44:07:00:f9:8e:46:54:ed:96:6d: fc:4a:e7:d2:87:3b:8a:02:4d:08:63:20:a7:b7:b0:01:90:23: 9a:4d:4a:83:f2:54:fd:d7:1c:dc:76:2d:78:07:47:a9:10:c4: 61:ac:8b:2b:56:54:f6:b9:93:0a:cb:17:0d:c2:02:c1:cc:8d: c5:70:97:80:af:ba:1d:9b:fc:16:13:99:a6:47:1e:6b:5e:dd: 7a:d2:b4:49:7a:91:ad:41:9e:6b:29:a9:2e:32:6a:19:c6:37: 49:4d:fb:50:6d:07:40:cc:41:70:dd:79:43:55:9a:b4:8f:7a: f9:b4:17:03 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RjE5NTExMC8GA1UEBRMoNjE1Nzc1QTRERTIzRTQ2QThCNTdDOEY3QjlDOUUxRTg4 NkU1RDhENTAeFw0yNTA5MTcxNDIzMjJaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Y2FjNDVhLWU5MGMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9fTDWDeJcDiOy/fuOYZqNf8ABbA2oX28EXl9oKimELe3bspUOHdaA+TRnAkNN l4cONjb9Z0vm791pxt3cKIqPW71Pr2+PV8aJ4GYsfOAfIhoODAmg99HoUZ0iDNNj 3LyxMrj8pOL/oQT8wkSF2m5ORC+YFnuAaQKAjmecGn8qodjxY/ioxdRijCoGqurZ L3d8oeMPqGun1FhTp6qh6WcS5okwd3QyD7qc4D3cytkO2fQ1oRtXhez25ZKnO69M OpmHgGBjmF6LzSrplqVgEsN4swwMaDIC/EbeoSrjUT/HKnRBx2cXHcGpOTe3L5tH blxPzVwlL+PUYWmGnLqevWkPAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUfT2fLJem Xd8Lcf0sH0Ob4QmBowEwHwYDVR0jBBgwFoAUYVd1pN4j5GqLV8j3ucnh6Ibl2NUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURGMTk1Lzc0QzE4RjcwOTM4 QTExRjBCQkQ2MjM4NUM0RjlBRTAyL1lWZDFwTjRqNUdxTFY4ajN1Y25oNklibDJO VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWVZkMXBONGo1R3FMVjhqM3Vjbmg2SWJsMk5VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RjE5NS83NEMxOEY3MDkzOEExMUYwQkJENjIzODVDNEY5QUUwMi9ERDNGMjhDQzkz RDExMUYwQjBBMzJCMEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHASABDfXwQDANBgkqhkiG9w0BAQsFAAOCAQEADdJlMSAqmdZ5 G7AugH51ckXoE1m3EnZVJKwlCw3mS+dEYCoaoi35/4Txd5dD15e4tFLKhKhhvm0/ yCfVo0A+YQOG/931VRUDtppZoRD3hjX4heZI64V0IYFHw15ylzkftNXbhTCdBZ7N nPV11tg7wFq/1yRR+t/abYzQLEvFrEfyhzqfbOlEBwD5jkZU7ZZt/Ern0oc7igJN CGMgp7ewAZAjmk1Kg/JU/dcc3HYteAdHqRDEYayLK1ZU9rmTCssXDcICwcyNxXCX gK+6HZv8FhOZpkcea17detK0SXqRrUGeaympLjJqGcY3SU37UG0HQMxBcN15Q1Wa tI96+bQXAw== -----END CERTIFICATE-----Generated at Fri Sep 19 19:07:14 2025 by rpki-client