$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4B86/9306A2C4F7E311EF8ADA8A41C4F9AE02/E2D9B7A6B32611F0BE8DF029C4F9AE02.roa File: E2D9B7A6B32611F0BE8DF029C4F9AE02.roa (raw, json) Hash identifier: blGbXq2yiWVicTOuyyoxLGQafJr97/lYQbfApO8b37w= Subject key identifier: DA:FC:7D:45:66:A4:6F:A6:C3:B4:97:C6:D0:18:2B:E6:B0:10:99:BB Certificate issuer: /CN=A91E4B86/serialNumber=14D5AD2722ACA86AD34F0F9A344726CB66980831 Certificate serial: 7A Authority key identifier: 14:D5:AD:27:22:AC:A8:6A:D3:4F:0F:9A:34:47:26:CB:66:98:08:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FNWtJyKsqGrTTw-aNEcmy2aYCDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4B86/9306A2C4F7E311EF8ADA8A41C4F9AE02/E2D9B7A6B32611F0BE8DF029C4F9AE02.roa Signing time: Mon 27 Oct 2025 11:20:05 +0000 ROA not before: Mon 27 Oct 2025 11:20:05 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 153551 IP address blocks: 2001:df4:f840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4B86/9306A2C4F7E311EF8ADA8A41C4F9AE02/FNWtJyKsqGrTTw-aNEcmy2aYCDE.crl rsync://rpki.apnic.net/member_repository/A91E4B86/9306A2C4F7E311EF8ADA8A41C4F9AE02/FNWtJyKsqGrTTw-aNEcmy2aYCDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FNWtJyKsqGrTTw-aNEcmy2aYCDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 06:54:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 122 (0x7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4B86, serialNumber=14D5AD2722ACA86AD34F0F9A344726CB66980831 Validity Not Before: Oct 27 11:20:05 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68ff5564-df9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:0c:dd:ad:ed:1e:ba:de:fb:cc:38:11:7e:e9: 5b:a3:32:b5:f1:17:91:1d:9b:b0:6e:62:18:92:6a: 45:6f:a7:ce:7e:4c:5f:ea:3d:b9:f0:9e:18:e1:19: 69:51:73:e5:60:f6:17:c6:e6:c5:a0:d8:fe:4e:e9: ff:8e:4e:ec:62:d7:e0:00:d0:0d:64:2e:04:cb:99: d4:4e:3c:02:3e:19:4f:10:43:26:fa:de:1e:e3:52: f3:79:34:ab:91:ae:7e:ae:d8:64:fd:1b:5c:37:54: ea:64:03:1a:c7:53:c4:c5:2d:b3:18:68:c6:01:0a: 8f:9e:ff:bf:4a:88:bf:a0:a7:36:b9:5a:46:fd:00: b3:8b:a2:bc:c7:ca:6b:01:dd:28:60:fb:a0:db:a1: 38:33:bc:fa:2b:50:42:68:43:ad:f1:05:7a:07:c6: 14:68:4b:8d:d9:38:cf:80:d2:ca:1d:1b:eb:92:4c: cb:11:90:8c:55:7c:e0:f7:12:22:4e:a0:1d:6e:42: 8c:a8:61:86:5a:77:d9:51:d7:d7:05:f9:94:09:3f: 29:5e:b5:52:57:d8:08:2e:99:01:04:ab:51:8d:9a: b1:3a:8f:2b:88:52:2a:6d:2a:aa:76:de:40:98:3f: 79:29:a1:f5:50:65:94:74:df:9e:b6:da:86:37:2d: 56:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:FC:7D:45:66:A4:6F:A6:C3:B4:97:C6:D0:18:2B:E6:B0:10:99:BB X509v3 Authority Key Identifier: keyid:14:D5:AD:27:22:AC:A8:6A:D3:4F:0F:9A:34:47:26:CB:66:98:08:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4B86/9306A2C4F7E311EF8ADA8A41C4F9AE02/FNWtJyKsqGrTTw-aNEcmy2aYCDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FNWtJyKsqGrTTw-aNEcmy2aYCDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4B86/9306A2C4F7E311EF8ADA8A41C4F9AE02/E2D9B7A6B32611F0BE8DF029C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:f840::/48 Signature Algorithm: sha256WithRSAEncryption 63:1b:f6:db:11:c7:cd:87:a4:dc:3d:9a:c5:6c:e3:25:ee:57: 88:ab:47:71:e2:90:ca:76:bf:c3:e7:18:23:75:7b:eb:b0:5e: af:f3:34:ba:74:0e:4e:06:d8:3f:bb:d0:d3:9a:ab:3d:73:27: 40:5f:db:13:50:45:31:8b:a3:91:ac:c4:9d:cd:75:94:99:f3: 98:d6:9e:05:90:b5:ed:c9:3c:23:e9:bf:7a:73:6c:61:99:49: 3b:53:be:5f:31:78:ac:a7:fe:3e:27:65:6c:3f:ec:2c:cb:e6: 5b:fb:53:37:5c:2b:bc:5b:3f:ba:c5:a4:77:35:f4:ca:31:15: ca:7a:51:95:cd:11:08:c1:ab:15:06:a8:47:df:4e:d4:f9:37: a5:26:12:dc:76:90:4b:e5:99:dd:72:28:60:78:8d:f3:7b:1e: ba:2a:dc:36:66:35:b8:c7:d2:05:c3:64:20:41:16:a4:1b:b8: e6:d3:d8:72:05:99:fe:90:0d:54:34:06:44:90:60:ed:ca:63: 22:86:28:5e:b0:35:c1:ac:12:a7:1e:36:34:64:fe:75:73:c9: 28:71:67:6a:46:57:32:81:ee:c7:41:62:bd:16:29:e6:18:52: cf:d9:78:4c:0a:9d:7a:9e:86:67:d7:f0:87:8b:cb:d4:d2:3e: 7c:5a:b3:c8 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBejANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NEI4NjExMC8GA1UEBRMoMTRENUFEMjcyMkFDQTg2QUQzNEYwRjlBMzQ0NzI2Q0I2 Njk4MDgzMTAeFw0yNTEwMjcxMTIwMDVaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZmY1NTY0LWRmOWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQChDN2t7R663vvMOBF+6VujMrXxF5Edm7BuYhiSakVvp85+TF/qPbnwnhjhGWlR c+Vg9hfG5sWg2P5O6f+OTuxi1+AA0A1kLgTLmdROPAI+GU8QQyb63h7jUvN5NKuR rn6u2GT9G1w3VOpkAxrHU8TFLbMYaMYBCo+e/79KiL+gpza5Wkb9ALOLorzHymsB 3Shg+6DboTgzvPorUEJoQ63xBXoHxhRoS43ZOM+A0sodG+uSTMsRkIxVfOD3EiJO oB1uQoyoYYZad9lR19cF+ZQJPyletVJX2AgumQEEq1GNmrE6jyuIUiptKqp23kCY P3kpofVQZZR035622oY3LVYBAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU2vx9RWak b6bDtJfG0Bgr5rAQmbswHwYDVR0jBBgwFoAUFNWtJyKsqGrTTw+aNEcmy2aYCDEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU0Qjg2LzkzMDZBMkM0RjdF MzExRUY4QURBOEE0MUM0RjlBRTAyL0ZOV3RKeUtzcUdyVFR3LWFORWNteTJhWUNE RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRk5XdEp5S3NxR3JUVHctYU5FY215MmFZQ0RFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NEI4Ni85MzA2QTJDNEY3RTMxMUVGOEFEQThBNDFDNEY5QUUwMi9FMkQ5QjdBNkIz MjYxMUYwQkU4REYwMjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfT4QDANBgkqhkiG9w0BAQsFAAOCAQEAYxv22xHHzYek 3D2axWzjJe5XiKtHceKQyna/w+cYI3V767Ber/M0unQOTgbYP7vQ05qrPXMnQF/b E1BFMYujkazEnc11lJnzmNaeBZC17ck8I+m/enNsYZlJO1O+XzF4rKf+PidlbD/s LMvmW/tTN1wrvFs/usWkdzX0yjEVynpRlc0RCMGrFQaoR99O1Pk3pSYS3HaQS+WZ 3XIoYHiN83seuircNmY1uMfSBcNkIEEWpBu45tPYcgWZ/pANVDQGRJBg7cpjIoYo XrA1wawSpx42NGT+dXPJKHFnakZXMoHux0FivRYp5hhSz9l4TAqdep6GZ9fwh4vL 1NI+fFqzyA== -----END CERTIFICATE-----Generated at Wed Nov 5 23:00:59 2025 by rpki-client