$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6B9A/1A106CD0615011EFAE7A8C73C4F9AE02/91EDFFF27CBF11F0BCA8A74FC4F9AE02.roa File: 91EDFFF27CBF11F0BCA8A74FC4F9AE02.roa (raw, json) Hash identifier: JUhKEj8SXKCy6S8oeqW1ENv6R+HMPTPZWeDqctZ/CKU= Subject key identifier: 12:C7:45:E2:CC:5B:FE:54:B1:EC:A4:18:E3:5A:E9:C1:DD:6A:E3:C8 Certificate issuer: /CN=A91E6B9A/serialNumber=327B8E83D54BA69D7C35C6A34447D1B1B011D966 Certificate serial: C7 Authority key identifier: 32:7B:8E:83:D5:4B:A6:9D:7C:35:C6:A3:44:47:D1:B1:B0:11:D9:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnuOg9VLpp18NcajREfRsbAR2WY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6B9A/1A106CD0615011EFAE7A8C73C4F9AE02/91EDFFF27CBF11F0BCA8A74FC4F9AE02.roa Signing time: Sun 07 Sep 2025 06:42:51 +0000 ROA not before: Sun 07 Sep 2025 06:42:51 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139820 IP address blocks: 2401:be60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6B9A/1A106CD0615011EFAE7A8C73C4F9AE02/MnuOg9VLpp18NcajREfRsbAR2WY.crl rsync://rpki.apnic.net/member_repository/A91E6B9A/1A106CD0615011EFAE7A8C73C4F9AE02/MnuOg9VLpp18NcajREfRsbAR2WY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnuOg9VLpp18NcajREfRsbAR2WY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:37:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 199 (0xc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6B9A, serialNumber=327B8E83D54BA69D7C35C6A34447D1B1B011D966 Validity Not Before: Sep 7 06:42:51 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68bd296b-4414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d2:49:76:5a:ec:04:15:3b:92:33:7b:f9:1b: d2:02:48:80:f5:c8:a5:87:a6:b7:37:2c:21:6f:a2: 38:77:d2:23:89:69:d6:5c:eb:ea:ba:82:d7:04:08: 46:da:e2:0f:c5:8f:09:7b:a3:94:79:fa:d3:a2:66: a3:ad:be:f0:ab:93:19:94:62:df:73:62:8d:3d:d5: 75:b1:7a:b2:c9:48:49:3e:7e:93:fa:2d:04:a2:48: 27:a2:91:f4:8a:f6:46:78:ee:da:f3:20:a4:6c:72: 82:c9:04:f4:0b:90:45:64:d2:39:45:bf:b0:35:11: 48:bf:be:4f:01:8a:b2:fd:a3:d4:95:63:6f:0f:11: 54:cd:14:11:ba:3e:53:3f:d8:ea:2a:27:d0:cd:9b: 35:d9:67:79:a2:af:0f:5d:f7:06:fe:9c:9d:23:1a: a7:48:dc:c7:e5:c6:41:1c:ed:54:68:56:e5:ab:38: b3:d5:32:7b:36:5c:c7:ea:4a:54:42:29:a7:08:1b: da:df:41:95:6b:64:3d:74:ff:0d:ca:c6:13:38:e9: 4c:f6:d4:e1:d7:ae:72:2e:26:3d:8d:e5:70:16:f4: 91:87:c9:df:c7:4b:8d:50:24:b4:cd:72:42:80:24: b7:c6:ba:dc:d2:d9:5d:b7:f6:f3:cb:e8:b8:eb:6c: 82:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:C7:45:E2:CC:5B:FE:54:B1:EC:A4:18:E3:5A:E9:C1:DD:6A:E3:C8 X509v3 Authority Key Identifier: keyid:32:7B:8E:83:D5:4B:A6:9D:7C:35:C6:A3:44:47:D1:B1:B0:11:D9:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6B9A/1A106CD0615011EFAE7A8C73C4F9AE02/MnuOg9VLpp18NcajREfRsbAR2WY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MnuOg9VLpp18NcajREfRsbAR2WY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6B9A/1A106CD0615011EFAE7A8C73C4F9AE02/91EDFFF27CBF11F0BCA8A74FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:be60::/32 Signature Algorithm: sha256WithRSAEncryption 38:bc:34:37:7f:45:e7:0b:1c:24:ba:f7:d2:83:80:f3:6c:f5: fb:ec:1b:fe:b2:a4:7b:11:ad:86:8a:55:e1:16:11:b8:ee:5f: c4:91:87:7f:42:42:d2:c7:dc:91:08:85:8e:33:0d:6b:58:92: 77:3b:02:40:96:13:79:12:9f:6c:ae:1e:8e:e2:a4:10:2f:fd: 44:cb:0b:56:34:a4:6b:36:f1:73:b2:f2:3b:43:10:bb:87:46: f9:ff:ab:de:59:96:b7:f2:5f:f2:37:6a:8f:99:1a:d4:ca:47: 1e:88:29:8e:95:d6:e7:27:52:e5:46:85:9b:c1:a0:df:23:0e: a3:06:a0:25:e2:fb:91:e4:b8:5c:96:ad:8b:25:3e:43:9f:e8: 75:e0:6d:e5:f7:b4:09:f0:de:fa:d9:54:1b:ce:ac:cf:83:1f: 45:78:04:ac:cc:2b:32:4a:15:16:38:3b:c4:4f:86:8e:83:86: 54:01:c9:8a:87:76:4a:7d:7a:2a:78:ef:41:32:dd:1d:63:44: 7d:a6:b6:e6:58:f5:28:20:86:0c:d1:62:d7:9f:b6:83:f0:2f: 95:a2:ef:6b:ca:aa:9a:c5:89:60:e6:d2:14:94:23:40:7c:9b: 73:db:d8:72:d9:d2:a4:d4:a6:32:20:c7:9e:30:d8:b6:fa:60: 5f:cc:f5:57 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAMcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZCOUExMTAvBgNVBAUTKDMyN0I4RTgzRDU0QkE2OUQ3QzM1QzZBMzQ0NDdEMUIx QjAxMUQ5NjYwHhcNMjUwOTA3MDY0MjUxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJkMjk2Yi00NDE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArtJJdlrsBBU7kjN7+RvSAkiA9cilh6a3Nywhb6I4d9IjiWnWXOvquoLXBAhG 2uIPxY8Je6OUefrTomajrb7wq5MZlGLfc2KNPdV1sXqyyUhJPn6T+i0EokgnopH0 ivZGeO7a8yCkbHKCyQT0C5BFZNI5Rb+wNRFIv75PAYqy/aPUlWNvDxFUzRQRuj5T P9jqKifQzZs12Wd5oq8PXfcG/pydIxqnSNzH5cZBHO1UaFblqziz1TJ7NlzH6kpU QimnCBva30GVa2Q9dP8NysYTOOlM9tTh165yLiY9jeVwFvSRh8nfx0uNUCS0zXJC gCS3xrrc0tldt/bzy+i462yCaQIDAQABo4ICljCCApIwHQYDVR0OBBYEFBLHReLM W/5UseykGONa6cHdauPIMB8GA1UdIwQYMBaAFDJ7joPVS6adfDXGo0RH0bGwEdlm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkI5QS8xQTEwNkNEMDYx NTAxMUVGQUU3QThDNzNDNEY5QUUwMi9NbnVPZzlWTHBwMThOY2FqUkVmUnNiQVIy V1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01udU9nOVZMcHAxOE5jYWpSRWZSc2JBUjJXWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZCOUEvMUExMDZDRDA2MTUwMTFFRkFFN0E4QzczQzRGOUFFMDIvOTFFREZGRjI3 Q0JGMTFGMEJDQThBNzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAb5gMA0GCSqGSIb3DQEBCwUAA4IBAQA4vDQ3f0XnCxwk uvfSg4DzbPX77Bv+sqR7Ea2GilXhFhG47l/EkYd/QkLSx9yRCIWOMw1rWJJ3OwJA lhN5Ep9srh6O4qQQL/1EywtWNKRrNvFzsvI7QxC7h0b5/6veWZa38l/yN2qPmRrU ykceiCmOldbnJ1LlRoWbwaDfIw6jBqAl4vuR5Lhclq2LJT5Dn+h14G3l97QJ8N76 2VQbzqzPgx9FeASszCsyShUWODvET4aOg4ZUAcmKh3ZKfXoqeO9BMt0dY0R9prbm WPUoIIYM0WLXn7aD8C+Vou9ryqqaxYlg5tIUlCNAfJtz29hy2dKk1KYyIMeeMNi2 +mBfzPVX -----END CERTIFICATE-----Generated at Thu Oct 23 06:45:33 2025 by rpki-client