$ rpki-client -vvf rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/AEFCCA501F5A11F0BA7E6961C4F9AE02.roa File: AEFCCA501F5A11F0BA7E6961C4F9AE02.roa (raw, json) Hash identifier: oAqMSF81/AVYaU8nGd+cBMsrnw20XyD/T/zdIoEB4NE= Subject key identifier: 58:E2:13:AC:61:2E:3F:2F:BC:28:D6:CE:FA:B7:5C:DA:CB:F9:DA:60 Certificate issuer: /CN=A91F58C9/serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Certificate serial: 03A6 Authority key identifier: 19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/AEFCCA501F5A11F0BA7E6961C4F9AE02.roa Signing time: Tue 22 Apr 2025 09:17:59 +0000 ROA not before: Tue 22 Apr 2025 09:17:59 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 151055 IP address blocks: 2400:16e0::/32 maxlen: 32 2400:16e0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 01:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 934 (0x3a6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F58C9, serialNumber=192977DDAA095B4077EE0D76238463F1B6F40AEE Validity Not Before: Apr 22 09:17:59 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68075ec7-a129 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cb:47:17:0c:e3:db:d0:bd:e6:1d:b1:0c:4c: b7:48:4b:72:5c:d9:cd:b9:c5:d2:52:a3:e5:bf:7a: 48:df:08:3d:07:20:be:54:5d:aa:96:3c:80:ac:6e: 39:35:e3:0a:a6:4c:44:0b:0d:fb:b2:c7:29:65:8e: 37:35:34:e4:b9:94:89:a6:7f:fe:6e:ab:cf:c5:cd: 97:39:47:ae:34:61:72:12:04:4d:0e:52:a0:ed:00: fc:8d:31:87:e7:23:1a:ee:83:60:2a:7e:2f:8b:6e: f3:0a:65:8f:d8:aa:79:87:9c:d9:e9:72:8e:1e:b2: 7e:e2:9d:e9:0a:ac:fb:64:a7:ef:7f:11:c1:27:d0: 91:02:eb:e9:b5:63:bf:5f:75:a6:60:f2:83:b8:6a: dc:e7:d8:7b:db:b9:e4:bf:e7:16:fa:b2:e0:0e:45: 15:06:ee:8f:18:84:0a:77:19:da:67:8f:fe:c5:0e: ec:b0:53:ed:a9:39:0d:67:25:3b:f5:c8:88:42:70: 0e:df:e7:69:75:9b:a1:90:6e:d8:08:3b:2d:23:5a: 43:b7:2c:2f:1f:e9:22:90:2a:d0:4c:c5:81:b4:a1: 4c:91:aa:69:4e:08:0d:5e:55:04:17:b3:d3:04:f0: 12:21:2e:c1:a9:7d:97:3d:ec:0e:9b:58:be:3a:84: 54:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:E2:13:AC:61:2E:3F:2F:BC:28:D6:CE:FA:B7:5C:DA:CB:F9:DA:60 X509v3 Authority Key Identifier: keyid:19:29:77:DD:AA:09:5B:40:77:EE:0D:76:23:84:63:F1:B6:F4:0A:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/GSl33aoJW0B37g12I4Rj8bb0Cu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GSl33aoJW0B37g12I4Rj8bb0Cu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F58C9/40E0C0EE936C11ECBDC11A20C4F9AE02/AEFCCA501F5A11F0BA7E6961C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:16e0::/32 Signature Algorithm: sha256WithRSAEncryption 9f:e1:54:d5:4e:c5:f6:9d:9e:e4:44:26:1d:8d:dd:63:a5:6d: ab:81:8f:3a:75:a7:fc:6a:bb:34:d1:6a:e4:50:3d:f6:7f:c0: 58:4d:3d:06:17:ce:b0:3f:0e:7c:ab:25:16:2e:33:ff:d1:62: d2:62:b3:ed:52:fe:3d:e3:c1:3d:d9:f5:2e:22:9c:b8:4e:65: c7:a6:ef:0d:6a:cd:36:a7:93:26:42:e1:81:9e:e6:82:78:fa: ea:d7:db:40:b4:ae:d4:d3:bd:e9:27:11:9c:ca:1b:4a:67:3c: 75:eb:5c:b3:07:49:2d:9b:b9:26:2b:f0:ba:45:11:e6:ab:8e: 01:7f:85:22:21:8c:39:df:2d:60:c6:80:b6:35:2f:2e:03:bf: 5b:94:1d:50:97:8d:02:26:bd:dd:ef:36:0e:63:96:ed:b7:2e: 05:57:f3:bf:e1:5a:41:e6:a5:68:dc:c5:35:d7:1e:ff:e7:b7: 87:80:88:18:a0:79:68:3c:52:9b:84:87:d3:cf:e5:66:be:51: ae:38:29:56:a2:cc:b1:88:6e:1b:ac:33:f8:7b:7e:65:49:42: a2:08:48:cd:dd:4d:8a:ea:5b:c3:9e:f8:f3:da:4f:6b:ec:f6: 37:0d:05:a6:0b:62:2d:90:d8:d9:5c:80:7e:07:17:0b:1f:16: a4:6b:5e:4f -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICA6YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjU4QzkxMTAvBgNVBAUTKDE5Mjk3N0REQUEwOTVCNDA3N0VFMEQ3NjIzODQ2M0Yx QjZGNDBBRUUwHhcNMjUwNDIyMDkxNzU5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA3NWVjNy1hMTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxstHFwzj29C95h2xDEy3SEtyXNnNucXSUqPlv3pI3wg9ByC+VF2qljyArG45 NeMKpkxECw37sscpZY43NTTkuZSJpn/+bqvPxc2XOUeuNGFyEgRNDlKg7QD8jTGH 5yMa7oNgKn4vi27zCmWP2Kp5h5zZ6XKOHrJ+4p3pCqz7ZKfvfxHBJ9CRAuvptWO/ X3WmYPKDuGrc59h727nkv+cW+rLgDkUVBu6PGIQKdxnaZ4/+xQ7ssFPtqTkNZyU7 9ciIQnAO3+dpdZuhkG7YCDstI1pDtywvH+kikCrQTMWBtKFMkappTggNXlUEF7PT BPASIS7BqX2XPewOm1i+OoRU8QIDAQABo4ICljCCApIwHQYDVR0OBBYEFFjiE6xh Lj8vvCjWzvq3XNrL+dpgMB8GA1UdIwQYMBaAFBkpd92qCVtAd+4NdiOEY/G29Aru MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNThDOS80MEUwQzBFRTkz NkMxMUVDQkRDMTFBMjBDNEY5QUUwMi9HU2wzM2FvSlcwQjM3ZzEySTRSajhiYjBD dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dTbDMzYW9KVzBCMzdnMTJJNFJqOGJiMEN1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjU4QzkvNDBFMEMwRUU5MzZDMTFFQ0JEQzExQTIwQzRGOUFFMDIvQUVGQ0NBNTAx RjVBMTFGMEJBN0U2OTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkABbgMA0GCSqGSIb3DQEBCwUAA4IBAQCf4VTVTsX2nZ7k RCYdjd1jpW2rgY86daf8ars00WrkUD32f8BYTT0GF86wPw58qyUWLjP/0WLSYrPt Uv4948E92fUuIpy4TmXHpu8Nas02p5MmQuGBnuaCePrq19tAtK7U073pJxGcyhtK Zzx161yzB0ktm7kmK/C6RRHmq44Bf4UiIYw53y1gxoC2NS8uA79blB1Ql40CJr3d 7zYOY5btty4FV/O/4VpB5qVo3MU11x7/57eHgIgYoHloPFKbhIfTz+VmvlGuOClW osyxiG4brDP4e35lSUKiCEjN3U2K6lvDnvjz2k9r7PY3DQWmC2ItkNjZXIB+BxcL Hxaka15P -----END CERTIFICATE-----Generated at Fri Oct 24 09:54:15 2025 by rpki-client