$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/B25FEE6E85EB11F088AFC15EC4F9AE02.roa File: B25FEE6E85EB11F088AFC15EC4F9AE02.roa (raw, json) Hash identifier: FmTdhb6JOatjzFGpUujz0yqqemXgtcfk0JQ/+/a77U0= Subject key identifier: F6:29:E7:CE:D7:1C:09:48:B5:FC:CE:9E:CD:E5:B8:BC:0A:05:47:64 Certificate issuer: /CN=A91FDAD4/serialNumber=5430A414AA05B6731DC2D64A70C619C669346A0E Certificate serial: 0463 Authority key identifier: 54:30:A4:14:AA:05:B6:73:1D:C2:D6:4A:70:C6:19:C6:69:34:6A:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VDCkFKoFtnMdwtZKcMYZxmk0ag4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/B25FEE6E85EB11F088AFC15EC4F9AE02.roa Signing time: Sat 30 Aug 2025 21:53:00 +0000 ROA not before: Sat 30 Aug 2025 21:53:00 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 4766 IP address blocks: 2400:8d60:18::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/VDCkFKoFtnMdwtZKcMYZxmk0ag4.crl rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/VDCkFKoFtnMdwtZKcMYZxmk0ag4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VDCkFKoFtnMdwtZKcMYZxmk0ag4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 00:37:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1123 (0x463) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDAD4, serialNumber=5430A414AA05B6731DC2D64A70C619C669346A0E Validity Not Before: Aug 30 21:53:00 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68b372bc-62cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:24:65:7a:6c:1f:5c:41:36:26:77:fa:b6:aa: 67:4d:6e:d9:9b:f7:78:79:de:22:1e:7f:96:d1:d6: 5d:d4:7e:2f:8e:3d:00:57:83:49:88:e1:28:54:b6: dc:da:17:41:ab:7c:d1:33:fd:b8:65:67:86:5e:8d: 76:02:73:b1:a9:25:c1:15:67:4f:76:97:2c:53:da: 16:c4:87:d5:7d:97:6b:5a:c1:c9:83:12:95:f1:ac: 9e:7c:96:a2:fb:ef:8e:75:e0:ea:56:72:fa:f9:1b: 1e:e7:42:9d:0d:1a:b1:6c:ab:23:3f:b0:ae:65:46: b6:71:d3:1d:88:b0:64:85:49:14:dd:c9:76:0d:86: d7:9a:6d:2c:0e:d1:7d:76:02:02:a2:d8:ed:e6:2b: fd:55:ca:1e:94:54:1f:4c:5b:cc:00:0f:19:1a:09: 63:89:f5:61:19:1a:da:ce:ed:46:f1:ce:cf:96:b7: c4:a3:ba:dc:3c:c6:d8:5b:b3:51:5e:46:72:db:0e: 53:db:d0:78:2f:f4:97:33:10:43:5a:71:49:3a:88: 70:68:42:5b:a2:93:56:da:bf:ba:11:a4:7d:30:5b: 0c:00:2f:68:18:70:c2:ce:13:ab:34:38:d1:f1:be: 93:eb:e9:37:fd:5a:da:cd:58:c2:d2:85:f7:3f:64: a2:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:29:E7:CE:D7:1C:09:48:B5:FC:CE:9E:CD:E5:B8:BC:0A:05:47:64 X509v3 Authority Key Identifier: keyid:54:30:A4:14:AA:05:B6:73:1D:C2:D6:4A:70:C6:19:C6:69:34:6A:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/VDCkFKoFtnMdwtZKcMYZxmk0ag4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VDCkFKoFtnMdwtZKcMYZxmk0ag4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C423183077B511ECA5BCE05FC4F9AE02/B25FEE6E85EB11F088AFC15EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:8d60:18::/48 Signature Algorithm: sha256WithRSAEncryption 58:ee:04:45:c5:cf:10:1d:c3:ca:a3:78:86:ed:1a:b1:39:31: 4c:a6:36:80:a9:96:22:15:b7:4a:73:84:5d:ce:57:93:5e:ca: f6:9c:46:1c:0f:74:7c:94:42:e0:92:b4:51:5f:f8:32:72:2a: 37:6a:d9:c7:5c:33:d5:dd:d1:ff:be:1d:c1:82:99:46:d1:0b: 55:5c:6c:77:28:43:d1:98:91:a3:31:97:7a:a8:ea:21:18:c4: 6c:46:82:dd:30:ad:af:2c:a6:d2:6b:aa:bc:6c:24:2f:2c:ca: cb:5a:17:97:95:4b:51:b4:68:a2:1b:42:0d:f3:bb:ae:19:0c: e1:af:e3:95:e6:06:69:25:02:45:91:ba:aa:02:ba:d4:f1:0d: 0b:7b:ff:28:65:0b:74:dd:5d:6e:af:fe:86:84:88:bb:b6:a0: 68:d2:0e:d3:db:0b:e9:d8:e0:38:cc:97:b0:69:59:c0:46:41: 85:0a:8a:43:e6:f0:e9:3c:5c:ec:57:bf:38:4d:13:5c:ef:db: 4e:2a:d8:b1:33:7d:74:c4:82:60:25:42:09:a0:17:21:03:13: 4c:63:2c:17:7b:c4:d2:d3:53:d2:fe:60:2a:d3:56:7f:d9:ba: c5:e8:29:77:e9:80:48:3a:24:4c:2f:56:d1:39:09:07:4f:9a: d4:5a:fc:0d -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICBGMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBRDQxMTAvBgNVBAUTKDU0MzBBNDE0QUEwNUI2NzMxREMyRDY0QTcwQzYxOUM2 NjkzNDZBMEUwHhcNMjUwODMwMjE1MzAwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzNzJiYy02MmNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlCRlemwfXEE2Jnf6tqpnTW7Zm/d4ed4iHn+W0dZd1H4vjj0AV4NJiOEoVLbc 2hdBq3zRM/24ZWeGXo12AnOxqSXBFWdPdpcsU9oWxIfVfZdrWsHJgxKV8ayefJai +++OdeDqVnL6+Rse50KdDRqxbKsjP7CuZUa2cdMdiLBkhUkU3cl2DYbXmm0sDtF9 dgICotjt5iv9VcoelFQfTFvMAA8ZGgljifVhGRrazu1G8c7PlrfEo7rcPMbYW7NR XkZy2w5T29B4L/SXMxBDWnFJOohwaEJbopNW2r+6EaR9MFsMAC9oGHDCzhOrNDjR 8b6T6+k3/VrazVjC0oX3P2SijQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPYp587X HAlItfzOns3luLwKBUdkMB8GA1UdIwQYMBaAFFQwpBSqBbZzHcLWSnDGGcZpNGoO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREFENC9DNDIzMTgzMDc3 QjUxMUVDQTVCQ0UwNUZDNEY5QUUwMi9WRENrRktvRnRuTWR3dFpLY01ZWnhtazBh ZzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZEQ2tGS29GdG5NZHd0WktjTVlaeG1rMGFnNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRBRDQvQzQyMzE4MzA3N0I1MTFFQ0E1QkNFMDVGQzRGOUFFMDIvQjI1RkVFNkU4 NUVCMTFGMDg4QUZDMTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAI1gABgwDQYJKoZIhvcNAQELBQADggEBAFjuBEXFzxAd w8qjeIbtGrE5MUymNoCpliIVt0pzhF3OV5NeyvacRhwPdHyUQuCStFFf+DJyKjdq 2cdcM9Xd0f++HcGCmUbRC1VcbHcoQ9GYkaMxl3qo6iEYxGxGgt0wra8sptJrqrxs JC8systaF5eVS1G0aKIbQg3zu64ZDOGv45XmBmklAkWRuqoCutTxDQt7/yhlC3Td XW6v/oaEiLu2oGjSDtPbC+nY4DjMl7BpWcBGQYUKikPm8Ok8XOxXvzhNE1zv204q 2LEzfXTEgmAlQgmgFyEDE0xjLBd7xNLTU9L+YCrTVn/ZusXoKXfpgEg6JEwvVtE5 CQdPmtRa/A0= -----END CERTIFICATE-----Generated at Fri Sep 5 08:35:44 2025 by rpki-client