$ rpki-client -vvf rpki.apnic.net/member_repository/A91126E7/ACB5F7469DD411F0A69FC63FC4F9AE02/658118DC9DD511F0B7B21741C4F9AE02.roa File: 658118DC9DD511F0B7B21741C4F9AE02.roa (raw, json) Hash identifier: rVG2mMMlI46nAQV2wjCxVFoXhNfbyWdlWS1Fu6xYQuI= Subject key identifier: 42:00:87:36:82:F8:89:40:A5:BF:EC:11:CC:A5:5E:42:32:D3:05:AE Certificate issuer: /CN=A91126E7/serialNumber=8C5BC3DBEFD7D7E8642A8F8979EFB673F0E1F317 Certificate serial: 04 Authority key identifier: 8C:5B:C3:DB:EF:D7:D7:E8:64:2A:8F:89:79:EF:B6:73:F0:E1:F3:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFvD2-_X1-hkKo-Jee-2c_Dh8xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91126E7/ACB5F7469DD411F0A69FC63FC4F9AE02/658118DC9DD511F0B7B21741C4F9AE02.roa Signing time: Tue 30 Sep 2025 08:20:58 +0000 ROA not before: Tue 30 Sep 2025 08:20:58 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 2571 IP address blocks: 2403:c580:fff0::/48 maxlen: 48 2403:c580:fff1::/48 maxlen: 48 2403:c580:fff2::/48 maxlen: 48 2403:c580:fff3::/48 maxlen: 48 2403:c580:fff4::/48 maxlen: 48 2403:c580:fff5::/48 maxlen: 48 2403:c580:fff6::/48 maxlen: 48 2403:c580:fff7::/48 maxlen: 48 2403:c580:fff8::/48 maxlen: 48 2403:c580:fff9::/48 maxlen: 48 2403:c580:fffa::/48 maxlen: 48 2403:c580:fffb::/48 maxlen: 48 2403:c580:fffc::/48 maxlen: 48 2403:c580:fffd::/48 maxlen: 48 2403:c580:fffe::/48 maxlen: 48 2403:c580:ffff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91126E7/ACB5F7469DD411F0A69FC63FC4F9AE02/jFvD2-_X1-hkKo-Jee-2c_Dh8xc.crl rsync://rpki.apnic.net/member_repository/A91126E7/ACB5F7469DD411F0A69FC63FC4F9AE02/jFvD2-_X1-hkKo-Jee-2c_Dh8xc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFvD2-_X1-hkKo-Jee-2c_Dh8xc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:36:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91126E7, serialNumber=8C5BC3DBEFD7D7E8642A8F8979EFB673F0E1F317 Validity Not Before: Sep 30 08:20:58 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68db92ea-cc1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:00:1d:c8:76:fb:3a:56:70:38:0c:29:c3:df: be:06:df:5d:ea:d9:6b:89:df:3f:0b:60:fb:8f:95: 25:5f:1b:3f:fa:c7:fa:39:45:e3:00:4b:dc:40:1e: d4:4a:01:2b:4a:ec:f7:83:55:a7:ef:a1:a2:a7:f5: f5:0e:d7:9c:98:c1:89:0c:44:92:42:03:c1:ee:67: 1b:db:d6:9c:65:77:2a:1a:c2:eb:e0:b8:d9:ee:8b: 07:1b:c4:5b:6f:a6:29:4d:41:d6:ea:c2:58:3f:fe: 3c:56:28:e5:e5:6d:96:18:e7:fe:d0:cd:22:7a:2b: 69:d9:01:01:9f:d5:35:77:30:26:a5:63:1d:6b:5d: cc:6c:9e:f1:2b:5e:8e:dd:e7:c5:37:68:df:9e:84: c7:ae:3c:36:28:c9:25:9c:ee:1f:cc:84:53:1a:f7: 41:49:ad:bd:21:f9:09:35:48:83:0e:df:09:18:d2: d8:f1:16:66:83:f6:35:b5:85:b9:f3:a4:2d:12:35: 68:4c:88:48:db:1b:8b:24:b1:55:3a:5b:16:49:b8: a3:47:47:1a:f3:d5:1d:b3:17:13:90:55:6b:67:e2: f5:a6:54:70:e1:e2:3d:e2:4e:f5:f7:e4:1f:6a:74: 20:33:ab:7b:95:dc:1a:5f:f0:79:e2:7b:81:1b:ce: 72:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:00:87:36:82:F8:89:40:A5:BF:EC:11:CC:A5:5E:42:32:D3:05:AE X509v3 Authority Key Identifier: keyid:8C:5B:C3:DB:EF:D7:D7:E8:64:2A:8F:89:79:EF:B6:73:F0:E1:F3:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91126E7/ACB5F7469DD411F0A69FC63FC4F9AE02/jFvD2-_X1-hkKo-Jee-2c_Dh8xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jFvD2-_X1-hkKo-Jee-2c_Dh8xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91126E7/ACB5F7469DD411F0A69FC63FC4F9AE02/658118DC9DD511F0B7B21741C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2403:c580:fff0::/44 Signature Algorithm: sha256WithRSAEncryption 1f:68:9a:59:89:42:e4:df:ba:20:4e:31:16:33:35:e6:5d:7a: 04:45:a7:3a:46:12:61:29:10:cc:85:ac:0d:23:c4:2a:39:5b: 55:4e:9d:85:78:c2:f7:3f:06:92:a8:15:9a:0d:15:70:e5:fd: 6d:5b:88:49:c7:a2:8d:58:24:2b:74:3f:49:f8:ff:dc:95:ef: db:94:b5:a5:ff:c5:92:08:3e:3b:6d:8e:04:99:5b:79:3b:77: ac:7f:ad:33:d7:21:54:7c:a7:87:15:45:48:5b:e6:c9:98:9d: 13:1c:09:91:a1:53:7a:07:98:d6:7d:03:9d:5d:91:da:29:1c: ed:20:b2:ce:56:6a:e9:c5:92:3e:2d:b4:58:65:88:7b:f8:e1: c9:63:52:8d:0c:35:ec:12:49:80:d1:bc:fd:60:31:9c:b5:df: b7:05:9f:97:ea:57:cc:72:53:9e:ce:80:94:15:b6:0b:20:36: 17:60:77:be:ed:96:c5:f4:80:b6:1f:61:f2:c1:4b:4e:a1:e0: e0:25:d7:a8:ef:e6:5a:de:70:60:b3:26:ef:e4:56:82:5b:e4: 8b:b1:d6:39:8d:0a:db:f3:8b:c6:71:58:e8:7f:d0:e5:f5:4b: 95:d8:3a:36:9f:4c:27:00:c2:24:fb:32:e4:77:e7:58:0b:b6: 9e:af:ce:e9 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MjZFNzExMC8GA1UEBRMoOEM1QkMzREJFRkQ3RDdFODY0MkE4Rjg5NzlFRkI2NzNG MEUxRjMxNzAeFw0yNTA5MzAwODIwNThaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZGI5MmVhLWNjMWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCSAB3Idvs6VnA4DCnD374G313q2WuJ3z8LYPuPlSVfGz/6x/o5ReMAS9xAHtRK AStK7PeDVafvoaKn9fUO15yYwYkMRJJCA8HuZxvb1pxldyoawuvguNnuiwcbxFtv pilNQdbqwlg//jxWKOXlbZYY5/7QzSJ6K2nZAQGf1TV3MCalYx1rXcxsnvErXo7d 58U3aN+ehMeuPDYoySWc7h/MhFMa90FJrb0h+Qk1SIMO3wkY0tjxFmaD9jW1hbnz pC0SNWhMiEjbG4sksVU6WxZJuKNHRxrz1R2zFxOQVWtn4vWmVHDh4j3iTvX35B9q dCAzq3uV3Bpf8Hnie4EbznK/AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUQgCHNoL4 iUClv+wRzKVeQjLTBa4wHwYDVR0jBBgwFoAUjFvD2+/X1+hkKo+Jee+2c/Dh8xcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEyNkU3L0FDQjVGNzQ2OURE NDExRjBBNjlGQzYzRkM0RjlBRTAyL2pGdkQyLV9YMS1oa0tvLUplZS0yY19EaDh4 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvakZ2RDItX1gxLWhrS28tSmVlLTJjX0RoOHhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MjZFNy9BQ0I1Rjc0NjlERDQxMUYwQTY5RkM2M0ZDNEY5QUUwMi82NTgxMThEQzlE RDUxMUYwQjdCMjE3NDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHBCQDxYD/8DANBgkqhkiG9w0BAQsFAAOCAQEAH2iaWYlC5N+6 IE4xFjM15l16BEWnOkYSYSkQzIWsDSPEKjlbVU6dhXjC9z8GkqgVmg0VcOX9bVuI SceijVgkK3Q/Sfj/3JXv25S1pf/Fkgg+O22OBJlbeTt3rH+tM9chVHynhxVFSFvm yZidExwJkaFTegeY1n0DnV2R2ikc7SCyzlZq6cWSPi20WGWIe/jhyWNSjQw17BJJ gNG8/WAxnLXftwWfl+pXzHJTns6AlBW2CyA2F2B3vu2WxfSAth9h8sFLTqHg4CXX qO/mWt5wYLMm7+RWglvki7HWOY0K2/OLxnFY6H/Q5fVLldg6Np9MJwDCJPsy5Hfn WAu2nq/O6Q== -----END CERTIFICATE-----Generated at Mon Oct 20 17:58:54 2025 by rpki-client