$ rpki-client -vvf rpki.apnic.net/member_repository/A91491CC/A6E23B789A0E11F089C88B7CC4F9AE02/3283B8BE9A0F11F0BC057E7DC4F9AE02.roa File: 3283B8BE9A0F11F0BC057E7DC4F9AE02.roa (raw, json) Hash identifier: 5nJEi+gK08dqnKCqeNdYXt9YEVy/CsaGnAGB6m4ykBM= Subject key identifier: 14:7F:C1:C8:10:C1:4C:38:E1:54:94:4D:9D:79:9A:3E:63:88:9E:5C Certificate issuer: /CN=A91491CC/serialNumber=F060422C175C9AE5AED7CC1E2810F2497F8D959A Certificate serial: 02 Authority key identifier: F0:60:42:2C:17:5C:9A:E5:AE:D7:CC:1E:28:10:F2:49:7F:8D:95:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8GBCLBdcmuWu18weKBDySX-NlZo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91491CC/A6E23B789A0E11F089C88B7CC4F9AE02/3283B8BE9A0F11F0BC057E7DC4F9AE02.roa Signing time: Thu 25 Sep 2025 12:57:31 +0000 ROA not before: Thu 25 Sep 2025 12:57:31 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154084 IP address blocks: 2001:df5:e7c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91491CC/A6E23B789A0E11F089C88B7CC4F9AE02/8GBCLBdcmuWu18weKBDySX-NlZo.crl rsync://rpki.apnic.net/member_repository/A91491CC/A6E23B789A0E11F089C88B7CC4F9AE02/8GBCLBdcmuWu18weKBDySX-NlZo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8GBCLBdcmuWu18weKBDySX-NlZo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:34:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91491CC, serialNumber=F060422C175C9AE5AED7CC1E2810F2497F8D959A Validity Not Before: Sep 25 12:57:31 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68d53c3b-d626 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:68:e6:f2:53:7c:64:ae:bb:4a:3e:29:9f:af: d4:36:03:1c:a4:ae:35:03:6b:37:20:e0:b3:6d:a9: 13:9c:17:06:38:7a:ef:f7:f8:88:cd:df:a5:d2:bc: 42:5e:74:df:19:26:7b:d8:65:89:65:42:76:3f:b5: 99:40:84:54:b2:61:0c:12:7a:a6:1b:c1:cc:3a:f1: 41:79:36:48:c8:bd:23:55:20:7d:8c:d6:89:fe:5b: db:4e:6b:a7:a6:47:fc:b5:cd:ce:d4:a6:fc:d2:f3: 2b:16:4e:c2:fb:60:4e:05:ad:b3:58:b5:23:d2:d9: 4a:9c:8c:ef:17:c2:81:26:8f:a0:59:3a:1e:45:08: 00:49:c8:ad:8e:44:d3:4f:95:99:3d:d2:f8:29:be: d2:4a:ab:74:eb:ea:6b:c8:d2:14:23:27:a1:7f:69: 5c:90:7d:15:cd:da:f2:9f:75:07:e2:83:24:5b:b0: 3b:04:a5:c5:c6:31:cf:f3:8b:98:86:0a:6d:58:21: 8f:f6:33:88:53:42:2e:77:50:14:19:d1:be:4e:54: 8d:50:17:9f:2f:ce:70:86:b8:85:b8:52:d8:ed:7a: 57:2a:dc:e0:32:01:7c:ee:57:7b:25:e3:55:79:a1: 58:2a:e5:52:9e:56:0e:a9:70:ff:dd:f9:9e:72:51: 36:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:7F:C1:C8:10:C1:4C:38:E1:54:94:4D:9D:79:9A:3E:63:88:9E:5C X509v3 Authority Key Identifier: keyid:F0:60:42:2C:17:5C:9A:E5:AE:D7:CC:1E:28:10:F2:49:7F:8D:95:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91491CC/A6E23B789A0E11F089C88B7CC4F9AE02/8GBCLBdcmuWu18weKBDySX-NlZo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8GBCLBdcmuWu18weKBDySX-NlZo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91491CC/A6E23B789A0E11F089C88B7CC4F9AE02/3283B8BE9A0F11F0BC057E7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:e7c0::/48 Signature Algorithm: sha256WithRSAEncryption 5f:d3:1b:54:32:ce:e0:5f:ec:c6:8d:39:1d:8d:08:fe:e0:31: ac:f3:6c:0a:d2:2c:b1:a7:5c:16:9d:86:e2:23:23:20:c3:bf: a9:b7:4a:55:5f:04:23:50:78:a3:20:57:70:97:e4:b1:90:58: d2:b7:aa:3a:28:12:f3:ea:28:8d:03:65:61:11:61:9a:fc:23: b5:b1:15:75:be:87:c2:dc:b4:6e:e4:3f:7d:a3:f6:b0:22:64: 5d:75:6e:65:cc:eb:33:9e:b5:b2:7d:9b:7a:dd:01:52:3f:66: fe:22:df:55:5c:37:38:74:6f:e7:5b:fe:7e:ca:4c:e8:a7:8f: 24:6c:d4:c3:ca:55:07:57:53:7f:9e:17:d1:12:71:da:8d:f9: 1e:df:7e:1b:0e:21:19:47:5b:5f:df:e1:81:9c:db:28:61:af: 8d:31:97:9a:bb:e1:8b:ba:1e:af:b7:e1:85:42:de:47:79:a3: 5c:18:30:ef:c6:cd:b5:8c:ba:a4:58:c1:c7:2b:e1:39:28:b1: 5e:af:12:09:13:8d:69:d8:57:c9:4d:6c:ec:19:8d:6e:f6:e3: 13:46:fe:7c:48:7f:6e:c8:1c:8f:ab:b7:26:9b:04:e2:e2:6b: 07:ae:fb:ad:05:eb:b6:2d:54:44:52:6a:8a:a9:77:f3:5a:ab: ef:3f:3f:85 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 OTFDQzExMC8GA1UEBRMoRjA2MDQyMkMxNzVDOUFFNUFFRDdDQzFFMjgxMEYyNDk3 RjhEOTU5QTAeFw0yNTA5MjUxMjU3MzFaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZDUzYzNiLWQ2MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6aObyU3xkrrtKPimfr9Q2AxykrjUDazcg4LNtqROcFwY4eu/3+IjN36XSvEJe dN8ZJnvYZYllQnY/tZlAhFSyYQwSeqYbwcw68UF5NkjIvSNVIH2M1on+W9tOa6em R/y1zc7UpvzS8ysWTsL7YE4FrbNYtSPS2UqcjO8XwoEmj6BZOh5FCABJyK2ORNNP lZk90vgpvtJKq3Tr6mvI0hQjJ6F/aVyQfRXN2vKfdQfigyRbsDsEpcXGMc/zi5iG Cm1YIY/2M4hTQi53UBQZ0b5OVI1QF58vznCGuIW4Utjtelcq3OAyAXzuV3sl41V5 oVgq5VKeVg6pcP/d+Z5yUTZTAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUFH/ByBDB TDjhVJRNnXmaPmOInlwwHwYDVR0jBBgwFoAU8GBCLBdcmuWu18weKBDySX+NlZow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ5MUNDL0E2RTIzQjc4OUEw RTExRjA4OUM4OEI3Q0M0RjlBRTAyLzhHQkNMQmRjbXVXdTE4d2VLQkR5U1gtTmxa by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOEdCQ0xCZGNtdVd1MTh3ZUtCRHlTWC1ObFpvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 OTFDQy9BNkUyM0I3ODlBMEUxMUYwODlDODhCN0NDNEY5QUUwMi8zMjgzQjhCRTlB MEYxMUYwQkMwNTdFN0RDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfXnwDANBgkqhkiG9w0BAQsFAAOCAQEAX9MbVDLO4F/s xo05HY0I/uAxrPNsCtIssadcFp2G4iMjIMO/qbdKVV8EI1B4oyBXcJfksZBY0req OigS8+oojQNlYRFhmvwjtbEVdb6Hwty0buQ/faP2sCJkXXVuZczrM561sn2bet0B Uj9m/iLfVVw3OHRv51v+fspM6KePJGzUw8pVB1dTf54X0RJx2o35Ht9+Gw4hGUdb X9/hgZzbKGGvjTGXmrvhi7oer7fhhULeR3mjXBgw78bNtYy6pFjBxyvhOSixXq8S CRONadhXyU1s7BmNbvbjE0b+fEh/bsgcj6u3JpsE4uJrB677rQXrti1URFJqiql3 81qr7z8/hQ== -----END CERTIFICATE-----Generated at Mon Oct 20 13:00:26 2025 by rpki-client