$ rpki-client -vvf rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/5C4E5A6EB9E511EB9717B256C4F9AE02.roa File: 5C4E5A6EB9E511EB9717B256C4F9AE02.roa (raw, json) Hash identifier: aRsEa/XlADK8Ys2zNZV3ljXviF6zdG4+twO2EcsTz6U= Subject key identifier: AA:3C:D0:B2:55:FB:A5:33:F9:D5:B4:54:45:F1:F1:72:B0:02:1E:59 Certificate issuer: /CN=A91803DB/serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Certificate serial: 1165 Authority key identifier: 36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/5C4E5A6EB9E511EB9717B256C4F9AE02.roa Signing time: Wed 20 Aug 2025 17:57:26 +0000 ROA not before: Wed 20 Aug 2025 17:57:26 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 142281 IP address blocks: 2404:f4c0:f9c0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 17:45:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4453 (0x1165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91803DB, serialNumber=36ED8B675EA7238085AFA06C093E54A9D3FD7B60 Validity Not Before: Aug 20 17:57:26 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68a60c86-81da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:68:04:3c:5e:7b:77:e1:32:e1:67:f6:4b:61: e3:82:5a:77:79:9c:a9:d6:ff:a5:cc:96:b8:9f:2a: db:8c:81:23:aa:47:d3:44:17:f5:08:ee:be:ec:d7: 7a:1d:ad:d4:57:38:ae:ce:19:72:12:94:71:4f:f6: 9d:ac:18:1b:ef:d7:8d:c0:f0:64:cb:b5:82:8a:66: db:5b:b4:1d:97:9e:25:96:c9:e7:28:1d:e0:df:be: 2c:a6:30:fd:10:49:08:76:b5:b2:6f:2e:af:75:f0: df:f5:b9:64:85:49:12:af:46:e5:8a:37:12:d2:eb: d9:e7:d8:10:af:46:b4:a3:32:77:46:07:b7:30:87: 5e:c7:48:e1:c2:4b:18:e2:02:1e:66:43:5d:b6:4b: fc:28:2e:ee:30:c4:a8:5e:e7:4a:c8:4b:1f:cf:df: a4:fb:62:13:eb:de:bd:33:da:b8:8b:ce:80:50:4c: 73:12:62:6d:bd:51:81:eb:fb:9e:3a:a1:bb:8f:fe: 11:a8:c2:ec:7b:6a:b7:a9:f9:75:cc:ed:1e:b5:ef: 8b:b6:41:e7:bb:53:8d:4f:f8:b5:20:06:04:06:24: bc:c3:3f:fb:80:a1:dc:13:32:b8:b7:15:14:8b:c8: e8:8b:11:85:70:b3:3a:fd:f9:89:88:50:bd:d7:2b: 41:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:3C:D0:B2:55:FB:A5:33:F9:D5:B4:54:45:F1:F1:72:B0:02:1E:59 X509v3 Authority Key Identifier: keyid:36:ED:8B:67:5E:A7:23:80:85:AF:A0:6C:09:3E:54:A9:D3:FD:7B:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu2LZ16nI4CFr6BsCT5UqdP9e2A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91803DB/0DC35D3E8DD411E9BFE2C556C4F9AE02/5C4E5A6EB9E511EB9717B256C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2404:f4c0:f9c0::/44 Signature Algorithm: sha256WithRSAEncryption 5f:fe:35:96:84:36:17:aa:03:b1:99:21:df:64:3c:ad:df:2d: 1d:9d:dd:ff:c2:81:99:fa:2b:81:22:1a:ad:48:b5:b2:03:27: 40:ab:65:32:9a:4a:d6:02:9f:8a:50:e9:37:9d:61:ba:bc:07: 3f:c6:71:c0:fe:a2:41:8c:1a:5c:45:63:81:f8:a7:3b:14:a2: 8b:c7:f9:26:6b:b1:ab:a6:1c:62:59:5e:9d:3c:d4:f0:83:e3: 7d:9e:0a:1a:69:10:52:c8:de:3e:08:54:20:2d:c1:af:6c:5d: fd:09:cb:54:79:3c:ad:0a:3f:24:69:7a:9b:58:5e:4a:d5:e4: 4c:33:d3:14:94:d1:51:ff:75:86:52:de:2c:a8:5b:87:8e:a7: 92:26:9f:34:b5:d5:19:8d:5d:24:cb:59:f7:fd:60:bb:4e:f3: 14:f2:f5:dd:ce:4f:42:c1:56:cf:e4:71:db:9b:f4:6d:6a:2f: 3b:62:fd:9c:6c:b4:ff:ac:96:7f:36:43:94:88:36:45:bb:08: 8e:52:9d:67:bb:09:38:6c:6d:2e:06:96:cd:38:07:cc:f3:01: e8:c0:8b:f0:2a:2c:23:01:0a:f0:fd:88:f7:6c:12:fe:63:dc: eb:15:7c:08:0b:58:45:6d:bf:2d:bf:92:0b:30:e5:8a:04:eb: 81:ac:ac:8c -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICEWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODAzREIxMTAvBgNVBAUTKDM2RUQ4QjY3NUVBNzIzODA4NUFGQTA2QzA5M0U1NEE5 RDNGRDdCNjAwHhcNMjUwODIwMTc1NzI2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2MGM4Ni04MWRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApmgEPF57d+Ey4Wf2S2Hjglp3eZyp1v+lzJa4nyrbjIEjqkfTRBf1CO6+7Nd6 Ha3UVziuzhlyEpRxT/adrBgb79eNwPBky7WCimbbW7Qdl54llsnnKB3g374spjD9 EEkIdrWyby6vdfDf9blkhUkSr0blijcS0uvZ59gQr0a0ozJ3Rge3MIdex0jhwksY 4gIeZkNdtkv8KC7uMMSoXudKyEsfz9+k+2IT6969M9q4i86AUExzEmJtvVGB6/ue OqG7j/4RqMLse2q3qfl1zO0ete+LtkHnu1ONT/i1IAYEBiS8wz/7gKHcEzK4txUU i8joixGFcLM6/fmJiFC91ytBEwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFKo80LJV +6Uz+dW0VEXx8XKwAh5ZMB8GA1UdIwQYMBaAFDbti2depyOAha+gbAk+VKnT/Xtg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDNEQi8wREMzNUQzRThE RDQxMUU5QkZFMkM1NTZDNEY5QUUwMi9OdTJMWjE2bkk0Q0ZyNkJzQ1Q1VXFkUDll MkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051MkxaMTZuSTRDRnI2QnNDVDVVcWRQOWUyQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODAzREIvMERDMzVEM0U4REQ0MTFFOUJGRTJDNTU2QzRGOUFFMDIvNUM0RTVBNkVC OUU1MTFFQjk3MTdCMjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkBPTA+cAwDQYJKoZIhvcNAQELBQADggEBAF/+NZaENheq A7GZId9kPK3fLR2d3f/CgZn6K4EiGq1ItbIDJ0CrZTKaStYCn4pQ6TedYbq8Bz/G ccD+okGMGlxFY4H4pzsUoovH+SZrsaumHGJZXp081PCD432eChppEFLI3j4IVCAt wa9sXf0Jy1R5PK0KPyRpeptYXkrV5Ewz0xSU0VH/dYZS3iyoW4eOp5ImnzS11RmN XSTLWff9YLtO8xTy9d3OT0LBVs/kcdub9G1qLzti/ZxstP+sln82Q5SINkW7CI5S nWe7CThsbS4Gls04B8zzAejAi/AqLCMBCvD9iPdsEv5j3OsVfAgLWEVtvy2/kgsw 5YoE64GsrIw= -----END CERTIFICATE-----Generated at Sat Aug 23 21:27:45 2025 by rpki-client