$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C51B0D3644EB11F088B1CD7BC4F9AE02.roa File: C51B0D3644EB11F088B1CD7BC4F9AE02.roa (raw, json) Hash identifier: AGMjRaYlhQ3Hhz1Fiu5g+mBPBrCGZikwT2qC+DODGHU= Subject key identifier: 20:8D:37:82:DB:3F:FB:20:2D:46:7B:07:0B:34:3C:2D:62:A3:25:0D Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4DB8 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C51B0D3644EB11F088B1CD7BC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:55:55 +0000 ROA not before: Thu 28 Aug 2025 14:55:55 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 152934 IP address blocks: 2001:df3:f040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:36:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19896 (0x4db8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:55:55 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06dfb-4f77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:2b:b9:17:e6:f1:6a:94:a9:f3:22:df:b2:50: 3a:4c:01:98:b2:d4:4f:be:7a:1c:31:c9:66:a2:67: 3c:a0:6a:f7:0e:2c:39:c3:21:86:8c:f0:ee:5e:10: 75:7a:c8:52:7f:ef:cb:21:b0:1e:b8:e5:53:21:8c: db:87:ac:92:44:a8:cd:f9:9a:b5:5e:cc:ae:9d:19: 6e:2b:88:9c:05:2c:77:27:01:bd:f7:c3:16:76:d4: ea:1c:8f:43:a3:4b:84:a9:56:7f:05:11:78:20:ea: be:58:67:88:be:69:66:b2:d4:7e:82:c4:33:65:ef: 1e:b0:88:f8:42:66:21:dc:8a:25:08:95:7e:cc:6a: 75:a8:28:cd:69:b6:47:5e:86:36:98:b3:42:37:14: 9a:ca:d2:09:77:31:4e:ba:e6:36:59:bb:87:7c:f9: 72:07:f8:e1:d2:c8:fe:5e:4a:9b:c8:f7:bc:e9:2e: 3d:d3:d7:46:c4:e8:9a:dd:f4:8b:20:8a:fd:e6:46: fc:ae:ac:3a:49:21:22:e2:c0:2e:87:12:b3:b0:3b: e9:48:75:15:1b:9c:f7:74:54:53:d6:db:40:35:3c: 35:56:21:7e:37:d4:ad:c2:f3:86:1e:6a:e3:4d:bf: 28:2d:77:7d:f8:77:98:01:c7:eb:83:c8:98:2b:a1: 0e:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:8D:37:82:DB:3F:FB:20:2D:46:7B:07:0B:34:3C:2D:62:A3:25:0D X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C51B0D3644EB11F088B1CD7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:f040::/48 Signature Algorithm: sha256WithRSAEncryption 4d:eb:67:e3:28:6f:5e:d5:5e:55:e9:6c:c6:5b:d7:59:04:3d: a2:32:73:ce:db:fa:93:ee:92:18:ef:00:0a:4a:b5:88:ec:a3: 12:18:c4:75:b8:5e:d7:e6:b5:42:39:ee:2c:83:aa:3e:d7:9a: 2c:46:ed:03:e2:bb:d8:55:49:70:f7:f9:be:29:bc:24:7d:4d: 5f:cc:51:69:98:8e:77:40:26:f8:a3:f3:34:8f:b5:81:eb:05: 31:b8:c1:5e:e5:06:b0:28:b0:28:8a:d4:70:a8:04:cf:bf:63: e4:c0:15:12:65:d1:32:e3:ce:8c:b1:fb:50:55:f0:7e:ac:ab: 97:4e:49:e9:1b:c1:a4:ff:b7:a4:22:ae:ba:91:c2:1e:f9:39: e4:84:61:1e:11:f7:49:84:42:e0:45:c2:1e:86:4c:bc:30:3a: 75:5d:76:89:9a:37:ec:96:b6:f3:d8:75:40:cb:c3:c6:9f:1b: 40:83:10:79:0c:dc:7e:92:c9:5f:93:18:7f:70:88:dd:33:d5: f9:72:0d:db:11:65:3b:6c:f6:8d:dd:a8:71:45:36:16:d8:50: 28:42:dc:fe:9e:5e:95:6c:94:3d:b6:15:25:13:c9:2c:47:d1: a3:bf:e8:0c:42:b1:03:92:52:67:91:ce:eb:d2:c0:03:82:8b: c4:ef:64:16 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICTbgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NTU1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmRmYi00Zjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Su5F+bxapSp8yLfslA6TAGYstRPvnocMclmomc8oGr3Diw5wyGGjPDuXhB1 eshSf+/LIbAeuOVTIYzbh6ySRKjN+Zq1XsyunRluK4icBSx3JwG998MWdtTqHI9D o0uEqVZ/BRF4IOq+WGeIvmlmstR+gsQzZe8esIj4QmYh3IolCJV+zGp1qCjNabZH XoY2mLNCNxSaytIJdzFOuuY2WbuHfPlyB/jh0sj+XkqbyPe86S4909dGxOia3fSL IIr95kb8rqw6SSEi4sAuhxKzsDvpSHUVG5z3dFRT1ttANTw1ViF+N9StwvOGHmrj Tb8oLXd9+HeYAcfrg8iYK6EOwwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFCCNN4Lb P/sgLUZ7Bws0PC1ioyUNMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQzUxQjBEMzY0 NEVCMTFGMDg4QjFDRDdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3z8EAwDQYJKoZIhvcNAQELBQADggEBAE3rZ+Mob17V XlXpbMZb11kEPaIyc87b+pPukhjvAApKtYjsoxIYxHW4XtfmtUI57iyDqj7XmixG 7QPiu9hVSXD3+b4pvCR9TV/MUWmYjndAJvij8zSPtYHrBTG4wV7lBrAosCiK1HCo BM+/Y+TAFRJl0TLjzoyx+1BV8H6sq5dOSekbwaT/t6QirrqRwh75OeSEYR4R90mE QuBFwh6GTLwwOnVddomaN+yWtvPYdUDLw8afG0CDEHkM3H6SyV+TGH9wiN0z1fly DdsRZTts9o3dqHFFNhbYUChC3P6eXpVslD22FSUTySxH0aO/6AxCsQOSUmeRzuvS wAOCi8TvZBY= -----END CERTIFICATE-----Generated at Mon Oct 20 14:21:08 2025 by rpki-client