$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/6CF3FF44901111EF922BFC29C4F9AE02.roa File: 6CF3FF44901111EF922BFC29C4F9AE02.roa (raw, json) Hash identifier: iA472Qc8jmcAQSQWONhwLi8d73fir6sYTg+zRw+sbrM= Subject key identifier: 20:FD:63:7C:29:1F:4B:43:F6:46:58:02:63:E8:92:F6:09:BE:9C:C6 Certificate issuer: /CN=A91B1A3B/serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Certificate serial: A2 Authority key identifier: DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/6CF3FF44901111EF922BFC29C4F9AE02.roa Signing time: Wed 27 Aug 2025 06:42:31 +0000 ROA not before: Wed 27 Aug 2025 06:42:31 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 150146 IP address blocks: 2001:df1:d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1A3B, serialNumber=DFC528CF0006E3414AFB7FE86D1FDEAF648B5C9D Validity Not Before: Aug 27 06:42:31 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68aea8d7-ac66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d1:f9:a1:10:55:53:c3:5a:f2:a3:50:5c:d4: 32:e6:c8:7b:9e:00:79:fd:41:54:51:72:b6:d7:96: 07:a7:e2:c7:65:d4:b6:6e:08:38:b7:41:53:c3:21: 9b:cb:4e:e7:df:11:c6:b8:c8:48:5e:6d:ca:0a:ad: 3e:4f:75:b8:7a:d5:fa:b6:9f:e5:db:f6:e2:29:dd: 5f:64:5c:5e:fa:ca:0d:7e:7a:b9:4a:c7:92:8f:e6: cb:94:36:f7:48:32:f1:c7:75:f0:86:ec:08:63:4c: e1:b9:85:16:17:f1:b5:60:11:a2:a9:e2:db:4f:04: 7b:70:fe:eb:be:e3:a3:74:4d:67:9d:f5:97:2a:c6: 8f:35:44:a4:0c:ac:69:c5:31:4f:ca:aa:4a:6d:52: 2c:4f:6e:81:69:6d:46:4e:b6:a7:35:7e:cd:f2:a2: 4d:1b:ae:cd:7e:10:c8:c4:a1:c3:04:6e:de:98:eb: 66:a5:d8:47:3b:38:34:47:4a:ac:25:ab:fd:4a:a0: 69:ab:76:e3:5c:6b:bb:9a:bb:8e:d3:57:27:11:fc: cc:0a:3d:53:8e:6a:10:03:fc:4b:ee:5a:66:71:a5: 38:a4:bd:d7:20:ee:82:bd:ed:91:de:d5:f1:e0:2c: 63:53:67:93:ee:cd:91:3b:d8:0c:9b:ab:13:5f:f0: 94:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:FD:63:7C:29:1F:4B:43:F6:46:58:02:63:E8:92:F6:09:BE:9C:C6 X509v3 Authority Key Identifier: keyid:DF:C5:28:CF:00:06:E3:41:4A:FB:7F:E8:6D:1F:DE:AF:64:8B:5C:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/38UozwAG40FK-3_obR_er2SLXJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38UozwAG40FK-3_obR_er2SLXJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1A3B/227019DA901111EF9B85C96AC4F9AE02/6CF3FF44901111EF922BFC29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df1:d40::/48 Signature Algorithm: sha256WithRSAEncryption 05:f2:ff:58:0b:4c:25:8a:8c:4e:79:e9:7e:07:df:a5:75:f0: 7b:ba:86:12:7b:9d:d5:a9:4d:79:b3:a5:b0:66:7f:6f:ba:7f: b9:fa:4b:44:76:ad:d9:2a:c2:07:27:59:00:01:ed:d0:a2:54: 0b:bd:07:24:b1:e6:25:cf:1d:9f:a6:f4:b1:0d:6d:40:0b:a3: 6d:29:20:1f:01:ea:10:97:18:f7:a6:17:2b:77:39:96:02:09: fc:42:45:b1:0b:7b:b6:5f:39:6f:2f:35:8d:ba:ec:26:25:89: 78:83:ae:be:d3:11:dd:f2:ab:c8:c8:86:1a:58:16:28:b4:7b: c4:35:61:c7:12:bf:65:3c:75:6b:da:29:b2:ff:ca:1a:4c:c1: 25:52:3e:ef:45:17:cb:47:76:54:fe:74:72:78:47:bb:57:ef: 53:c9:56:7e:23:61:5e:10:cd:cf:85:86:8d:a6:4f:9b:7b:0f: 2c:5c:1e:40:d7:09:fa:06:9a:59:ee:a5:4c:53:a4:fb:ed:f8: ea:e4:b2:b6:90:99:15:da:7a:38:5a:8f:a2:53:f1:65:ae:3d: bd:68:80:54:6c:29:29:fe:0b:3d:0f:c5:32:1a:d7:42:93:69: cf:79:9c:49:9a:33:43:2e:b8:a6:2c:2d:35:d0:42:85:76:11: e8:04:d3:3f -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFBM0IxMTAvBgNVBAUTKERGQzUyOENGMDAwNkUzNDE0QUZCN0ZFODZEMUZERUFG NjQ4QjVDOUQwHhcNMjUwODI3MDY0MjMxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlYThkNy1hYzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstH5oRBVU8Na8qNQXNQy5sh7ngB5/UFUUXK215YHp+LHZdS2bgg4t0FTwyGb y07n3xHGuMhIXm3KCq0+T3W4etX6tp/l2/biKd1fZFxe+soNfnq5SseSj+bLlDb3 SDLxx3XwhuwIY0zhuYUWF/G1YBGiqeLbTwR7cP7rvuOjdE1nnfWXKsaPNUSkDKxp xTFPyqpKbVIsT26BaW1GTranNX7N8qJNG67NfhDIxKHDBG7emOtmpdhHOzg0R0qs Jav9SqBpq3bjXGu7mruO01cnEfzMCj1TjmoQA/xL7lpmcaU4pL3XIO6Cve2R3tXx 4CxjU2eT7s2RO9gMm6sTX/CUtQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFCD9Y3wp H0tD9kZYAmPokvYJvpzGMB8GA1UdIwQYMBaAFN/FKM8ABuNBSvt/6G0f3q9ki1yd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUEzQi8yMjcwMTlEQTkw MTExMUVGOUI4NUM5NkFDNEY5QUUwMi8zOFVvendBRzQwRkstM19vYlJfZXIyU0xY SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM4VW96d0FHNDBGSy0zX29iUl9lcjJTTFhKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjFBM0IvMjI3MDE5REE5MDExMTFFRjlCODVDOTZBQzRGOUFFMDIvNkNGM0ZGNDQ5 MDExMTFFRjkyMkJGQzI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3xDUAwDQYJKoZIhvcNAQELBQADggEBAAXy/1gLTCWK jE556X4H36V18Hu6hhJ7ndWpTXmzpbBmf2+6f7n6S0R2rdkqwgcnWQAB7dCiVAu9 BySx5iXPHZ+m9LENbUALo20pIB8B6hCXGPemFyt3OZYCCfxCRbELe7ZfOW8vNY26 7CYliXiDrr7TEd3yq8jIhhpYFii0e8Q1YccSv2U8dWvaKbL/yhpMwSVSPu9FF8tH dlT+dHJ4R7tX71PJVn4jYV4Qzc+Fho2mT5t7DyxcHkDXCfoGmlnupUxTpPvt+Ork sraQmRXaejhaj6JT8WWuPb1ogFRsKSn+Cz0PxTIa10KTac95nEmaM0MuuKYsLTXQ QoV2EegE0z8= -----END CERTIFICATE-----Generated at Mon Oct 20 21:35:19 2025 by rpki-client