$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3B4C/DC9DE28E8C5011EFA067C815C4F9AE02/1FD9809A92A911EFBE53776BC4F9AE02.roa File: 1FD9809A92A911EFBE53776BC4F9AE02.roa (raw, json) Hash identifier: /pCleS8hdGGbLBEH6XJqZL1n8cMzpSzBKrLM7XIsvnY= Subject key identifier: 8F:CD:91:28:D6:BD:91:4F:0A:BD:1D:C6:C2:90:FA:54:D2:CA:0F:D7 Certificate issuer: /CN=A91B3B4C/serialNumber=B63DFD686CE0A90076E4F5FF428685F63FB08EDD Certificate serial: BE Authority key identifier: B6:3D:FD:68:6C:E0:A9:00:76:E4:F5:FF:42:86:85:F6:3F:B0:8E:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tj39aGzgqQB25PX_QoaF9j-wjt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3B4C/DC9DE28E8C5011EFA067C815C4F9AE02/1FD9809A92A911EFBE53776BC4F9AE02.roa Signing time: Sun 07 Sep 2025 06:43:26 +0000 ROA not before: Sun 07 Sep 2025 06:43:26 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 153344 IP address blocks: 2400:9e20:caf0::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3B4C/DC9DE28E8C5011EFA067C815C4F9AE02/tj39aGzgqQB25PX_QoaF9j-wjt0.crl rsync://rpki.apnic.net/member_repository/A91B3B4C/DC9DE28E8C5011EFA067C815C4F9AE02/tj39aGzgqQB25PX_QoaF9j-wjt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tj39aGzgqQB25PX_QoaF9j-wjt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3B4C, serialNumber=B63DFD686CE0A90076E4F5FF428685F63FB08EDD Validity Not Before: Sep 7 06:43:26 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68bd298d-7cb8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:36:b7:45:3f:2e:4a:d6:44:f8:48:49:78:71: 9a:ef:c4:f2:90:85:d9:92:90:cf:47:12:b7:0f:ff: ec:0f:e2:01:be:13:00:52:b9:a4:fc:f0:f0:20:07: ea:23:84:20:17:6c:1a:61:06:e7:73:52:10:b1:bd: 83:b9:d5:2f:83:a9:90:bb:01:61:4f:1b:92:58:30: c0:61:09:09:42:23:5d:f9:8c:df:bb:af:3f:5e:a7: 34:34:ca:ff:12:9b:70:0e:8d:c9:92:85:dc:f7:63: 9b:47:82:c8:6a:32:a1:e8:14:ce:cd:d7:b1:ea:73: 7e:98:39:84:f5:0d:d7:48:3d:fb:4c:a4:f0:14:09: 9d:b2:1e:5e:b3:0a:da:1a:1c:ef:17:db:f3:27:3b: 88:d7:ab:ec:be:ab:f6:bb:a5:d2:76:4e:24:f0:de: ad:b3:50:a0:60:cf:0b:1e:7f:ba:a7:38:c0:0e:c2: 90:6f:60:48:5c:4c:9a:6e:04:ff:04:32:55:4c:88: 59:b4:9c:b0:b6:8f:2a:14:f2:95:55:ef:69:7d:57: 3b:0a:7c:63:1f:a2:64:f1:74:de:05:6a:f1:00:0b: 6c:ff:e8:50:34:13:fd:a4:0f:c8:97:05:ee:67:9c: 52:5a:41:3e:3f:cf:7d:45:dd:ce:08:c1:e4:63:02: 70:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:CD:91:28:D6:BD:91:4F:0A:BD:1D:C6:C2:90:FA:54:D2:CA:0F:D7 X509v3 Authority Key Identifier: keyid:B6:3D:FD:68:6C:E0:A9:00:76:E4:F5:FF:42:86:85:F6:3F:B0:8E:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3B4C/DC9DE28E8C5011EFA067C815C4F9AE02/tj39aGzgqQB25PX_QoaF9j-wjt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tj39aGzgqQB25PX_QoaF9j-wjt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3B4C/DC9DE28E8C5011EFA067C815C4F9AE02/1FD9809A92A911EFBE53776BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:9e20:caf0::/44 Signature Algorithm: sha256WithRSAEncryption 4c:8a:18:cc:d0:49:c9:37:92:06:d5:3f:8a:de:7f:3e:67:15: a9:07:29:b1:c2:8c:a2:9b:bc:b2:54:7c:53:78:bc:e6:54:22: ef:f9:67:82:bf:a7:38:e6:0d:df:1a:9e:3c:b3:bc:38:d2:dc: bf:98:d4:eb:18:73:3c:63:53:8d:69:bf:e1:0d:08:ef:c3:04: c2:a5:11:82:9e:23:ee:af:c5:71:25:23:c3:be:82:30:28:c5: 00:7c:32:26:01:28:fd:ad:84:90:2d:ce:28:e2:0d:e1:28:9a: b7:b5:f3:93:88:53:d2:7a:e4:66:3a:7e:37:dd:18:59:bd:9a: c6:0d:ac:1c:a8:3a:82:df:8e:8b:43:6d:de:68:c4:e8:5a:c8: dd:f0:a4:57:fc:dc:2f:06:68:47:45:47:24:9a:a7:4c:1c:35: e8:dd:db:d1:a5:43:a1:64:8d:44:36:46:78:6b:94:96:3a:db: b8:81:d7:a7:5d:3c:ea:9a:99:6c:66:e4:22:6d:14:62:b2:c6: 87:3d:e8:09:8b:cf:3a:d6:61:3f:db:14:29:18:b2:2f:a4:80: 46:2d:9b:b3:b4:8e:ab:32:1b:a7:83:de:fc:d7:98:98:e6:59: b1:73:3d:61:fb:c0:2f:e8:25:2f:cf:0f:9a:de:73:61:3f:a7: f8:f3:7d:70 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNCNEMxMTAvBgNVBAUTKEI2M0RGRDY4NkNFMEE5MDA3NkU0RjVGRjQyODY4NUY2 M0ZCMDhFREQwHhcNMjUwOTA3MDY0MzI2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJkMjk4ZC03Y2I4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ja3RT8uStZE+EhJeHGa78TykIXZkpDPRxK3D//sD+IBvhMAUrmk/PDwIAfq I4QgF2waYQbnc1IQsb2DudUvg6mQuwFhTxuSWDDAYQkJQiNd+Yzfu68/Xqc0NMr/ EptwDo3JkoXc92ObR4LIajKh6BTOzdex6nN+mDmE9Q3XSD37TKTwFAmdsh5eswra GhzvF9vzJzuI16vsvqv2u6XSdk4k8N6ts1CgYM8LHn+6pzjADsKQb2BIXEyabgT/ BDJVTIhZtJywto8qFPKVVe9pfVc7CnxjH6Jk8XTeBWrxAAts/+hQNBP9pA/IlwXu Z5xSWkE+P899Rd3OCMHkYwJwGwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFI/NkSjW vZFPCr0dxsKQ+lTSyg/XMB8GA1UdIwQYMBaAFLY9/Whs4KkAduT1/0KGhfY/sI7d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0I0Qy9EQzlERTI4RThD NTAxMUVGQTA2N0M4MTVDNEY5QUUwMi90ajM5YUd6Z3FRQjI1UFhfUW9hRjlqLXdq dDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RqMzlhR3pncVFCMjVQWF9Rb2FGOWotd2p0MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNCNEMvREM5REUyOEU4QzUwMTFFRkEwNjdDODE1QzRGOUFFMDIvMUZEOTgwOUE5 MkE5MTFFRkJFNTM3NzZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwQkAJ4gyvAwDQYJKoZIhvcNAQELBQADggEBAEyKGMzQSck3 kgbVP4refz5nFakHKbHCjKKbvLJUfFN4vOZUIu/5Z4K/pzjmDd8anjyzvDjS3L+Y 1OsYczxjU41pv+ENCO/DBMKlEYKeI+6vxXElI8O+gjAoxQB8MiYBKP2thJAtziji DeEomre185OIU9J65GY6fjfdGFm9msYNrByoOoLfjotDbd5oxOhayN3wpFf83C8G aEdFRySap0wcNejd29GlQ6FkjUQ2RnhrlJY627iB16ddPOqamWxm5CJtFGKyxoc9 6AmLzzrWYT/bFCkYsi+kgEYtm7O0jqsyG6eD3vzXmJjmWbFzPWH7wC/oJS/PD5re c2E/p/jzfXA= -----END CERTIFICATE-----Generated at Mon Oct 20 08:26:38 2025 by rpki-client