$ rpki-client -vvf rpki.apnic.net/member_repository/A91B673B/812F21365DFE11EF8C7E817BC4F9AE02/A242BED45E1511EFBBFB911EC4F9AE02.roa File: A242BED45E1511EFBBFB911EC4F9AE02.roa (raw, json) Hash identifier: BteKkWaHztNY5RPMXMdQaz6E2A7IVRfTkJnalZdJs5Q= Subject key identifier: EE:DB:D9:00:D9:4C:02:37:40:2D:16:6D:FD:99:A2:0B:3D:1F:80:C0 Certificate issuer: /CN=A91B673B/serialNumber=15CF50DB52B0F12F1A6E3B39633D482E09CFE35C Certificate serial: BD Authority key identifier: 15:CF:50:DB:52:B0:F1:2F:1A:6E:3B:39:63:3D:48:2E:09:CF:E3:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fc9Q21Kw8S8abjs5Yz1ILgnP41w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B673B/812F21365DFE11EF8C7E817BC4F9AE02/A242BED45E1511EFBBFB911EC4F9AE02.roa Signing time: Fri 15 Aug 2025 06:44:23 +0000 ROA not before: Fri 15 Aug 2025 06:44:23 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153166 IP address blocks: 2001:df4:1040::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B673B/812F21365DFE11EF8C7E817BC4F9AE02/Fc9Q21Kw8S8abjs5Yz1ILgnP41w.crl rsync://rpki.apnic.net/member_repository/A91B673B/812F21365DFE11EF8C7E817BC4F9AE02/Fc9Q21Kw8S8abjs5Yz1ILgnP41w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fc9Q21Kw8S8abjs5Yz1ILgnP41w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:04:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 189 (0xbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B673B, serialNumber=15CF50DB52B0F12F1A6E3B39633D482E09CFE35C Validity Not Before: Aug 15 06:44:23 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689ed747-4787 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:78:02:e5:ed:b7:64:a4:e5:63:d4:b6:c6:9f: 56:62:c9:f9:47:24:6f:a7:6c:22:f0:b1:e5:dd:55: 62:d4:f9:56:01:9c:ed:1b:4c:20:db:b8:68:85:b3: d5:28:7a:22:84:ef:aa:83:35:95:78:18:23:9a:8d: 3d:7c:d1:37:78:30:cd:4d:1d:d0:e5:45:61:a0:2b: fd:b3:e1:d8:6c:a1:08:8f:84:ee:02:e8:7a:a2:98: 09:77:75:98:40:4a:34:73:38:b2:1c:1c:0d:7f:e9: 34:1a:54:bb:cc:ff:81:45:9d:01:8d:27:ed:5c:3c: 0f:a0:12:9f:88:f3:ab:a1:cf:a4:4d:49:76:af:da: b4:50:da:7e:bc:c1:e2:a9:7b:f8:0f:a9:af:70:a8: ec:52:3f:c1:9f:20:24:66:2e:b9:fd:1b:f2:c1:af: c8:8c:e9:af:f0:13:2b:82:f9:b0:e5:d5:42:bd:69: 9f:a1:b7:d6:95:19:1f:a1:53:d4:8c:de:d0:d3:b4: 73:45:7b:82:a3:39:d0:cc:24:e7:9c:c1:70:83:e5: 27:38:29:c0:a3:fe:38:8e:2f:50:09:6c:6b:a5:cd: 7d:ee:ba:84:e4:75:86:1c:ec:c7:5b:ed:3d:5a:86: 3e:05:bb:29:1b:c8:bb:78:5a:9a:d6:0f:14:e9:c3: 34:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:DB:D9:00:D9:4C:02:37:40:2D:16:6D:FD:99:A2:0B:3D:1F:80:C0 X509v3 Authority Key Identifier: keyid:15:CF:50:DB:52:B0:F1:2F:1A:6E:3B:39:63:3D:48:2E:09:CF:E3:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B673B/812F21365DFE11EF8C7E817BC4F9AE02/Fc9Q21Kw8S8abjs5Yz1ILgnP41w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fc9Q21Kw8S8abjs5Yz1ILgnP41w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B673B/812F21365DFE11EF8C7E817BC4F9AE02/A242BED45E1511EFBBFB911EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:1040::/48 Signature Algorithm: sha256WithRSAEncryption 20:dd:1e:b5:f3:db:d3:c5:e5:1d:72:fb:75:f3:aa:7d:76:d8: ff:cd:f5:cc:5b:77:ce:b7:10:de:2e:3c:d8:12:45:dd:b6:1c: a7:aa:c2:4e:74:b1:d5:c6:68:ba:68:ff:17:d7:a8:d6:e6:fd: 96:1f:04:73:8a:99:0a:f8:53:42:ee:8b:c1:54:f0:60:94:d6: fa:0e:fb:94:eb:57:8c:a6:b2:06:17:3a:97:27:3d:a3:bd:6e: 1b:2c:02:a1:3d:e3:b2:22:6f:1e:5f:b2:ed:c9:27:1a:2d:90: b3:ee:1d:2c:a6:05:97:74:b6:3d:d4:41:13:ae:23:10:89:ce: 12:b5:93:6f:c1:07:f3:99:ef:53:2f:15:40:84:ff:a4:aa:c2: 2d:37:c4:84:ec:88:27:b1:42:ea:be:14:db:c8:27:a0:79:51: d1:90:4c:23:44:9e:7c:73:07:84:e4:6f:6c:55:57:bb:12:c1: 7d:e6:75:9a:be:e5:9d:ac:99:3e:5c:83:f3:91:d6:4a:b7:a4: da:97:50:70:13:6b:8c:93:12:dc:a1:87:e6:eb:5f:18:c4:4c: 74:9e:c2:e3:f1:a6:38:30:ed:c9:8e:e0:d5:4a:68:50:75:87: bd:b0:c2:f6:3c:63:50:a0:3c:07:22:0d:e6:0c:7d:bb:2a:49: 9c:4d:b3:5b -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY3M0IxMTAvBgNVBAUTKDE1Q0Y1MERCNTJCMEYxMkYxQTZFM0IzOTYzM0Q0ODJF MDlDRkUzNUMwHhcNMjUwODE1MDY0NDIzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllZDc0Ny00Nzg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3gC5e23ZKTlY9S2xp9WYsn5RyRvp2wi8LHl3VVi1PlWAZztG0wg27hohbPV KHoihO+qgzWVeBgjmo09fNE3eDDNTR3Q5UVhoCv9s+HYbKEIj4TuAuh6opgJd3WY QEo0cziyHBwNf+k0GlS7zP+BRZ0BjSftXDwPoBKfiPOroc+kTUl2r9q0UNp+vMHi qXv4D6mvcKjsUj/BnyAkZi65/Rvywa/IjOmv8BMrgvmw5dVCvWmfobfWlRkfoVPU jN7Q07RzRXuCoznQzCTnnMFwg+UnOCnAo/44ji9QCWxrpc197rqE5HWGHOzHW+09 WoY+BbspG8i7eFqa1g8U6cM0QwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFO7b2QDZ TAI3QC0Wbf2Zogs9H4DAMB8GA1UdIwQYMBaAFBXPUNtSsPEvGm47OWM9SC4Jz+Nc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjczQi84MTJGMjEzNjVE RkUxMUVGOEM3RTgxN0JDNEY5QUUwMi9GYzlRMjFLdzhTOGFianM1WXoxSUxnblA0 MXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZjOVEyMUt3OFM4YWJqczVZejFJTGduUDQxdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY3M0IvODEyRjIxMzY1REZFMTFFRjhDN0U4MTdCQzRGOUFFMDIvQTI0MkJFRDQ1 RTE1MTFFRkJCRkI5MTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30EEAwDQYJKoZIhvcNAQELBQADggEBACDdHrXz29PF 5R1y+3Xzqn122P/N9cxbd863EN4uPNgSRd22HKeqwk50sdXGaLpo/xfXqNbm/ZYf BHOKmQr4U0Lui8FU8GCU1voO+5TrV4ymsgYXOpcnPaO9bhssAqE947Iibx5fsu3J JxotkLPuHSymBZd0tj3UQROuIxCJzhK1k2/BB/OZ71MvFUCE/6Sqwi03xITsiCex Quq+FNvIJ6B5UdGQTCNEnnxzB4Tkb2xVV7sSwX3mdZq+5Z2smT5cg/OR1kq3pNqX UHATa4yTEtyhh+brXxjETHSewuPxpjgw7cmO4NVKaFB1h72wwvY8Y1CgPAciDeYM fbsqSZxNs1s= -----END CERTIFICATE-----Generated at Sun Aug 24 03:05:49 2025 by rpki-client