$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/A06AB21E6E8811EF95434073C4F9AE02.roa File: A06AB21E6E8811EF95434073C4F9AE02.roa (raw, json) Hash identifier: Aikvd4VQaZ5YWJuoaQst8o1un+A8abkdzu+IgmJpwMU= Subject key identifier: 18:18:0F:9C:71:BC:4A:08:BB:80:E9:28:60:C7:78:7E:B9:47:E6:09 Certificate issuer: /CN=A91B9AB9/serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Certificate serial: D2 Authority key identifier: 38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/A06AB21E6E8811EF95434073C4F9AE02.roa Signing time: Sun 19 Oct 2025 09:12:35 +0000 ROA not before: Sun 19 Oct 2025 09:12:35 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 214441 IP address blocks: 2001:df4:40c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:12:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 210 (0xd2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9AB9, serialNumber=3817CFE00A5F1ACC363B472F4F69DA83BEB56613 Validity Not Before: Oct 19 09:12:35 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f4ab83-7ac0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e3:b2:73:73:ec:80:28:f2:57:86:92:fa:19: e0:01:db:bf:32:fb:d0:36:44:f3:8f:13:d1:1d:5c: 54:5f:c9:5c:19:6d:6e:3f:91:9a:99:d0:f0:b6:1a: 21:07:e2:2a:e7:4e:07:b1:7a:45:9e:3b:7d:84:03: 1a:fe:ce:d3:d0:a0:84:94:88:dd:b7:9e:67:bc:18: 5c:f0:2e:8b:00:90:80:f5:0d:c1:8d:45:6e:87:c3: 94:5a:d1:dc:31:86:4a:33:fc:66:a2:b1:8b:1c:27: 40:9d:f3:44:d9:4b:ef:4e:fe:3f:d3:2b:1e:c1:cb: 3e:75:8d:64:45:06:55:30:6a:38:8e:d2:20:79:64: 94:d8:67:78:e9:a1:e4:40:9f:78:2d:01:ec:85:76: 26:10:3c:08:c1:b3:8c:fa:80:1d:39:f4:19:04:9e: 56:b0:51:b3:02:a9:6a:80:86:e4:fb:be:11:42:9f: 72:95:20:43:67:7c:af:06:17:55:15:b5:aa:ea:be: d8:e7:6e:df:9f:26:a9:4f:44:37:28:fa:61:15:7e: 31:3d:1a:0b:42:5b:a1:e8:d5:61:cf:03:71:28:47: eb:1b:43:a0:d3:8e:7f:f7:f2:f4:1a:68:00:45:fd: fb:09:76:ad:bf:39:fa:c8:33:a8:28:66:7b:ef:76: a6:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:18:0F:9C:71:BC:4A:08:BB:80:E9:28:60:C7:78:7E:B9:47:E6:09 X509v3 Authority Key Identifier: keyid:38:17:CF:E0:0A:5F:1A:CC:36:3B:47:2F:4F:69:DA:83:BE:B5:66:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/OBfP4ApfGsw2O0cvT2nag761ZhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OBfP4ApfGsw2O0cvT2nag761ZhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9AB9/D118C0BC6E8411EFA3CD983FC4F9AE02/A06AB21E6E8811EF95434073C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:40c0::/48 Signature Algorithm: sha256WithRSAEncryption 77:52:cc:73:6d:37:c6:cc:eb:e4:45:0e:3f:72:28:cd:9c:6a: 51:c4:ee:25:8e:f5:f8:be:2f:ae:82:fb:c2:94:78:67:11:c7: 37:71:16:b8:88:9e:cd:cb:3c:32:a4:ae:d5:31:8e:09:ad:91: 44:1d:b7:23:b1:32:5f:cf:f2:47:4d:85:7d:93:fa:cd:78:2e: 50:55:77:50:9a:3c:01:dc:57:f4:77:0e:03:74:bd:77:fe:d2: 94:79:83:8a:19:5d:6b:6d:57:6a:a4:fc:16:c9:79:e2:88:4b: 44:d7:ac:33:41:66:f7:80:e8:c5:3e:db:f9:74:99:72:f3:28: ee:80:4c:f2:ab:b5:bf:94:ec:1f:10:46:6b:b2:76:d3:d1:c5: e2:59:53:d1:54:f2:c3:b0:2e:18:a3:a9:91:73:45:65:d3:33: be:3a:2b:61:68:77:3c:0f:73:30:f0:e2:4f:a0:22:c8:a2:81: 5a:91:b1:f9:12:5a:f3:61:90:1d:3e:90:7e:c7:11:1b:32:7c: f3:50:08:b5:21:5b:14:32:85:69:0f:34:46:6c:9f:49:70:9b: 9a:75:94:85:b4:26:cd:de:93:2b:4c:44:b5:c5:65:e4:82:1c: 51:3a:5d:3e:77:0c:ee:fc:80:fe:cb:4a:c7:20:50:f5:dd:ff: e7:f6:d7:4e -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICANIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlBQjkxMTAvBgNVBAUTKDM4MTdDRkUwMEE1RjFBQ0MzNjNCNDcyRjRGNjlEQTgz QkVCNTY2MTMwHhcNMjUxMDE5MDkxMjM1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY0YWI4My03YWMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2+Oyc3PsgCjyV4aS+hngAdu/MvvQNkTzjxPRHVxUX8lcGW1uP5GamdDwthoh B+Iq504HsXpFnjt9hAMa/s7T0KCElIjdt55nvBhc8C6LAJCA9Q3BjUVuh8OUWtHc MYZKM/xmorGLHCdAnfNE2UvvTv4/0ysewcs+dY1kRQZVMGo4jtIgeWSU2Gd46aHk QJ94LQHshXYmEDwIwbOM+oAdOfQZBJ5WsFGzAqlqgIbk+74RQp9ylSBDZ3yvBhdV FbWq6r7Y527fnyapT0Q3KPphFX4xPRoLQluh6NVhzwNxKEfrG0Og045/9/L0GmgA Rf37CXatvzn6yDOoKGZ773ammwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFBgYD5xx vEoIu4DpKGDHeH65R+YJMB8GA1UdIwQYMBaAFDgXz+AKXxrMNjtHL09p2oO+tWYT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUFCOS9EMTE4QzBCQzZF ODQxMUVGQTNDRDk4M0ZDNEY5QUUwMi9PQmZQNEFwZkdzdzJPMGN2VDJuYWc3NjFa aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09CZlA0QXBmR3N3Mk8wY3ZUMm5hZzc2MVpoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlBQjkvRDExOEMwQkM2RTg0MTFFRkEzQ0Q5ODNGQzRGOUFFMDIvQTA2QUIyMUU2 RTg4MTFFRjk1NDM0MDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30QMAwDQYJKoZIhvcNAQELBQADggEBAHdSzHNtN8bM 6+RFDj9yKM2calHE7iWO9fi+L66C+8KUeGcRxzdxFriIns3LPDKkrtUxjgmtkUQd tyOxMl/P8kdNhX2T+s14LlBVd1CaPAHcV/R3DgN0vXf+0pR5g4oZXWttV2qk/BbJ eeKIS0TXrDNBZveA6MU+2/l0mXLzKO6ATPKrtb+U7B8QRmuydtPRxeJZU9FU8sOw LhijqZFzRWXTM746K2FodzwPczDw4k+gIsiigVqRsfkSWvNhkB0+kH7HERsyfPNQ CLUhWxQyhWkPNEZsn0lwm5p1lIW0Js3ekytMRLXFZeSCHFE6XT53DO78gP7LSscg UPXd/+f2104= -----END CERTIFICATE-----Generated at Mon Oct 20 10:39:36 2025 by rpki-client