$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/48A5FCA4A0A211EF81FA6876C4F9AE02.roa File: 48A5FCA4A0A211EF81FA6876C4F9AE02.roa (raw, json) Hash identifier: hQ884t+I5StX9TWBv4SYubO1nFPYJpeoarqEYGTcC7s= Subject key identifier: 35:98:A6:43:39:3B:81:D0:AF:44:0D:00:80:A5:97:AE:3E:7C:E3:3B Certificate issuer: /CN=A91BA941/serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Certificate serial: 92 Authority key identifier: 73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/48A5FCA4A0A211EF81FA6876C4F9AE02.roa Signing time: Mon 11 Aug 2025 06:46:59 +0000 ROA not before: Mon 11 Aug 2025 06:46:59 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 135426 IP address blocks: 2401:bd60::/32 maxlen: 32 2401:bd60:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:40:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA941, serialNumber=7317D777BDAA6333CD96A8104B94DE0FA4752113 Validity Not Before: Aug 11 06:46:59 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=689991e2-eefa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:92:2a:28:3b:1c:58:0f:9f:70:b6:88:02:68: 38:f5:a8:54:01:7c:a5:10:bc:4c:80:56:9b:1a:e3: 75:86:4f:44:a4:43:6a:a9:8f:5d:85:03:49:98:a9: 02:66:b0:a2:e0:c7:fc:76:1f:2a:f9:8a:97:15:3b: 8e:5f:d1:98:f6:ce:41:e5:c4:09:4c:7f:45:c2:45: 03:af:a9:2f:20:5d:7b:6e:92:b3:e4:0c:0a:b4:0a: a4:52:0d:e3:fb:dd:3f:38:66:12:e8:e8:a0:94:13: 95:14:53:89:60:1c:b2:32:05:9e:81:63:e3:16:a8: dc:96:11:11:55:37:f0:11:c9:09:97:dc:aa:e5:68: a3:65:9f:87:58:5d:3e:6a:38:20:67:a5:b8:7c:e8: 60:2a:07:b4:d5:8f:6e:5f:cc:0a:de:61:c3:e0:53: 09:bc:2e:db:b4:20:37:0c:cb:40:b4:42:c8:16:d4: 44:81:bf:0b:e1:76:d6:a3:1b:04:f8:e1:b4:bb:0d: 32:9a:22:49:fe:51:db:82:7e:b3:08:50:9b:34:e3: 8c:a0:c7:2d:30:f3:33:1d:77:f3:21:09:b2:8f:38: d8:fa:92:ba:69:21:38:7f:50:9b:d6:39:2f:38:1d: 25:bb:b3:45:67:3e:02:a2:71:f5:70:a7:45:45:9a: bb:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:98:A6:43:39:3B:81:D0:AF:44:0D:00:80:A5:97:AE:3E:7C:E3:3B X509v3 Authority Key Identifier: keyid:73:17:D7:77:BD:AA:63:33:CD:96:A8:10:4B:94:DE:0F:A4:75:21:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/cxfXd72qYzPNlqgQS5TeD6R1IRM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cxfXd72qYzPNlqgQS5TeD6R1IRM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA941/9B3D2548A0A011EF9052325FC4F9AE02/48A5FCA4A0A211EF81FA6876C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:bd60::/32 Signature Algorithm: sha256WithRSAEncryption 9b:47:ee:1a:81:fb:ac:85:b8:4c:6b:ef:a4:1f:5a:a5:62:77: 4d:b8:94:4c:b1:99:c8:40:0f:b0:c3:05:c2:4f:dc:4d:00:91: 89:7f:db:a5:56:da:3b:03:52:38:f9:5f:f8:ac:bc:a5:59:45: 67:77:a9:93:7d:2c:ce:13:e9:86:6a:a0:c1:7b:17:31:10:e0: e3:0b:3e:d9:63:5c:db:2a:54:3b:98:e9:57:a4:75:b8:f8:ec: aa:72:b3:a8:ed:18:10:5e:a9:af:95:cd:08:9f:a3:ae:aa:16: 8b:74:46:86:e2:1b:e5:cb:5d:bf:c6:d3:d0:78:64:59:a0:42: e3:73:53:e6:29:9f:25:2e:09:88:b6:51:d0:fb:ad:d0:62:06: 21:07:a3:23:09:58:a0:d9:92:28:14:40:3b:bc:9b:6d:eb:83: cf:85:24:91:92:c8:43:04:99:bc:7b:74:47:bc:9d:8c:cf:ae: 3c:06:bc:99:26:41:31:f7:42:6f:c4:41:65:b0:45:4a:4e:91: 8b:fc:6f:65:a5:88:0a:70:8c:81:a8:18:3d:86:51:8e:7e:49: e9:17:48:7d:34:af:0c:50:b2:ce:4b:6d:c6:6a:3a:af:39:6f: a0:4d:c1:4b:5f:13:12:76:96:ce:c6:21:f1:c7:e4:cb:9c:32: 57:8e:ab:a7 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE5NDExMTAvBgNVBAUTKDczMTdENzc3QkRBQTYzMzNDRDk2QTgxMDRCOTRERTBG QTQ3NTIxMTMwHhcNMjUwODExMDY0NjU5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk5OTFlMi1lZWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ZIqKDscWA+fcLaIAmg49ahUAXylELxMgFabGuN1hk9EpENqqY9dhQNJmKkC ZrCi4Mf8dh8q+YqXFTuOX9GY9s5B5cQJTH9FwkUDr6kvIF17bpKz5AwKtAqkUg3j +90/OGYS6OiglBOVFFOJYByyMgWegWPjFqjclhERVTfwEckJl9yq5WijZZ+HWF0+ ajggZ6W4fOhgKge01Y9uX8wK3mHD4FMJvC7btCA3DMtAtELIFtREgb8L4XbWoxsE +OG0uw0ymiJJ/lHbgn6zCFCbNOOMoMctMPMzHXfzIQmyjzjY+pK6aSE4f1Cb1jkv OB0lu7NFZz4ConH1cKdFRZq7UQIDAQABo4ICljCCApIwHQYDVR0OBBYEFDWYpkM5 O4HQr0QNAICll64+fOM7MB8GA1UdIwQYMBaAFHMX13e9qmMzzZaoEEuU3g+kdSET MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTk0MS85QjNEMjU0OEEw QTAxMUVGOTA1MjMyNUZDNEY5QUUwMi9jeGZYZDcycVl6UE5scWdRUzVUZUQ2UjFJ Uk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2N4ZlhkNzJxWXpQTmxxZ1FTNVRlRDZSMUlSTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkE5NDEvOUIzRDI1NDhBMEEwMTFFRjkwNTIzMjVGQzRGOUFFMDIvNDhBNUZDQTRB MEEyMTFFRjgxRkE2ODc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkAb1gMA0GCSqGSIb3DQEBCwUAA4IBAQCbR+4agfushbhM a++kH1qlYndNuJRMsZnIQA+wwwXCT9xNAJGJf9ulVto7A1I4+V/4rLylWUVnd6mT fSzOE+mGaqDBexcxEODjCz7ZY1zbKlQ7mOlXpHW4+OyqcrOo7RgQXqmvlc0In6Ou qhaLdEaG4hvly12/xtPQeGRZoELjc1PmKZ8lLgmItlHQ+63QYgYhB6MjCVig2ZIo FEA7vJtt64PPhSSRkshDBJm8e3RHvJ2Mz648BryZJkEx90JvxEFlsEVKTpGL/G9l pYgKcIyBqBg9hlGOfknpF0h9NK8MULLOS23GajqvOW+gTcFLXxMSdpbOxiHxx+TL nDJXjqun -----END CERTIFICATE-----Generated at Sun Aug 24 00:51:54 2025 by rpki-client