$ rpki-client -vvf rpki.apnic.net/member_repository/A91C430B/8D03A43AA7CE11F097894528C4F9AE02/B32AFC52A7CF11F0923B7A2BC4F9AE02.roa File: B32AFC52A7CF11F0923B7A2BC4F9AE02.roa (raw, json) Hash identifier: 1T9AoDGEXF0ooXdUIU1R51E1ZLMSnltdHdoWX3h7RIY= Subject key identifier: AE:3C:8D:5D:48:31:C7:90:8C:B6:7F:8F:FE:BA:33:1A:AE:62:B1:83 Certificate issuer: /CN=A91C430B/serialNumber=3F2EBAEB51CC38F95B323DD0C85EE830AFE337B3 Certificate serial: 02 Authority key identifier: 3F:2E:BA:EB:51:CC:38:F9:5B:32:3D:D0:C8:5E:E8:30:AF:E3:37:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Py6661HMOPlbMj3QyF7oMK_jN7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C430B/8D03A43AA7CE11F097894528C4F9AE02/B32AFC52A7CF11F0923B7A2BC4F9AE02.roa Signing time: Mon 13 Oct 2025 00:58:16 +0000 ROA not before: Mon 13 Oct 2025 00:58:16 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154295 IP address blocks: 2001:df6:3440::/46 maxlen: 46 2001:df6:3440::/48 maxlen: 48 2001:df6:3441::/48 maxlen: 48 2001:df6:3442::/48 maxlen: 48 2001:df6:3443::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C430B/8D03A43AA7CE11F097894528C4F9AE02/Py6661HMOPlbMj3QyF7oMK_jN7M.crl rsync://rpki.apnic.net/member_repository/A91C430B/8D03A43AA7CE11F097894528C4F9AE02/Py6661HMOPlbMj3QyF7oMK_jN7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Py6661HMOPlbMj3QyF7oMK_jN7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C430B, serialNumber=3F2EBAEB51CC38F95B323DD0C85EE830AFE337B3 Validity Not Before: Oct 13 00:58:16 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=68ec4ea7-23f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:9f:8c:22:4a:f0:4d:ae:4f:d7:af:00:b1:52: b5:bd:8f:25:62:0c:46:2c:b1:c7:d3:dd:34:81:a4: e8:a8:a9:d2:90:77:59:9d:7d:1f:90:84:5d:4c:d6: a9:1f:4a:c6:4d:19:09:cd:56:c3:7a:a5:42:92:b3: 38:c1:21:1e:3b:c8:2e:56:35:0a:9b:c1:d3:e7:45: 27:0c:3a:39:0d:7c:1a:16:f3:2a:b8:eb:99:42:cb: 6b:25:32:f4:53:6d:54:48:ae:7a:a7:ba:4d:26:f0: 4e:39:c7:c9:3e:75:f0:ce:b1:0b:95:bd:89:47:3e: 33:f3:86:5c:d3:29:b9:b3:ed:2b:83:47:4f:d3:b9: e1:04:0d:2d:95:cc:a9:2d:07:72:f4:c4:65:12:80: bd:ef:69:49:86:1f:07:b8:4e:0c:85:e3:ae:c0:a8: 2a:73:64:b7:1a:f5:c8:47:b1:aa:3c:63:b2:d5:93: 09:5d:ec:4e:11:e3:69:c8:42:1c:6d:bc:b0:3f:75: a3:3c:49:09:36:5b:ae:bf:61:15:0f:52:0a:c0:5a: 59:6b:53:fa:3b:d5:0d:bc:b0:bf:78:74:a9:c6:c2: 0f:92:57:b5:3d:9b:6a:32:4e:f6:07:be:b7:ae:45: da:a5:c0:e5:45:42:a0:e6:53:6f:62:29:bd:39:22: 01:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:3C:8D:5D:48:31:C7:90:8C:B6:7F:8F:FE:BA:33:1A:AE:62:B1:83 X509v3 Authority Key Identifier: keyid:3F:2E:BA:EB:51:CC:38:F9:5B:32:3D:D0:C8:5E:E8:30:AF:E3:37:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C430B/8D03A43AA7CE11F097894528C4F9AE02/Py6661HMOPlbMj3QyF7oMK_jN7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Py6661HMOPlbMj3QyF7oMK_jN7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C430B/8D03A43AA7CE11F097894528C4F9AE02/B32AFC52A7CF11F0923B7A2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df6:3440::/46 Signature Algorithm: sha256WithRSAEncryption 15:8a:6c:58:24:51:93:54:16:fe:ba:c0:3e:42:5b:ad:e9:56: 73:a0:1d:0b:8a:89:59:7b:cd:24:33:1c:af:3d:d5:d2:36:8e: 47:45:24:e7:94:28:e2:75:83:31:5a:db:9d:9d:f0:cf:26:24: e9:fe:a6:33:ec:2b:3e:29:3b:f3:09:20:04:eb:a8:da:a0:8f: f5:82:5f:f5:db:b0:f1:72:1e:96:62:85:55:e8:3a:16:0d:a6: be:9a:b7:ae:57:83:71:3e:0c:ac:75:bc:67:6d:66:1a:b2:f1: a1:20:b0:2e:9f:97:5d:30:b0:e0:ee:a1:b9:e7:45:aa:fe:bb: 54:6c:b2:d5:8d:9a:10:32:5b:80:4c:4e:cc:89:65:3d:aa:4f: 53:7d:10:2e:a1:8c:c6:3b:db:28:82:b7:cb:5f:c2:1f:94:d2: e2:33:11:ec:f1:35:35:08:b1:d9:e8:eb:f4:49:71:80:9f:4b: 47:d7:c6:c5:49:c8:61:34:e6:95:b5:32:8b:f7:b0:25:e6:d2: 41:54:78:79:0d:38:1d:4d:d0:32:fc:60:81:8a:c9:52:5d:48: 62:a6:0c:59:a1:12:9f:71:c9:f6:69:92:7e:87:2d:ae:dd:58: 3b:de:79:ca:18:31:87:25:82:90:1a:1a:6c:27:a5:e4:5b:dd: 90:64:6e:08 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NDMwQjExMC8GA1UEBRMoM0YyRUJBRUI1MUNDMzhGOTVCMzIzREQwQzg1RUU4MzBB RkUzMzdCMzAeFw0yNTEwMTMwMDU4MTZaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZWM0ZWE3LTIzZjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdn4wiSvBNrk/XrwCxUrW9jyViDEYsscfT3TSBpOioqdKQd1mdfR+QhF1M1qkf SsZNGQnNVsN6pUKSszjBIR47yC5WNQqbwdPnRScMOjkNfBoW8yq465lCy2slMvRT bVRIrnqnuk0m8E45x8k+dfDOsQuVvYlHPjPzhlzTKbmz7SuDR0/TueEEDS2VzKkt B3L0xGUSgL3vaUmGHwe4TgyF467AqCpzZLca9chHsao8Y7LVkwld7E4R42nIQhxt vLA/daM8SQk2W66/YRUPUgrAWllrU/o71Q28sL94dKnGwg+SV7U9m2oyTvYHvreu RdqlwOVFQqDmU29iKb05IgEZAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUrjyNXUgx x5CMtn+P/rozGq5isYMwHwYDVR0jBBgwFoAUPy6661HMOPlbMj3QyF7oMK/jN7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM0MzBCLzhEMDNBNDNBQTdD RTExRjA5Nzg5NDUyOEM0RjlBRTAyL1B5NjY2MUhNT1BsYk1qM1F5RjdvTUtfak43 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUHk2NjYxSE1PUGxiTWozUXlGN29NS19qTjdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NDMwQi84RDAzQTQzQUE3Q0UxMUYwOTc4OTQ1MjhDNEY5QUUwMi9CMzJBRkM1MkE3 Q0YxMUYwOTIzQjdBMkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHAiABDfY0QDANBgkqhkiG9w0BAQsFAAOCAQEAFYpsWCRRk1QW /rrAPkJbrelWc6AdC4qJWXvNJDMcrz3V0jaOR0Uk55Qo4nWDMVrbnZ3wzyYk6f6m M+wrPik78wkgBOuo2qCP9YJf9duw8XIelmKFVeg6Fg2mvpq3rleDcT4MrHW8Z21m GrLxoSCwLp+XXTCw4O6huedFqv67VGyy1Y2aEDJbgExOzIllPapPU30QLqGMxjvb KIK3y1/CH5TS4jMR7PE1NQix2ejr9ElxgJ9LR9fGxUnIYTTmlbUyi/ewJebSQVR4 eQ04HU3QMvxggYrJUl1IYqYMWaESn3HJ9mmSfoctrt1YO955yhgxhyWCkBoabCel 5FvdkGRuCA== -----END CERTIFICATE-----Generated at Mon Oct 20 01:34:11 2025 by rpki-client