$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/60F50042A99411F0A4CF2116C4F9AE02.roa File: 60F50042A99411F0A4CF2116C4F9AE02.roa (raw, json) Hash identifier: Ws+o5lfxkWBzbjla9ZUB6K0ykZgSsGy7AqspFs8FAvs= Subject key identifier: 2C:5A:DD:D5:06:65:32:9E:87:E6:33:F6:92:14:C2:AE:75:DD:E9:12 Certificate issuer: /CN=A91CD0DE/serialNumber=A124D2D104F7724FBB8F0F266949E290548C01B1 Certificate serial: 02 Authority key identifier: A1:24:D2:D1:04:F7:72:4F:BB:8F:0F:26:69:49:E2:90:54:8C:01:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oSTS0QT3ck-7jw8maUnikFSMAbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/60F50042A99411F0A4CF2116C4F9AE02.roa Signing time: Wed 15 Oct 2025 06:58:40 +0000 ROA not before: Wed 15 Oct 2025 06:58:40 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9484 IP address blocks: 2001:df6:32c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/oSTS0QT3ck-7jw8maUnikFSMAbE.crl rsync://rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/oSTS0QT3ck-7jw8maUnikFSMAbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oSTS0QT3ck-7jw8maUnikFSMAbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:41:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD0DE, serialNumber=A124D2D104F7724FBB8F0F266949E290548C01B1 Validity Not Before: Oct 15 06:58:40 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ef461f-1bfd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:49:b0:1c:db:b7:d9:8c:44:2b:73:a4:d7:bf: 31:bb:6e:10:18:19:ab:6c:11:17:14:b9:06:a9:ab: a2:e9:13:20:97:62:72:01:d3:77:b8:0f:db:de:fc: 5a:f6:50:5c:3f:36:b9:8c:cf:7c:67:d5:ad:cb:7f: 3d:b4:7b:71:55:db:c7:cd:ae:7f:69:4a:93:78:ba: 61:26:09:44:58:e0:29:5c:de:72:d3:08:12:81:7c: 4d:33:02:5a:07:86:28:b0:05:38:07:7d:22:4c:b6: 75:06:71:71:27:c9:b5:55:65:2f:3d:46:f8:a3:cc: 8c:3c:06:43:31:fb:4c:ba:31:c0:25:ef:b0:5b:95: 47:20:eb:b2:a6:95:a5:cd:de:fd:ea:a2:6a:40:fd: 21:72:9e:45:bf:a3:b4:1e:af:45:7f:49:69:71:6a: d1:29:cf:0b:e2:53:9c:2f:2e:78:7a:8f:b2:d5:6d: 4f:4f:3a:3b:b3:69:9a:80:02:d5:88:c1:b1:bd:21: ef:1a:c5:81:6c:9d:c8:6d:fa:36:ae:c8:e1:88:8a: 18:ae:b0:2c:09:d1:d9:10:36:02:88:c9:b1:c9:af: 84:a7:b6:1c:cd:c0:db:f8:91:0a:e2:1c:b7:a6:6a: 3f:d9:f5:da:c6:9b:87:cd:6c:12:9a:f2:a0:3d:d1: 38:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:5A:DD:D5:06:65:32:9E:87:E6:33:F6:92:14:C2:AE:75:DD:E9:12 X509v3 Authority Key Identifier: keyid:A1:24:D2:D1:04:F7:72:4F:BB:8F:0F:26:69:49:E2:90:54:8C:01:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/oSTS0QT3ck-7jw8maUnikFSMAbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oSTS0QT3ck-7jw8maUnikFSMAbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD0DE/5B5F4516A98F11F0B1FA5066C4F9AE02/60F50042A99411F0A4CF2116C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df6:32c0::/48 Signature Algorithm: sha256WithRSAEncryption 70:2b:af:36:c1:3a:7c:82:64:88:e5:3f:46:3b:72:48:6e:f2: 91:45:02:1f:25:ce:64:86:18:0a:5a:10:bf:97:39:ca:97:f4: 0e:8b:c1:10:6f:ae:d5:b9:7f:6d:e2:e5:eb:3e:e3:18:e3:76: ee:2f:df:6d:c3:53:a0:75:a3:54:6e:b7:4d:18:0e:ec:86:0e: 6c:e7:a2:ab:b2:b8:c6:87:b6:9d:bc:f0:7d:fd:22:e1:a7:db: e0:40:11:f4:83:57:ff:ca:89:b6:0a:3b:cd:11:5a:6a:8f:12: 92:d9:d7:8d:7a:07:da:6c:00:c0:81:dd:3e:34:1e:5b:fd:f3: f8:0b:9a:b2:1d:dc:e1:08:a2:2b:1c:34:45:c2:60:33:bc:62: b0:82:da:b2:24:e7:10:38:47:30:93:66:8a:c9:60:29:4b:5d: f0:c1:20:a9:83:34:a3:bc:8c:32:da:04:62:08:fa:84:00:50: b0:0d:81:3c:9a:be:df:ff:e2:72:27:45:ed:06:c9:db:29:00: e1:cf:75:31:3e:07:d9:39:75:fe:5b:41:35:75:e9:41:34:6f: 2f:0b:21:e7:3b:82:ad:ce:82:a4:42:ae:45:da:fa:ff:77:fd: ad:24:c9:5d:7a:b5:5d:02:98:33:b1:92:b1:b8:aa:cd:2a:fa: 89:40:d0:48 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RDBERTExMC8GA1UEBRMoQTEyNEQyRDEwNEY3NzI0RkJCOEYwRjI2Njk0OUUyOTA1 NDhDMDFCMTAeFw0yNTEwMTUwNjU4NDBaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZWY0NjFmLTFiZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4SbAc27fZjEQrc6TXvzG7bhAYGatsERcUuQapq6LpEyCXYnIB03e4D9ve/Fr2 UFw/NrmMz3xn1a3Lfz20e3FV28fNrn9pSpN4umEmCURY4Clc3nLTCBKBfE0zAloH hiiwBTgHfSJMtnUGcXEnybVVZS89RvijzIw8BkMx+0y6McAl77BblUcg67KmlaXN 3v3qompA/SFynkW/o7Qer0V/SWlxatEpzwviU5wvLnh6j7LVbU9POjuzaZqAAtWI wbG9Ie8axYFsncht+jauyOGIihiusCwJ0dkQNgKIybHJr4SnthzNwNv4kQriHLem aj/Z9drGm4fNbBKa8qA90ThzAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQULFrd1QZl Mp6H5jP2khTCrnXd6RIwHwYDVR0jBBgwFoAUoSTS0QT3ck+7jw8maUnikFSMAbEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNEMERFLzVCNUY0NTE2QTk4 RjExRjBCMUZBNTA2NkM0RjlBRTAyL29TVFMwUVQzY2stN2p3OG1hVW5pa0ZTTUFi RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1NUUzBRVDNjay03anc4bWFVbmlrRlNNQWJFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RDBERS81QjVGNDUxNkE5OEYxMUYwQjFGQTUwNjZDNEY5QUUwMi82MEY1MDA0MkE5 OTQxMUYwQTRDRjIxMTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfYywDANBgkqhkiG9w0BAQsFAAOCAQEAcCuvNsE6fIJk iOU/RjtySG7ykUUCHyXOZIYYCloQv5c5ypf0DovBEG+u1bl/beLl6z7jGON27i/f bcNToHWjVG63TRgO7IYObOeiq7K4xoe2nbzwff0i4afb4EAR9INX/8qJtgo7zRFa ao8SktnXjXoH2mwAwIHdPjQeW/3z+Auash3c4QiiKxw0RcJgM7xisILasiTnEDhH MJNmislgKUtd8MEgqYM0o7yMMtoEYgj6hABQsA2BPJq+3//icidF7QbJ2ykA4c91 MT4H2Tl1/ltBNXXpQTRvLwsh5zuCrc6CpEKuRdr6/3f9rSTJXXq1XQKYM7GSsbiq zSr6iUDQSA== -----END CERTIFICATE-----Generated at Tue Oct 21 02:18:43 2025 by rpki-client