$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/2AD1C746940111F0B07D7068C4F9AE02.roa File: 2AD1C746940111F0B07D7068C4F9AE02.roa (raw, json) Hash identifier: UEvIJGCtIPViKlp9oF2IdyQbfjX5CIRMn68xHUdCFM0= Subject key identifier: 5A:A7:3F:BA:C2:89:67:57:9E:1D:14:F1:A5:A4:42:EA:E7:CB:E1:42 Certificate issuer: /CN=A91D1E4C/serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Certificate serial: 032F Authority key identifier: AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/2AD1C746940111F0B07D7068C4F9AE02.roa Signing time: Wed 17 Sep 2025 20:01:58 +0000 ROA not before: Wed 17 Sep 2025 20:01:58 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140981 IP address blocks: 2001:df4:6880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:48:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 815 (0x32f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1E4C, serialNumber=AB67E82FC86AACA82ACFF8DC3645CD7161013F76 Validity Not Before: Sep 17 20:01:58 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68cb13b6-a8aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:22:6b:ed:a4:60:9a:d0:66:8a:b2:47:26:04: 49:30:d3:e7:44:79:19:4d:9c:1f:aa:fa:ef:0c:ef: f9:17:d8:5f:f7:23:e1:6a:66:b2:05:7f:41:00:77: 30:09:df:10:75:de:01:06:76:2c:56:3a:06:f2:b4: 2a:f4:6d:49:84:a2:42:61:3d:3d:e7:45:28:5b:56: 32:43:f0:9e:0e:5d:34:ce:6f:91:ce:50:d8:98:10: 43:fb:b1:86:a8:d9:ce:cc:b9:30:fd:52:90:8b:27: 79:37:e0:4f:09:b1:b5:4a:b5:ac:f1:eb:ed:02:28: bb:db:ac:5f:50:93:5e:de:46:a8:15:30:73:cf:a1: 99:71:53:e2:47:47:be:38:41:91:25:bf:d7:47:10: ea:be:e0:96:05:d2:67:b0:0f:ee:5d:c7:fb:d2:1a: 47:53:45:2e:e2:31:a4:17:43:3c:49:c2:4b:b7:31: 2a:58:f6:a2:9b:b6:10:0a:e9:cc:25:b2:1c:f8:4f: 53:57:a0:b1:0b:8d:73:79:c2:13:72:a4:f6:3e:b5: 67:58:e3:7a:db:c8:d8:b1:ab:a0:f3:7f:5a:a2:a2: 23:98:5f:2a:9e:51:15:58:0e:65:63:d6:31:ca:d9: c4:ac:d8:93:b2:28:07:da:f7:a4:95:04:96:43:35: c2:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:A7:3F:BA:C2:89:67:57:9E:1D:14:F1:A5:A4:42:EA:E7:CB:E1:42 X509v3 Authority Key Identifier: keyid:AB:67:E8:2F:C8:6A:AC:A8:2A:CF:F8:DC:36:45:CD:71:61:01:3F:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/q2foL8hqrKgqz_jcNkXNcWEBP3Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q2foL8hqrKgqz_jcNkXNcWEBP3Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1E4C/7DADA56CD94D11EAA604AC53C4F9AE02/2AD1C746940111F0B07D7068C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:6880::/48 Signature Algorithm: sha256WithRSAEncryption 40:ef:62:f0:c0:32:b7:aa:de:dd:87:bf:c5:b0:24:a4:af:e4: ea:8a:04:a5:cd:45:bd:03:03:c7:e7:cf:84:b6:f9:a8:68:39: 8d:53:a2:7f:ca:40:e7:01:8d:03:81:bc:88:2d:b1:e5:7d:11: 01:f9:34:b3:5b:50:17:84:ab:dd:2c:e9:41:ab:ff:93:6b:26: 93:5e:75:ab:36:c9:45:68:d2:ae:0e:34:15:a3:5f:32:5c:1d: 76:59:3f:4f:f3:ae:83:4a:8e:bf:89:bd:91:03:2f:11:32:bc: 08:67:ae:ae:6e:ce:4b:39:76:4c:1a:0c:9b:94:9f:08:8c:b9: f2:8c:83:dd:49:da:d6:a5:37:19:25:d3:7c:33:e3:d0:bb:06: ad:7f:cc:78:62:3d:b9:90:84:f4:25:a4:11:92:ab:f3:03:37: fa:19:e8:47:a5:dc:a2:61:f3:5b:ce:43:ee:4d:9d:b5:b8:dd: 89:8a:bb:a2:70:4b:f5:cc:e4:7c:67:2d:ca:be:81:aa:06:81: 53:f7:ea:2c:7b:81:69:c3:dc:aa:53:33:09:bb:3f:84:46:da: 73:45:17:8e:85:89:96:07:9f:cd:bf:9a:71:dc:92:c8:a1:b2: 22:84:51:5b:b4:b8:4a:27:c3:90:bd:6e:f7:93:df:a0:c1:aa: 7f:7d:cb:c7 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFNEMxMTAvBgNVBAUTKEFCNjdFODJGQzg2QUFDQTgyQUNGRjhEQzM2NDVDRDcx NjEwMTNGNzYwHhcNMjUwOTE3MjAwMTU4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNiMTNiNi1hOGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4iJr7aRgmtBmirJHJgRJMNPnRHkZTZwfqvrvDO/5F9hf9yPhamayBX9BAHcw Cd8Qdd4BBnYsVjoG8rQq9G1JhKJCYT0950UoW1YyQ/CeDl00zm+RzlDYmBBD+7GG qNnOzLkw/VKQiyd5N+BPCbG1SrWs8evtAii726xfUJNe3kaoFTBzz6GZcVPiR0e+ OEGRJb/XRxDqvuCWBdJnsA/uXcf70hpHU0Uu4jGkF0M8ScJLtzEqWPaim7YQCunM JbIc+E9TV6CxC41zecITcqT2PrVnWON628jYsaug839aoqIjmF8qnlEVWA5lY9Yx ytnErNiTsigH2veklQSWQzXC/QIDAQABo4ICmDCCApQwHQYDVR0OBBYEFFqnP7rC iWdXnh0U8aWkQurny+FCMB8GA1UdIwQYMBaAFKtn6C/IaqyoKs/43DZFzXFhAT92 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUU0Qy83REFEQTU2Q0Q5 NEQxMUVBQTYwNEFDNTNDNEY5QUUwMi9xMmZvTDhocXJLZ3F6X2pjTmtYTmNXRUJQ M1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EyZm9MOGhxcktncXpfamNOa1hOY1dFQlAzWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDFFNEMvN0RBREE1NkNEOTREMTFFQUE2MDRBQzUzQzRGOUFFMDIvMkFEMUM3NDY5 NDAxMTFGMEIwN0Q3MDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30aIAwDQYJKoZIhvcNAQELBQADggEBAEDvYvDAMreq 3t2Hv8WwJKSv5OqKBKXNRb0DA8fnz4S2+ahoOY1Ton/KQOcBjQOBvIgtseV9EQH5 NLNbUBeEq90s6UGr/5NrJpNedas2yUVo0q4ONBWjXzJcHXZZP0/zroNKjr+JvZED LxEyvAhnrq5uzks5dkwaDJuUnwiMufKMg91J2talNxkl03wz49C7Bq1/zHhiPbmQ hPQlpBGSq/MDN/oZ6Eel3KJh81vOQ+5NnbW43YmKu6JwS/XM5HxnLcq+gaoGgVP3 6ix7gWnD3KpTMwm7P4RG2nNFF46FiZYHn82/mnHcksihsiKEUVu0uEonw5C9bveT 36DBqn99y8c= -----END CERTIFICATE-----Generated at Mon Oct 20 19:55:30 2025 by rpki-client