$ rpki-client -vvf rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/5334A8127F7E11F0A875FC3CC4F9AE02.roa File: 5334A8127F7E11F0A875FC3CC4F9AE02.roa (raw, json) Hash identifier: 6qXyZs6mDJ1quYvHL06eZNHNtvE7JBhOipXMmob6WOs= Subject key identifier: 54:96:CF:BA:52:35:83:4E:CF:C9:FB:CD:EA:EC:5D:9E:56:11:18:83 Certificate issuer: /CN=A91EABCB/serialNumber=16B98842D861AEFE803040200C9AAA89560F2BCA Certificate serial: 06D2 Authority key identifier: 16:B9:88:42:D8:61:AE:FE:80:30:40:20:0C:9A:AA:89:56:0F:2B:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrmIQthhrv6AMEAgDJqqiVYPK8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/5334A8127F7E11F0A875FC3CC4F9AE02.roa Signing time: Fri 17 Oct 2025 14:01:24 +0000 ROA not before: Fri 17 Oct 2025 14:01:24 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 55201 IP address blocks: 2400:bac0::/32 maxlen: 32 2400:bac0::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/FrmIQthhrv6AMEAgDJqqiVYPK8o.crl rsync://rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/FrmIQthhrv6AMEAgDJqqiVYPK8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrmIQthhrv6AMEAgDJqqiVYPK8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:33:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1746 (0x6d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EABCB, serialNumber=16B98842D861AEFE803040200C9AAA89560F2BCA Validity Not Before: Oct 17 14:01:24 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68f24c34-bf95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1b:85:cd:3f:8a:d2:08:3e:9a:be:8b:a2:fc: e7:2a:a3:dc:24:7e:0c:72:72:6b:b6:47:33:1d:90: a9:96:1d:3a:fa:94:12:d4:17:0e:32:39:33:a8:31: 6d:4d:90:ff:3b:c0:58:0f:a6:99:39:83:cb:da:54: f4:fc:d1:68:e4:61:a9:b4:5e:8d:db:be:24:23:b6: d0:75:06:b6:51:63:de:ef:05:aa:c4:25:b8:c1:e4: 71:91:1b:c6:50:bb:1d:c0:5b:6b:2f:62:22:18:58: 81:fb:62:d5:af:f6:01:dc:ab:41:6f:16:97:c9:62: c6:87:b9:26:9a:3f:d4:33:a6:ea:c5:61:13:da:f8: 97:98:97:27:57:1c:6c:2b:ab:9c:2f:ca:3a:f2:aa: 34:22:7a:44:8a:6c:fc:05:2f:07:b3:0a:40:c2:b3: 98:2b:3f:d1:d5:88:ba:16:9c:44:11:f8:72:91:cd: 0f:82:eb:c0:7c:59:b8:76:07:25:62:ba:81:91:a0: cd:75:b8:f8:8a:38:7c:d8:53:8e:25:ec:a0:48:12: 78:f0:f8:c9:81:23:49:03:43:5e:68:3e:27:45:d4: 74:39:ff:cd:fa:f9:e3:a1:3c:9b:61:2f:e1:97:0a: 92:4e:19:0b:75:9c:53:13:aa:ba:f1:b3:fc:63:f3: 8d:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:96:CF:BA:52:35:83:4E:CF:C9:FB:CD:EA:EC:5D:9E:56:11:18:83 X509v3 Authority Key Identifier: keyid:16:B9:88:42:D8:61:AE:FE:80:30:40:20:0C:9A:AA:89:56:0F:2B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/FrmIQthhrv6AMEAgDJqqiVYPK8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrmIQthhrv6AMEAgDJqqiVYPK8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/5334A8127F7E11F0A875FC3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:bac0::/32 Signature Algorithm: sha256WithRSAEncryption ba:e5:71:b4:11:c5:39:cb:59:35:1c:68:e8:79:fe:ad:11:cd: e0:16:36:4d:3f:c6:aa:7d:fe:aa:b3:16:1e:25:ef:00:18:72: 77:20:f0:cf:50:c2:62:6d:2d:ed:9d:81:3e:c3:df:cd:4b:19: 94:cd:41:6e:66:bd:24:d2:fa:be:04:3b:e6:53:fe:33:5c:ad: 10:fb:20:3f:f0:f8:62:97:c1:69:12:a2:d5:43:5b:14:2a:a8: f8:7c:96:bf:6c:cd:13:8a:01:dd:31:d6:5f:8d:29:4c:e7:9d: f8:04:65:28:eb:3b:0f:e6:0c:c9:8e:56:bb:d9:2b:ec:34:49: 2f:49:ac:1e:2a:43:67:98:9a:c2:ca:eb:04:8d:90:1e:40:97: 4e:5a:17:5d:17:db:32:9d:af:2c:5d:2d:d7:6c:13:cc:7b:4a: ec:3c:a4:1a:ae:94:9e:80:aa:8d:f2:4c:9b:3a:05:e0:54:ca: ac:56:a8:d2:5d:a9:db:ea:9b:16:fa:c3:e4:ba:19:18:d9:47: e5:4f:7d:06:67:67:b1:e7:3d:b0:52:40:d5:0d:48:24:49:d4: 33:40:e9:b6:f6:8a:c3:30:4c:d5:29:8f:ba:c7:91:c3:e0:dd: 17:b7:13:24:89:0e:32:73:39:18:84:f4:02:ef:f2:57:de:7c: 56:22:44:ea -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBtIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCQ0IxMTAvBgNVBAUTKDE2Qjk4ODQyRDg2MUFFRkU4MDMwNDAyMDBDOUFBQTg5 NTYwRjJCQ0EwHhcNMjUxMDE3MTQwMTI0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGYyNGMzNC1iZjk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvxuFzT+K0gg+mr6LovznKqPcJH4McnJrtkczHZCplh06+pQS1BcOMjkzqDFt TZD/O8BYD6aZOYPL2lT0/NFo5GGptF6N274kI7bQdQa2UWPe7wWqxCW4weRxkRvG ULsdwFtrL2IiGFiB+2LVr/YB3KtBbxaXyWLGh7kmmj/UM6bqxWET2viXmJcnVxxs K6ucL8o68qo0InpEimz8BS8HswpAwrOYKz/R1Yi6FpxEEfhykc0PguvAfFm4dgcl YrqBkaDNdbj4ijh82FOOJeygSBJ48PjJgSNJA0NeaD4nRdR0Of/N+vnjoTybYS/h lwqSThkLdZxTE6q68bP8Y/ONnQIDAQABo4ICljCCApIwHQYDVR0OBBYEFFSWz7pS NYNOz8n7zersXZ5WERiDMB8GA1UdIwQYMBaAFBa5iELYYa7+gDBAIAyaqolWDyvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUJDQi8zNDJGRkYxODdB ODYxMUVCOTdBRTUxNjBDNEY5QUUwMi9Gcm1JUXRoaHJ2NkFNRUFnREpxcWlWWVBL OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZybUlRdGhocnY2QU1FQWdESnFxaVZZUEs4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFCQ0IvMzQyRkZGMTg3QTg2MTFFQjk3QUU1MTYwQzRGOUFFMDIvNTMzNEE4MTI3 RjdFMTFGMEE4NzVGQzNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkALrAMA0GCSqGSIb3DQEBCwUAA4IBAQC65XG0EcU5y1k1 HGjoef6tEc3gFjZNP8aqff6qsxYeJe8AGHJ3IPDPUMJibS3tnYE+w9/NSxmUzUFu Zr0k0vq+BDvmU/4zXK0Q+yA/8Phil8FpEqLVQ1sUKqj4fJa/bM0TigHdMdZfjSlM 5534BGUo6zsP5gzJjla72SvsNEkvSaweKkNnmJrCyusEjZAeQJdOWhddF9syna8s XS3XbBPMe0rsPKQarpSegKqN8kybOgXgVMqsVqjSXanb6psW+sPkuhkY2UflT30G Z2ex5z2wUkDVDUgkSdQzQOm29orDMEzVKY+6x5HD4N0XtxMkiQ4yczkYhPQC7/JX 3nxWIkTq -----END CERTIFICATE-----Generated at Mon Oct 20 05:31:54 2025 by rpki-client