$ rpki-client -vvf rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/5334A8127F7E11F0A875FC3CC4F9AE02.roa File: 5334A8127F7E11F0A875FC3CC4F9AE02.roa (raw, json) Hash identifier: XZ6zeGoXDnSWwr4gCLXa845u9QXlAL13Qr+jc0LaxA4= Subject key identifier: F0:F2:25:7D:9D:D0:23:33:D1:05:E2:A8:B4:0D:75:19:FC:04:27:89 Certificate issuer: /CN=A91EABCB/serialNumber=16B98842D861AEFE803040200C9AAA89560F2BCA Certificate serial: 06B3 Authority key identifier: 16:B9:88:42:D8:61:AE:FE:80:30:40:20:0C:9A:AA:89:56:0F:2B:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrmIQthhrv6AMEAgDJqqiVYPK8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/5334A8127F7E11F0A875FC3CC4F9AE02.roa Signing time: Fri 22 Aug 2025 17:34:59 +0000 ROA not before: Fri 22 Aug 2025 17:34:59 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 55201 IP address blocks: 2400:bac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/FrmIQthhrv6AMEAgDJqqiVYPK8o.crl rsync://rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/FrmIQthhrv6AMEAgDJqqiVYPK8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrmIQthhrv6AMEAgDJqqiVYPK8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 22:20:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1715 (0x6b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EABCB, serialNumber=16B98842D861AEFE803040200C9AAA89560F2BCA Validity Not Before: Aug 22 17:34:59 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68a8aa42-6133 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:1e:82:ec:f0:42:83:df:ac:58:db:b5:08:f1: 7a:95:65:6f:72:95:52:07:7a:51:1f:9d:f9:48:ca: 4f:e4:72:16:3c:31:5a:a0:b0:5c:4b:12:e5:de:cc: 31:c2:f8:ee:9d:51:1f:ec:a3:ea:92:a4:0d:2c:5f: cf:af:9b:96:b6:f5:8b:27:a3:c3:16:90:e2:82:84: 07:a5:b6:a2:3b:0f:77:6a:be:0a:1f:77:73:c5:4a: fd:c8:28:27:6f:1f:65:dd:fa:1b:ef:a6:97:1e:da: 1b:e3:94:90:b7:52:c3:bc:2b:7a:3c:d0:a0:a1:98: f3:95:f5:f0:a7:65:0c:6a:38:5e:3e:0e:af:06:4a: c3:69:44:a6:f6:fb:45:d6:5b:38:4e:f9:09:0d:dd: 2a:ba:ee:e8:7a:92:c2:ee:af:c0:4e:8c:b2:b3:9c: 38:96:24:a4:99:18:f0:86:42:ba:e4:dc:ad:ec:4c: 31:9a:fd:3c:06:2e:53:34:57:e8:64:07:b1:8c:cd: dc:f8:b8:14:2d:a7:7d:66:e9:4d:d3:ff:05:6c:ee: 92:c7:af:87:5f:53:9f:a9:7f:f6:0a:7b:d2:15:5a: 01:96:2f:5a:9f:61:81:1e:d7:0c:cd:68:82:e6:6e: 34:e2:d9:25:4e:56:0b:d3:2a:0c:c9:fe:c7:4b:99: 41:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F2:25:7D:9D:D0:23:33:D1:05:E2:A8:B4:0D:75:19:FC:04:27:89 X509v3 Authority Key Identifier: keyid:16:B9:88:42:D8:61:AE:FE:80:30:40:20:0C:9A:AA:89:56:0F:2B:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/FrmIQthhrv6AMEAgDJqqiVYPK8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrmIQthhrv6AMEAgDJqqiVYPK8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EABCB/342FFF187A8611EB97AE5160C4F9AE02/5334A8127F7E11F0A875FC3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:bac0::/32 Signature Algorithm: sha256WithRSAEncryption 8c:c2:fa:0a:94:74:d9:9a:67:f9:83:8d:32:cf:02:d0:af:0e: 2b:32:98:07:9f:f9:2a:e5:50:5a:ce:b9:5e:38:5c:1e:0d:12: 29:fc:75:85:c7:78:ac:07:a7:a7:07:93:dc:34:a3:7a:20:90: 82:ac:40:48:20:51:f6:ec:ce:a5:0f:20:94:3c:32:2e:b2:7e: fe:dd:72:6c:3e:07:69:cb:16:ac:7b:34:33:72:05:c7:3f:ff: 92:be:13:0f:8f:85:b8:9c:6a:dd:72:cc:bd:c8:9a:2e:a7:40: a0:15:b0:cd:b7:05:18:68:16:1c:26:83:02:6b:e1:97:44:4c: 9c:1b:24:50:04:05:b6:ce:cd:56:5a:ec:66:5c:e7:9e:75:43: e4:d9:8d:b3:96:4d:92:9f:6a:a0:9a:9a:66:87:51:f6:82:db: 27:04:b2:f8:9b:f0:34:88:6f:d0:61:4d:75:51:b3:4e:1b:aa: 6a:22:65:a3:a6:3d:c5:2c:db:82:14:c2:f0:19:6c:05:44:77: 48:31:40:69:dc:0c:0a:c4:29:b0:38:00:2a:2e:b4:d9:09:fb: 58:78:16:e7:9d:0a:8d:a0:04:96:b8:23:1a:27:fb:bd:c4:5d: f0:20:30:cb:b3:36:79:aa:aa:49:39:98:fc:2e:5c:22:4a:dc: 08:13:11:65 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICBrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFCQ0IxMTAvBgNVBAUTKDE2Qjk4ODQyRDg2MUFFRkU4MDMwNDAyMDBDOUFBQTg5 NTYwRjJCQ0EwHhcNMjUwODIyMTczNDU5WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGE4YWE0Mi02MTMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAox6C7PBCg9+sWNu1CPF6lWVvcpVSB3pRH535SMpP5HIWPDFaoLBcSxLl3swx wvjunVEf7KPqkqQNLF/Pr5uWtvWLJ6PDFpDigoQHpbaiOw93ar4KH3dzxUr9yCgn bx9l3fob76aXHtob45SQt1LDvCt6PNCgoZjzlfXwp2UMajhePg6vBkrDaUSm9vtF 1ls4TvkJDd0quu7oepLC7q/AToyys5w4liSkmRjwhkK65Nyt7Ewxmv08Bi5TNFfo ZAexjM3c+LgULad9ZulN0/8FbO6Sx6+HX1OfqX/2CnvSFVoBli9an2GBHtcMzWiC 5m404tklTlYL0yoMyf7HS5lBDQIDAQABo4ICljCCApIwHQYDVR0OBBYEFPDyJX2d 0CMz0QXiqLQNdRn8BCeJMB8GA1UdIwQYMBaAFBa5iELYYa7+gDBAIAyaqolWDyvK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUJDQi8zNDJGRkYxODdB ODYxMUVCOTdBRTUxNjBDNEY5QUUwMi9Gcm1JUXRoaHJ2NkFNRUFnREpxcWlWWVBL OG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZybUlRdGhocnY2QU1FQWdESnFxaVZZUEs4by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFCQ0IvMzQyRkZGMTg3QTg2MTFFQjk3QUU1MTYwQzRGOUFFMDIvNTMzNEE4MTI3 RjdFMTFGMEE4NzVGQzNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkALrAMA0GCSqGSIb3DQEBCwUAA4IBAQCMwvoKlHTZmmf5 g40yzwLQrw4rMpgHn/kq5VBazrleOFweDRIp/HWFx3isB6enB5PcNKN6IJCCrEBI IFH27M6lDyCUPDIusn7+3XJsPgdpyxasezQzcgXHP/+SvhMPj4W4nGrdcsy9yJou p0CgFbDNtwUYaBYcJoMCa+GXREycGyRQBAW2zs1WWuxmXOeedUPk2Y2zlk2Sn2qg mppmh1H2gtsnBLL4m/A0iG/QYU11UbNOG6pqImWjpj3FLNuCFMLwGWwFRHdIMUBp 3AwKxCmwOAAqLrTZCftYeBbnnQqNoASWuCMaJ/u9xF3wIDDLszZ5qqpJOZj8Llwi StwIExFl -----END CERTIFICATE-----Generated at Sat Aug 23 23:29:03 2025 by rpki-client