$ rpki-client -vvf rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/399480C4ACD011F08828DD7BC4F9AE02.roa File: 399480C4ACD011F08828DD7BC4F9AE02.roa (raw, json) Hash identifier: yI8N6F4qsuPIqNv8+UqyC5GcVGdjbU6jQ0lT/VBamLY= Subject key identifier: 50:23:5D:AB:C2:D0:61:8C:52:C7:FB:D4:30:1B:3D:E4:3A:CA:EF:51 Certificate issuer: /CN=A91F40E0/serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Certificate serial: 23 Authority key identifier: 89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/399480C4ACD011F08828DD7BC4F9AE02.roa Signing time: Sun 19 Oct 2025 09:44:37 +0000 ROA not before: Sun 19 Oct 2025 09:44:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 147180 IP address blocks: 2001:df5:f9c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:18:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35 (0x23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F40E0, serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Validity Not Before: Oct 19 09:44:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68f4b305-8086 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:34:0d:b6:10:ef:e5:2f:ea:7c:55:59:15:39: 7a:ae:0f:42:dd:9a:bb:0e:f1:e7:76:c5:70:79:a3: 3d:2f:2c:49:e4:37:68:05:26:fa:d7:35:f1:48:95: 42:f5:c2:ad:bc:c0:82:72:ed:5a:b4:0e:46:2f:78: da:f9:dd:2e:db:86:b9:19:34:a0:55:54:a7:b1:d1: 1a:09:47:69:17:18:29:4b:5d:86:55:86:09:d6:77: 63:43:15:a3:73:f1:72:79:76:76:68:5b:c7:87:54: 2e:73:91:a8:17:ec:bc:ee:73:83:31:27:9f:7d:ce: 6c:81:71:8d:31:a7:eb:88:5d:1d:31:e2:ec:15:2f: e8:e1:81:f9:3c:38:45:8a:1e:3b:a3:8a:5a:15:66: f2:d3:76:90:3c:b0:11:e0:c8:84:9f:42:57:ea:82: fd:cf:74:6d:17:4b:c7:e9:41:29:e5:6d:ca:4e:b1: b9:0f:9e:56:de:45:50:d0:0f:36:a4:be:f2:9f:a2: 91:48:fe:34:96:a9:62:84:f6:b8:9f:b3:96:3a:28: 16:29:2b:85:56:6f:3d:3d:f8:07:13:b3:5a:5a:d4: 98:5e:56:df:39:ea:a1:65:85:6c:74:38:f0:ec:d6: f3:0f:87:75:bf:90:d9:09:18:a6:75:f8:12:eb:80: cf:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:23:5D:AB:C2:D0:61:8C:52:C7:FB:D4:30:1B:3D:E4:3A:CA:EF:51 X509v3 Authority Key Identifier: keyid:89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/399480C4ACD011F08828DD7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:f9c0::/48 Signature Algorithm: sha256WithRSAEncryption 44:c7:ea:ef:d8:e6:14:42:d5:9d:3f:15:cc:ac:89:b3:cc:31: f0:6f:45:57:2b:1d:28:65:a9:e0:f0:8b:d8:11:41:30:f5:66: c4:cc:de:39:89:9c:32:b8:58:46:15:0b:2e:36:d8:37:3b:89: 93:ac:1b:a6:28:33:d8:d7:ba:7f:73:6c:6c:1e:97:0e:bd:87: 48:80:33:1f:4c:69:20:84:f8:25:53:20:a4:4f:af:49:16:24: 39:38:93:f3:6e:9d:60:cc:aa:e9:d3:05:e6:10:ad:1b:e7:a2: 01:77:fd:43:11:a9:bf:18:20:09:dd:9e:c9:c9:53:80:65:d3: 19:b7:b5:af:74:70:04:b7:5f:a0:62:4c:21:fa:5c:5d:88:90: 29:7d:59:66:c9:6e:d0:99:d6:2c:89:b0:45:46:bf:6b:5d:8c: 77:a7:b3:3b:8d:97:1e:54:cd:c5:9e:aa:c4:02:10:ad:2e:ad: 7f:13:80:ae:2a:7b:e4:32:e4:d6:3b:94:bc:fd:8d:f8:3e:09: b8:4e:b4:b7:bc:f9:e5:ce:4b:5a:d1:0e:7d:b6:13:b4:0a:18: cb:32:f4:1b:be:9b:d6:93:3d:4e:9e:25:3c:b9:07:68:6f:1a: a9:26:65:47:09:15:30:c2:a7:db:45:76:24:fb:8b:77:1f:f1: 2d:12:89:fe -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBIzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDBFMDExMC8GA1UEBRMoODk3MDc3QjcxRjJDNUFFRERFNkMxREQ0OTU0N0RDQzk5 NTJDREFCRTAeFw0yNTEwMTkwOTQ0MzdaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZjRiMzA1LTgwODYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDENA22EO/lL+p8VVkVOXquD0LdmrsO8ed2xXB5oz0vLEnkN2gFJvrXNfFIlUL1 wq28wIJy7Vq0DkYveNr53S7bhrkZNKBVVKex0RoJR2kXGClLXYZVhgnWd2NDFaNz 8XJ5dnZoW8eHVC5zkagX7Lzuc4MxJ599zmyBcY0xp+uIXR0x4uwVL+jhgfk8OEWK HjujiloVZvLTdpA8sBHgyISfQlfqgv3PdG0XS8fpQSnlbcpOsbkPnlbeRVDQDzak vvKfopFI/jSWqWKE9rifs5Y6KBYpK4VWbz09+AcTs1pa1JheVt856qFlhWx0OPDs 1vMPh3W/kNkJGKZ1+BLrgM9vAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUUCNdq8LQ YYxSx/vUMBs95DrK71EwHwYDVR0jBBgwFoAUiXB3tx8sWu3ebB3UlUfcyZUs2r4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0MEUwLzNGQkI1RTA0N0I1 MzExRjA5QjU0ODQ1RkM0RjlBRTAyL2lYQjN0eDhzV3UzZWJCM1VsVWZjeVpVczJy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVhCM3R4OHNXdTNlYkIzVWxVZmN5WlVzMnI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDBFMC8zRkJCNUUwNDdCNTMxMUYwOUI1NDg0NUZDNEY5QUUwMi8zOTk0ODBDNEFD RDAxMUYwODgyOEREN0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfX5wDANBgkqhkiG9w0BAQsFAAOCAQEARMfq79jmFELV nT8VzKyJs8wx8G9FVysdKGWp4PCL2BFBMPVmxMzeOYmcMrhYRhULLjbYNzuJk6wb pigz2Ne6f3NsbB6XDr2HSIAzH0xpIIT4JVMgpE+vSRYkOTiT826dYMyq6dMF5hCt G+eiAXf9QxGpvxggCd2eyclTgGXTGbe1r3RwBLdfoGJMIfpcXYiQKX1ZZslu0JnW LImwRUa/a12Md6ezO42XHlTNxZ6qxAIQrS6tfxOArip75DLk1juUvP2N+D4JuE60 t7z55c5LWtEOfbYTtAoYyzL0G76b1pM9Tp4lPLkHaG8aqSZlRwkVMMKn20V2JPuL dx/xLRKJ/g== -----END CERTIFICATE-----Generated at Mon Oct 20 17:59:13 2025 by rpki-client