$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/D0CDFEEA406E11EFA085272AC4F9AE02.roa File: D0CDFEEA406E11EFA085272AC4F9AE02.roa (raw, json) Hash identifier: aewA7Recxf1QEkAlzyh8eNS8lnCo6hOfpjo3yvsUTtM= Subject key identifier: D6:78:48:62:58:7E:2F:01:7C:A0:21:88:E9:F9:49:71:0F:E6:14:E4 Certificate issuer: /CN=A91F9E0A/serialNumber=3D5946003EEE548AD95D796CB188B751C57CDAC8 Certificate serial: F6 Authority key identifier: 3D:59:46:00:3E:EE:54:8A:D9:5D:79:6C:B1:88:B7:51:C5:7C:DA:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/D0CDFEEA406E11EFA085272AC4F9AE02.roa Signing time: Sun 05 Oct 2025 00:51:10 +0000 ROA not before: Sun 05 Oct 2025 00:51:10 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 152900 IP address blocks: 2401:a4a0:1::/48 maxlen: 48 2401:a4a0:2::/48 maxlen: 48 2401:a4a0:3::/48 maxlen: 48 2401:a4a0:a4a0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.crl rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:14:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 246 (0xf6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9E0A, serialNumber=3D5946003EEE548AD95D796CB188B751C57CDAC8 Validity Not Before: Oct 5 00:51:10 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68e1c0fe-fdea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:4d:bc:6d:35:c0:c8:0f:0f:81:87:cf:a6:a5: 65:82:d6:31:54:ca:12:de:4f:22:8b:77:e5:5f:e1: 7f:db:5a:e2:51:93:ed:d5:f0:2f:c4:77:1c:93:10: df:da:76:68:4a:4f:f9:80:64:06:0d:a4:3c:cc:05: 89:f7:3d:30:2f:9f:69:5f:55:c4:99:06:aa:14:04: 9b:1f:45:a1:76:99:3e:c6:54:75:0d:9f:45:43:b4: 41:a0:71:8c:98:dd:8a:a9:90:e7:82:7d:8d:67:80: 83:49:d5:e0:1d:0a:16:f5:6f:fe:92:47:73:f8:38: 70:a0:7e:54:14:72:bf:1b:4e:af:29:34:72:8f:b8: e5:1d:87:f6:83:c0:db:99:06:3e:46:f0:34:27:db: e9:cc:2b:c5:cc:ed:8e:52:d6:a4:c1:f1:9a:54:59: 4b:d9:c2:dc:37:39:9e:93:91:f1:90:33:60:a2:1b: 61:95:d9:e9:63:b8:95:da:ba:a5:b2:a1:4f:16:5e: 3d:60:fe:a4:d9:ac:eb:15:f2:ee:e1:1c:04:b2:97: 5b:d8:b3:12:55:dd:1b:5c:ff:19:a8:93:2c:fe:c2: bd:a7:b7:91:b7:45:ce:3c:19:5f:98:b6:2b:b7:e1: 2a:e3:fc:b9:28:82:09:bd:03:77:22:fb:b1:af:b5: e6:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:78:48:62:58:7E:2F:01:7C:A0:21:88:E9:F9:49:71:0F:E6:14:E4 X509v3 Authority Key Identifier: keyid:3D:59:46:00:3E:EE:54:8A:D9:5D:79:6C:B1:88:B7:51:C5:7C:DA:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/PVlGAD7uVIrZXXlssYi3UcV82sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PVlGAD7uVIrZXXlssYi3UcV82sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9E0A/0BD985E83E6911EFA2CE676AC4F9AE02/D0CDFEEA406E11EFA085272AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2401:a4a0:1::-2401:a4a0:3:ffff:ffff:ffff:ffff:ffff 2401:a4a0:a4a0::/48 Signature Algorithm: sha256WithRSAEncryption 97:ed:91:72:0f:da:ad:d5:19:80:a2:93:99:5e:1c:53:3f:d4: 3b:18:00:30:d6:c5:08:2f:a3:09:92:06:58:51:e1:3f:cb:a5: f0:5a:0d:4a:bf:ec:cc:78:dd:bf:62:a6:de:50:4e:1c:59:51: d1:b5:41:e4:d6:c5:b3:81:5a:3b:2c:a9:7c:ad:85:66:0b:23: 6c:6b:07:a7:d4:81:10:5a:70:1f:b2:7e:60:88:1e:4f:c1:96: 26:4d:1f:ff:e8:05:7c:36:36:26:56:08:23:ad:d6:25:08:26: 1b:74:c1:f2:3b:53:87:dd:d6:70:a4:31:6a:db:7f:03:be:16: 7c:95:15:c0:83:66:14:5f:fb:81:41:52:1d:5a:d0:e1:5f:f1: 21:e7:94:26:a2:65:e7:8b:0d:92:74:f1:c3:2e:10:88:7e:f3: 64:90:07:47:6f:ea:85:72:96:aa:6d:99:a8:e7:00:81:99:fa: 11:02:da:83:1e:d4:83:94:fd:04:45:2f:80:af:d0:e0:dd:fe: 1e:73:81:d9:f9:fe:ab:14:90:7c:53:8f:f9:74:ee:6b:04:86: a6:13:10:24:e1:e8:f1:93:b6:61:44:09:b1:95:45:74:62:be: d7:0a:0d:f1:a3:a7:c4:69:09:a3:11:68:f7:62:d4:d3:a3:56: 26:6b:34:0e -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlFMEExMTAvBgNVBAUTKDNENTk0NjAwM0VFRTU0OEFEOTVENzk2Q0IxODhCNzUx QzU3Q0RBQzgwHhcNMjUxMDA1MDA1MTEwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUxYzBmZS1mZGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvE28bTXAyA8PgYfPpqVlgtYxVMoS3k8ii3flX+F/21riUZPt1fAvxHcckxDf 2nZoSk/5gGQGDaQ8zAWJ9z0wL59pX1XEmQaqFASbH0Whdpk+xlR1DZ9FQ7RBoHGM mN2KqZDngn2NZ4CDSdXgHQoW9W/+kkdz+DhwoH5UFHK/G06vKTRyj7jlHYf2g8Db mQY+RvA0J9vpzCvFzO2OUtakwfGaVFlL2cLcNzmek5HxkDNgohthldnpY7iV2rql sqFPFl49YP6k2azrFfLu4RwEspdb2LMSVd0bXP8ZqJMs/sK9p7eRt0XOPBlfmLYr t+Eq4/y5KIIJvQN3Ivuxr7XmjQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFNZ4SGJY fi8BfKAhiOn5SXEP5hTkMB8GA1UdIwQYMBaAFD1ZRgA+7lSK2V15bLGIt1HFfNrI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUUwQS8wQkQ5ODVFODNF NjkxMUVGQTJDRTY3NkFDNEY5QUUwMi9QVmxHQUQ3dVZJclpYWGxzc1lpM1VjVjgy c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BWbEdBRDd1VklyWlhYbHNzWWkzVWNWODJzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlFMEEvMEJEOTg1RTgzRTY5MTFFRkEyQ0U2NzZBQzRGOUFFMDIvRDBDREZFRUE0 MDZFMTFFRkEwODUyNzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMCMEAgACMB0wEgMHACQBpKAAAQMHAiQBpKAAAAMHACQBpKCkoDANBgkqhkiG 9w0BAQsFAAOCAQEAl+2Rcg/ardUZgKKTmV4cUz/UOxgAMNbFCC+jCZIGWFHhP8ul 8FoNSr/szHjdv2Km3lBOHFlR0bVB5NbFs4FaOyypfK2FZgsjbGsHp9SBEFpwH7J+ YIgeT8GWJk0f/+gFfDY2JlYII63WJQgmG3TB8jtTh93WcKQxatt/A74WfJUVwINm FF/7gUFSHVrQ4V/xIeeUJqJl54sNknTxwy4QiH7zZJAHR2/qhXKWqm2ZqOcAgZn6 EQLagx7Ug5T9BEUvgK/Q4N3+HnOB2fn+qxSQfFOP+XTuawSGphMQJOHo8ZO2YUQJ sZVFdGK+1woN8aOnxGkJoxFo92LU06NWJms0Dg== -----END CERTIFICATE-----Generated at Mon Oct 20 13:43:44 2025 by rpki-client