$ rpki-client -vvf rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/3492D2F083BA11EA8728F076C4F9AE02.roa File: 3492D2F083BA11EA8728F076C4F9AE02.roa (raw, json) Hash identifier: OT+54b9b887njSEqmuExUbEj0TJJUhjKtfKkhce9QUs= Subject key identifier: E9:FD:5C:1D:99:75:06:32:FC:F4:34:01:02:6E:A6:01:05:76:5C:7A Certificate issuer: /CN=A91127C1/serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55 Certificate serial: 09EA Authority key identifier: 54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/3492D2F083BA11EA8728F076C4F9AE02.roa Signing time: Wed 06 Aug 2025 20:31:48 +0000 ROA not before: Wed 06 Aug 2025 20:31:47 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 681 IP address blocks: 2001:df0:4::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:55:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2538 (0x9ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91127C1, serialNumber=54047D27CEF7346F4175EFAC734494ADBB057B55 Validity Not Before: Aug 6 20:31:47 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6893bbb3-b62e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:21:54:d0:8c:f8:ee:12:46:4d:81:5b:9d:9d: 65:fc:bf:94:27:7a:01:7f:ab:a3:8a:49:8b:6d:e4: 70:a2:ef:37:66:38:b1:09:78:92:19:13:67:27:8f: 30:2b:72:34:8a:83:d2:66:45:5b:c1:c1:fd:5e:2d: 43:dc:b5:b6:e9:6f:b0:71:19:42:75:46:90:52:36: 1b:5a:c1:f7:93:9f:5e:2a:e0:a5:48:e0:cb:1d:9e: e0:12:be:ec:21:1c:4e:42:d3:ac:d0:c2:e8:88:bc: 29:90:87:dc:6a:19:92:8f:25:02:3c:b9:36:6a:c8: a6:5f:c1:51:fb:e7:b1:49:d2:a8:22:e6:24:30:1f: 85:00:cd:6e:8b:17:d0:a8:43:8a:15:f9:61:e2:e4: 6b:2d:77:f7:1f:59:49:49:41:13:fe:32:ab:31:69: 55:3e:10:9f:3f:a3:14:a8:f4:16:5c:42:3b:4a:e8: b5:4d:5a:14:79:68:f9:ab:c2:b4:c1:9f:a2:4d:58: 36:f8:f5:f6:eb:72:38:ba:83:f7:4b:d5:69:4e:4b: e4:3c:c0:2f:3f:b7:a3:2c:63:d3:40:3c:9f:c0:ec: 24:92:4f:47:9f:48:8d:38:23:79:9c:10:1f:b8:3c: 9e:9e:9e:7b:48:84:85:89:c7:dd:42:11:70:84:a5: c8:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:FD:5C:1D:99:75:06:32:FC:F4:34:01:02:6E:A6:01:05:76:5C:7A X509v3 Authority Key Identifier: keyid:54:04:7D:27:CE:F7:34:6F:41:75:EF:AC:73:44:94:AD:BB:05:7B:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/VAR9J873NG9Bde-sc0SUrbsFe1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VAR9J873NG9Bde-sc0SUrbsFe1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91127C1/534472CC83B911EA852A1576C4F9AE02/3492D2F083BA11EA8728F076C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:4::/48 Signature Algorithm: sha256WithRSAEncryption 9a:3f:c5:bc:1a:71:1f:b7:1b:d0:f2:13:72:04:8c:cb:66:1c: 88:84:fd:23:42:7f:73:9f:e2:0d:66:15:70:4e:2a:00:8c:d5: a2:95:57:28:9d:b5:e4:56:71:4e:d5:96:9d:82:6d:4c:26:fb: 27:22:02:34:93:e7:55:5f:d1:43:70:e0:d1:aa:c2:a7:99:72: e3:45:a4:77:50:ac:b0:c5:be:08:16:2f:09:f7:67:b0:97:b8: d1:ea:ed:fd:9e:34:8f:dc:bb:f3:1a:7f:7f:89:75:24:df:a0: ab:9a:34:7f:fe:5b:6c:29:a9:65:b2:9d:3a:bd:8e:db:9d:68: 46:71:0b:8e:4f:05:3b:cc:8a:24:1a:9e:27:01:2b:7c:29:bd: e8:06:b0:d8:a4:55:9e:94:f6:a3:49:55:f2:ec:5b:30:df:8d: bf:88:96:95:c4:18:d3:97:3d:46:44:92:d1:b4:05:0a:63:26: 87:c5:07:2a:57:30:b8:df:7a:2f:dd:fa:fe:2d:23:21:73:48: 97:a7:1c:b5:af:c4:68:d8:ab:88:70:e8:1a:1b:3a:6d:40:52: 0c:f8:76:43:52:66:4f:4f:f8:c8:27:37:75:00:c8:f8:66:4a: d5:9d:04:75:6c:08:b0:04:8a:bc:22:ad:fa:d2:1d:45:5f:42: 1a:bb:ad:f2 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICCeowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3QzExMTAvBgNVBAUTKDU0MDQ3RDI3Q0VGNzM0NkY0MTc1RUZBQzczNDQ5NEFE QkIwNTdCNTUwHhcNMjUwODA2MjAzMTQ3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkzYmJiMy1iNjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyFU0Iz47hJGTYFbnZ1l/L+UJ3oBf6ujikmLbeRwou83ZjixCXiSGRNnJ48w K3I0ioPSZkVbwcH9Xi1D3LW26W+wcRlCdUaQUjYbWsH3k59eKuClSODLHZ7gEr7s IRxOQtOs0MLoiLwpkIfcahmSjyUCPLk2asimX8FR++exSdKoIuYkMB+FAM1uixfQ qEOKFflh4uRrLXf3H1lJSUET/jKrMWlVPhCfP6MUqPQWXEI7Sui1TVoUeWj5q8K0 wZ+iTVg2+PX263I4uoP3S9VpTkvkPMAvP7ejLGPTQDyfwOwkkk9Hn0iNOCN5nBAf uDyenp57SISFicfdQhFwhKXILQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFOn9XB2Z dQYy/PQ0AQJupgEFdlx6MB8GA1UdIwQYMBaAFFQEfSfO9zRvQXXvrHNElK27BXtV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjdDMS81MzQ0NzJDQzgz QjkxMUVBODUyQTE1NzZDNEY5QUUwMi9WQVI5Sjg3M05HOUJkZS1zYzBTVXJic0Zl MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZBUjlKODczTkc5QmRlLXNjMFNVcmJzRmUxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI3QzEvNTM0NDcyQ0M4M0I5MTFFQTg1MkExNTc2QzRGOUFFMDIvMzQ5MkQyRjA4 M0JBMTFFQTg3MjhGMDc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3wAAQwDQYJKoZIhvcNAQELBQADggEBAJo/xbwacR+3 G9DyE3IEjMtmHIiE/SNCf3Of4g1mFXBOKgCM1aKVVyidteRWcU7Vlp2CbUwm+yci AjST51Vf0UNw4NGqwqeZcuNFpHdQrLDFvggWLwn3Z7CXuNHq7f2eNI/cu/Maf3+J dSTfoKuaNH/+W2wpqWWynTq9jtudaEZxC45PBTvMiiQanicBK3wpvegGsNikVZ6U 9qNJVfLsWzDfjb+IlpXEGNOXPUZEktG0BQpjJofFBypXMLjfei/d+v4tIyFzSJen HLWvxGjYq4hw6BobOm1AUgz4dkNSZk9P+MgnN3UAyPhmStWdBHVsCLAEirwirfrS HUVfQhq7rfI= -----END CERTIFICATE-----Generated at Wed Nov 5 15:03:24 2025 by rpki-client