$ rpki-client -vvf rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/901A806E936311F0AFC2992BC4F9AE02.roa File: 901A806E936311F0AFC2992BC4F9AE02.roa (raw, json) Hash identifier: 4IjRBRyjuEdbkIY8f1/iw3KdwGSRgiR78o99r2JvTFk= Subject key identifier: A7:8C:47:98:62:2F:A1:74:66:FB:51:89:57:D4:26:61:C5:71:93:BB Certificate issuer: /CN=A91538E7/serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Certificate serial: 02 Authority key identifier: 3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/901A806E936311F0AFC2992BC4F9AE02.roa Signing time: Wed 17 Sep 2025 01:13:48 +0000 ROA not before: Wed 17 Sep 2025 01:13:48 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9908 IP address blocks: 72.57.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 21:05:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91538E7, serialNumber=3D6216D55CB54FC9B570F9F25F9ADD0F3769B4DE Validity Not Before: Sep 17 01:13:48 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ca0b4b-3a6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9f:39:b5:e4:c5:17:e6:89:cc:43:16:0c:91: d8:a3:83:0a:e2:b5:0d:51:ba:7b:0c:e7:a4:3a:2d: 1f:97:fb:34:47:5f:f3:f3:9b:18:19:b4:2c:02:ca: 79:ad:fa:2b:bc:d7:37:76:2f:3c:c1:aa:ed:25:fe: ed:b1:ad:5a:b5:f4:12:c5:94:d0:d7:55:a5:d8:46: e0:b0:c5:05:f4:8e:dc:9d:9c:9e:8c:8f:07:18:ed: df:4f:b6:50:60:ee:50:7c:34:e5:31:89:f5:58:f3: 0e:00:30:13:59:47:1e:c3:4f:04:61:45:27:e5:ea: cb:2f:84:9e:04:a4:9b:52:c8:76:13:05:46:cc:8e: 37:db:cd:06:a4:c0:98:a7:12:00:f2:6f:fe:38:55: 77:0f:0e:02:ec:a8:aa:65:8f:ba:65:28:84:45:d0: 72:75:58:d8:c8:23:3e:54:23:20:76:75:d7:b4:44: 70:89:e5:ea:42:33:8a:bf:c4:4c:1d:7e:68:cd:75: 25:c3:7f:07:b6:86:20:08:0e:f0:5e:cf:3c:c6:0e: 29:af:7f:4a:36:b8:0f:de:41:26:b4:17:f7:6c:6a: 6e:9e:31:e3:da:75:68:8d:90:89:57:25:72:5d:ab: b5:9c:e7:33:0b:47:4f:3e:47:8f:23:67:20:b4:7f: 4f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:8C:47:98:62:2F:A1:74:66:FB:51:89:57:D4:26:61:C5:71:93:BB X509v3 Authority Key Identifier: keyid:3D:62:16:D5:5C:B5:4F:C9:B5:70:F9:F2:5F:9A:DD:0F:37:69:B4:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/PWIW1Vy1T8m1cPnyX5rdDzdptN4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PWIW1Vy1T8m1cPnyX5rdDzdptN4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91538E7/C62B2986934211F0A987783BC4F9AE02/901A806E936311F0AFC2992BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 72.57.128.0/17 Signature Algorithm: sha256WithRSAEncryption b4:6a:f9:87:ca:d5:36:20:b8:4d:00:73:34:bb:b7:0d:a2:0d: f4:fa:03:a6:a5:68:c4:9d:62:c5:b4:ee:51:db:49:e3:10:ad: 57:de:73:22:d5:6f:c9:70:d6:dc:9f:9c:25:d4:c5:3b:db:36: 57:b0:4c:e5:ae:5f:e2:12:7d:76:50:9c:42:02:e0:a2:87:f3: f4:2d:2a:69:b0:08:60:3b:c7:b0:14:9d:37:1d:89:22:4b:0e: a7:68:39:5b:35:96:83:a6:23:b2:ca:ce:12:59:2b:97:15:7c: 1c:34:04:9d:e5:24:b4:9e:f0:78:f4:c5:4f:ec:b6:6a:47:d2: 0f:4c:20:1a:40:f7:79:2b:d0:bb:fc:04:72:a0:f6:eb:1d:6d: aa:e0:63:fa:d2:d7:b7:bd:0f:4f:dd:a6:8a:fb:ef:8e:3f:b5: df:48:f8:c5:fd:90:c9:61:d8:7c:d5:5f:96:ed:77:46:fd:e4: 78:d1:36:2d:3b:1e:85:e5:52:2b:af:b2:75:71:41:58:62:a0: 63:13:9d:25:df:7d:8c:56:34:2a:ac:fd:eb:1f:01:9a:b0:0b: 3d:b2:69:a9:a8:c9:e1:41:6f:cb:42:86:54:de:bb:73:a8:3a: 03:13:67:04:1e:73:0b:5f:30:b5:9f:25:da:ba:0c:05:fc:67: 7f:b7:9d:cd -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MzhFNzExMC8GA1UEBRMoM0Q2MjE2RDU1Q0I1NEZDOUI1NzBGOUYyNUY5QUREMEYz NzY5QjRERTAeFw0yNTA5MTcwMTEzNDhaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Y2EwYjRiLTNhNmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3nzm15MUX5onMQxYMkdijgwritQ1RunsM56Q6LR+X+zRHX/PzmxgZtCwCynmt +iu81zd2LzzBqu0l/u2xrVq19BLFlNDXVaXYRuCwxQX0jtydnJ6MjwcY7d9PtlBg 7lB8NOUxifVY8w4AMBNZRx7DTwRhRSfl6ssvhJ4EpJtSyHYTBUbMjjfbzQakwJin EgDyb/44VXcPDgLsqKplj7plKIRF0HJ1WNjIIz5UIyB2dde0RHCJ5epCM4q/xEwd fmjNdSXDfwe2hiAIDvBezzzGDimvf0o2uA/eQSa0F/dsam6eMePadWiNkIlXJXJd q7Wc5zMLR08+R48jZyC0f0/BAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUp4xHmGIv oXRm+1GJV9QmYcVxk7swHwYDVR0jBBgwFoAUPWIW1Vy1T8m1cPnyX5rdDzdptN4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUzOEU3L0M2MkIyOTg2OTM0 MjExRjBBOTg3NzgzQkM0RjlBRTAyL1BXSVcxVnkxVDhtMWNQbnlYNXJkRHpkcHRO NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUFdJVzFWeTFUOG0xY1BueVg1cmREemRwdE40LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MzhFNy9DNjJCMjk4NjkzNDIxMUYwQTk4Nzc4M0JDNEY5QUUwMi85MDFBODA2RTkz NjMxMUYwQUZDMjk5MkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEB0g5gDANBgkqhkiG9w0BAQsFAAOCAQEAtGr5h8rVNiC4TQBz NLu3DaIN9PoDpqVoxJ1ixbTuUdtJ4xCtV95zItVvyXDW3J+cJdTFO9s2V7BM5a5f 4hJ9dlCcQgLgoofz9C0qabAIYDvHsBSdNx2JIksOp2g5WzWWg6YjssrOElkrlxV8 HDQEneUktJ7wePTFT+y2akfSD0wgGkD3eSvQu/wEcqD26x1tquBj+tLXt70PT92m ivvvjj+130j4xf2QyWHYfNVflu13Rv3keNE2LTseheVSK6+ydXFBWGKgYxOdJd99 jFY0Kqz96x8BmrALPbJpqajJ4UFvy0KGVN67c6g6AxNnBB5zC18wtZ8l2roMBfxn f7edzQ== -----END CERTIFICATE-----Generated at Wed Nov 5 15:31:57 2025 by rpki-client