$ rpki-client -vvf rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/48B17B5CB4CD11F094AF5C23C4F9AE02.roa File: 48B17B5CB4CD11F094AF5C23C4F9AE02.roa (raw, json) Hash identifier: nlIGArnSyHQ+mO4FvncFWFbJtBmLN0/ZfyCLV+iceoM= Subject key identifier: D9:C1:4C:CB:2E:94:F8:F6:7B:AF:CF:CE:5C:23:97:55:FF:90:E9:F0 Certificate issuer: /CN=A91731AD/serialNumber=B870D2E0E31C8A910EDFBA765BB7CF04C3C10CBE Certificate serial: 46 Authority key identifier: B8:70:D2:E0:E3:1C:8A:91:0E:DF:BA:76:5B:B7:CF:04:C3:C1:0C:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHDS4OMcipEO37p2W7fPBMPBDL4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/48B17B5CB4CD11F094AF5C23C4F9AE02.roa Signing time: Wed 29 Oct 2025 13:43:43 +0000 ROA not before: Wed 29 Oct 2025 13:43:43 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153930 IP address blocks: 2001:df6:31c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/uHDS4OMcipEO37p2W7fPBMPBDL4.crl rsync://rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/uHDS4OMcipEO37p2W7fPBMPBDL4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHDS4OMcipEO37p2W7fPBMPBDL4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:34:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70 (0x46) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91731AD, serialNumber=B870D2E0E31C8A910EDFBA765BB7CF04C3C10CBE Validity Not Before: Oct 29 13:43:43 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69021a0f-b13a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:fd:ba:ad:f4:fb:43:0a:80:49:25:31:b4:f1: 0f:d1:eb:be:09:f8:79:97:a6:35:c0:9e:39:29:04: 0a:f8:74:63:fd:27:74:4d:bf:79:6e:58:88:c5:c1: 6d:62:24:d3:28:27:3c:d8:7b:09:81:29:e2:f7:0f: e8:9d:f1:1d:14:c5:a8:9c:ea:9d:0a:da:c6:7d:e5: c1:e3:af:6f:3e:6e:85:6d:fc:78:cf:6f:4f:00:05: 99:49:f3:1e:c7:fa:5b:b4:76:f9:ca:77:25:58:73: dc:3c:a2:05:aa:81:05:1d:3d:7f:e3:cb:47:bb:38: 05:de:a0:35:74:24:45:b3:ce:99:d1:5d:b5:d0:ba: be:c1:6a:47:b3:dd:ad:a7:35:c9:52:e7:34:78:ed: 37:5d:4f:e5:e9:e3:d8:d5:06:12:3a:fb:52:3e:d1: f3:b5:60:83:2b:55:e2:21:11:8b:47:3f:0f:e0:b4: f2:58:cb:e0:c3:ec:c7:b4:2d:c2:4a:c7:da:c1:7a: f6:a1:ea:97:11:12:54:e2:22:ea:7f:4e:9a:c3:5d: 34:3c:2d:86:74:8b:22:9a:d7:55:3a:4f:23:fb:6e: 6b:0c:31:9e:17:c1:dd:2e:16:aa:a3:a7:ac:67:1e: 50:af:c7:96:82:6b:6f:db:ca:3a:a8:a5:f4:3f:e4: e3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:C1:4C:CB:2E:94:F8:F6:7B:AF:CF:CE:5C:23:97:55:FF:90:E9:F0 X509v3 Authority Key Identifier: keyid:B8:70:D2:E0:E3:1C:8A:91:0E:DF:BA:76:5B:B7:CF:04:C3:C1:0C:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/uHDS4OMcipEO37p2W7fPBMPBDL4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHDS4OMcipEO37p2W7fPBMPBDL4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/48B17B5CB4CD11F094AF5C23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df6:31c0::/48 Signature Algorithm: sha256WithRSAEncryption 10:6a:6c:d2:8d:d3:15:03:3e:0a:53:5d:20:b5:38:95:96:45: 99:a6:66:ff:a7:ec:d4:ad:2f:0f:77:60:51:7d:29:10:69:4a: b8:46:26:94:9d:d1:4a:3e:6a:03:95:ee:a2:d3:92:21:f7:64: 25:dd:37:02:74:42:5a:74:45:25:65:ee:c5:e3:bd:96:4e:84: 6f:c7:c9:fd:bd:61:93:60:35:c5:56:bf:f8:a7:d0:f6:62:60: d7:48:9c:65:43:3b:3d:e8:e7:5b:0f:dc:0a:3b:6d:80:ea:e7: 8d:bb:bc:73:5e:7e:15:63:e0:d1:11:c1:64:24:6b:9d:db:cb: 2b:04:c3:d4:05:00:ae:cb:b5:83:5f:f2:e1:21:fc:56:ba:31: 28:2d:0d:76:4a:cd:2f:c0:ef:2b:0a:4a:66:2f:5b:81:31:b5: 67:e8:40:78:3c:ef:4d:d9:fb:f6:42:73:c5:6d:ae:08:9c:d5: bf:64:82:bd:35:bf:2e:58:09:15:64:fe:a8:2b:51:f1:25:54: d7:75:fa:03:a3:ec:d9:4c:7e:2e:6c:42:c3:49:f7:a3:db:de: 46:78:ab:21:16:61:f5:f9:a2:6b:91:69:fe:2a:61:c0:05:6f: 4d:c3:65:b1:a7:f8:8d:75:35:7d:ae:b8:9d:e4:b8:1b:ce:07: 8e:92:c7:e7 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBRjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MzFBRDExMC8GA1UEBRMoQjg3MEQyRTBFMzFDOEE5MTBFREZCQTc2NUJCN0NGMDRD M0MxMENCRTAeFw0yNTEwMjkxMzQzNDNaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MDIxYTBmLWIxM2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCp/bqt9PtDCoBJJTG08Q/R674J+HmXpjXAnjkpBAr4dGP9J3RNv3luWIjFwW1i JNMoJzzYewmBKeL3D+id8R0Uxaic6p0K2sZ95cHjr28+boVt/HjPb08ABZlJ8x7H +lu0dvnKdyVYc9w8ogWqgQUdPX/jy0e7OAXeoDV0JEWzzpnRXbXQur7Bakez3a2n NclS5zR47TddT+Xp49jVBhI6+1I+0fO1YIMrVeIhEYtHPw/gtPJYy+DD7Me0LcJK x9rBevah6pcRElTiIup/TprDXTQ8LYZ0iyKa11U6TyP7bmsMMZ4Xwd0uFqqjp6xn HlCvx5aCa2/byjqopfQ/5OMhAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU2cFMyy6U +PZ7r8/OXCOXVf+Q6fAwHwYDVR0jBBgwFoAUuHDS4OMcipEO37p2W7fPBMPBDL4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczMUFEL0M0RTI2OTU2NTA5 QzExRjA4NkQ5MkQzOEM0RjlBRTAyL3VIRFM0T01jaXBFTzM3cDJXN2ZQQk1QQkRM NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdUhEUzRPTWNpcEVPMzdwMlc3ZlBCTVBCREw0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzFBRC9DNEUyNjk1NjUwOUMxMUYwODZEOTJEMzhDNEY5QUUwMi80OEIxN0I1Q0I0 Q0QxMUYwOTRBRjVDMjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfYxwDANBgkqhkiG9w0BAQsFAAOCAQEAEGps0o3TFQM+ ClNdILU4lZZFmaZm/6fs1K0vD3dgUX0pEGlKuEYmlJ3RSj5qA5XuotOSIfdkJd03 AnRCWnRFJWXuxeO9lk6Eb8fJ/b1hk2A1xVa/+KfQ9mJg10icZUM7PejnWw/cCjtt gOrnjbu8c15+FWPg0RHBZCRrndvLKwTD1AUArsu1g1/y4SH8VroxKC0NdkrNL8Dv KwpKZi9bgTG1Z+hAeDzvTdn79kJzxW2uCJzVv2SCvTW/LlgJFWT+qCtR8SVU13X6 A6Ps2Ux+LmxCw0n3o9veRnirIRZh9fmia5Fp/iphwAVvTcNlsaf4jXU1fa64neS4 G84HjpLH5w== -----END CERTIFICATE-----Generated at Wed Nov 5 16:55:33 2025 by rpki-client