$ rpki-client -vvf rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/495E782AB4CD11F094AF5C23C4F9AE02.roa File: 495E782AB4CD11F094AF5C23C4F9AE02.roa (raw, json) Hash identifier: eLaZWYd2IAoJX/jCVip0I9wbpsnmQdFUjnIKDbKlG2A= Subject key identifier: C9:38:5F:4C:15:17:42:96:51:90:F7:F9:A1:80:01:D4:BE:F2:0D:C4 Certificate issuer: /CN=A91731AD/serialNumber=B870D2E0E31C8A910EDFBA765BB7CF04C3C10CBE Certificate serial: 47 Authority key identifier: B8:70:D2:E0:E3:1C:8A:91:0E:DF:BA:76:5B:B7:CF:04:C3:C1:0C:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHDS4OMcipEO37p2W7fPBMPBDL4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/495E782AB4CD11F094AF5C23C4F9AE02.roa Signing time: Wed 29 Oct 2025 13:43:44 +0000 ROA not before: Wed 29 Oct 2025 13:43:44 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 16509 IP address blocks: 2001:df6:31c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/uHDS4OMcipEO37p2W7fPBMPBDL4.crl rsync://rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/uHDS4OMcipEO37p2W7fPBMPBDL4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHDS4OMcipEO37p2W7fPBMPBDL4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:22:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91731AD, serialNumber=B870D2E0E31C8A910EDFBA765BB7CF04C3C10CBE Validity Not Before: Oct 29 13:43:44 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=69021a10-fd7c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:d8:01:5d:3f:ad:a2:96:6a:ea:39:bc:bf:b7: 87:be:6d:6d:08:67:ed:a4:f7:3f:fc:8a:43:1b:65: 3e:b0:b6:2d:c9:e4:c6:b3:36:d6:c1:84:37:ee:ea: b1:37:87:fc:56:0a:31:5e:d2:78:be:91:db:e5:28: d6:e8:27:ba:af:b6:33:cc:21:72:30:10:91:1a:29: 73:f1:7c:b2:1b:12:7a:a6:17:69:ea:27:c8:b7:3d: c8:04:bc:ae:61:d6:27:bb:56:22:f4:d6:f8:02:22: b3:c0:51:39:4d:fd:1f:89:80:96:a6:fc:34:2e:f7: 46:df:7b:66:e9:d3:9d:67:8f:43:01:86:c0:0b:29: e7:d8:cf:43:c1:6a:da:a1:44:91:b1:fb:22:2e:7d: 42:fd:51:21:83:15:30:a2:c1:ee:9b:2b:86:70:5c: 42:45:ed:3d:78:0d:0b:19:05:44:bc:aa:38:e0:f6: 2c:c3:c4:07:82:13:3d:5c:e8:06:3c:32:ad:8c:30: e6:c6:c3:24:d0:ff:29:52:ed:ba:03:ef:c2:1d:65: 08:ac:86:bf:ea:ac:6f:6f:e8:be:9a:54:f4:3a:a3: 9c:d8:e3:38:28:c6:5f:f3:28:6c:9a:05:c1:fa:32: e1:94:57:5f:10:82:91:fd:e2:ff:06:d1:b0:cf:66: a4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:38:5F:4C:15:17:42:96:51:90:F7:F9:A1:80:01:D4:BE:F2:0D:C4 X509v3 Authority Key Identifier: keyid:B8:70:D2:E0:E3:1C:8A:91:0E:DF:BA:76:5B:B7:CF:04:C3:C1:0C:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/uHDS4OMcipEO37p2W7fPBMPBDL4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uHDS4OMcipEO37p2W7fPBMPBDL4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91731AD/C4E26956509C11F086D92D38C4F9AE02/495E782AB4CD11F094AF5C23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df6:31c0::/48 Signature Algorithm: sha256WithRSAEncryption 6f:f7:6d:aa:de:2b:20:bf:b5:51:d6:ca:66:b3:49:c5:7e:89: ed:c6:b3:72:e3:3a:9d:ac:c8:0d:4a:a6:23:aa:5a:2b:64:98: 9a:a6:c4:bd:d7:37:61:f1:71:8a:f0:75:9c:1b:ca:43:67:de: c4:7c:50:18:df:49:42:b8:e5:eb:2f:e0:13:5e:88:ef:65:fc: 68:30:b5:dd:34:2f:1c:be:9e:fe:7e:41:dc:06:6e:6f:85:9e: f8:63:55:71:be:72:80:2f:e1:02:ab:7e:c0:2d:c7:57:04:a0: 68:60:49:3c:b1:bb:21:ce:f1:83:75:bd:86:a1:0b:e8:5b:0c: 2b:5d:e8:eb:89:be:e6:25:98:84:e4:72:d7:c6:7e:d8:62:65: 28:2c:b4:ed:4b:bf:3b:13:3a:3d:33:20:81:04:62:e8:4b:8c: 1b:17:26:63:ea:bd:7e:62:04:78:52:f4:5b:e9:04:57:47:70: 35:83:9c:2d:47:43:fa:8f:c2:df:70:65:ac:db:15:b7:23:a5: 37:5d:d9:6b:c5:70:5c:1f:1f:c4:f6:56:c0:55:bc:b6:cc:43: ec:ff:d1:85:bc:2b:13:6f:d1:a4:2a:50:2c:7e:5c:ee:c4:3c: 40:df:dd:ee:33:16:8a:b2:a1:df:22:09:31:ed:cd:8c:fc:ac: 8f:f2:42:2a -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBRzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MzFBRDExMC8GA1UEBRMoQjg3MEQyRTBFMzFDOEE5MTBFREZCQTc2NUJCN0NGMDRD M0MxMENCRTAeFw0yNTEwMjkxMzQzNDRaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MDIxYTEwLWZkN2MwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC52AFdP62ilmrqOby/t4e+bW0IZ+2k9z/8ikMbZT6wti3J5MazNtbBhDfu6rE3 h/xWCjFe0ni+kdvlKNboJ7qvtjPMIXIwEJEaKXPxfLIbEnqmF2nqJ8i3PcgEvK5h 1ie7ViL01vgCIrPAUTlN/R+JgJam/DQu90bfe2bp051nj0MBhsALKefYz0PBatqh RJGx+yIufUL9USGDFTCiwe6bK4ZwXEJF7T14DQsZBUS8qjjg9izDxAeCEz1c6AY8 Mq2MMObGwyTQ/ylS7boD78IdZQishr/qrG9v6L6aVPQ6o5zY4zgoxl/zKGyaBcH6 MuGUV18QgpH94v8G0bDPZqRRAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUyThfTBUX QpZRkPf5oYAB1L7yDcQwHwYDVR0jBBgwFoAUuHDS4OMcipEO37p2W7fPBMPBDL4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczMUFEL0M0RTI2OTU2NTA5 QzExRjA4NkQ5MkQzOEM0RjlBRTAyL3VIRFM0T01jaXBFTzM3cDJXN2ZQQk1QQkRM NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdUhEUzRPTWNpcEVPMzdwMlc3ZlBCTVBCREw0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MzFBRC9DNEUyNjk1NjUwOUMxMUYwODZEOTJEMzhDNEY5QUUwMi80OTVFNzgyQUI0 Q0QxMUYwOTRBRjVDMjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfYxwDANBgkqhkiG9w0BAQsFAAOCAQEAb/dtqt4rIL+1 UdbKZrNJxX6J7cazcuM6nazIDUqmI6paK2SYmqbEvdc3YfFxivB1nBvKQ2fexHxQ GN9JQrjl6y/gE16I72X8aDC13TQvHL6e/n5B3AZub4We+GNVcb5ygC/hAqt+wC3H VwSgaGBJPLG7Ic7xg3W9hqEL6FsMK13o64m+5iWYhORy18Z+2GJlKCy07Uu/OxM6 PTMggQRi6EuMGxcmY+q9fmIEeFL0W+kEV0dwNYOcLUdD+o/C33BlrNsVtyOlN13Z a8VwXB8fxPZWwFW8tsxD7P/RhbwrE2/RpCpQLH5c7sQ8QN/d7jMWirKh3yIJMe3N jPysj/JCKg== -----END CERTIFICATE-----Generated at Wed Nov 5 05:37:47 2025 by rpki-client