$ rpki-client -vvf rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/500DFDA8578611EA8CC3B124C4F9AE02.roa File: 500DFDA8578611EA8CC3B124C4F9AE02.roa (raw, json) Hash identifier: U+HOR1WWM3bWUanGm2xW2p0h9XaY3gPXOWuTGfO7XNs= Subject key identifier: D5:16:94:5E:27:A4:9E:15:7B:7A:9D:71:E2:C6:78:FE:EC:4B:42:91 Certificate issuer: /CN=A91731EA/serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Certificate serial: 1F5A Authority key identifier: D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/500DFDA8578611EA8CC3B124C4F9AE02.roa Signing time: Wed 24 Sep 2025 16:04:38 +0000 ROA not before: Wed 24 Sep 2025 16:04:38 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 17501 IP address blocks: 2407:6200::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:07:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8026 (0x1f5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91731EA, serialNumber=D56792D597E9CDD02BFC16D0B492DA3DAAE080FC Validity Not Before: Sep 24 16:04:38 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d41696-4010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9c:4c:fe:25:51:60:a5:e2:ae:42:f2:54:4f: 12:05:6b:9f:61:4a:3b:1b:eb:16:63:0d:29:9e:77: e1:d3:d9:01:09:9b:33:f8:82:50:b1:04:56:01:1e: e4:20:ca:66:76:d7:1d:f2:48:8b:fb:67:b4:f1:3d: fe:f0:db:13:a2:98:6e:33:8a:2b:95:c7:9c:e3:e5: 5f:b5:e4:cd:6e:53:d5:97:d5:66:8b:6b:fb:5c:64: 26:51:99:d4:b0:57:6b:e8:c8:7f:b1:7d:c4:55:8c: 24:d3:cd:55:3a:68:a5:e5:fe:ea:99:8a:ea:a7:85: e8:98:36:d7:1e:15:37:d9:8e:22:3c:8c:24:56:10: dd:0d:7c:58:35:4c:a5:2e:98:82:c3:cc:af:e9:45: 6e:21:c7:3a:01:c8:ab:be:ee:63:d6:bb:ec:66:0a: f5:d5:63:20:dc:de:79:fc:1e:86:7d:fa:58:70:47: 04:69:0f:19:ea:56:1e:ce:4f:24:50:fd:6a:f9:01: d1:76:7c:d4:f2:64:57:45:84:a3:c3:71:5c:25:82: e5:29:25:67:fb:a7:54:ac:08:5e:0c:2b:e4:aa:be: 7a:b5:b0:f3:95:71:f1:65:10:ad:8c:c0:49:5c:cd: b9:ac:21:76:91:23:3c:7c:b4:6d:4d:6f:96:e0:59: 41:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:16:94:5E:27:A4:9E:15:7B:7A:9D:71:E2:C6:78:FE:EC:4B:42:91 X509v3 Authority Key Identifier: keyid:D5:67:92:D5:97:E9:CD:D0:2B:FC:16:D0:B4:92:DA:3D:AA:E0:80:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/1WeS1ZfpzdAr_BbQtJLaParggPw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1WeS1ZfpzdAr_BbQtJLaParggPw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91731EA/9AF3ED285EEC11E6886EC51BC4F9AE02/500DFDA8578611EA8CC3B124C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2407:6200::/32 Signature Algorithm: sha256WithRSAEncryption 18:b7:55:6b:6f:0d:40:50:d7:20:ec:d4:0e:e9:f5:b8:81:b9: b9:37:e4:a1:7e:91:83:6e:5c:39:22:05:74:e2:3f:1c:9e:23: 39:9b:4a:de:32:98:0a:46:b4:90:ad:b2:f3:03:0b:15:33:8f: f8:94:f6:f5:08:8b:f5:23:dc:a8:6c:c9:c3:bb:7f:be:3d:b7: 66:b3:47:0a:d5:fa:1f:88:8f:ab:48:b6:02:42:a9:ac:f6:80: 16:8a:93:b5:09:82:37:fa:47:bd:81:3f:41:43:8b:d8:85:ee: 89:cc:bb:2e:9e:da:e0:1f:91:ba:bc:25:cc:76:97:75:4d:24: da:29:c9:48:26:58:c6:ef:96:67:b6:05:ea:ca:8a:8e:e7:0f: ce:8e:18:b8:9f:df:ee:91:67:a8:c0:a6:aa:7b:3f:2b:79:40: de:d6:b9:0e:3d:98:9e:0d:52:a5:f1:0c:da:51:66:6d:46:c0: 61:d1:5a:c1:c0:ac:30:49:d8:14:33:01:1e:18:96:41:b2:91: 6d:68:5d:05:65:4c:82:cb:78:0f:2e:cd:5a:22:19:73:87:63: 29:3c:be:21:6a:21:2f:15:fd:74:d8:0d:4f:54:c4:a0:6d:67: a9:61:06:3f:66:e9:40:de:bc:d3:04:1c:76:a0:42:2a:8e:2b: 4c:9c:0b:dd -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICH1owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzMxRUExMTAvBgNVBAUTKEQ1Njc5MkQ1OTdFOUNERDAyQkZDMTZEMEI0OTJEQTNE QUFFMDgwRkMwHhcNMjUwOTI0MTYwNDM4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ0MTY5Ni00MDEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZxM/iVRYKXirkLyVE8SBWufYUo7G+sWYw0pnnfh09kBCZsz+IJQsQRWAR7k IMpmdtcd8kiL+2e08T3+8NsTophuM4orlcec4+VfteTNblPVl9Vmi2v7XGQmUZnU sFdr6Mh/sX3EVYwk081VOmil5f7qmYrqp4XomDbXHhU32Y4iPIwkVhDdDXxYNUyl LpiCw8yv6UVuIcc6Acirvu5j1rvsZgr11WMg3N55/B6GffpYcEcEaQ8Z6lYezk8k UP1q+QHRdnzU8mRXRYSjw3FcJYLlKSVn+6dUrAheDCvkqr56tbDzlXHxZRCtjMBJ XM25rCF2kSM8fLRtTW+W4FlBbQIDAQABo4ICljCCApIwHQYDVR0OBBYEFNUWlF4n pJ4Ve3qdceLGeP7sS0KRMB8GA1UdIwQYMBaAFNVnktWX6c3QK/wW0LSS2j2q4ID8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzFFQS85QUYzRUQyODVF RUMxMUU2ODg2RUM1MUJDNEY5QUUwMi8xV2VTMVpmcHpkQXJfQmJRdEpMYVBhcmdn UHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFXZVMxWmZwemRBcl9CYlF0SkxhUGFyZ2dQdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzMxRUEvOUFGM0VEMjg1RUVDMTFFNjg4NkVDNTFCQzRGOUFFMDIvNTAwREZEQTg1 Nzg2MTFFQThDQzNCMTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQAkB2IAMA0GCSqGSIb3DQEBCwUAA4IBAQAYt1Vrbw1AUNcg 7NQO6fW4gbm5N+ShfpGDblw5IgV04j8cniM5m0reMpgKRrSQrbLzAwsVM4/4lPb1 CIv1I9yobMnDu3++Pbdms0cK1fofiI+rSLYCQqms9oAWipO1CYI3+ke9gT9BQ4vY he6JzLsuntrgH5G6vCXMdpd1TSTaKclIJljG75ZntgXqyoqO5w/Ojhi4n9/ukWeo wKaqez8reUDe1rkOPZieDVKl8QzaUWZtRsBh0VrBwKwwSdgUMwEeGJZBspFtaF0F ZUyCy3gPLs1aIhlzh2MpPL4haiEvFf102A1PVMSgbWepYQY/ZulA3rzTBBx2oEIq jitMnAvd -----END CERTIFICATE-----Generated at Wed Nov 5 23:05:28 2025 by rpki-client