$ rpki-client -vvf rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/5069A4E034B311F0B93A6228C4F9AE02.roa File: 5069A4E034B311F0B93A6228C4F9AE02.roa (raw, json) Hash identifier: Ds5OYRTGE1+nmc/fXAPDPY24vX1TYbGT7zDa8IDd+kc= Subject key identifier: F8:B2:42:B8:A3:E8:51:F3:F7:0E:DA:33:B8:8B:FB:B4:3C:25:37:A1 Certificate issuer: /CN=A91B391F/serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Certificate serial: C5 Authority key identifier: 66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/5069A4E034B311F0B93A6228C4F9AE02.roa Signing time: Fri 01 Aug 2025 07:42:55 +0000 ROA not before: Fri 01 Aug 2025 07:42:55 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 153174 IP address blocks: 2001:df4:1440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 06:22:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B391F, serialNumber=66F6B844A9F809AE307B1B9CEE4BFD47C3C7771B Validity Not Before: Aug 1 07:42:55 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688c6ffe-9408 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:1d:08:13:ab:08:6c:97:ab:3d:08:da:0a:7c: c5:7f:47:87:0f:31:37:55:f7:88:da:f2:4a:80:de: 16:d4:45:d5:ae:cc:a8:f3:2e:a0:18:e8:25:50:7e: 6c:11:9e:97:f0:4d:a2:4f:25:95:e6:20:e8:52:63: 51:9d:36:fb:2e:e1:19:b9:81:25:0f:49:c2:58:1e: 4c:e8:78:14:a7:51:96:51:49:5b:7b:31:ab:d4:f0: 79:21:3b:ad:b4:c9:cc:1f:5e:69:31:05:44:a5:54: 24:1a:2c:0c:2a:d4:01:2c:16:36:e6:45:2e:af:8a: 17:cc:6f:6d:e7:76:f9:f8:2b:2d:41:f8:65:bd:c5: 4a:8c:e5:32:30:39:5e:d2:fc:ad:ad:45:14:c2:a0: d6:c1:fd:fc:d5:b5:93:59:08:e9:8a:f1:71:cd:a3: 07:3d:ea:c3:c8:d7:fc:f7:5f:a6:6d:6f:b3:1f:61: ce:03:19:c3:5a:6c:3e:4b:fd:38:f6:2d:9e:9d:bc: 38:1c:45:2e:23:ed:75:3d:fb:79:21:19:cf:fc:b5: e8:ed:f5:16:4b:73:f6:4e:d8:39:fa:84:7a:bb:c9: 80:7d:02:32:66:dc:24:43:46:b8:25:47:aa:51:c6: a8:a8:b0:d1:2a:9d:ce:0c:f8:de:fc:cd:4e:e1:65: 47:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:B2:42:B8:A3:E8:51:F3:F7:0E:DA:33:B8:8B:FB:B4:3C:25:37:A1 X509v3 Authority Key Identifier: keyid:66:F6:B8:44:A9:F8:09:AE:30:7B:1B:9C:EE:4B:FD:47:C3:C7:77:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/Zva4RKn4Ca4wexuc7kv9R8PHdxs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Zva4RKn4Ca4wexuc7kv9R8PHdxs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B391F/58DB87F2457011EF9C8B8E71C4F9AE02/5069A4E034B311F0B93A6228C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:1440::/48 Signature Algorithm: sha256WithRSAEncryption 15:92:b7:c6:93:3f:8f:f2:87:c5:a7:d3:7b:86:3e:a3:06:e2: df:27:62:ac:ec:82:0f:2c:41:b7:7b:2d:e6:f1:94:b3:10:c6: ae:de:cb:3e:be:89:0d:9d:e7:a3:7d:c2:07:a4:7b:62:c7:cd: bf:8c:67:b8:64:da:c0:2f:ef:10:4f:ca:cb:39:21:ae:cd:2f: 8d:f2:ad:54:bb:f5:37:f2:36:f0:02:07:a3:40:68:f3:3d:f8: 3c:ba:4e:7d:60:77:0b:0f:df:cd:7a:5a:39:68:80:cf:f3:65: 25:24:ec:89:af:af:21:d6:1f:1d:89:bc:7a:44:37:8b:44:32: 49:e3:94:94:77:50:e7:59:db:95:21:c1:3b:9f:29:7d:1b:07: 34:e2:05:63:4f:7d:e4:df:23:16:c8:df:28:30:c9:c9:d7:03: a7:38:4d:f3:24:11:ad:14:12:50:e7:39:4e:53:4a:0d:5d:b6: 83:83:4b:39:4b:99:58:e9:cf:82:8f:b8:00:70:8f:3d:e4:39: 12:2c:33:c3:58:38:6d:c0:4a:08:ff:fd:9d:3d:fd:0c:9d:ef: 2c:23:e7:33:89:bd:b7:9d:00:1f:2b:6a:68:29:5f:76:67:df: 81:fa:23:4c:90:52:be:fa:60:69:cb:c6:20:c3:06:7d:3a:df: 2d:09:54:21 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjM5MUYxMTAvBgNVBAUTKDY2RjZCODQ0QTlGODA5QUUzMDdCMUI5Q0VFNEJGRDQ3 QzNDNzc3MUIwHhcNMjUwODAxMDc0MjU1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhjNmZmZS05NDA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuh0IE6sIbJerPQjaCnzFf0eHDzE3VfeI2vJKgN4W1EXVrsyo8y6gGOglUH5s EZ6X8E2iTyWV5iDoUmNRnTb7LuEZuYElD0nCWB5M6HgUp1GWUUlbezGr1PB5ITut tMnMH15pMQVEpVQkGiwMKtQBLBY25kUur4oXzG9t53b5+CstQfhlvcVKjOUyMDle 0vytrUUUwqDWwf381bWTWQjpivFxzaMHPerDyNf891+mbW+zH2HOAxnDWmw+S/04 9i2enbw4HEUuI+11Pft5IRnP/LXo7fUWS3P2Ttg5+oR6u8mAfQIyZtwkQ0a4JUeq UcaoqLDRKp3ODPje/M1O4WVHwwIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPiyQrij 6FHz9w7aM7iL+7Q8JTehMB8GA1UdIwQYMBaAFGb2uESp+AmuMHsbnO5L/UfDx3cb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMzkxRi81OERCODdGMjQ1 NzAxMUVGOUM4QjhFNzFDNEY5QUUwMi9admE0UktuNENhNHdleHVjN2t2OVI4UEhk eHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p2YTRSS240Q2E0d2V4dWM3a3Y5UjhQSGR4cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjM5MUYvNThEQjg3RjI0NTcwMTFFRjlDOEI4RTcxQzRGOUFFMDIvNTA2OUE0RTAz NEIzMTFGMEI5M0E2MjI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ30FEAwDQYJKoZIhvcNAQELBQADggEBABWSt8aTP4/y h8Wn03uGPqMG4t8nYqzsgg8sQbd7LebxlLMQxq7eyz6+iQ2d56N9wgeke2LHzb+M Z7hk2sAv7xBPyss5Ia7NL43yrVS79TfyNvACB6NAaPM9+Dy6Tn1gdwsP3816Wjlo gM/zZSUk7ImvryHWHx2JvHpEN4tEMknjlJR3UOdZ25UhwTufKX0bBzTiBWNPfeTf IxbI3ygwycnXA6c4TfMkEa0UElDnOU5TSg1dtoODSzlLmVjpz4KPuABwjz3kORIs M8NYOG3ASgj//Z09/Qyd7ywj5zOJvbedAB8ramgpX3Zn34H6I0yQUr76YGnLxiDD Bn063y0JVCE= -----END CERTIFICATE-----Generated at Wed Aug 13 16:12:22 2025 by rpki-client