$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/07D143BC294811F0BE054340C4F9AE02.roa File: 07D143BC294811F0BE054340C4F9AE02.roa (raw, json) Hash identifier: K8uT5TP7//cBmcF7feLDT0FFy5NmQsLnJ4R26tv3O6s= Subject key identifier: 48:10:54:55:E6:53:D7:DB:7C:E6:12:62:D6:D8:6F:1E:B4:56:96:ED Certificate issuer: /CN=A91B7DCB/serialNumber=0A2A3312E08BA9C41BE7E0FB58AA642C6D01B875 Certificate serial: 03 Authority key identifier: 0A:2A:33:12:E0:8B:A9:C4:1B:E7:E0:FB:58:AA:64:2C:6D:01:B8:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CiozEuCLqcQb5-D7WKpkLG0BuHU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/07D143BC294811F0BE054340C4F9AE02.roa Signing time: Mon 05 May 2025 00:29:39 +0000 ROA not before: Mon 05 May 2025 00:29:39 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 45586 IP address blocks: 2001:df0:f0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/CiozEuCLqcQb5-D7WKpkLG0BuHU.crl rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/CiozEuCLqcQb5-D7WKpkLG0BuHU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CiozEuCLqcQb5-D7WKpkLG0BuHU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:05:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7DCB, serialNumber=0A2A3312E08BA9C41BE7E0FB58AA642C6D01B875 Validity Not Before: May 5 00:29:39 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68180673-b6c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:62:ce:57:89:a3:db:46:77:fb:5a:b6:1c:d7: 07:c5:f0:7c:26:b6:aa:7c:13:1a:e0:34:8e:79:b4: 6c:60:fa:65:a4:97:9c:d9:5b:ab:49:81:af:69:78: 76:d9:06:40:cd:10:a5:11:dc:b7:b3:e9:ed:f1:62: 23:bc:62:d6:57:ca:6d:17:5b:c1:9a:00:87:6e:1a: f5:31:c3:25:2f:3e:4a:b2:f6:4c:d1:ea:6f:ba:45: 0b:4d:60:00:c2:6e:15:34:72:a5:1f:ea:ba:56:47: de:5b:d0:fd:4d:81:0a:a9:72:77:2c:dc:39:83:38: 5f:b4:e9:45:9e:df:04:1e:da:36:9e:16:0b:d8:97: 81:d6:6f:a1:8c:be:3b:6f:44:b4:09:82:03:74:f1: 19:80:43:89:5f:49:e9:0d:ec:f7:4d:dc:ef:63:38: 4c:dd:78:1a:92:fe:52:79:94:c0:6a:5b:96:1b:60: 20:dc:3e:9f:e0:41:89:ac:20:2c:f0:cb:b5:80:af: b9:46:3e:03:e0:20:10:ec:4b:1e:e8:9a:af:05:1f: c7:93:66:e6:8b:35:0c:b2:92:bf:55:62:02:7d:20: 02:cf:84:63:15:81:0c:43:c9:d6:07:42:fb:09:3a: 3a:a5:28:54:d2:bc:bb:b6:f5:2b:5b:59:56:97:1a: c3:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:10:54:55:E6:53:D7:DB:7C:E6:12:62:D6:D8:6F:1E:B4:56:96:ED X509v3 Authority Key Identifier: keyid:0A:2A:33:12:E0:8B:A9:C4:1B:E7:E0:FB:58:AA:64:2C:6D:01:B8:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/CiozEuCLqcQb5-D7WKpkLG0BuHU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CiozEuCLqcQb5-D7WKpkLG0BuHU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7DCB/01505A30294511F0AE1ABC74C4F9AE02/07D143BC294811F0BE054340C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df0:f0::/48 Signature Algorithm: sha256WithRSAEncryption 5b:65:ef:8b:5f:62:a4:7c:92:71:cf:1f:dc:91:7d:a4:5b:15: 58:bf:61:52:82:cf:a3:f5:7a:24:7a:b1:5d:be:d1:02:c1:22: 5a:d8:11:3f:10:d4:c9:92:1b:27:e9:4c:be:66:b5:6c:fa:eb: 4a:e7:d8:a7:8d:bb:e2:90:d5:f9:5a:8f:1e:65:54:24:bf:72: a0:7c:3a:51:f0:ee:f8:b3:4d:62:dd:cf:98:60:80:fb:28:eb: e0:ab:9b:4d:b0:11:c7:18:5b:a6:9d:a3:e2:07:69:5f:fa:a1: 59:a6:0b:ae:e8:68:e5:6e:97:86:13:d6:92:6e:43:6f:80:b2: b9:8f:ec:96:b7:94:d5:55:ef:58:a7:92:29:1f:46:fc:4e:b4: 7d:6f:e3:83:25:c8:95:6b:23:1e:c0:dc:f4:86:05:94:84:be: e2:3e:a5:a5:fa:be:52:63:ac:74:58:b6:73:73:0b:55:72:7e: a2:aa:aa:10:36:ed:23:c1:99:22:06:3f:09:4f:b1:96:0d:54: 27:85:1a:27:ea:3d:f4:86:f5:e6:7b:1f:6f:f3:f2:c7:ea:31: f1:09:75:49:38:5f:67:4b:90:10:a5:03:ae:c4:a2:5b:c2:97: 9e:f2:a7:06:ac:44:b0:c1:8c:e4:62:1f:66:82:bb:e7:78:50: 06:88:43:75 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC N0RDQjExMC8GA1UEBRMoMEEyQTMzMTJFMDhCQTlDNDFCRTdFMEZCNThBQTY0MkM2 RDAxQjg3NTAeFw0yNTA1MDUwMDI5MzlaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTgwNjczLWI2YzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKYs5XiaPbRnf7WrYc1wfF8Hwmtqp8ExrgNI55tGxg+mWkl5zZW6tJga9peHbZ BkDNEKUR3Lez6e3xYiO8YtZXym0XW8GaAIduGvUxwyUvPkqy9kzR6m+6RQtNYADC bhU0cqUf6rpWR95b0P1NgQqpcncs3DmDOF+06UWe3wQe2jaeFgvYl4HWb6GMvjtv RLQJggN08RmAQ4lfSekN7PdN3O9jOEzdeBqS/lJ5lMBqW5YbYCDcPp/gQYmsICzw y7WAr7lGPgPgIBDsSx7omq8FH8eTZuaLNQyykr9VYgJ9IALPhGMVgQxDydYHQvsJ OjqlKFTSvLu29StbWVaXGsNtAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUSBBUVeZT 19t85hJi1thvHrRWlu0wHwYDVR0jBBgwFoAUCiozEuCLqcQb5+D7WKpkLG0BuHUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI3RENCLzAxNTA1QTMwMjk0 NTExRjBBRTFBQkM3NEM0RjlBRTAyL0Npb3pFdUNMcWNRYjUtRDdXS3BrTEcwQnVI VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ2lvekV1Q0xxY1FiNS1EN1dLcGtMRzBCdUhVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC N0RDQi8wMTUwNUEzMDI5NDUxMUYwQUUxQUJDNzRDNEY5QUUwMi8wN0QxNDNCQzI5 NDgxMUYwQkUwNTQzNDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfAA8DANBgkqhkiG9w0BAQsFAAOCAQEAW2Xvi19ipHyS cc8f3JF9pFsVWL9hUoLPo/V6JHqxXb7RAsEiWtgRPxDUyZIbJ+lMvma1bPrrSufY p4274pDV+VqPHmVUJL9yoHw6UfDu+LNNYt3PmGCA+yjr4KubTbARxxhbpp2j4gdp X/qhWaYLruho5W6XhhPWkm5Db4CyuY/slreU1VXvWKeSKR9G/E60fW/jgyXIlWsj HsDc9IYFlIS+4j6lpfq+UmOsdFi2c3MLVXJ+oqqqEDbtI8GZIgY/CU+xlg1UJ4Ua J+o99Ib15nsfb/Pyx+ox8Ql1SThfZ0uQEKUDrsSiW8KXnvKnBqxEsMGM5GIfZoK7 53hQBohDdQ== -----END CERTIFICATE-----Generated at Wed Nov 5 07:09:57 2025 by rpki-client