$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB000/EEB808B89D1711F0B42EF034C4F9AE02/98F8A43C9D2611F0951DD30BC4F9AE02.roa File: 98F8A43C9D2611F0951DD30BC4F9AE02.roa (raw, json) Hash identifier: OC380MFsyyoyM7tX6fVQV1xbBPX87Cl75OkK9UhRng4= Subject key identifier: E7:C4:60:6B:44:11:BE:3E:24:0D:FB:3D:1C:C4:B7:76:4C:72:CB:A2 Certificate issuer: /CN=A91BB000/serialNumber=47B8543685D301FEEF90CD12E5158F740D6B6CB1 Certificate serial: 03 Authority key identifier: 47:B8:54:36:85:D3:01:FE:EF:90:CD:12:E5:15:8F:74:0D:6B:6C:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R7hUNoXTAf7vkM0S5RWPdA1rbLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB000/EEB808B89D1711F0B42EF034C4F9AE02/98F8A43C9D2611F0951DD30BC4F9AE02.roa Signing time: Mon 29 Sep 2025 11:22:35 +0000 ROA not before: Mon 29 Sep 2025 11:22:35 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 133484 IP address blocks: 2001:df4:26c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB000/EEB808B89D1711F0B42EF034C4F9AE02/R7hUNoXTAf7vkM0S5RWPdA1rbLE.crl rsync://rpki.apnic.net/member_repository/A91BB000/EEB808B89D1711F0B42EF034C4F9AE02/R7hUNoXTAf7vkM0S5RWPdA1rbLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R7hUNoXTAf7vkM0S5RWPdA1rbLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:05:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB000, serialNumber=47B8543685D301FEEF90CD12E5158F740D6B6CB1 Validity Not Before: Sep 29 11:22:35 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68da6bfb-a3d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:da:54:38:ce:1c:ac:fc:c7:48:13:ff:00:46: 59:d6:bd:1f:9f:26:46:0c:4c:dc:95:8e:21:ae:85: 31:5d:ab:48:12:c5:7e:8e:7d:18:b5:ea:82:02:6a: 0f:eb:7c:82:43:82:bc:da:1e:00:e1:97:7a:10:72: 4a:28:68:85:40:ed:51:11:b4:20:6e:92:6b:55:76: 82:a8:f1:12:5a:a3:90:fe:c5:98:70:54:ff:34:fb: af:c7:0b:9d:02:0f:16:ed:ce:b2:86:bc:65:44:e0: 81:c1:4e:dc:da:b8:56:e2:d4:a2:87:87:4a:6a:78: 99:4a:3f:44:03:7f:f8:26:ea:07:d9:4b:86:ee:96: b8:ef:ec:7a:46:49:3f:2b:47:09:a0:9a:6c:c0:a2: d9:fb:cd:27:ce:34:06:84:c4:ca:7f:cb:99:f6:de: 35:84:04:dd:75:d3:be:1d:88:d3:17:e8:6a:ed:85: 86:12:7c:d4:5a:c0:f7:2e:01:79:51:c3:33:89:24: 2a:c7:e5:f3:61:5c:fe:fe:3a:96:27:d0:86:46:21: 26:69:81:c1:0f:eb:b7:b8:37:77:9b:3e:57:dd:46: 9c:cd:1a:8e:7f:f3:e5:39:d2:09:c6:fa:31:a2:ab: 7b:5e:7c:53:fd:ae:51:13:bb:1b:23:b6:c0:7a:80: 92:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:C4:60:6B:44:11:BE:3E:24:0D:FB:3D:1C:C4:B7:76:4C:72:CB:A2 X509v3 Authority Key Identifier: keyid:47:B8:54:36:85:D3:01:FE:EF:90:CD:12:E5:15:8F:74:0D:6B:6C:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB000/EEB808B89D1711F0B42EF034C4F9AE02/R7hUNoXTAf7vkM0S5RWPdA1rbLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R7hUNoXTAf7vkM0S5RWPdA1rbLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB000/EEB808B89D1711F0B42EF034C4F9AE02/98F8A43C9D2611F0951DD30BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:26c0::/48 Signature Algorithm: sha256WithRSAEncryption a6:fa:5e:d1:c5:9c:15:e5:06:29:30:35:a0:d3:b0:d0:bd:4e: 10:88:bc:3d:a5:73:c2:3c:bb:79:13:02:11:87:9f:b4:19:c5: 7b:a0:b9:d9:0a:80:2b:63:eb:db:34:66:29:6b:c0:12:42:5f: 79:38:66:24:b3:eb:02:f3:8a:84:d5:b6:a9:d7:25:7f:6c:2a: db:f6:fe:ba:79:0e:e0:1d:87:1c:88:e9:61:78:cd:c7:e2:bc: 0d:25:f4:f4:e1:a9:5d:07:67:95:26:c5:a2:e4:58:bb:e1:9a: 87:f6:80:f7:16:5d:aa:de:a0:e6:f9:9d:12:b9:a0:bc:f3:78: 8a:00:d8:bb:6e:1c:9c:4d:b9:84:dd:70:41:ce:71:31:ce:fe: 5a:22:51:fb:ad:0a:6d:60:8f:7b:01:e6:fb:b7:01:1b:9a:03: 24:50:a6:cb:96:72:b8:4f:d9:4d:32:86:9c:a6:9b:7d:77:98: 2b:78:e2:3c:1e:d3:76:8e:92:0d:58:84:0e:f5:0e:45:ba:78: 32:1e:b1:9a:f5:a5:14:ab:1e:ab:aa:bc:bf:26:5d:50:8e:90: 8d:0d:6c:5d:9d:40:89:bb:e4:a7:e8:32:29:17:6c:a7:e6:a4: 60:92:6e:9f:81:4c:b1:45:86:3d:1f:e1:b1:9f:71:f9:90:14: cd:fa:43:8e -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QjAwMDExMC8GA1UEBRMoNDdCODU0MzY4NUQzMDFGRUVGOTBDRDEyRTUxNThGNzQw RDZCNkNCMTAeFw0yNTA5MjkxMTIyMzVaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZGE2YmZiLWEzZDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDf2lQ4zhys/MdIE/8ARlnWvR+fJkYMTNyVjiGuhTFdq0gSxX6OfRi16oICag/r fIJDgrzaHgDhl3oQckooaIVA7VERtCBukmtVdoKo8RJao5D+xZhwVP80+6/HC50C DxbtzrKGvGVE4IHBTtzauFbi1KKHh0pqeJlKP0QDf/gm6gfZS4bulrjv7HpGST8r RwmgmmzAotn7zSfONAaExMp/y5n23jWEBN11074diNMX6GrthYYSfNRawPcuAXlR wzOJJCrH5fNhXP7+OpYn0IZGISZpgcEP67e4N3ebPlfdRpzNGo5/8+U50gnG+jGi q3tefFP9rlETuxsjtsB6gJLdAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQU58Rga0QR vj4kDfs9HMS3dkxyy6IwHwYDVR0jBBgwFoAUR7hUNoXTAf7vkM0S5RWPdA1rbLEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJCMDAwL0VFQjgwOEI4OUQx NzExRjBCNDJFRjAzNEM0RjlBRTAyL1I3aFVOb1hUQWY3dmtNMFM1UldQZEExcmJM RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUjdoVU5vWFRBZjd2a00wUzVSV1BkQTFyYkxFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QjAwMC9FRUI4MDhCODlEMTcxMUYwQjQyRUYwMzRDNEY5QUUwMi85OEY4QTQzQzlE MjYxMUYwOTUxREQzMEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfQmwDANBgkqhkiG9w0BAQsFAAOCAQEApvpe0cWcFeUG KTA1oNOw0L1OEIi8PaVzwjy7eRMCEYeftBnFe6C52QqAK2Pr2zRmKWvAEkJfeThm JLPrAvOKhNW2qdclf2wq2/b+unkO4B2HHIjpYXjNx+K8DSX09OGpXQdnlSbFouRY u+Gah/aA9xZdqt6g5vmdErmgvPN4igDYu24cnE25hN1wQc5xMc7+WiJR+60KbWCP ewHm+7cBG5oDJFCmy5ZyuE/ZTTKGnKabfXeYK3jiPB7Tdo6SDViEDvUORbp4Mh6x mvWlFKseq6q8vyZdUI6QjQ1sXZ1Aibvkp+gyKRdsp+akYJJun4FMsUWGPR/hsZ9x +ZAUzfpDjg== -----END CERTIFICATE-----Generated at Wed Nov 5 09:39:14 2025 by rpki-client