$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC64F/360CA17A799511F0BECF2D40C4F9AE02/BB3F5AAE799511F098E98265C4F9AE02.roa File: BB3F5AAE799511F098E98265C4F9AE02.roa (raw, json) Hash identifier: ENyfebcRoladpIqoDMvyVSOny2O0G7/P5ahmxQmU81s= Subject key identifier: 98:F2:56:AC:FC:B8:33:14:9C:B3:48:5B:1B:94:BA:D1:EE:1C:95:89 Certificate issuer: /CN=A91BC64F/serialNumber=7453D8813BC8EF7290B110232358894C77C4DB37 Certificate serial: 03 Authority key identifier: 74:53:D8:81:3B:C8:EF:72:90:B1:10:23:23:58:89:4C:77:C4:DB:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dFPYgTvI73KQsRAjI1iJTHfE2zc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC64F/360CA17A799511F0BECF2D40C4F9AE02/BB3F5AAE799511F098E98265C4F9AE02.roa Signing time: Fri 15 Aug 2025 05:07:25 +0000 ROA not before: Fri 15 Aug 2025 05:07:25 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 16509 IP address blocks: 2001:df5:fd40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC64F/360CA17A799511F0BECF2D40C4F9AE02/dFPYgTvI73KQsRAjI1iJTHfE2zc.crl rsync://rpki.apnic.net/member_repository/A91BC64F/360CA17A799511F0BECF2D40C4F9AE02/dFPYgTvI73KQsRAjI1iJTHfE2zc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dFPYgTvI73KQsRAjI1iJTHfE2zc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC64F, serialNumber=7453D8813BC8EF7290B110232358894C77C4DB37 Validity Not Before: Aug 15 05:07:25 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=689ec08c-8e21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:9b:97:65:99:f5:96:16:30:11:08:7f:c6:50: 31:aa:ac:3e:45:9c:7a:81:8f:93:81:99:bd:a5:63: b9:94:f0:88:ee:fd:87:b7:fd:fc:ab:08:2f:2c:f9: 3e:94:21:9a:01:51:b6:78:8b:a6:18:a5:7e:3d:03: 52:96:c6:0f:56:41:f1:20:c0:8f:47:15:8f:e3:77: 88:17:a9:c7:28:07:74:5c:42:e4:db:8c:7b:90:49: 3c:c9:84:4d:b1:d3:00:0b:05:73:ed:e3:c9:a6:7b: da:bd:68:94:8a:0d:38:01:07:25:7d:56:e8:a2:91: 84:d7:46:78:62:7f:d4:7d:4b:b2:59:7e:05:8b:cc: b0:4c:0f:01:24:08:c0:d3:6b:76:d8:c8:51:c4:a9: bb:79:0b:61:fb:99:51:62:02:63:9d:5d:1e:fb:ed: d0:22:31:26:23:37:01:87:56:43:48:14:79:84:05: ca:3c:29:5a:85:19:a7:a3:e8:4a:99:c7:af:33:f7: 06:64:ec:20:cf:25:a9:5a:fe:80:61:ca:e0:a1:ae: 14:25:5b:5a:9a:2c:4a:51:9c:41:4e:30:18:e1:5e: f8:5d:b2:2f:e4:2f:2c:ee:a5:c5:b3:1c:23:42:c6: 6d:9d:96:75:c9:5c:26:14:35:88:91:53:24:c2:d2: 03:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:F2:56:AC:FC:B8:33:14:9C:B3:48:5B:1B:94:BA:D1:EE:1C:95:89 X509v3 Authority Key Identifier: keyid:74:53:D8:81:3B:C8:EF:72:90:B1:10:23:23:58:89:4C:77:C4:DB:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC64F/360CA17A799511F0BECF2D40C4F9AE02/dFPYgTvI73KQsRAjI1iJTHfE2zc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dFPYgTvI73KQsRAjI1iJTHfE2zc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC64F/360CA17A799511F0BECF2D40C4F9AE02/BB3F5AAE799511F098E98265C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df5:fd40::/48 Signature Algorithm: sha256WithRSAEncryption 29:49:52:56:78:80:8d:e3:5c:96:e4:bf:81:f2:a0:7c:e2:6e: c9:94:77:1a:7c:3f:a7:5b:4b:4f:54:e2:a8:da:a8:54:74:29: 3e:8f:63:cc:4d:8d:25:b2:fa:71:e5:2d:64:11:13:7a:da:14: f9:e4:bf:d4:33:34:f8:e3:a1:20:83:90:ba:cc:03:e1:20:31: 7a:9a:94:0e:9b:09:c5:d3:02:16:60:a4:75:38:31:23:1b:8b: 80:7f:2c:eb:ab:44:ad:ef:45:69:26:25:9e:a3:46:5f:a4:14: 05:83:e3:c1:83:26:6f:09:bb:94:b1:16:c5:df:3e:31:83:e9: b3:e4:d5:1b:e9:65:0b:9d:cd:62:7a:c1:72:9c:8f:e4:5f:ee: cf:64:3d:bc:3f:55:a3:a7:7a:d7:21:49:cb:2a:fd:1a:a3:22: de:36:b4:3e:a6:75:c3:2e:74:d3:64:7c:5b:55:54:e9:9d:50: 8d:22:7c:70:57:f0:52:b3:c8:fb:7b:5a:50:c6:6c:64:ed:d1: f2:a9:ae:10:22:09:a1:b7:54:32:f1:65:e4:78:0a:52:a0:d3: 4a:99:74:3c:6f:b7:70:21:61:ac:81:18:0c:dd:28:98:83:7f: 9b:31:1a:19:d7:dc:b1:1c:04:ef:fa:a3:c7:4b:a1:15:85:20: 01:4e:4e:d3 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC QzY0RjExMC8GA1UEBRMoNzQ1M0Q4ODEzQkM4RUY3MjkwQjExMDIzMjM1ODg5NEM3 N0M0REIzNzAeFw0yNTA4MTUwNTA3MjVaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OWVjMDhjLThlMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDbm5dlmfWWFjARCH/GUDGqrD5FnHqBj5OBmb2lY7mU8Iju/Ye3/fyrCC8s+T6U IZoBUbZ4i6YYpX49A1KWxg9WQfEgwI9HFY/jd4gXqccoB3RcQuTbjHuQSTzJhE2x 0wALBXPt48mme9q9aJSKDTgBByV9VuiikYTXRnhif9R9S7JZfgWLzLBMDwEkCMDT a3bYyFHEqbt5C2H7mVFiAmOdXR777dAiMSYjNwGHVkNIFHmEBco8KVqFGaej6EqZ x68z9wZk7CDPJala/oBhyuChrhQlW1qaLEpRnEFOMBjhXvhdsi/kLyzupcWzHCNC xm2dlnXJXCYUNYiRUyTC0gO5AgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUmPJWrPy4 MxScs0hbG5S60e4clYkwHwYDVR0jBBgwFoAUdFPYgTvI73KQsRAjI1iJTHfE2zcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJDNjRGLzM2MENBMTdBNzk5 NTExRjBCRUNGMkQ0MEM0RjlBRTAyL2RGUFlnVHZJNzNLUXNSQWpJMWlKVEhmRTJ6 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZEZQWWdUdkk3M0tRc1JBakkxaUpUSGZFMnpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QzY0Ri8zNjBDQTE3QTc5OTUxMUYwQkVDRjJENDBDNEY5QUUwMi9CQjNGNUFBRTc5 OTUxMUYwOThFOTgyNjVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfX9QDANBgkqhkiG9w0BAQsFAAOCAQEAKUlSVniAjeNc luS/gfKgfOJuyZR3Gnw/p1tLT1TiqNqoVHQpPo9jzE2NJbL6ceUtZBETetoU+eS/ 1DM0+OOhIIOQuswD4SAxepqUDpsJxdMCFmCkdTgxIxuLgH8s66tEre9FaSYlnqNG X6QUBYPjwYMmbwm7lLEWxd8+MYPps+TVG+llC53NYnrBcpyP5F/uz2Q9vD9Vo6d6 1yFJyyr9GqMi3ja0PqZ1wy5002R8W1VU6Z1QjSJ8cFfwUrPI+3taUMZsZO3R8qmu ECIJobdUMvFl5HgKUqDTSpl0PG+3cCFhrIEYDN0omIN/mzEaGdfcsRwE7/qjx0uh FYUgAU5O0w== -----END CERTIFICATE-----Generated at Wed Nov 5 05:37:28 2025 by rpki-client