$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31B7/FCC334CC1E6B11EFAC0E914EC4F9AE02/42C6F6041E6F11EF898C1E38C4F9AE02.roa File: 42C6F6041E6F11EF898C1E38C4F9AE02.roa (raw, json) Hash identifier: WVfFVr8nZrz60GI+g0Deoi4qcsL8XuNjzkTeXFJeRz4= Subject key identifier: C9:75:5B:DF:80:AB:70:E7:54:0C:52:80:CE:CC:B3:09:84:26:E4:0C Certificate issuer: /CN=A91C31B7/serialNumber=A81D155CA404AE4145781AF05EB53A1219E2E065 Certificate serial: EC Authority key identifier: A8:1D:15:5C:A4:04:AE:41:45:78:1A:F0:5E:B5:3A:12:19:E2:E0:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qB0VXKQErkFFeBrwXrU6Ehni4GU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31B7/FCC334CC1E6B11EFAC0E914EC4F9AE02/42C6F6041E6F11EF898C1E38C4F9AE02.roa Signing time: Thu 21 Aug 2025 05:43:55 +0000 ROA not before: Thu 21 Aug 2025 05:43:55 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152886 IP address blocks: 2001:df3:dbc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31B7/FCC334CC1E6B11EFAC0E914EC4F9AE02/qB0VXKQErkFFeBrwXrU6Ehni4GU.crl rsync://rpki.apnic.net/member_repository/A91C31B7/FCC334CC1E6B11EFAC0E914EC4F9AE02/qB0VXKQErkFFeBrwXrU6Ehni4GU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qB0VXKQErkFFeBrwXrU6Ehni4GU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 236 (0xec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31B7, serialNumber=A81D155CA404AE4145781AF05EB53A1219E2E065 Validity Not Before: Aug 21 05:43:55 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68a6b21a-7971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:3d:9d:5e:f9:d7:f2:cf:27:1e:9e:83:d8:f7: c1:cf:32:af:12:8a:40:9c:69:b5:9a:d6:be:7a:97: 12:f7:f3:be:15:ba:b1:0a:15:56:e5:3b:a8:dd:26: 85:3c:e2:5f:7d:10:ce:e0:b9:14:1f:37:4e:a3:17: ec:d5:ab:f7:7d:cb:23:f5:8c:39:b0:14:81:64:63: 37:46:a4:17:b9:04:b2:e8:7c:18:c4:3b:51:a1:77: d8:bc:4d:e0:bf:45:8f:88:d3:f6:e2:3c:8e:43:66: df:9b:e4:3c:d2:fc:b2:37:3d:17:2d:68:06:43:2d: 75:ac:df:38:71:8b:b9:67:38:d6:c1:36:92:20:4c: 35:81:38:e6:c7:2b:f2:8f:7e:08:a7:55:0c:b6:45: 9d:ab:e7:d5:99:0c:85:b1:17:0e:a5:2a:9f:d4:42: 3e:eb:37:4f:70:1e:1b:89:2c:e9:e6:5f:08:1c:ac: 36:25:4b:7f:7a:60:4d:f5:8b:dd:c3:4d:f6:97:85: 6d:71:bd:df:e7:a0:e4:a1:db:6b:a5:31:77:3e:b3: c9:22:db:2d:dc:b1:27:cd:5c:ab:e6:4d:33:ba:78: 1b:40:7b:e8:c2:99:55:88:3b:d9:61:1f:ad:b4:f7: 64:f0:19:de:27:26:3f:11:48:10:93:82:bb:de:3f: 61:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:75:5B:DF:80:AB:70:E7:54:0C:52:80:CE:CC:B3:09:84:26:E4:0C X509v3 Authority Key Identifier: keyid:A8:1D:15:5C:A4:04:AE:41:45:78:1A:F0:5E:B5:3A:12:19:E2:E0:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31B7/FCC334CC1E6B11EFAC0E914EC4F9AE02/qB0VXKQErkFFeBrwXrU6Ehni4GU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qB0VXKQErkFFeBrwXrU6Ehni4GU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31B7/FCC334CC1E6B11EFAC0E914EC4F9AE02/42C6F6041E6F11EF898C1E38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:dbc0::/48 Signature Algorithm: sha256WithRSAEncryption 72:86:cb:31:da:0e:04:e9:c5:e7:a7:f6:bb:d1:ad:1b:29:b1: 65:63:da:ce:50:21:8e:6f:03:63:d0:42:7d:93:97:18:31:06: 4c:bc:4e:b2:ce:1d:42:77:b5:c2:0d:cf:f9:5a:f5:8a:e9:b7: 40:0e:4f:fe:64:1e:73:00:32:da:5c:a0:c9:55:f1:43:d2:49: a5:cf:65:41:d6:ea:bf:d6:9e:f3:76:81:4d:a7:3c:2c:6b:5b: b7:af:bd:4b:77:62:6f:bf:08:46:21:23:43:4b:db:ec:96:4c: 4f:c6:78:6a:ab:4c:aa:45:04:fb:6e:16:d9:07:b0:ab:4d:86: 68:51:0b:28:66:9d:8f:d8:01:50:fa:de:3e:59:83:05:5f:5f: 90:fe:14:4f:87:21:7c:1f:0b:ba:64:ae:a0:a6:86:7f:5b:82: 6c:f5:4f:ff:f3:f5:20:3a:67:e3:c2:eb:74:71:6f:4a:d1:02: b6:a7:6d:3a:91:ad:51:54:51:78:4b:cb:6b:ae:d1:af:ef:93: b7:b2:40:51:bc:61:45:d1:ce:d3:06:ad:58:73:79:94:83:1e: 02:87:d7:2e:1c:ad:fc:42:63:77:e3:69:74:91:b4:6c:e1:c0: 18:89:5e:f5:fd:fd:07:01:ba:78:e9:7c:54:a1:d2:37:6f:f4: e5:e0:89:1c -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAOwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQjcxMTAvBgNVBAUTKEE4MUQxNTVDQTQwNEFFNDE0NTc4MUFGMDVFQjUzQTEy MTlFMkUwNjUwHhcNMjUwODIxMDU0MzU1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE2YjIxYS03OTcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2T2dXvnX8s8nHp6D2PfBzzKvEopAnGm1mta+epcS9/O+FbqxChVW5Tuo3SaF POJffRDO4LkUHzdOoxfs1av3fcsj9Yw5sBSBZGM3RqQXuQSy6HwYxDtRoXfYvE3g v0WPiNP24jyOQ2bfm+Q80vyyNz0XLWgGQy11rN84cYu5ZzjWwTaSIEw1gTjmxyvy j34Ip1UMtkWdq+fVmQyFsRcOpSqf1EI+6zdPcB4biSzp5l8IHKw2JUt/emBN9Yvd w032l4Vtcb3f56DkodtrpTF3PrPJItst3LEnzVyr5k0zungbQHvowplViDvZYR+t tPdk8BneJyY/EUgQk4K73j9hFQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFMl1W9+A q3DnVAxSgM7MswmEJuQMMB8GA1UdIwQYMBaAFKgdFVykBK5BRXga8F61OhIZ4uBl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFCNy9GQ0MzMzRDQzFF NkIxMUVGQUMwRTkxNEVDNEY5QUUwMi9xQjBWWEtRRXJrRkZlQnJ3WHJVNkVobmk0 R1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FCMFZYS1FFcmtGRmVCcndYclU2RWhuaTRHVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMxQjcvRkNDMzM0Q0MxRTZCMTFFRkFDMEU5MTRFQzRGOUFFMDIvNDJDNkY2MDQx RTZGMTFFRjg5OEMxRTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3z28AwDQYJKoZIhvcNAQELBQADggEBAHKGyzHaDgTp xeen9rvRrRspsWVj2s5QIY5vA2PQQn2TlxgxBky8TrLOHUJ3tcINz/la9Yrpt0AO T/5kHnMAMtpcoMlV8UPSSaXPZUHW6r/WnvN2gU2nPCxrW7evvUt3Ym+/CEYhI0NL 2+yWTE/GeGqrTKpFBPtuFtkHsKtNhmhRCyhmnY/YAVD63j5ZgwVfX5D+FE+HIXwf C7pkrqCmhn9bgmz1T//z9SA6Z+PC63Rxb0rRAranbTqRrVFUUXhLy2uu0a/vk7ey QFG8YUXRztMGrVhzeZSDHgKH1y4crfxCY3fjaXSRtGzhwBiJXvX9/QcBunjpfFSh 0jdv9OXgiRw= -----END CERTIFICATE-----Generated at Wed Nov 5 16:27:34 2025 by rpki-client