$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFBA9/62097E84A77511F094DEBF2DC4F9AE02/8966E266A77811F092FD731BC4F9AE02.roa File: 8966E266A77811F092FD731BC4F9AE02.roa (raw, json) Hash identifier: UIqdJutuJDlhfZ5sjZNc55vuXujNjCHWgG438Kpp1wQ= Subject key identifier: 0F:26:F7:9D:2B:04:A5:BF:B6:89:4A:8B:6C:E3:F0:2F:9A:82:02:42 Certificate issuer: /CN=A91CFBA9/serialNumber=9E9CC80E5A984C1A1FD41A1D31469260A212DADF Certificate serial: 06 Authority key identifier: 9E:9C:C8:0E:5A:98:4C:1A:1F:D4:1A:1D:31:46:92:60:A2:12:DA:DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/npzIDlqYTBof1BodMUaSYKIS2t8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFBA9/62097E84A77511F094DEBF2DC4F9AE02/8966E266A77811F092FD731BC4F9AE02.roa Signing time: Sun 12 Oct 2025 14:34:20 +0000 ROA not before: Sun 12 Oct 2025 14:34:20 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 154287 IP address blocks: 2001:df6:3240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFBA9/62097E84A77511F094DEBF2DC4F9AE02/npzIDlqYTBof1BodMUaSYKIS2t8.crl rsync://rpki.apnic.net/member_repository/A91CFBA9/62097E84A77511F094DEBF2DC4F9AE02/npzIDlqYTBof1BodMUaSYKIS2t8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/npzIDlqYTBof1BodMUaSYKIS2t8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFBA9, serialNumber=9E9CC80E5A984C1A1FD41A1D31469260A212DADF Validity Not Before: Oct 12 14:34:20 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ebbc6b-f6e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f9:d1:96:28:83:a2:fe:c1:6b:d0:b1:de:c4: eb:81:d0:de:dc:3e:85:87:92:4f:b6:a7:a6:2e:96: 5b:8e:f8:14:e4:37:78:fe:d9:9d:62:92:bc:f5:c6: a4:5a:a4:de:20:45:f9:09:be:a8:85:d7:19:06:f4: 96:79:79:b1:07:99:65:67:df:24:bd:cc:cc:38:e4: 4a:dc:3e:d2:1b:32:4d:78:0a:bf:49:0d:cc:7d:f8: 83:ef:d4:52:bc:d0:6e:3c:e7:5b:a4:3c:5e:26:4a: 29:f0:a8:9e:28:3d:01:74:ab:d1:1c:d1:bf:80:ce: 81:8d:ca:e9:0d:05:98:27:46:63:2e:fb:53:3d:52: ab:3a:d3:23:75:87:84:c7:6f:18:4a:fb:b7:eb:fc: 44:14:43:8a:bd:fc:92:af:29:1e:1a:8c:87:48:17: 57:ee:c7:27:a9:76:cd:03:46:2b:09:26:e7:07:b3: 10:aa:72:39:fa:aa:3b:2a:f0:23:24:f3:e2:23:f0: 6e:7b:bd:f7:fc:05:42:ff:bb:9c:f3:e5:13:0d:18: 7d:47:93:1f:cf:4c:93:59:33:43:b2:c6:4f:7c:0d: b8:47:c8:a5:5c:54:b9:7b:e1:d2:23:b1:55:78:46: 42:5e:4c:94:3b:68:72:98:6e:7e:1c:5a:f3:00:c3: c6:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:26:F7:9D:2B:04:A5:BF:B6:89:4A:8B:6C:E3:F0:2F:9A:82:02:42 X509v3 Authority Key Identifier: keyid:9E:9C:C8:0E:5A:98:4C:1A:1F:D4:1A:1D:31:46:92:60:A2:12:DA:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/62097E84A77511F094DEBF2DC4F9AE02/npzIDlqYTBof1BodMUaSYKIS2t8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/npzIDlqYTBof1BodMUaSYKIS2t8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFBA9/62097E84A77511F094DEBF2DC4F9AE02/8966E266A77811F092FD731BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df6:3240::/48 Signature Algorithm: sha256WithRSAEncryption 4a:db:de:6a:dd:b1:12:ba:63:b2:10:58:3a:38:95:84:b7:6e: 66:6d:7a:45:d9:81:5c:aa:48:e5:e4:19:f0:a6:ca:d2:c9:40: 27:0a:e0:31:33:d7:db:67:f5:e0:30:44:dd:92:15:00:36:0e: 16:4f:6b:20:f9:87:5c:55:dc:9e:b9:fb:c1:06:e6:9d:3c:04: fa:59:ff:26:3a:2c:05:42:5a:c4:37:39:c2:fa:4f:ef:d8:6b: 64:c1:93:56:4e:19:ec:df:bc:81:fb:bc:14:d9:f0:48:e2:0c: ab:a5:e7:f4:ae:bd:6f:4c:7e:6c:65:63:8b:b1:0b:59:ec:b9: 1a:4a:d2:0f:c5:c4:8f:c7:0e:77:b9:64:a1:1a:06:a3:a0:8d: 95:02:e3:c8:af:fe:4e:ee:d7:ed:02:b1:25:fd:9f:34:e0:8c: ea:6e:f0:65:ae:4c:9b:be:ca:a4:3b:0c:96:d1:9b:2a:c9:ae: 94:5a:1b:a7:f3:a3:c5:50:84:41:d5:7f:04:5d:61:04:0d:a8: c7:92:b5:e8:c8:14:0b:24:8a:74:d3:25:94:ef:bf:5b:5e:aa: 43:03:e0:d6:24:a3:31:b0:39:9c:ef:c4:52:b2:84:57:26:2d: ad:e3:a9:81:c1:04:f1:96:5c:2e:03:c7:79:7a:3e:0d:24:fb: 7c:62:75:93 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RkJBOTExMC8GA1UEBRMoOUU5Q0M4MEU1QTk4NEMxQTFGRDQxQTFEMzE0NjkyNjBB MjEyREFERjAeFw0yNTEwMTIxNDM0MjBaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZWJiYzZiLWY2ZTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDF+dGWKIOi/sFr0LHexOuB0N7cPoWHkk+2p6YulluO+BTkN3j+2Z1ikrz1xqRa pN4gRfkJvqiF1xkG9JZ5ebEHmWVn3yS9zMw45ErcPtIbMk14Cr9JDcx9+IPv1FK8 0G4851ukPF4mSinwqJ4oPQF0q9Ec0b+AzoGNyukNBZgnRmMu+1M9Uqs60yN1h4TH bxhK+7fr/EQUQ4q9/JKvKR4ajIdIF1fuxyepds0DRisJJucHsxCqcjn6qjsq8CMk 8+Ij8G57vff8BUL/u5zz5RMNGH1Hkx/PTJNZM0Oyxk98DbhHyKVcVLl74dIjsVV4 RkJeTJQ7aHKYbn4cWvMAw8bPAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUDyb3nSsE pb+2iUqLbOPwL5qCAkIwHwYDVR0jBBgwFoAUnpzIDlqYTBof1BodMUaSYKIS2t8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNGQkE5LzYyMDk3RTg0QTc3 NTExRjA5NERFQkYyREM0RjlBRTAyL25weklEbHFZVEJvZjFCb2RNVWFTWUtJUzJ0 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbnB6SURscVlUQm9mMUJvZE1VYVNZS0lTMnQ4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RkJBOS82MjA5N0U4NEE3NzUxMUYwOTRERUJGMkRDNEY5QUUwMi84OTY2RTI2NkE3 NzgxMUYwOTJGRDczMUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfYyQDANBgkqhkiG9w0BAQsFAAOCAQEAStveat2xErpj shBYOjiVhLduZm16RdmBXKpI5eQZ8KbK0slAJwrgMTPX22f14DBE3ZIVADYOFk9r IPmHXFXcnrn7wQbmnTwE+ln/JjosBUJaxDc5wvpP79hrZMGTVk4Z7N+8gfu8FNnw SOIMq6Xn9K69b0x+bGVji7ELWey5GkrSD8XEj8cOd7lkoRoGo6CNlQLjyK/+Tu7X 7QKxJf2fNOCM6m7wZa5Mm77KpDsMltGbKsmulFobp/OjxVCEQdV/BF1hBA2ox5K1 6MgUCySKdNMllO+/W16qQwPg1iSjMbA5nO/EUrKEVyYtreOpgcEE8ZZcLgPHeXo+ DST7fGJ1kw== -----END CERTIFICATE-----Generated at Wed Nov 5 09:35:04 2025 by rpki-client