$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5979/539507867F2711F094BA5727C4F9AE02/A80352FA7F2711F0AC85D327C4F9AE02.roa File: A80352FA7F2711F0AC85D327C4F9AE02.roa (raw, json) Hash identifier: x6HQ5RDi7bp4WcPcgDw38Yb49M8i1vVS8BiW9zZO4Ug= Subject key identifier: B4:5E:C5:64:59:70:1A:17:E3:44:C9:6E:3B:B3:71:55:0B:5B:A7:C0 Certificate issuer: /CN=A91D5979/serialNumber=01C858181088E1B9C5775DCA0C4BAE9B9FF577B3 Certificate serial: 04 Authority key identifier: 01:C8:58:18:10:88:E1:B9:C5:77:5D:CA:0C:4B:AE:9B:9F:F5:77:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AchYGBCI4bnFd13KDEuum5_1d7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5979/539507867F2711F094BA5727C4F9AE02/A80352FA7F2711F0AC85D327C4F9AE02.roa Signing time: Fri 22 Aug 2025 07:20:28 +0000 ROA not before: Fri 22 Aug 2025 07:20:28 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 154162 IP address blocks: 49.143.250.0/23 maxlen: 24 2402:2520::/48 maxlen: 48 2402:2520:1000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5979/539507867F2711F094BA5727C4F9AE02/AchYGBCI4bnFd13KDEuum5_1d7M.crl rsync://rpki.apnic.net/member_repository/A91D5979/539507867F2711F094BA5727C4F9AE02/AchYGBCI4bnFd13KDEuum5_1d7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AchYGBCI4bnFd13KDEuum5_1d7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:42:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5979, serialNumber=01C858181088E1B9C5775DCA0C4BAE9B9FF577B3 Validity Not Before: Aug 22 07:20:28 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68a81a3c-2e12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9b:fb:00:57:c1:8a:1b:bc:be:14:4c:16:55: 21:ad:5d:23:14:b1:7a:e3:f9:63:85:76:8d:62:44: 69:2a:b4:fd:9c:92:a1:30:fc:15:4e:3a:d2:d6:eb: 53:d3:ac:dc:94:92:35:32:c7:95:b5:bd:5c:bd:c5: 25:fb:2b:5f:86:01:61:4c:dc:24:1f:3a:6c:f7:28: a3:1e:9c:76:c4:e6:78:d9:86:05:c9:70:cb:2f:fe: c7:68:0b:3d:b9:a2:b8:82:87:2c:50:d5:95:0d:03: 94:f6:ea:77:a8:db:59:8b:95:39:e7:c3:5c:09:6a: 2a:d8:ef:45:13:09:da:9b:27:08:0a:81:49:0e:c8: 0d:8e:90:a7:44:f5:39:a9:81:36:78:b6:7e:62:63: 07:39:24:c7:47:56:fe:11:d0:1a:e2:ac:b6:5d:78: ae:58:bb:19:c3:6d:5e:95:15:90:57:b3:bc:c6:20: ae:8f:99:06:99:15:d5:24:1a:1e:3e:bf:be:e6:db: 9e:e3:b4:c7:de:9d:1e:cc:9a:b6:5b:b7:84:17:33: 3b:8a:8b:ec:a2:26:b5:28:f1:f7:55:64:82:12:93: c7:e7:7a:37:5a:67:65:25:e7:84:df:a5:6f:c5:46: 30:b0:3d:3b:3c:b5:d7:d6:5f:63:07:6e:83:e8:7c: 6d:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:5E:C5:64:59:70:1A:17:E3:44:C9:6E:3B:B3:71:55:0B:5B:A7:C0 X509v3 Authority Key Identifier: keyid:01:C8:58:18:10:88:E1:B9:C5:77:5D:CA:0C:4B:AE:9B:9F:F5:77:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5979/539507867F2711F094BA5727C4F9AE02/AchYGBCI4bnFd13KDEuum5_1d7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AchYGBCI4bnFd13KDEuum5_1d7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5979/539507867F2711F094BA5727C4F9AE02/A80352FA7F2711F0AC85D327C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.143.250.0/23 IPv6: 2402:2520::/48 2402:2520:1000::/44 Signature Algorithm: sha256WithRSAEncryption 34:f7:58:2d:93:3e:26:50:85:cb:6c:ca:96:a6:bb:71:42:ed: 16:db:db:cf:4e:cc:6a:e9:e4:a4:93:56:1d:3a:8e:14:e8:59: 9f:74:60:8d:37:d2:e1:e4:16:36:a9:d5:cc:b5:65:0b:5d:2b: 3e:2c:22:29:44:48:62:1e:6a:5c:af:62:69:d7:61:50:4a:4a: 16:8f:49:8d:06:9b:d0:68:5a:6c:93:76:0c:e0:19:72:38:8c: 7e:8c:48:d5:05:5e:e3:53:51:d2:66:7b:b9:0f:ac:3e:59:ac: 96:df:62:33:2f:bd:6a:4e:c8:99:0c:e7:cd:98:93:b9:8e:1e: 52:5b:c3:cd:d2:6d:f7:16:f0:d2:0f:9e:7e:7a:1a:32:fa:ca: 76:52:48:b1:dd:e5:94:1d:ec:7e:61:e8:f2:46:92:29:ba:e1: 4d:6a:44:24:b4:32:27:84:b3:f4:46:51:c5:29:87:1c:f1:d4: bb:fb:32:11:5c:37:f2:e2:00:30:7b:e0:78:c1:f7:a1:81:1b: 67:cc:28:c4:fe:e6:6e:d1:19:7a:28:75:b3:67:52:14:84:4f: b6:9c:92:f5:6e:90:d6:15:60:80:c5:11:4d:da:de:9b:b7:31: b9:4c:e7:d9:17:5d:5b:02:f9:fc:71:87:52:bf:18:c2:f7:87: 15:19:dc:3a -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NTk3OTExMC8GA1UEBRMoMDFDODU4MTgxMDg4RTFCOUM1Nzc1RENBMEM0QkFFOUI5 RkY1NzdCMzAeFw0yNTA4MjIwNzIwMjhaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YTgxYTNjLTJlMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCzm/sAV8GKG7y+FEwWVSGtXSMUsXrj+WOFdo1iRGkqtP2ckqEw/BVOOtLW61PT rNyUkjUyx5W1vVy9xSX7K1+GAWFM3CQfOmz3KKMenHbE5njZhgXJcMsv/sdoCz25 oriChyxQ1ZUNA5T26neo21mLlTnnw1wJairY70UTCdqbJwgKgUkOyA2OkKdE9Tmp gTZ4tn5iYwc5JMdHVv4R0BrirLZdeK5YuxnDbV6VFZBXs7zGIK6PmQaZFdUkGh4+ v77m257jtMfenR7MmrZbt4QXMzuKi+yiJrUo8fdVZIISk8fnejdaZ2Ul54TfpW/F RjCwPTs8tdfWX2MHboPofG2pAgMBAAGjggKvMIICqzAdBgNVHQ4EFgQUtF7FZFlw GhfjRMluO7NxVQtbp8AwHwYDVR0jBBgwFoAUAchYGBCI4bnFd13KDEuum5/1d7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ1OTc5LzUzOTUwNzg2N0Yy NzExRjA5NEJBNTcyN0M0RjlBRTAyL0FjaFlHQkNJNGJuRmQxM0tERXV1bTVfMWQ3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQWNoWUdCQ0k0Ym5GZDEzS0RFdXVtNV8xZDdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NTk3OS81Mzk1MDc4NjdGMjcxMUYwOTRCQTU3MjdDNEY5QUUwMi9BODAzNTJGQTdG MjcxMUYwQUM4NUQzMjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA5BggrBgEFBQcBBwEB/wQq MCgwDAQCAAEwBgMEATGP+jAYBAIAAjASAwcAJAIlIAAAAwcEJAIlIBAAMA0GCSqG SIb3DQEBCwUAA4IBAQA091gtkz4mUIXLbMqWprtxQu0W29vPTsxq6eSkk1YdOo4U 6FmfdGCNN9Lh5BY2qdXMtWULXSs+LCIpREhiHmpcr2Jp12FQSkoWj0mNBpvQaFps k3YM4BlyOIx+jEjVBV7jU1HSZnu5D6w+WayW32IzL71qTsiZDOfNmJO5jh5SW8PN 0m33FvDSD55+ehoy+sp2Ukix3eWUHex+YejyRpIpuuFNakQktDInhLP0RlHFKYcc 8dS7+zIRXDfy4gAwe+B4wfehgRtnzCjE/uZu0Rl6KHWzZ1IUhE+2nJL1bpDWFWCA xRFN2t6btzG5TOfZF11bAvn8cYdSvxjC94cVGdw6 -----END CERTIFICATE-----Generated at Wed Nov 5 07:42:59 2025 by rpki-client