$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/4CFFF0A6D5DD11EEA5B1C711C4F9AE02.roa File: 4CFFF0A6D5DD11EEA5B1C711C4F9AE02.roa (raw, json) Hash identifier: 39NjyNN95zMryV/4gipoP40hgOhWq2OieGFrOUrcjx8= Subject key identifier: 20:7F:13:FF:4C:6C:DC:78:78:93:6F:E0:D8:05:E6:C3:9F:90:8A:F5 Certificate issuer: /CN=A91DC068/serialNumber=AA36DEAA0B488D743D3096A374D3CEC3034E69DA Certificate serial: CE Authority key identifier: AA:36:DE:AA:0B:48:8D:74:3D:30:96:A3:74:D3:CE:C3:03:4E:69:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qjbeqgtIjXQ9MJajdNPOwwNOado.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/4CFFF0A6D5DD11EEA5B1C711C4F9AE02.roa Signing time: Mon 17 Mar 2025 04:50:56 +0000 ROA not before: Mon 17 Mar 2025 04:50:56 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152590 IP address blocks: 2001:df3:80c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/qjbeqgtIjXQ9MJajdNPOwwNOado.crl rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/qjbeqgtIjXQ9MJajdNPOwwNOado.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qjbeqgtIjXQ9MJajdNPOwwNOado.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:35:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC068, serialNumber=AA36DEAA0B488D743D3096A374D3CEC3034E69DA Validity Not Before: Mar 17 04:50:56 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67d7aa2f-b4b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ac:d0:70:51:0a:35:19:a2:9a:52:e4:53:dd: 85:43:f2:c4:60:ca:d1:09:b1:e7:8c:08:0d:fa:42: b7:45:dc:c3:a5:f0:17:23:dc:46:9d:fd:09:b3:6c: 4a:a0:5c:47:51:ad:0c:2b:af:0a:da:8b:01:e9:cd: ea:6a:1f:80:c7:60:d4:54:6a:1e:b8:68:85:cd:7c: 96:20:82:08:8c:4e:f4:0a:dd:8b:e2:56:fc:6a:a6: 87:fb:a9:7d:3f:52:6a:22:d1:12:63:65:62:a0:d0: 9e:39:1e:38:d0:00:a4:ca:85:f6:64:5f:4f:d5:5f: 8d:0a:70:96:ca:cc:dd:f9:d5:98:66:28:bf:cf:c9: ea:03:61:eb:6f:be:53:c1:c5:59:4d:f3:14:2e:bb: 98:c6:80:7a:8d:de:f5:7b:15:d0:aa:e8:dd:4f:9d: 2c:91:21:93:68:ca:bd:59:d2:1d:89:8b:29:5a:97: 63:05:34:22:2e:e7:be:0d:a8:0c:3f:c0:27:df:c9: 4d:8c:32:f3:6e:95:7e:bb:05:8f:ee:7a:98:13:54: 08:c8:1d:be:9c:25:c8:71:a0:d6:43:2a:eb:ef:85: e0:d3:b3:43:fe:5b:09:c9:f3:ff:82:56:a6:df:c1: 42:5e:2e:14:4e:4a:94:74:25:58:82:55:dc:eb:a1: 35:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:7F:13:FF:4C:6C:DC:78:78:93:6F:E0:D8:05:E6:C3:9F:90:8A:F5 X509v3 Authority Key Identifier: keyid:AA:36:DE:AA:0B:48:8D:74:3D:30:96:A3:74:D3:CE:C3:03:4E:69:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/qjbeqgtIjXQ9MJajdNPOwwNOado.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qjbeqgtIjXQ9MJajdNPOwwNOado.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC068/781E7DC4D51611EEB35E6A60C4F9AE02/4CFFF0A6D5DD11EEA5B1C711C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df3:80c0::/48 Signature Algorithm: sha256WithRSAEncryption 5e:84:69:7f:58:d7:b4:b0:ba:c9:47:09:0d:54:99:ca:01:98: a9:ab:76:d0:88:60:2c:c8:41:86:c3:32:07:ce:fa:32:0c:3b: 3c:cf:a3:0d:9d:1a:e3:78:f7:9b:60:17:3c:af:7e:e8:46:31: ec:63:10:e5:57:dd:6e:b6:3b:09:c8:94:49:5b:a5:e2:6f:60: c2:84:3e:b3:81:62:21:9c:ca:7d:b6:e1:f2:f0:a6:25:0e:af: 68:0c:40:25:7e:c3:2b:8e:6b:b7:98:e5:6e:7d:b5:47:c0:65: c3:e0:44:30:f0:c1:18:3d:b6:66:3b:84:88:0d:33:03:cd:21: 4e:cd:76:ff:0d:82:a4:28:9b:ec:ed:80:0e:b1:9d:a0:72:d2: a0:2a:3e:5c:28:4c:59:77:b5:71:3d:03:3c:57:fa:51:81:e8: 25:86:18:5d:7b:d1:9d:99:57:cc:0f:15:60:a3:a9:6e:79:78: d3:3c:44:0e:64:ec:8a:d5:65:2d:e2:ac:6f:15:eb:d6:32:cf: df:b6:54:36:73:26:61:a0:28:f9:98:ee:b1:c9:3f:a8:47:17: 35:fc:b6:29:1a:ae:21:b1:7c:9c:a7:da:bb:a6:1f:77:4c:3f: 61:f0:da:8a:9d:26:3a:64:4f:dc:47:08:fd:64:aa:10:39:e7: fb:d7:77:18 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMwNjgxMTAvBgNVBAUTKEFBMzZERUFBMEI0ODhENzQzRDMwOTZBMzc0RDNDRUMz MDM0RTY5REEwHhcNMjUwMzE3MDQ1MDU2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q3YWEyZi1iNGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqzQcFEKNRmimlLkU92FQ/LEYMrRCbHnjAgN+kK3RdzDpfAXI9xGnf0Js2xK oFxHUa0MK68K2osB6c3qah+Ax2DUVGoeuGiFzXyWIIIIjE70Ct2L4lb8aqaH+6l9 P1JqItESY2VioNCeOR440ACkyoX2ZF9P1V+NCnCWyszd+dWYZii/z8nqA2Hrb75T wcVZTfMULruYxoB6jd71exXQqujdT50skSGTaMq9WdIdiYspWpdjBTQiLue+DagM P8An38lNjDLzbpV+uwWP7nqYE1QIyB2+nCXIcaDWQyrr74Xg07ND/lsJyfP/glam 38FCXi4UTkqUdCVYglXc66E1XQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFCB/E/9M bNx4eJNv4NgF5sOfkIr1MB8GA1UdIwQYMBaAFKo23qoLSI10PTCWo3TTzsMDTmna MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzA2OC83ODFFN0RDNEQ1 MTYxMUVFQjM1RTZBNjBDNEY5QUUwMi9xamJlcWd0SWpYUTlNSmFqZE5QT3d3Tk9h ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FqYmVxZ3RJalhROU1KYWpkTlBPd3dOT2Fkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMwNjgvNzgxRTdEQzRENTE2MTFFRUIzNUU2QTYwQzRGOUFFMDIvNENGRkYwQTZE NUREMTFFRUE1QjFDNzExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAgAQ3zgMAwDQYJKoZIhvcNAQELBQADggEBAF6EaX9Y17Sw uslHCQ1UmcoBmKmrdtCIYCzIQYbDMgfO+jIMOzzPow2dGuN495tgFzyvfuhGMexj EOVX3W62OwnIlElbpeJvYMKEPrOBYiGcyn224fLwpiUOr2gMQCV+wyuOa7eY5W59 tUfAZcPgRDDwwRg9tmY7hIgNMwPNIU7Ndv8NgqQom+ztgA6xnaBy0qAqPlwoTFl3 tXE9AzxX+lGB6CWGGF170Z2ZV8wPFWCjqW55eNM8RA5k7IrVZS3irG8V69Yyz9+2 VDZzJmGgKPmY7rHJP6hHFzX8tikariGxfJyn2rumH3dMP2Hw2oqdJjpkT9xHCP1k qhA55/vXdxg= -----END CERTIFICATE-----Generated at Thu Nov 6 06:38:15 2025 by rpki-client