$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/DA06E7EAA37511F09017D760C4F9AE02.roa File: DA06E7EAA37511F09017D760C4F9AE02.roa (raw, json) Hash identifier: wpQC06DiQ+xzlEL7d1LfcmEUWMK/NDUMBZdyTADqLL4= Subject key identifier: BC:C1:4C:06:29:41:8F:80:E0:BC:0D:D1:28:9B:CE:2D:DD:17:D5:B7 Certificate issuer: /CN=A91DE19B/serialNumber=DF22A9A57B7D3A8AEB124D690C7917066B4DB59E Certificate serial: 14 Authority key identifier: DF:22:A9:A5:7B:7D:3A:8A:EB:12:4D:69:0C:79:17:06:6B:4D:B5:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yKppXt9OorrEk1pDHkXBmtNtZ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/DA06E7EAA37511F09017D760C4F9AE02.roa Signing time: Mon 13 Oct 2025 07:52:56 +0000 ROA not before: Mon 13 Oct 2025 07:52:56 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 140613 IP address blocks: 223.165.2.0/23 maxlen: 23 223.165.2.0/24 maxlen: 24 223.165.3.0/24 maxlen: 24 2001:df6:26c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.crl rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yKppXt9OorrEk1pDHkXBmtNtZ4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:08:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE19B, serialNumber=DF22A9A57B7D3A8AEB124D690C7917066B4DB59E Validity Not Before: Oct 13 07:52:56 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ecafd7-a114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:78:46:6f:ee:81:d2:0d:8d:8c:2d:89:81:ac: 1e:9d:85:6c:fe:0a:53:f7:d1:47:ce:fa:0f:e7:30: 69:a6:dc:c4:d1:fa:cc:31:f8:31:09:2b:8f:bd:3b: 58:e0:19:bd:26:15:79:53:55:73:de:8f:09:3c:3c: 69:ef:47:b6:2f:37:bb:6f:35:af:c0:d3:eb:1d:3c: 80:a3:12:d6:1c:21:1b:a3:b2:f7:64:9d:de:3c:49: 0c:a8:33:25:d5:77:20:31:ce:ae:4a:5e:54:a8:6f: 8c:64:be:9f:39:9b:c6:96:10:75:b3:bc:27:9d:2e: 29:ec:49:50:d2:96:a7:d8:0f:bb:00:b2:23:4f:b2: 6b:92:a0:a8:56:b7:a7:8f:b9:b2:73:97:03:1f:2c: 21:81:21:df:f4:93:7a:69:11:94:bd:51:57:64:c7: 90:75:27:b0:0e:51:d3:cd:2c:32:8c:3a:76:81:26: e7:12:66:0b:93:43:8f:8e:7c:74:d0:a6:b7:6f:37: d7:34:0b:80:c4:bf:0b:e9:9e:c2:cd:20:cb:90:e4: ac:b0:a5:6d:34:14:4a:53:f8:cc:4a:40:a3:52:d3: fc:12:73:08:a1:89:d8:a8:5d:79:42:0f:f6:52:0d: 81:31:54:84:8e:66:5e:80:f1:d7:14:dd:9d:07:4f: 0d:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:C1:4C:06:29:41:8F:80:E0:BC:0D:D1:28:9B:CE:2D:DD:17:D5:B7 X509v3 Authority Key Identifier: keyid:DF:22:A9:A5:7B:7D:3A:8A:EB:12:4D:69:0C:79:17:06:6B:4D:B5:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/3yKppXt9OorrEk1pDHkXBmtNtZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3yKppXt9OorrEk1pDHkXBmtNtZ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE19B/DAB85E28A37311F08F891C37C4F9AE02/DA06E7EAA37511F09017D760C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.165.2.0/23 IPv6: 2001:df6:26c0::/48 Signature Algorithm: sha256WithRSAEncryption 6a:ef:d5:54:66:ee:45:43:ca:82:91:9d:03:80:69:97:39:43: 9b:39:64:c6:a5:af:2e:fe:15:23:67:52:c1:ce:da:65:53:c6: a9:62:a0:63:bd:a2:c3:61:9f:1e:8d:f4:4c:50:16:58:2f:6c: 5c:55:9b:75:d9:14:1c:3f:e1:9c:41:ee:44:72:8b:92:87:e6: 06:7f:b4:30:c9:18:62:d2:f4:4a:93:81:ee:4c:48:3b:99:f5: 7b:54:9b:f2:d3:01:b9:df:9f:15:07:fe:02:39:48:63:5d:f8: d1:95:e6:39:bf:06:c9:c6:52:a4:20:44:37:e8:1b:ae:81:02: 76:b7:99:98:db:a6:46:58:29:67:b5:03:50:f8:7a:d9:b1:de: 00:8f:7c:b3:5c:7b:0b:6e:e8:71:6c:b5:8f:d0:fa:30:c9:8c: 30:c2:f0:5f:23:8a:fd:c4:b2:dd:50:33:04:14:f6:23:19:21: 35:39:98:f5:d9:ba:cd:3e:e9:bb:96:31:78:12:5a:1b:c0:34: d2:a7:4a:5e:64:28:c2:45:11:82:09:8a:a4:24:fc:75:e0:44: da:26:41:4f:b6:e6:2f:9c:fc:96:42:67:c5:84:cc:a0:79:01: 13:91:60:68:db:4c:c3:87:3a:6a:1a:0a:e9:8f:e3:6c:a9:bc: 4d:7a:05:07 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RTE5QjExMC8GA1UEBRMoREYyMkE5QTU3QjdEM0E4QUVCMTI0RDY5MEM3OTE3MDY2 QjREQjU5RTAeFw0yNTEwMTMwNzUyNTZaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZWNhZmQ3LWExMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoeEZv7oHSDY2MLYmBrB6dhWz+ClP30UfO+g/nMGmm3MTR+swx+DEJK4+9O1jg Gb0mFXlTVXPejwk8PGnvR7YvN7tvNa/A0+sdPICjEtYcIRujsvdknd48SQyoMyXV dyAxzq5KXlSob4xkvp85m8aWEHWzvCedLinsSVDSlqfYD7sAsiNPsmuSoKhWt6eP ubJzlwMfLCGBId/0k3ppEZS9UVdkx5B1J7AOUdPNLDKMOnaBJucSZguTQ4+OfHTQ prdvN9c0C4DEvwvpnsLNIMuQ5KywpW00FEpT+MxKQKNS0/wScwihidioXXlCD/ZS DYExVISOZl6A8dcU3Z0HTw1HAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUvMFMBilB j4DgvA3RKJvOLd0X1bcwHwYDVR0jBBgwFoAU3yKppXt9OorrEk1pDHkXBmtNtZ4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURFMTlCL0RBQjg1RTI4QTM3 MzExRjA4Rjg5MUMzN0M0RjlBRTAyLzN5S3BwWHQ5T29yckVrMXBESGtYQm10TnRa NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM3lLcHBYdDlPb3JyRWsxcERIa1hCbXROdFo0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTE5Qi9EQUI4NUUyOEEzNzMxMUYwOEY4OTFDMzdDNEY5QUUwMi9EQTA2RTdFQUEz NzUxMUYwOTAxN0Q3NjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAd+lAjAPBAIAAjAJAwcAIAEN9ibAMA0GCSqGSIb3DQEBCwUA A4IBAQBq79VUZu5FQ8qCkZ0DgGmXOUObOWTGpa8u/hUjZ1LBztplU8apYqBjvaLD YZ8ejfRMUBZYL2xcVZt12RQcP+GcQe5EcouSh+YGf7QwyRhi0vRKk4HuTEg7mfV7 VJvy0wG5358VB/4COUhjXfjRleY5vwbJxlKkIEQ36BuugQJ2t5mY26ZGWClntQNQ +HrZsd4Aj3yzXHsLbuhxbLWP0PowyYwwwvBfI4r9xLLdUDMEFPYjGSE1OZj12brN Pum7ljF4ElobwDTSp0peZCjCRRGCCYqkJPx14ETaJkFPtuYvnPyWQmfFhMygeQET kWBo20zDhzpqGgrpj+NsqbxNegUH -----END CERTIFICATE-----Generated at Wed Nov 5 22:32:32 2025 by rpki-client