$ rpki-client -vvf rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/4D144B780DFE11F09C46E054C4F9AE02.roa File: 4D144B780DFE11F09C46E054C4F9AE02.roa (raw, json) Hash identifier: 4W8JwWYdmlkoGSHKhs2UcR0Dtn0CNiavMVkInr6eJqg= Subject key identifier: AC:36:A8:F5:79:EB:9A:D9:3E:3B:2C:C6:11:2D:FC:C9:52:68:B4:42 Certificate issuer: /CN=A91E85F1/serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Certificate serial: 70 Authority key identifier: C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/4D144B780DFE11F09C46E054C4F9AE02.roa Signing time: Fri 31 Oct 2025 07:21:17 +0000 ROA not before: Fri 31 Oct 2025 07:21:17 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153322 IP address blocks: 2001:df4:3ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:06:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E85F1, serialNumber=C8BF065A74822EF8CC62F4A54E59D587120B6F47 Validity Not Before: Oct 31 07:21:17 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6904636d-0e88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:7f:e5:50:cb:a1:c8:10:43:77:11:e2:28:21: 16:96:cb:58:79:6a:7d:66:4b:c1:f3:79:f6:a3:63: d4:f8:1b:98:02:3f:0a:59:68:22:56:88:e6:1d:b2: 2d:e1:9d:32:4a:e6:2a:d1:cd:76:84:20:d4:ef:bf: fa:44:41:1e:24:94:7b:f3:8d:44:e3:76:28:2d:ec: 25:1b:b7:e6:1b:10:a1:2d:6e:dd:12:f5:d5:10:f2: 18:a1:77:26:45:97:06:c3:f0:69:84:91:45:72:0d: 97:2c:79:5e:d2:c3:48:04:25:9c:20:29:d4:4a:7e: 4c:91:7a:8e:94:c1:77:0e:a1:a1:aa:92:b5:72:53: b1:a9:2e:58:78:b4:d2:f3:62:7e:0a:14:d5:56:4a: be:c3:cd:fd:f3:89:14:61:ba:e3:50:fe:3b:1b:ab: 58:25:68:fc:87:92:3f:07:e6:76:05:c5:4a:2d:c0: 3a:cc:2c:bd:70:00:e8:e8:21:28:38:3e:bb:f0:62: 4f:0c:0a:15:45:20:7f:19:5a:2d:0d:4f:ec:61:1d: b5:7b:29:34:63:cc:a0:15:66:52:68:9b:55:22:78: 9a:18:13:53:6f:58:7f:5c:24:ad:49:86:5e:ae:34: 97:cf:31:15:16:5d:dd:86:c7:06:38:53:25:dd:03: ac:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:36:A8:F5:79:EB:9A:D9:3E:3B:2C:C6:11:2D:FC:C9:52:68:B4:42 X509v3 Authority Key Identifier: keyid:C8:BF:06:5A:74:82:2E:F8:CC:62:F4:A5:4E:59:D5:87:12:0B:6F:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/yL8GWnSCLvjMYvSlTlnVhxILb0c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yL8GWnSCLvjMYvSlTlnVhxILb0c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E85F1/6AA4D60A0DFC11F0A1D98053C4F9AE02/4D144B780DFE11F09C46E054C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2001:df4:3ec0::/48 Signature Algorithm: sha256WithRSAEncryption 3a:91:5f:de:b5:a9:14:d6:45:c0:7f:ad:cb:3e:be:47:b7:08: fb:5b:b5:10:17:b7:3a:e2:87:39:ea:62:a7:f0:0a:79:86:d9: 42:09:30:8e:ff:b6:49:21:ca:88:ef:f0:fb:a3:7b:63:3b:25: 2a:88:6c:8c:ed:e5:a5:bc:3f:74:06:f9:df:5c:82:d1:81:bf: 4f:d1:f1:3a:01:7b:42:56:ac:23:67:9c:01:e8:36:12:b3:67: f6:06:00:84:de:d8:eb:43:34:c3:de:25:6c:40:aa:90:6a:32: 39:13:4b:3d:dc:8b:9c:f0:e0:66:06:72:e3:fe:97:e2:77:88: aa:ee:a6:e1:98:85:9e:d6:b5:41:d6:19:91:d0:52:67:ce:74: d2:b1:03:dd:20:db:53:0e:92:fa:66:64:ef:65:8a:7b:8c:12: 6f:4a:1d:ae:80:b8:14:cc:03:dd:5e:b7:7e:06:e9:d6:e6:8c: cf:e7:ce:88:40:b0:71:d6:37:68:06:cf:33:2d:7c:ee:93:5c: 08:09:8d:b0:1a:d9:c7:a7:92:8b:47:8c:bc:74:3f:3b:85:64: 79:3e:ab:fa:c2:f2:4f:9a:9d:4a:60:8c:01:bf:f5:6f:aa:bd: ac:49:af:cc:77:77:93:5f:60:c2:7d:82:0c:69:44:65:97:92: 06:78:b2:e4 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF ODVGMTExMC8GA1UEBRMoQzhCRjA2NUE3NDgyMkVGOENDNjJGNEE1NEU1OUQ1ODcx MjBCNkY0NzAeFw0yNTEwMzEwNzIxMTdaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MDQ2MzZkLTBlODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD+f+VQy6HIEEN3EeIoIRaWy1h5an1mS8HzefajY9T4G5gCPwpZaCJWiOYdsi3h nTJK5irRzXaEINTvv/pEQR4klHvzjUTjdigt7CUbt+YbEKEtbt0S9dUQ8hihdyZF lwbD8GmEkUVyDZcseV7Sw0gEJZwgKdRKfkyReo6UwXcOoaGqkrVyU7GpLlh4tNLz Yn4KFNVWSr7Dzf3ziRRhuuNQ/jsbq1glaPyHkj8H5nYFxUotwDrMLL1wAOjoISg4 PrvwYk8MChVFIH8ZWi0NT+xhHbV7KTRjzKAVZlJom1UieJoYE1NvWH9cJK1Jhl6u NJfPMRUWXd2GxwY4UyXdA6wTAgMBAAGjggKYMIIClDAdBgNVHQ4EFgQUrDao9Xnr mtk+OyzGES38yVJotEIwHwYDVR0jBBgwFoAUyL8GWnSCLvjMYvSlTlnVhxILb0cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU4NUYxLzZBQTRENjBBMERG QzExRjBBMUQ5ODA1M0M0RjlBRTAyL3lMOEdXblNDTHZqTVl2U2xUbG5WaHhJTGIw Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveUw4R1duU0NMdmpNWXZTbFRsblZoeElMYjBjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF ODVGMS82QUE0RDYwQTBERkMxMUYwQTFEOTgwNTNDNEY5QUUwMi80RDE0NEI3ODBE RkUxMUYwOUM0NkUwNTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAiBggrBgEFBQcBBwEB/wQT MBEwDwQCAAIwCQMHACABDfQ+wDANBgkqhkiG9w0BAQsFAAOCAQEAOpFf3rWpFNZF wH+tyz6+R7cI+1u1EBe3OuKHOepip/AKeYbZQgkwjv+2SSHKiO/w+6N7YzslKohs jO3lpbw/dAb531yC0YG/T9HxOgF7QlasI2ecAeg2ErNn9gYAhN7Y60M0w94lbECq kGoyORNLPdyLnPDgZgZy4/6X4neIqu6m4ZiFnta1QdYZkdBSZ8500rED3SDbUw6S +mZk72WKe4wSb0odroC4FMwD3V63fgbp1uaMz+fOiECwcdY3aAbPMy187pNcCAmN sBrZx6eSi0eMvHQ/O4VkeT6r+sLyT5qdSmCMAb/1b6q9rEmvzHd3k19gwn2CDGlE ZZeSBniy5A== -----END CERTIFICATE-----Generated at Wed Nov 5 18:36:00 2025 by rpki-client