$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/BACC6D0A4F7411F0A8124536C4F9AE02.roa File: BACC6D0A4F7411F0A8124536C4F9AE02.roa (raw, json) Hash identifier: yAhldKSbT9eXvW5YXq5JzADs625rpn5nRswKYZ3uyDM= Subject key identifier: E7:61:85:05:7E:C0:94:AB:BE:A6:2A:0A:4B:5B:95:99:0A:92:18:B3 Certificate issuer: /CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E Certificate serial: 0225 Authority key identifier: 09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/BACC6D0A4F7411F0A8124536C4F9AE02.roa Signing time: Mon 03 Nov 2025 03:48:08 +0000 ROA not before: Mon 03 Nov 2025 03:48:08 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 26445 IP address blocks: 2402:be0:fff0::/46 maxlen: 48 2402:be0:fffc::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:48:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 549 (0x225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17AA, serialNumber=0947051EFA50429215750A48BC031ADA926EF66E Validity Not Before: Nov 3 03:48:08 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690825f8-6da4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9c:bc:ff:d4:1f:74:40:e9:ff:79:d6:35:d2: c3:04:4e:19:00:90:f8:e6:5d:e1:bf:0b:e2:c9:04: 93:65:0d:75:1a:f3:e6:9d:ce:ce:8d:49:03:7c:0e: 59:ab:02:83:5b:7f:25:ab:68:11:d2:c9:a7:f6:83: bb:75:8b:59:40:c6:60:79:38:44:fa:57:9f:c5:37: eb:24:a5:f8:09:bb:b4:d4:a8:38:52:38:78:94:82: a9:bd:d1:c7:cf:c3:cf:81:a3:14:26:f7:9f:f8:68: 47:cb:7d:3a:15:ab:1c:c0:33:c4:18:66:b1:f0:81: e6:60:57:ea:ee:6a:26:90:04:56:1c:aa:06:18:25: 02:73:fe:83:b0:c9:a0:e6:c8:2b:bf:85:10:6e:9c: fe:1c:33:73:7d:7b:e3:b2:84:61:be:f9:77:37:9f: 39:7b:69:5a:97:df:97:18:6a:5b:bb:14:e6:73:84: f8:0a:24:7e:80:c8:46:38:cf:4c:9c:1d:b0:4b:55: 40:7c:0b:27:71:a1:7a:c5:c1:7f:0a:8b:03:65:a2: 30:e4:c1:f1:33:47:b3:b9:e6:6f:54:ba:06:c0:2e: 4a:7b:18:d0:ec:dc:2b:9b:ae:4d:c2:7b:7c:57:f1: 31:e5:24:2e:3e:67:b3:1c:2a:30:e0:45:73:31:c1: f9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:61:85:05:7E:C0:94:AB:BE:A6:2A:0A:4B:5B:95:99:0A:92:18:B3 X509v3 Authority Key Identifier: keyid:09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/BACC6D0A4F7411F0A8124536C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:be0:fff0::/46 2402:be0:fffc::/46 Signature Algorithm: sha256WithRSAEncryption 61:93:ee:d5:16:97:24:af:4e:46:23:c1:45:69:7e:85:e6:f1: b9:1d:58:df:6a:cc:16:44:bf:92:18:c3:aa:7d:ae:3a:3b:ad: 71:f8:51:7f:ba:06:4d:62:8e:ae:85:e9:0c:47:5e:18:d3:9f: 0c:f9:27:ec:3e:80:2f:38:48:b3:ee:62:0e:32:52:65:29:2b: 1f:b8:2e:34:39:b0:10:82:27:70:2d:ff:c8:fa:43:c7:45:2d: 73:25:6c:3a:e4:14:7e:3e:46:6c:48:ad:33:73:e4:f9:88:97: 4f:31:45:d7:fc:eb:a9:fa:5c:29:e5:de:97:8c:3d:3a:17:25: da:e3:fb:20:f2:9e:7e:02:41:cb:ff:de:7a:10:23:44:84:47: 15:15:4e:85:4a:28:0e:ce:50:d3:ab:ea:af:bd:b1:c5:bb:67: 58:d0:bd:d0:9e:58:84:65:a9:ac:af:4a:c7:88:06:2d:af:a0: 49:5f:db:16:7c:19:5f:5e:04:fb:3e:5b:b1:57:42:fc:7a:e2: b7:b7:39:87:0a:6a:94:81:ea:ad:51:37:32:7d:8f:0f:3e:7c: 37:09:86:dc:ed:97:f0:43:04:9b:3c:05:19:11:1d:64:7f:61: 38:f2:e6:e4:5b:a7:6c:82:88:17:e7:3f:7b:5c:f4:75:99:2b: d6:34:94:c5 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3QUExMTAvBgNVBAUTKDA5NDcwNTFFRkE1MDQyOTIxNTc1MEE0OEJDMDMxQURB OTI2RUY2NkUwHhcNMjUxMTAzMDM0ODA4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MjVmOC02ZGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZy8/9QfdEDp/3nWNdLDBE4ZAJD45l3hvwviyQSTZQ11GvPmnc7OjUkDfA5Z qwKDW38lq2gR0smn9oO7dYtZQMZgeThE+lefxTfrJKX4Cbu01Kg4Ujh4lIKpvdHH z8PPgaMUJvef+GhHy306FascwDPEGGax8IHmYFfq7momkARWHKoGGCUCc/6DsMmg 5sgrv4UQbpz+HDNzfXvjsoRhvvl3N585e2lal9+XGGpbuxTmc4T4CiR+gMhGOM9M nB2wS1VAfAsncaF6xcF/CosDZaIw5MHxM0ezueZvVLoGwC5KexjQ7Nwrm65Nwnt8 V/Ex5SQuPmezHCow4EVzMcH51wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOdhhQV+ wJSrvqYqCktblZkKkhizMB8GA1UdIwQYMBaAFAlHBR76UEKSFXUKSLwDGtqSbvZu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdBQS80MUYwRjk3RTUy QjgxMUVFOEU0MzAwMERDNEY5QUUwMi9DVWNGSHZwUVFwSVZkUXBJdkFNYTJwSnU5 bTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVY0ZIdnBRUXBJVmRRcEl2QU1hMnBKdTltNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE3QUEvNDFGMEY5N0U1MkI4MTFFRThFNDMwMDBEQzRGOUFFMDIvQkFDQzZEMEE0 Rjc0MTFGMEE4MTI0NTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgACMBIDBwIkAgvg//ADBwIkAgvg//wwDQYJKoZIhvcNAQELBQADggEB AGGT7tUWlySvTkYjwUVpfoXm8bkdWN9qzBZEv5IYw6p9rjo7rXH4UX+6Bk1ijq6F 6QxHXhjTnwz5J+w+gC84SLPuYg4yUmUpKx+4LjQ5sBCCJ3At/8j6Q8dFLXMlbDrk FH4+RmxIrTNz5PmIl08xRdf866n6XCnl3peMPToXJdrj+yDynn4CQcv/3noQI0SE RxUVToVKKA7OUNOr6q+9scW7Z1jQvdCeWIRlqayvSseIBi2voElf2xZ8GV9eBPs+ W7FXQvx64re3OYcKapSB6q1RNzJ9jw8+fDcJhtztl/BDBJs8BRkRHWR/YTjy5uRb p2yCiBfnP3tc9HWZK9Y0lMU= -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:02 2025 by rpki-client