$ rpki-client -vvf rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/F88F98EA55A211F0978C8774C4F9AE02.roa File: F88F98EA55A211F0978C8774C4F9AE02.roa (raw, json) Hash identifier: tUG8yJiHn55iF+p5xuktjgNqO57AMcBScipLCgmp+AU= Subject key identifier: F4:32:2B:22:40:E2:09:8F:51:8B:7C:5A:51:98:54:BB:65:89:8B:09 Certificate issuer: /CN=A91F17AA/serialNumber=0947051EFA50429215750A48BC031ADA926EF66E Certificate serial: 0226 Authority key identifier: 09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/F88F98EA55A211F0978C8774C4F9AE02.roa Signing time: Mon 03 Nov 2025 03:48:09 +0000 ROA not before: Mon 03 Nov 2025 03:48:09 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 399916 IP address blocks: 2402:be0:fefb::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:48:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 550 (0x226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F17AA, serialNumber=0947051EFA50429215750A48BC031ADA926EF66E Validity Not Before: Nov 3 03:48:09 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690825f8-9e5a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2e:ad:b3:d4:ef:54:00:a7:ce:88:7b:23:96: a8:93:1b:f0:b7:64:0b:b3:b2:87:95:17:a7:53:52: f6:2d:a7:cb:3c:3e:59:b7:b9:21:1e:78:51:7f:83: 2f:dd:38:44:83:b1:09:83:12:5c:f2:9a:f1:fa:95: 8d:4e:a7:eb:e6:01:e7:a8:eb:ff:6d:aa:44:9a:91: 96:2b:7a:bb:93:bc:21:ee:41:9c:94:ff:9d:de:ae: 70:f3:ba:d6:47:6d:08:f8:df:89:79:f9:38:b7:ac: 50:e4:cc:a3:27:98:ae:2d:01:f9:06:21:5d:1e:05: 17:eb:22:b1:e7:cf:93:15:df:fc:83:6e:fb:45:e5: c3:35:8d:2a:82:4e:2a:d0:cd:56:97:f0:3f:76:69: 0d:6a:e9:c7:0e:1b:21:93:2b:85:6f:3d:13:df:16: 14:94:74:68:e7:73:ff:ba:49:ff:69:04:fe:75:b8: fb:60:71:80:dc:a6:b0:0d:0c:69:0c:f2:34:dd:58: bf:41:8b:bf:23:1c:71:3c:6a:46:da:1a:42:2f:5e: 98:67:63:0a:3a:52:b3:29:a9:7c:2f:8e:f2:6b:0e: bf:2e:e5:b4:45:57:e9:7f:7a:2e:9c:95:0b:0c:4e: 49:97:52:38:b2:28:3e:05:a1:39:a6:ce:17:57:df: f5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:32:2B:22:40:E2:09:8F:51:8B:7C:5A:51:98:54:BB:65:89:8B:09 X509v3 Authority Key Identifier: keyid:09:47:05:1E:FA:50:42:92:15:75:0A:48:BC:03:1A:DA:92:6E:F6:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/CUcFHvpQQpIVdQpIvAMa2pJu9m4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CUcFHvpQQpIVdQpIvAMa2pJu9m4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F17AA/41F0F97E52B811EE8E43000DC4F9AE02/F88F98EA55A211F0978C8774C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:be0:fefb::/48 Signature Algorithm: sha256WithRSAEncryption 4d:2e:b8:fd:d2:87:0e:18:74:69:7e:ba:a0:eb:04:df:80:26: 17:17:af:4c:36:37:c6:03:b0:a8:69:cc:c7:db:33:63:3c:c0: 2c:20:46:94:ce:22:71:32:3f:8f:1c:a3:dc:c6:39:6f:e8:29: 1c:b9:9b:61:3f:19:0c:88:9e:4d:73:e0:86:6a:12:4f:70:0f: e4:4e:0c:03:71:4f:24:6e:0e:d6:11:5b:de:26:02:7d:71:ff: 55:5b:86:86:ba:59:dc:fc:20:9e:78:85:2d:c2:ef:6d:7a:ca: ea:09:1f:99:b6:54:d3:fe:0d:90:10:b2:f1:66:b7:61:43:96: d9:58:b9:12:cc:f5:30:06:62:38:c0:d9:7d:3c:d4:c0:2f:01: 2b:77:61:ac:c8:37:36:e6:45:e1:3a:89:c5:23:df:01:c0:80: 04:34:07:12:58:8b:f3:ad:11:bc:65:d7:bd:07:4b:f9:8d:d5: 2a:78:47:09:56:50:b4:d3:c9:72:5d:90:66:db:d9:8f:42:e9: 2b:08:e0:1b:15:10:96:5e:72:64:14:85:50:da:72:07:82:c5: 69:21:b3:d0:ab:34:af:04:96:a5:bb:9b:e8:22:02:ee:9f:17: 12:26:4e:02:de:c6:bb:88:2b:f6:43:5f:1b:31:5a:e7:ce:c3: 6a:8c:f1:34 -----BEGIN CERTIFICATE----- MIIFdDCCBFygAwIBAgICAiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE3QUExMTAvBgNVBAUTKDA5NDcwNTFFRkE1MDQyOTIxNTc1MEE0OEJDMDMxQURB OTI2RUY2NkUwHhcNMjUxMTAzMDM0ODA5WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MjVmOC05ZTVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxS6ts9TvVACnzoh7I5aokxvwt2QLs7KHlRenU1L2LafLPD5Zt7khHnhRf4Mv 3ThEg7EJgxJc8prx+pWNTqfr5gHnqOv/bapEmpGWK3q7k7wh7kGclP+d3q5w87rW R20I+N+Jefk4t6xQ5MyjJ5iuLQH5BiFdHgUX6yKx58+TFd/8g277ReXDNY0qgk4q 0M1Wl/A/dmkNaunHDhshkyuFbz0T3xYUlHRo53P/ukn/aQT+dbj7YHGA3KawDQxp DPI03Vi/QYu/IxxxPGpG2hpCL16YZ2MKOlKzKal8L47yaw6/LuW0RVfpf3ounJUL DE5Jl1I4sig+BaE5ps4XV9/1cQIDAQABo4ICmDCCApQwHQYDVR0OBBYEFPQyKyJA 4gmPUYt8WlGYVLtliYsJMB8GA1UdIwQYMBaAFAlHBR76UEKSFXUKSLwDGtqSbvZu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTdBQS80MUYwRjk3RTUy QjgxMUVFOEU0MzAwMERDNEY5QUUwMi9DVWNGSHZwUVFwSVZkUXBJdkFNYTJwSnU5 bTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NVY0ZIdnBRUXBJVmRRcEl2QU1hMnBKdTltNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE3QUEvNDFGMEY5N0U1MkI4MTFFRThFNDMwMDBEQzRGOUFFMDIvRjg4Rjk4RUE1 NUEyMTFGMDk3OEM4Nzc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIgYIKwYBBQUHAQcBAf8E EzARMA8EAgACMAkDBwAkAgvg/vswDQYJKoZIhvcNAQELBQADggEBAE0uuP3Shw4Y dGl+uqDrBN+AJhcXr0w2N8YDsKhpzMfbM2M8wCwgRpTOInEyP48co9zGOW/oKRy5 m2E/GQyInk1z4IZqEk9wD+RODANxTyRuDtYRW94mAn1x/1Vbhoa6Wdz8IJ54hS3C 7216yuoJH5m2VNP+DZAQsvFmt2FDltlYuRLM9TAGYjjA2X081MAvASt3YazINzbm ReE6icUj3wHAgAQ0BxJYi/OtEbxl170HS/mN1Sp4RwlWULTTyXJdkGbb2Y9C6SsI 4BsVEJZecmQUhVDacgeCxWkhs9CrNK8ElqW7m+giAu6fFxImTgLexruIK/ZDXxsx WufOw2qM8TQ= -----END CERTIFICATE-----Generated at Wed Nov 5 04:47:29 2025 by rpki-client