$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7DFD24A0A69D11ED970A2E1EC4F9AE02.roa File: 7DFD24A0A69D11ED970A2E1EC4F9AE02.roa (raw, json) Hash identifier: eCzZBGM4yO3X43+DBBXORK5pWKKgJ5ykZOExObNr3Lw= Subject key identifier: 2C:00:C4:FD:D8:15:90:C2:F8:97:40:50:97:F8:04:42:5D:72:1A:08 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 06EE Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7DFD24A0A69D11ED970A2E1EC4F9AE02.roa Signing time: Wed 08 Oct 2025 22:24:20 +0000 ROA not before: Wed 08 Oct 2025 22:24:20 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 16625 IP address blocks: 131.203.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 22:22:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1774 (0x6ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Oct 8 22:24:20 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e6e494-e46b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:db:51:03:12:51:61:30:32:58:8c:50:c9:1d: 1d:f2:de:7a:b1:d7:08:6c:59:cf:eb:81:18:42:51: ee:ed:92:fc:b6:e8:40:3a:fd:26:be:b3:aa:ce:5c: c5:7d:4b:46:90:34:4c:4b:79:04:75:d4:db:91:f4: ba:78:46:8c:ee:b6:0a:2d:75:6f:09:a3:58:b5:09: b8:5f:73:aa:50:68:cf:88:e7:f5:fd:6e:6a:3f:23: 18:c3:0f:74:cc:c4:77:ee:5d:1d:66:59:1e:2b:08: 69:8b:cd:46:9d:41:1c:9a:12:da:b9:83:f1:bf:06: 64:2f:c6:d8:2b:f9:60:15:6b:df:28:a2:2c:14:b2: 72:8d:5e:f7:b6:44:f3:cb:78:83:1e:30:d7:93:ef: 28:ac:d1:e5:84:47:d4:a8:87:64:25:02:40:fc:37: c7:4c:e6:6e:58:7d:8a:88:b6:9c:97:23:ba:92:c9: a4:75:08:f9:01:e8:30:3e:a0:86:21:2c:f0:ee:ad: b9:7a:6d:78:36:81:c8:b0:ad:8d:ef:94:6a:12:61: 46:4f:7b:42:64:b9:ce:63:41:51:d1:cc:1e:2e:2a: 2b:1d:a9:fe:47:46:59:43:bc:1b:d1:3d:d4:c5:2a: 1c:7f:c2:9a:cd:10:b9:c5:9e:1b:d1:5d:33:76:d1: 4a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:00:C4:FD:D8:15:90:C2:F8:97:40:50:97:F8:04:42:5D:72:1A:08 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7DFD24A0A69D11ED970A2E1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 131.203.4.0/22 Signature Algorithm: sha256WithRSAEncryption 16:4b:04:28:91:9e:14:3d:39:8a:fd:de:56:ff:89:21:20:67: 2d:9b:fd:25:c9:80:09:3e:7d:85:ec:12:d2:fa:a0:24:4b:62: 6f:6c:e5:af:d7:14:70:9d:5b:5c:48:a7:2e:8f:7a:cb:49:46: 6a:8e:32:40:21:37:b9:9f:0c:03:a3:38:7d:92:24:c4:ed:9e: 92:d1:e2:42:d6:8f:b0:02:70:d9:c6:62:16:e9:56:45:50:5e: f1:b0:d7:68:be:42:0e:43:f3:87:e6:ee:38:04:a9:fe:ad:eb: 22:49:a1:32:9b:a8:3e:4c:bc:b0:9f:35:32:fc:85:48:a0:d0: f5:1a:87:d8:86:b1:6b:59:e2:46:58:f1:37:34:30:98:8e:f2: 76:e3:c2:a4:d7:d7:32:93:ed:38:47:f2:6b:bf:f0:46:c6:29: 41:7d:df:fd:c4:9c:14:6b:b6:b1:8c:4e:10:af:fc:c2:65:d9: 1c:a2:51:58:aa:ed:1f:70:19:a1:f8:a7:2a:44:2a:9d:53:f2: 73:21:ea:ee:b1:b2:98:6c:5f:ed:b8:8f:1b:6e:df:b1:87:ab: 77:ac:ee:b1:97:13:de:9b:1e:53:96:03:18:29:8a:a9:81:dc: 59:51:1c:8c:a8:5a:59:65:aa:02:71:79:1a:aa:36:43:b7:8c: 95:f4:fe:4a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjUxMDA4MjIyNDIwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2ZTQ5NC1lNDZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsttRAxJRYTAyWIxQyR0d8t56sdcIbFnP64EYQlHu7ZL8tuhAOv0mvrOqzlzF fUtGkDRMS3kEddTbkfS6eEaM7rYKLXVvCaNYtQm4X3OqUGjPiOf1/W5qPyMYww90 zMR37l0dZlkeKwhpi81GnUEcmhLauYPxvwZkL8bYK/lgFWvfKKIsFLJyjV73tkTz y3iDHjDXk+8orNHlhEfUqIdkJQJA/DfHTOZuWH2KiLaclyO6ksmkdQj5AegwPqCG ISzw7q25em14NoHIsK2N75RqEmFGT3tCZLnOY0FR0cweLiorHan+R0ZZQ7wb0T3U xSocf8KazRC5xZ4b0V0zdtFK9QIDAQABo4IClTCCApEwHQYDVR0OBBYEFCwAxP3Y FZDC+JdAUJf4BEJdchoIMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvODY1OEU0NjY4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvN0RGRDI0QTBB NjlEMTFFRDk3MEEyRTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKDywQwDQYJKoZIhvcNAQELBQADggEBABZLBCiRnhQ9OYr9 3lb/iSEgZy2b/SXJgAk+fYXsEtL6oCRLYm9s5a/XFHCdW1xIpy6PestJRmqOMkAh N7mfDAOjOH2SJMTtnpLR4kLWj7ACcNnGYhbpVkVQXvGw12i+Qg5D84fm7jgEqf6t 6yJJoTKbqD5MvLCfNTL8hUig0PUah9iGsWtZ4kZY8Tc0MJiO8nbjwqTX1zKT7ThH 8mu/8EbGKUF93/3EnBRrtrGMThCv/MJl2RyiUViq7R9wGaH4pypEKp1T8nMh6u6x sphsX+24jxtu37GHq3es7rGXE96bHlOWAxgpiqmB3FlRHIyoWlllqgJxeRqqNkO3 jJX0/ko= -----END CERTIFICATE-----Generated at Wed Nov 5 05:15:01 2025 by rpki-client