$ rpki-client -vvf rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/640E4E709F6F11F0A268CE5DC4F9AE02.roa File: 640E4E709F6F11F0A268CE5DC4F9AE02.roa (raw, json) Hash identifier: 2zmhOrf3j4kWN7WNyi93+FWxSiadjBJUCk2CS0HquvM= Subject key identifier: B4:54:43:0A:69:AC:AF:70:0E:D1:8D:1E:4A:B5:6A:90:7A:7D:F8:CC Certificate issuer: /CN=A91423C1/serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4 Certificate serial: CA Authority key identifier: 4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/640E4E709F6F11F0A268CE5DC4F9AE02.roa Signing time: Thu 02 Oct 2025 09:08:42 +0000 ROA not before: Thu 02 Oct 2025 09:08:42 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 152125 IP address blocks: 161.248.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 04:02:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 202 (0xca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91423C1, serialNumber=4DC7E28B546F2A0B538E8CDF832D9AA1F37CC8E4 Validity Not Before: Oct 2 09:08:42 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68de4119-7fc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:59:1e:76:c9:5b:ef:44:4f:a8:2c:22:cb:93: fa:12:77:3c:48:68:92:dd:fc:b0:9d:14:0c:b6:d0: 2e:ad:61:b5:f8:28:2c:78:4b:44:65:12:68:d3:8a: ca:6b:62:e4:58:f4:cc:57:2e:5f:0d:9d:95:08:67: 3b:47:51:3e:eb:89:ff:7b:e2:b5:87:ae:bf:cc:2c: 00:db:58:6f:b8:c8:c0:0b:64:2a:3f:3f:8b:a3:17: 0e:12:71:c1:85:72:fd:a4:c9:45:69:d7:89:85:61: e3:9d:f7:df:e3:8d:f0:82:6e:e1:ed:99:78:d1:b7: 5f:3b:49:c5:fb:48:28:6b:0c:ff:3a:a4:17:bb:a9: 0f:d5:74:6f:52:8e:cd:f2:68:9f:1d:9e:63:93:b7: 2d:a5:0b:5b:b4:3a:59:16:88:27:da:94:d6:10:a8: ad:fd:cf:18:d8:11:3d:02:d6:dd:02:4d:5a:82:48: 58:2c:19:db:ba:64:06:68:d7:1a:25:91:24:02:c0: 82:64:8f:d1:b1:c8:d3:68:52:d7:e0:7f:57:ae:f8: 4f:e2:18:32:9e:3e:96:87:ad:de:be:7b:47:0a:fe: 90:d8:b1:32:e8:37:c8:bf:c3:0e:b3:07:1d:b0:ea: 0a:7e:fb:72:93:f7:09:a2:74:c7:bf:80:f7:bc:71: 89:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:54:43:0A:69:AC:AF:70:0E:D1:8D:1E:4A:B5:6A:90:7A:7D:F8:CC X509v3 Authority Key Identifier: keyid:4D:C7:E2:8B:54:6F:2A:0B:53:8E:8C:DF:83:2D:9A:A1:F3:7C:C8:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/Tcfii1RvKgtTjozfgy2aofN8yOQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Tcfii1RvKgtTjozfgy2aofN8yOQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91423C1/D0320EF8BF4F11EFBCF68944C4F9AE02/640E4E709F6F11F0A268CE5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.10.0/24 Signature Algorithm: sha256WithRSAEncryption a3:84:ca:9f:ad:ed:65:7a:81:9d:86:fa:26:47:50:62:c9:04: ea:f3:7e:09:8c:2c:cf:ab:d6:53:0b:2c:f2:4a:19:88:e7:04: 00:d1:bb:64:74:43:84:ca:9d:9b:d6:d5:aa:06:cd:99:aa:ef: 07:01:00:8e:8c:fe:a6:ba:1f:f0:94:45:ed:7c:f3:9c:d2:2c: da:bc:6d:07:c6:56:7c:9d:f1:13:31:9f:3f:e2:26:25:ac:2c: be:92:ba:81:0c:87:44:b9:16:39:06:2c:10:54:a7:d1:aa:e1: 87:13:d6:14:4c:2e:b5:19:62:92:b7:c9:ca:49:40:e9:7e:8c: 99:4f:3b:44:f2:86:3e:37:f6:bb:be:71:1d:e8:d6:96:a8:12: c8:26:fd:36:63:9b:51:b0:d1:c9:8f:e2:ec:b9:ec:1a:50:dc: 7d:ac:7d:5b:8e:b9:29:2c:21:f1:26:73:65:00:9a:b2:51:b6: c8:bb:e7:30:94:bf:30:73:cd:1a:84:0b:b1:17:f1:fb:64:8a: f0:46:66:6a:80:1c:fb:4a:34:83:cd:39:89:ce:2c:c9:94:14: cc:d1:50:9d:fe:8d:f2:9d:99:3c:6b:89:fe:c2:33:9f:bb:c7: b2:37:56:86:90:31:72:8d:aa:39:9f:ae:68:c7:48:0f:5d:3b: 1f:9f:50:b3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIzQzExMTAvBgNVBAUTKDREQzdFMjhCNTQ2RjJBMEI1MzhFOENERjgzMkQ5QUEx RjM3Q0M4RTQwHhcNMjUxMDAyMDkwODQyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRlNDExOS03ZmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVkedslb70RPqCwiy5P6Enc8SGiS3fywnRQMttAurWG1+CgseEtEZRJo04rK a2LkWPTMVy5fDZ2VCGc7R1E+64n/e+K1h66/zCwA21hvuMjAC2QqPz+LoxcOEnHB hXL9pMlFadeJhWHjnfff443wgm7h7Zl40bdfO0nF+0goawz/OqQXu6kP1XRvUo7N 8mifHZ5jk7ctpQtbtDpZFogn2pTWEKit/c8Y2BE9AtbdAk1agkhYLBnbumQGaNca JZEkAsCCZI/RscjTaFLX4H9XrvhP4hgynj6Wh63evntHCv6Q2LEy6DfIv8MOswcd sOoKfvtyk/cJonTHv4D3vHGJHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLRUQwpp rK9wDtGNHkq1apB6ffjMMB8GA1UdIwQYMBaAFE3H4otUbyoLU46M34MtmqHzfMjk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjNDMS9EMDMyMEVGOEJG NEYxMUVGQkNGNjg5NDRDNEY5QUUwMi9UY2ZpaTFSdktndFRqb3pmZ3kyYW9mTjh5 T1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1RjZmlpMVJ2S2d0VGpvemZneTJhb2ZOOHlPUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIzQzEvRDAzMjBFRjhCRjRGMTFFRkJDRjY4OTQ0QzRGOUFFMDIvNjQwRTRFNzA5 RjZGMTFGMEEyNjhDRTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACh+AowDQYJKoZIhvcNAQELBQADggEBAKOEyp+t7WV6gZ2G +iZHUGLJBOrzfgmMLM+r1lMLLPJKGYjnBADRu2R0Q4TKnZvW1aoGzZmq7wcBAI6M /qa6H/CURe1885zSLNq8bQfGVnyd8RMxnz/iJiWsLL6SuoEMh0S5FjkGLBBUp9Gq 4YcT1hRMLrUZYpK3ycpJQOl+jJlPO0Tyhj439ru+cR3o1paoEsgm/TZjm1Gw0cmP 4uy57BpQ3H2sfVuOuSksIfEmc2UAmrJRtsi75zCUvzBzzRqEC7EX8ftkivBGZmqA HPtKNIPNOYnOLMmUFMzRUJ3+jfKdmTxrif7CM5+7x7I3VoaQMXKNqjmfrmjHSA9d Ox+fULM= -----END CERTIFICATE-----Generated at Wed Nov 5 10:24:24 2025 by rpki-client