$ rpki-client -vvf rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/572A655C6E8E11F0BC00AD68C4F9AE02.roa File: 572A655C6E8E11F0BC00AD68C4F9AE02.roa (raw, json) Hash identifier: vb7fSe4hGTfYiR3X8s03oFhLsFFESwK0obRkUpL5Xz0= Subject key identifier: 0B:BC:A1:35:20:32:C1:7E:FF:3C:BB:32:0E:78:0A:CE:BF:EE:DD:C0 Certificate issuer: /CN=A91516FF/serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Certificate serial: 7C Authority key identifier: DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/572A655C6E8E11F0BC00AD68C4F9AE02.roa Signing time: Mon 27 Oct 2025 09:50:54 +0000 ROA not before: Mon 27 Oct 2025 09:50:54 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 153315 IP address blocks: 202.40.164.0/24 maxlen: 24 202.40.165.0/24 maxlen: 24 202.40.166.0/24 maxlen: 24 202.40.167.0/24 maxlen: 24 2401:c0e0::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:08:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91516FF, serialNumber=DFCA8FDAA5FEF948E0ECF6F9C703639B56539D99 Validity Not Before: Oct 27 09:50:54 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ff407e-dd6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:03:17:43:9b:45:c9:c6:b8:53:86:aa:fb:43: c0:ee:b5:a2:ea:fa:ec:2c:69:bb:f4:68:b4:ad:a5: f4:81:e8:25:3d:39:63:9d:57:b0:19:d1:1a:c2:44: ba:80:9a:9a:f9:1b:7c:81:bd:26:d6:d9:b3:8c:5c: 65:d0:46:04:85:0d:ad:db:fa:0b:2c:a8:97:26:5c: 61:88:f2:a9:28:4c:69:75:86:f4:89:89:e9:42:b9: df:bb:17:f3:0c:3d:59:ee:b3:b8:af:83:86:a5:f5: f0:f3:9f:34:ce:57:87:33:45:7f:38:97:5b:81:ab: 77:fa:39:07:e1:b4:df:79:bd:e4:cb:80:1d:82:4f: dc:12:24:2a:ea:5c:d5:8f:86:db:ad:a3:47:e0:e2: 05:46:ab:f9:9b:42:51:b6:3b:36:36:5d:20:43:0d: 3a:6c:3c:f2:75:08:3a:de:3e:03:5e:c4:10:dc:8c: 30:c6:05:7b:2d:da:2e:2a:f8:3b:5b:3a:10:7d:d1: cb:11:b9:73:30:f3:5b:91:a2:04:a8:3a:a2:38:57: 50:62:6c:08:58:17:a4:4f:0d:27:91:75:f2:f7:14: c0:0c:ea:e8:bf:1a:ff:0b:3a:25:60:73:6a:63:04: 90:e5:e5:41:43:97:38:6f:fd:6d:26:c2:db:71:a2: 76:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:BC:A1:35:20:32:C1:7E:FF:3C:BB:32:0E:78:0A:CE:BF:EE:DD:C0 X509v3 Authority Key Identifier: keyid:DF:CA:8F:DA:A5:FE:F9:48:E0:EC:F6:F9:C7:03:63:9B:56:53:9D:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/38qP2qX--Ujg7Pb5xwNjm1ZTnZk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91516FF/2DA55912141611F0A8523219C4F9AE02/572A655C6E8E11F0BC00AD68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.40.164.0/22 IPv6: 2401:c0e0::/40 Signature Algorithm: sha256WithRSAEncryption 44:89:98:0e:66:9d:68:47:68:c2:81:8d:b2:5c:e6:38:17:11: 97:6b:98:3c:35:cc:0d:e3:64:63:81:81:9c:73:57:56:18:5e: 85:7a:00:38:95:cb:07:11:57:cd:d0:c7:f9:a6:90:c6:58:3f: 50:12:14:50:9f:8f:2f:e6:82:9f:30:0c:70:aa:d7:43:81:af: 6b:d1:64:86:bc:f2:b7:66:2a:56:a0:9d:5b:c6:03:c4:e4:06: c1:49:1a:1f:3c:29:6d:d2:cd:8e:30:0d:96:3c:97:c2:1f:43: c1:97:e0:8a:4b:7d:48:11:41:08:f3:67:06:ce:3a:5a:eb:90: 2e:a2:0c:09:1b:1f:2b:b3:24:38:18:cd:ce:59:07:89:28:96: 2d:8a:ad:2d:77:96:2f:a6:94:b9:38:88:14:84:b4:30:00:0d: 7d:40:1b:25:34:42:79:b5:4b:eb:aa:31:bd:09:80:03:72:a6: 57:30:eb:fa:fa:5b:6f:1e:e6:0f:1f:e7:7e:84:22:d6:3f:2b: 36:c8:1f:f9:30:f3:b0:2a:35:77:47:bd:f5:69:13:24:57:22: ed:7a:dd:db:76:ea:8d:a0:0b:c1:ce:9a:d3:c8:85:cb:a0:34: a5:a6:2e:cd:7b:8a:b3:8e:d9:b5:d9:56:57:b6:88:7b:45:70: 7e:b7:9d:9a -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 MTZGRjExMC8GA1UEBRMoREZDQThGREFBNUZFRjk0OEUwRUNGNkY5QzcwMzYzOUI1 NjUzOUQ5OTAeFw0yNTEwMjcwOTUwNTRaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZmY0MDdlLWRkNmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiAxdDm0XJxrhThqr7Q8DutaLq+uwsabv0aLStpfSB6CU9OWOdV7AZ0RrCRLqA mpr5G3yBvSbW2bOMXGXQRgSFDa3b+gssqJcmXGGI8qkoTGl1hvSJielCud+7F/MM PVnus7ivg4al9fDznzTOV4czRX84l1uBq3f6OQfhtN95veTLgB2CT9wSJCrqXNWP htuto0fg4gVGq/mbQlG2OzY2XSBDDTpsPPJ1CDrePgNexBDcjDDGBXst2i4q+Dtb OhB90csRuXMw81uRogSoOqI4V1BibAhYF6RPDSeRdfL3FMAM6ui/Gv8LOiVgc2pj BJDl5UFDlzhv/W0mwttxonYHAgMBAAGjggKlMIICoTAdBgNVHQ4EFgQUC7yhNSAy wX7/PLsyDngKzr/u3cAwHwYDVR0jBBgwFoAU38qP2qX++Ujg7Pb5xwNjm1ZTnZkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTUxNkZGLzJEQTU1OTEyMTQx NjExRjBBODUyMzIxOUM0RjlBRTAyLzM4cVAycVgtLVVqZzdQYjV4d05qbTFaVG5a ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMzhxUDJxWC0tVWpnN1BiNXh3TmptMVpUblprLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 MTZGRi8yREE1NTkxMjE0MTYxMUYwQTg1MjMyMTlDNEY5QUUwMi81NzJBNjU1QzZF OEUxMUYwQkMwMEFENjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAvBggrBgEFBQcBBwEB/wQg MB4wDAQCAAEwBgMEAsoopDAOBAIAAjAIAwYAJAHA4AAwDQYJKoZIhvcNAQELBQAD ggEBAESJmA5mnWhHaMKBjbJc5jgXEZdrmDw1zA3jZGOBgZxzV1YYXoV6ADiVywcR V83Qx/mmkMZYP1ASFFCfjy/mgp8wDHCq10OBr2vRZIa88rdmKlagnVvGA8TkBsFJ Gh88KW3SzY4wDZY8l8IfQ8GX4IpLfUgRQQjzZwbOOlrrkC6iDAkbHyuzJDgYzc5Z B4koli2KrS13li+mlLk4iBSEtDAADX1AGyU0Qnm1S+uqMb0JgANyplcw6/r6W28e 5g8f536EItY/KzbIH/kw87AqNXdHvfVpEyRXIu163dt26o2gC8HOmtPIhcugNKWm Ls17irOO2bXZVle2iHtFcH63nZo= -----END CERTIFICATE-----Generated at Wed Nov 5 15:05:32 2025 by rpki-client