$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/12D4E3D41AA411F0A196BA66C4F9AE02.roa File: 12D4E3D41AA411F0A196BA66C4F9AE02.roa (raw, json) Hash identifier: WqNYMWqxYNONSyEjRytn5l7aZGIUzjwjymCk0WTuD8A= Subject key identifier: E4:D4:FA:48:13:3D:D6:85:FE:3D:68:FC:E4:A9:65:1A:26:4F:6A:40 Certificate issuer: /CN=A91991D3/serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Certificate serial: 01D4 Authority key identifier: 19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/12D4E3D41AA411F0A196BA66C4F9AE02.roa Signing time: Mon 03 Nov 2025 02:17:25 +0000 ROA not before: Mon 03 Nov 2025 02:17:25 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 197537 IP address blocks: 185.254.242.0/24 maxlen: 24 213.139.232.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 02:19:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 468 (0x1d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Validity Not Before: Nov 3 02:17:25 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690810b5-d96f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:47:3f:bb:d6:33:39:30:af:a9:9a:8a:7f:89: e7:60:7f:81:75:f7:24:88:65:18:16:b5:63:01:31: 7f:d1:ec:f9:cb:d3:2d:ba:e3:0a:0e:1e:f1:95:84: f9:c9:9b:07:b5:c6:3f:f9:a7:ed:69:2c:34:5c:84: fe:80:d1:c8:de:27:74:42:eb:eb:da:c9:46:ae:12: bf:ee:c2:7a:60:da:14:ba:9d:d0:71:4f:fb:00:ca: ef:93:5a:89:46:80:a8:65:23:37:b5:9a:4a:b1:e4: 64:e4:1c:db:1f:62:68:61:ea:2d:1d:1c:32:2c:3f: b8:66:1f:e1:28:ef:38:63:9e:8a:1a:4b:06:8a:2b: 36:92:2d:fb:76:68:3c:d6:fa:9a:1b:99:ff:05:d7: c1:4c:29:66:f2:2a:03:83:96:a1:98:9d:17:ce:2c: d2:b8:20:44:fa:9e:40:ab:4d:38:5e:87:58:85:26: 4c:99:2e:b3:79:04:61:2d:ea:90:e5:e5:1b:6c:c5: cb:28:83:fd:23:c9:31:9d:6e:33:74:cd:d5:19:85: b3:25:8d:8c:22:fc:0a:15:60:ac:4f:85:62:30:af: a2:b1:a0:2c:40:3d:36:8a:e7:38:f7:77:bd:88:b2: 5f:76:b7:44:93:1e:b2:cf:c6:ef:d6:72:9c:2a:a3: ca:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:D4:FA:48:13:3D:D6:85:FE:3D:68:FC:E4:A9:65:1A:26:4F:6A:40 X509v3 Authority Key Identifier: keyid:19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/12D4E3D41AA411F0A196BA66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.254.242.0/24 213.139.232.0/24 Signature Algorithm: sha256WithRSAEncryption b1:b4:44:c0:2b:50:83:2e:70:eb:61:e9:ed:ac:15:b7:ad:58: 26:15:b4:34:5a:39:a9:4a:43:70:50:6e:c6:e9:2f:c8:3d:99: 53:9a:99:87:1e:be:42:78:7d:60:96:9c:23:34:a1:00:6c:c9: 0e:dd:6a:be:8f:5d:20:86:f9:03:99:50:73:dc:3d:63:38:2c: 87:9b:1e:d4:1b:45:5f:6a:a3:f9:3d:90:33:7b:83:f1:f0:89: 56:5b:df:22:61:a6:b9:f8:43:d2:7a:99:6d:e1:3c:f6:41:d5: 21:ba:01:29:33:23:29:b8:f2:ae:58:da:02:09:40:13:6e:01: 89:4d:15:2e:a5:8b:9c:29:83:a0:78:a7:d3:be:bc:5e:05:f9: 06:c2:89:7d:3b:97:7a:d1:8f:be:cc:b1:17:83:fc:67:8b:9b: d5:a5:a2:2a:67:1f:17:f0:d7:30:f2:77:31:ac:59:bd:4a:5b: a2:ab:db:38:06:77:9a:3d:b1:dc:ed:42:8b:21:8e:57:71:ed: a9:70:aa:5d:cc:59:6a:84:0f:ff:ff:c0:f5:95:52:24:81:bf: e4:d4:12:92:7d:94:47:56:bf:64:d6:c1:86:9f:a6:35:d8:9c: 5e:38:a4:4a:c6:96:55:5a:4d:dd:96:9e:1b:df:d4:7f:b7:2a: 36:b8:cd:bc -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDE5NTgxMzM4QTlENjNEOTVBOTZEMTcxMTYyM0UyRjY2 MEVCMEZCMTcwHhcNMjUxMTAzMDIxNzI1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MTBiNS1kOTZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Ec/u9YzOTCvqZqKf4nnYH+BdfckiGUYFrVjATF/0ez5y9MtuuMKDh7xlYT5 yZsHtcY/+aftaSw0XIT+gNHI3id0Quvr2slGrhK/7sJ6YNoUup3QcU/7AMrvk1qJ RoCoZSM3tZpKseRk5BzbH2JoYeotHRwyLD+4Zh/hKO84Y56KGksGiis2ki37dmg8 1vqaG5n/BdfBTClm8ioDg5ahmJ0XzizSuCBE+p5Aq004XodYhSZMmS6zeQRhLeqQ 5eUbbMXLKIP9I8kxnW4zdM3VGYWzJY2MIvwKFWCsT4ViMK+isaAsQD02iuc493e9 iLJfdrdEkx6yz8bv1nKcKqPKBQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOTU+kgT PdaF/j1o/OSpZRomT2pAMB8GA1UdIwQYMBaAFBlYEzip1j2VqW0XEWI+L2YOsPsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy82MjlFOEIyMDNC MjMxMUVFQTQzQjAyMTlDNEY5QUUwMi9HVmdUT0tuV1BaV3BiUmNSWWo0dlpnNnct eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0dWZ1RPS25XUFpXcGJSY1JZajR2Wmc2dy14Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDMvNjI5RThCMjAzQjIzMTFFRUE0M0IwMjE5QzRGOUFFMDIvMTJENEUzRDQx QUE0MTFGMEExOTZCQTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAC5/vIDBADVi+gwDQYJKoZIhvcNAQELBQADggEBALG0RMAr UIMucOth6e2sFbetWCYVtDRaOalKQ3BQbsbpL8g9mVOamYcevkJ4fWCWnCM0oQBs yQ7dar6PXSCG+QOZUHPcPWM4LIebHtQbRV9qo/k9kDN7g/HwiVZb3yJhprn4Q9J6 mW3hPPZB1SG6ASkzIym48q5Y2gIJQBNuAYlNFS6li5wpg6B4p9O+vF4F+QbCiX07 l3rRj77MsReD/GeLm9WloipnHxfw1zDydzGsWb1KW6Kr2zgGd5o9sdztQoshjldx 7alwql3MWWqED///wPWVUiSBv+TUEpJ9lEdWv2TWwYafpjXYnF44pErGllVaTd2W nhvf1H+3Kja4zbw= -----END CERTIFICATE-----Generated at Wed Nov 5 15:26:01 2025 by rpki-client