$ rpki-client -vvf rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/1F388278205F11F0A895DE1EC4F9AE02.roa File: 1F388278205F11F0A895DE1EC4F9AE02.roa (raw, json) Hash identifier: ksbPiEON/rfN+9KcAeESjlw0pDzn0uwDVByAkHoOZ5I= Subject key identifier: DF:FB:22:98:57:E6:5B:BA:21:B6:24:4E:1D:E0:BB:59:59:E9:14:DD Certificate issuer: /CN=A91991D3/serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Certificate serial: 01D7 Authority key identifier: 19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/1F388278205F11F0A895DE1EC4F9AE02.roa Signing time: Mon 03 Nov 2025 02:17:28 +0000 ROA not before: Mon 03 Nov 2025 02:17:28 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 40605 IP address blocks: 185.254.242.0/24 maxlen: 24 185.254.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:17:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 471 (0x1d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91991D3, serialNumber=19581338A9D63D95A96D1711623E2F660EB0FB17 Validity Not Before: Nov 3 02:17:28 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=690810b8-2343 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f0:d1:5f:95:d3:15:b4:18:82:4a:ef:67:1b: 0b:03:e5:69:c3:45:69:79:07:a4:30:12:b6:87:e2: 81:83:fc:ca:d9:97:cd:aa:dd:f9:f8:42:bb:85:54: 36:43:35:8a:24:78:dc:dc:4a:a9:73:51:62:41:68: 50:4e:a2:67:fc:6e:de:32:19:d0:7a:11:8e:bb:c5: 52:f9:02:5e:91:ae:ff:f6:42:b1:b4:78:82:c4:b2: 1e:04:f5:19:f5:91:ad:52:17:7a:44:da:60:ed:a8: 21:9b:3a:e4:d7:86:92:29:2c:5e:d2:d4:bf:0b:5d: 56:65:0d:10:20:0f:f8:c0:26:b2:91:e0:a2:a1:e4: 72:6d:7b:8b:8d:11:4a:c2:c6:c6:9e:15:93:67:cb: 4a:3b:62:69:08:4b:bd:dc:ec:78:ff:dd:cb:3c:3d: f6:fd:f6:38:6f:77:da:0b:ff:05:0a:4b:7d:4f:a2: 7f:0b:04:0b:09:89:21:42:8f:8a:61:f5:8f:c0:37: 69:11:44:dd:b2:ba:b9:ea:7d:32:22:92:f4:d5:06: e3:be:0d:90:f6:f8:bc:a5:a0:0e:80:72:a0:2b:0e: b7:a8:9e:fb:40:15:98:25:e8:af:8f:46:5f:64:26: 99:20:de:bd:59:b2:6c:bd:60:e2:7f:26:db:f6:6e: 71:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:FB:22:98:57:E6:5B:BA:21:B6:24:4E:1D:E0:BB:59:59:E9:14:DD X509v3 Authority Key Identifier: keyid:19:58:13:38:A9:D6:3D:95:A9:6D:17:11:62:3E:2F:66:0E:B0:FB:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/GVgTOKnWPZWpbRcRYj4vZg6w-xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GVgTOKnWPZWpbRcRYj4vZg6w-xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91991D3/629E8B203B2311EEA43B0219C4F9AE02/1F388278205F11F0A895DE1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.254.242.0/23 Signature Algorithm: sha256WithRSAEncryption c7:d0:b2:27:f2:52:10:72:6d:4c:3e:90:88:c3:99:61:c3:93: 87:ea:49:a3:76:54:ba:e3:2b:e9:bc:0c:aa:8e:e7:f8:90:0d: 7d:bf:50:2c:40:4e:a9:aa:37:5b:dc:53:ae:34:6e:9d:91:55: 1c:83:b8:8c:09:2e:31:40:f0:da:4e:55:e1:f8:8a:ba:95:77: d3:8d:d3:28:2d:76:7d:21:5c:7e:f1:e4:ff:6b:e4:9c:3e:59: 48:7e:1f:0c:b1:da:2c:7d:7c:2f:4d:6c:46:e2:b0:0a:54:ba: c2:72:66:5c:63:77:25:f2:e6:86:c6:3d:83:7d:54:ba:18:5f: 5a:8f:7b:8c:db:f0:bc:46:2e:d6:64:4d:07:0d:d1:2e:73:99: 88:c8:67:3e:4d:b9:8b:a4:84:b9:51:54:09:11:79:3f:80:e5: e6:f8:84:54:25:8e:fd:37:ae:e8:ea:bc:09:a5:44:b7:f8:4a: 06:a2:1e:7e:0b:7a:14:70:5a:8d:0d:a6:82:05:53:7f:ad:95: 3b:36:77:49:84:79:37:55:56:50:32:17:12:11:5b:c2:91:bb: 9e:3d:0a:b3:b5:1d:20:53:c0:b1:ac:09:80:e7:1d:02:3d:a3: 7f:fd:e3:07:cc:ab:76:2d:84:16:c8:1d:33:85:b3:a2:89:c5: 01:89:01:f0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAdcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkxRDMxMTAvBgNVBAUTKDE5NTgxMzM4QTlENjNEOTVBOTZEMTcxMTYyM0UyRjY2 MEVCMEZCMTcwHhcNMjUxMTAzMDIxNzI4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MTBiOC0yMzQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvDRX5XTFbQYgkrvZxsLA+Vpw0VpeQekMBK2h+KBg/zK2ZfNqt35+EK7hVQ2 QzWKJHjc3Eqpc1FiQWhQTqJn/G7eMhnQehGOu8VS+QJeka7/9kKxtHiCxLIeBPUZ 9ZGtUhd6RNpg7aghmzrk14aSKSxe0tS/C11WZQ0QIA/4wCaykeCioeRybXuLjRFK wsbGnhWTZ8tKO2JpCEu93Ox4/93LPD32/fY4b3faC/8FCkt9T6J/CwQLCYkhQo+K YfWPwDdpEUTdsrq56n0yIpL01Qbjvg2Q9vi8paAOgHKgKw63qJ77QBWYJeivj0Zf ZCaZIN69WbJsvWDifybb9m5xDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFN/7IphX 5lu6IbYkTh3gu1lZ6RTdMB8GA1UdIwQYMBaAFBlYEzip1j2VqW0XEWI+L2YOsPsX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTFEMy82MjlFOEIyMDNC MjMxMUVFQTQzQjAyMTlDNEY5QUUwMi9HVmdUT0tuV1BaV3BiUmNSWWo0dlpnNnct eGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0dWZ1RPS25XUFpXcGJSY1JZajR2Wmc2dy14Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkxRDMvNjI5RThCMjAzQjIzMTFFRUE0M0IwMjE5QzRGOUFFMDIvMUYzODgyNzgy MDVGMTFGMEE4OTVERTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAG5/vIwDQYJKoZIhvcNAQELBQADggEBAMfQsifyUhBybUw+ kIjDmWHDk4fqSaN2VLrjK+m8DKqO5/iQDX2/UCxATqmqN1vcU640bp2RVRyDuIwJ LjFA8NpOVeH4irqVd9ON0ygtdn0hXH7x5P9r5Jw+WUh+Hwyx2ix9fC9NbEbisApU usJyZlxjdyXy5obGPYN9VLoYX1qPe4zb8LxGLtZkTQcN0S5zmYjIZz5NuYukhLlR VAkReT+A5eb4hFQljv03rujqvAmlRLf4SgaiHn4LehRwWo0NpoIFU3+tlTs2d0mE eTdVVlAyFxIRW8KRu549CrO1HSBTwLGsCYDnHQI9o3/94wfMq3YthBbIHTOFs6KJ xQGJAfA= -----END CERTIFICATE-----Generated at Tue Nov 4 17:01:46 2025 by rpki-client