$ rpki-client -vvf rpki.apnic.net/member_repository/A91A05BF/18136D8AB3B411F0B6917F0EC4F9AE02/5FC8CD04B3B511F0BF1A0B54C4F9AE02.roa File: 5FC8CD04B3B511F0BF1A0B54C4F9AE02.roa (raw, json) Hash identifier: NcL+J1oXA1oh3xoPJMoQRrIZs5vXjNVk2410Ro/0xzs= Subject key identifier: 4F:63:9E:71:E8:D5:04:7A:1B:2D:F0:19:E8:9B:5D:76:C3:7C:CF:25 Certificate issuer: /CN=A91A05BF/serialNumber=E3E0017568E8871F4E8879B1062AAED72C34F23A Certificate serial: 05 Authority key identifier: E3:E0:01:75:68:E8:87:1F:4E:88:79:B1:06:2A:AE:D7:2C:34:F2:3A Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4-ABdWjohx9OiHmxBiqu1yw08jo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A05BF/18136D8AB3B411F0B6917F0EC4F9AE02/5FC8CD04B3B511F0BF1A0B54C4F9AE02.roa Signing time: Tue 28 Oct 2025 04:20:45 +0000 ROA not before: Tue 28 Oct 2025 04:20:45 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 152565 IP address blocks: 138.252.100.0/23 maxlen: 23 138.252.100.0/24 maxlen: 24 138.252.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A05BF/18136D8AB3B411F0B6917F0EC4F9AE02/4-ABdWjohx9OiHmxBiqu1yw08jo.crl rsync://rpki.apnic.net/member_repository/A91A05BF/18136D8AB3B411F0B6917F0EC4F9AE02/4-ABdWjohx9OiHmxBiqu1yw08jo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4-ABdWjohx9OiHmxBiqu1yw08jo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 08:03:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A05BF, serialNumber=E3E0017568E8871F4E8879B1062AAED72C34F23A Validity Not Before: Oct 28 04:20:45 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=6900449c-1188 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:bb:65:4e:1f:b1:63:92:4f:1a:c7:e3:b3:4f: e5:8d:69:51:ab:59:19:07:14:c3:b3:e8:0a:1a:c6: d7:43:4a:1f:65:a9:12:44:cb:b1:a7:80:da:c6:31: 0b:ee:82:3c:0c:36:c3:47:d4:b1:b2:18:f3:ea:0a: 88:5f:0e:e8:c0:33:c2:ce:ac:a3:37:06:f3:22:1a: 2c:78:2f:88:2c:ce:cb:fc:2f:2f:92:db:4d:f9:19: 33:62:57:7a:ef:09:18:70:d0:29:4d:7c:57:d8:02: ca:79:12:0c:e3:b5:2d:d6:5f:21:08:49:53:62:34: 41:63:9d:30:20:5f:1f:85:4f:1c:7a:99:17:77:46: 96:01:90:e2:a4:b0:98:f6:d7:ac:ea:08:85:95:78: 3b:df:8b:ba:5d:71:a2:d0:78:f6:66:e3:19:1c:ed: cf:20:b4:3e:03:32:7d:17:7b:fd:e6:3c:fb:f7:d0: ea:63:f7:82:56:ad:00:ad:02:47:1c:dc:12:c9:89: 71:11:dd:42:92:b3:b7:e0:cf:30:e4:02:36:f7:54: 2b:49:7f:68:96:98:d2:d4:99:34:f5:da:e3:28:56: a7:cf:8e:1a:e9:f2:2f:09:56:0a:c5:64:76:f2:e2: c3:66:75:a3:bc:a4:c6:76:de:0f:dd:4d:9a:c2:95: ce:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:63:9E:71:E8:D5:04:7A:1B:2D:F0:19:E8:9B:5D:76:C3:7C:CF:25 X509v3 Authority Key Identifier: keyid:E3:E0:01:75:68:E8:87:1F:4E:88:79:B1:06:2A:AE:D7:2C:34:F2:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A05BF/18136D8AB3B411F0B6917F0EC4F9AE02/4-ABdWjohx9OiHmxBiqu1yw08jo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/4-ABdWjohx9OiHmxBiqu1yw08jo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A05BF/18136D8AB3B411F0B6917F0EC4F9AE02/5FC8CD04B3B511F0BF1A0B54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.100.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:a9:e3:4c:3b:47:c2:13:0d:96:96:57:c8:c6:c5:66:8a:89: bf:ed:63:c1:82:78:8b:ad:73:50:6e:6d:69:90:f5:c8:e9:04: 4a:7a:21:64:1f:75:14:8a:a1:1f:f2:c3:6d:fc:7d:c9:4f:5a: 23:4c:dd:bd:29:f2:cc:59:10:aa:40:85:96:9e:f4:9f:26:cf: e2:db:02:b8:c3:4e:ad:07:6d:66:a0:7a:58:40:fe:4e:e0:03: ad:c7:3b:4f:01:42:78:23:be:e4:03:4a:27:02:29:38:be:08: 55:ee:0a:27:35:f8:32:8e:33:67:41:b4:a5:49:3d:47:67:e0: e6:58:92:a5:26:67:2a:f5:da:eb:d0:e9:51:b3:c6:2f:98:87: ff:01:ea:d3:54:44:d3:4d:df:1f:8c:05:9f:54:c8:61:14:ac: 58:34:98:c4:4a:8f:6b:20:72:0d:09:83:41:59:fe:07:3b:2a: 5f:c3:b2:62:bb:77:45:7e:f1:23:71:d0:05:eb:fc:5e:ff:72: 06:d6:86:68:cd:a1:9f:d3:9e:39:9b:7d:b3:c9:fb:14:6b:c6: 33:85:3d:30:c5:30:08:a2:a7:29:de:44:4a:3d:20:6a:0a:84: 16:f6:f8:e3:8e:9f:0c:4a:02:f8:1e:4d:47:c4:c9:40:16:40: f0:5a:ea:db -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MDVCRjExMC8GA1UEBRMoRTNFMDAxNzU2OEU4ODcxRjRFODg3OUIxMDYyQUFFRDcy QzM0RjIzQTAeFw0yNTEwMjgwNDIwNDVaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MDA0NDljLTExODgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCeu2VOH7Fjkk8ax+OzT+WNaVGrWRkHFMOz6AoaxtdDSh9lqRJEy7GngNrGMQvu gjwMNsNH1LGyGPPqCohfDujAM8LOrKM3BvMiGix4L4gszsv8Ly+S2035GTNiV3rv CRhw0ClNfFfYAsp5EgzjtS3WXyEISVNiNEFjnTAgXx+FTxx6mRd3RpYBkOKksJj2 16zqCIWVeDvfi7pdcaLQePZm4xkc7c8gtD4DMn0Xe/3mPPv30Opj94JWrQCtAkcc 3BLJiXER3UKSs7fgzzDkAjb3VCtJf2iWmNLUmTT12uMoVqfPjhrp8i8JVgrFZHby 4sNmdaO8pMZ23g/dTZrClc4VAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUT2OecejV BHobLfAZ6JtddsN8zyUwHwYDVR0jBBgwFoAU4+ABdWjohx9OiHmxBiqu1yw08jow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEwNUJGLzE4MTM2RDhBQjNC NDExRjBCNjkxN0YwRUM0RjlBRTAyLzQtQUJkV2pvaHg5T2lIbXhCaXF1MXl3MDhq by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNC1BQmRXam9oeDlPaUhteEJpcXUxeXcwOGpvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MDVCRi8xODEzNkQ4QUIzQjQxMUYwQjY5MTdGMEVDNEY5QUUwMi81RkM4Q0QwNEIz QjUxMUYwQkYxQTBCNTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAYr8ZDANBgkqhkiG9w0BAQsFAAOCAQEAH6njTDtHwhMNlpZX yMbFZoqJv+1jwYJ4i61zUG5taZD1yOkESnohZB91FIqhH/LDbfx9yU9aI0zdvSny zFkQqkCFlp70nybP4tsCuMNOrQdtZqB6WED+TuADrcc7TwFCeCO+5ANKJwIpOL4I Ve4KJzX4Mo4zZ0G0pUk9R2fg5liSpSZnKvXa69DpUbPGL5iH/wHq01RE003fH4wF n1TIYRSsWDSYxEqPayByDQmDQVn+BzsqX8OyYrt3RX7xI3HQBev8Xv9yBtaGaM2h n9OeOZt9s8n7FGvGM4U9MMUwCKKnKd5ESj0gagqEFvb4446fDEoC+B5NR8TJQBZA 8Frq2w== -----END CERTIFICATE-----Generated at Wed Nov 5 04:24:43 2025 by rpki-client