$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/FAF25932427711EEBEA02D22C4F9AE02.roa File: FAF25932427711EEBEA02D22C4F9AE02.roa (raw, json) Hash identifier: va72E7xgUhipybtVeUXFFu66WOtMudWBDnK3BZLcOzk= Subject key identifier: 4F:9C:BD:3E:33:83:0E:AA:73:64:55:9E:D6:34:C6:30:B8:F0:1D:8D Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 36B9 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/FAF25932427711EEBEA02D22C4F9AE02.roa Signing time: Sat 22 Mar 2025 15:00:59 +0000 ROA not before: Sat 22 Mar 2025 15:00:59 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138368 IP address blocks: 119.156.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14009 (0x36b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Mar 22 15:00:59 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ded0ab-31ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7f:21:1e:f5:e2:bf:6f:bb:3e:24:fb:90:2e: a1:02:19:70:63:aa:c7:64:84:a2:88:ae:38:27:9d: d5:90:20:38:03:7a:51:36:61:83:31:86:ad:0a:b8: 53:54:19:e1:c5:98:12:c4:d3:75:bc:a2:f9:db:43: b1:ad:ec:c9:09:95:a0:3d:27:13:86:73:2f:dd:ac: 33:9e:3d:1f:ef:93:6e:65:e3:3f:ce:ee:88:41:f4: 15:64:2d:43:0d:98:5f:de:91:9c:30:c8:c7:71:b5: 50:3b:16:95:3b:34:b6:f2:e0:7b:50:ad:c1:c9:b7: 06:33:6c:ea:27:ad:77:5e:7c:b0:dd:ab:5c:c4:72: ea:fa:95:b5:86:7c:28:bd:8b:fb:cb:df:31:2e:ce: b3:ff:0e:91:e0:8c:24:c1:63:e4:80:c9:20:3d:e7: 92:74:2e:37:bd:3d:4e:9e:74:6e:80:11:ec:fc:ca: ca:4e:90:a4:21:b6:1c:92:5f:e5:76:63:b5:6c:90: 27:f1:36:d8:4a:d4:df:a7:04:bc:4d:1a:58:90:9c: 80:55:8f:a0:8e:e5:05:e3:d2:aa:34:d1:c0:3f:37: 8f:5d:7c:c5:5b:7d:8f:11:6b:73:7b:b0:c1:e3:4a: 40:2c:de:66:01:0e:2f:ec:bc:1f:80:03:a0:cf:34: 0a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:9C:BD:3E:33:83:0E:AA:73:64:55:9E:D6:34:C6:30:B8:F0:1D:8D X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/FAF25932427711EEBEA02D22C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.156.228.0/24 Signature Algorithm: sha256WithRSAEncryption 34:b1:b5:e6:90:dd:82:1a:75:ba:71:e1:08:30:ee:52:de:e0: 88:51:be:49:a3:03:c6:9a:28:e5:46:9a:f7:6c:bb:c5:e9:2f: 28:ef:a2:bb:1d:19:7d:7c:bc:1e:56:25:fe:60:4a:2b:73:7a: 78:27:c1:82:0e:17:43:ac:0f:6b:78:72:48:1f:64:2f:8a:4e: 45:63:1b:e3:84:e4:92:e3:bd:1e:fa:30:9f:3c:6c:51:f6:f3: 69:6c:c6:2a:bd:79:39:39:33:c3:de:27:92:02:2a:50:a9:c5: 29:41:49:72:49:3c:fc:a4:9e:98:8d:d8:af:20:09:92:2b:49: 23:f2:b8:3f:39:3e:9a:e8:a7:b8:7e:7d:91:81:87:04:21:7c: 0e:32:14:a9:e7:b2:f9:5b:ca:bf:c9:5e:62:d3:16:5b:94:21: 30:3f:6f:6e:74:a4:c9:8a:e7:84:46:84:6d:dd:97:b1:93:0a: fc:27:84:71:5e:06:ed:b9:a9:de:62:2f:6e:b6:41:a4:2c:b6: c3:55:a0:82:ee:61:cc:85:0b:58:55:fa:92:b4:f2:a9:f9:92: ab:95:4e:48:75:6f:6e:78:a9:bf:29:70:8e:75:ef:eb:c7:ad: ea:74:cc:6e:4c:65:dc:0c:c7:7f:94:69:ef:e7:42:73:91:7f: 1f:ff:9d:38 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNrkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzIyMTUwMDU5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RlZDBhYi0zMWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyH8hHvXiv2+7PiT7kC6hAhlwY6rHZISiiK44J53VkCA4A3pRNmGDMYatCrhT VBnhxZgSxNN1vKL520OxrezJCZWgPScThnMv3awznj0f75NuZeM/zu6IQfQVZC1D DZhf3pGcMMjHcbVQOxaVOzS28uB7UK3BybcGM2zqJ613Xnyw3atcxHLq+pW1hnwo vYv7y98xLs6z/w6R4IwkwWPkgMkgPeeSdC43vT1OnnRugBHs/MrKTpCkIbYckl/l dmO1bJAn8TbYStTfpwS8TRpYkJyAVY+gjuUF49KqNNHAPzePXXzFW32PEWtze7DB 40pALN5mAQ4v7LwfgAOgzzQK/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFE+cvT4z gw6qc2RVntY0xjC48B2NMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvRkFGMjU5MzI0 Mjc3MTFFRUJFQTAyRDIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB3nOQwDQYJKoZIhvcNAQELBQADggEBADSxteaQ3YIadbpx 4Qgw7lLe4IhRvkmjA8aaKOVGmvdsu8XpLyjvorsdGX18vB5WJf5gSitzengnwYIO F0OsD2t4ckgfZC+KTkVjG+OE5JLjvR76MJ88bFH282lsxiq9eTk5M8PeJ5ICKlCp xSlBSXJJPPyknpiN2K8gCZIrSSPyuD85Pprop7h+fZGBhwQhfA4yFKnnsvlbyr/J XmLTFluUITA/b250pMmK54RGhG3dl7GTCvwnhHFeBu25qd5iL262QaQstsNVoILu YcyFC1hV+pK08qn5kquVTkh1b254qb8pcI517+vHrep0zG5MZdwMx3+Uae/nQnOR fx//nTg= -----END CERTIFICATE-----Generated at Wed Nov 5 11:46:48 2025 by rpki-client