$ rpki-client -vvf rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/EE8CD88EEA5A11EF922B276DC4F9AE02.roa File: EE8CD88EEA5A11EF922B276DC4F9AE02.roa (raw, json) Hash identifier: NgoL1gjr88ZdEn/6hgZXntqKOlCBVmw0eMD59yFjWlQ= Subject key identifier: E1:E1:B7:C7:31:57:EF:5C:66:BB:F7:F1:5D:FE:61:3F:33:47:E1:7A Certificate issuer: /CN=A91A91CB/serialNumber=56520FA1D76E95F0819B6DDD4967B4550469869D Certificate serial: 02 Authority key identifier: 56:52:0F:A1:D7:6E:95:F0:81:9B:6D:DD:49:67:B4:55:04:69:86:9D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/EE8CD88EEA5A11EF922B276DC4F9AE02.roa Signing time: Thu 13 Feb 2025 22:36:14 +0000 ROA not before: Thu 13 Feb 2025 22:36:14 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 7575 IP address blocks: 160.250.232.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.crl rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:37:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A91CB, serialNumber=56520FA1D76E95F0819B6DDD4967B4550469869D Validity Not Before: Feb 13 22:36:14 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67ae73de-ca29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:53:4e:8d:86:58:0e:da:c0:09:82:e2:fc:49: 9f:ec:c5:92:a3:07:f5:1c:09:1b:bc:06:0a:5f:e0: 15:97:73:c5:0c:8d:4d:e3:5e:71:b5:12:82:7b:be: 5f:88:c3:04:9e:c6:88:90:4e:c5:81:ce:ad:2a:eb: e2:41:18:5d:7d:8b:80:58:c7:37:b2:93:93:27:13: 0c:ce:2f:63:b9:53:06:d4:88:bb:16:52:e8:51:95: 23:23:8b:08:70:ec:f6:99:04:d4:5b:fa:c5:02:f7: 62:72:7b:be:04:55:ad:79:fc:91:fc:f7:ac:e5:a4: bc:74:fa:6c:fe:19:f3:b1:0a:e2:a9:d3:08:46:48: e1:c6:31:d7:7f:8b:d4:00:57:c5:c8:56:19:9d:f1: 99:e5:b5:55:3a:bd:d7:2f:bc:78:01:05:7a:ca:eb: e2:8b:b0:e6:41:d1:47:98:ac:e1:68:0e:9e:12:98: 52:11:d8:b8:3a:a4:c7:b9:e9:6e:04:7c:4d:e7:45: a7:c7:88:c4:5f:03:62:20:5e:b3:a4:4b:de:81:06: e4:0f:1f:fd:c6:49:91:3e:0e:1d:52:21:5f:73:f1: 16:7b:f8:14:91:e2:ee:ed:63:68:a5:4f:98:2b:47: 13:eb:0c:79:6e:3c:a2:a5:d6:7d:da:48:bf:41:2f: a5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:E1:B7:C7:31:57:EF:5C:66:BB:F7:F1:5D:FE:61:3F:33:47:E1:7A X509v3 Authority Key Identifier: keyid:56:52:0F:A1:D7:6E:95:F0:81:9B:6D:DD:49:67:B4:55:04:69:86:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/VlIPoddulfCBm23dSWe0VQRphp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/VlIPoddulfCBm23dSWe0VQRphp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A91CB/5B6FA360EA5A11EFB84AE468C4F9AE02/EE8CD88EEA5A11EF922B276DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.250.232.0/23 Signature Algorithm: sha256WithRSAEncryption 27:42:b9:e1:e7:d3:7b:bf:71:88:0c:43:63:e5:b1:da:0f:69: 2d:1a:d7:5d:fe:d5:68:66:63:b5:8f:ba:24:33:af:c1:14:61: 5f:09:22:61:af:4c:56:4f:d8:ce:c7:b6:29:19:d8:e4:c2:ee: 0b:3f:72:a0:d3:52:16:b7:2d:85:7b:c9:24:d4:bf:b6:81:a5: 8c:e4:59:28:1c:ba:90:08:6b:b3:9e:ff:a6:e5:83:2b:ea:6d: b6:d1:6e:81:20:2a:0b:cc:32:85:0c:13:5d:d3:22:c0:de:c7: c9:8b:c6:9a:fc:f1:e2:ff:79:59:fa:85:24:1c:c7:e1:56:8d: 15:f2:d5:3e:95:0e:10:ed:9e:2a:04:12:e1:bb:43:91:36:b7: d9:01:99:2d:c1:e7:a3:5b:20:07:ec:bc:6e:0e:c2:be:8a:fe: 1c:00:2f:0b:d4:66:d4:48:39:29:2a:4d:7b:71:d3:9b:39:4d: 27:a8:8a:68:4a:2e:3e:ed:06:2f:3c:88:ce:da:de:d3:eb:c7: 88:87:c7:b3:ba:ed:37:c5:b6:2f:25:ed:15:9f:f1:ae:06:76: dc:da:bd:5d:68:ca:fa:ee:ed:00:d9:ca:36:77:22:30:db:86: a2:5e:31:2a:fb:78:45:ec:58:17:64:29:ac:aa:49:60:a8:77: 2b:dd:10:d8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTFDQjExMC8GA1UEBRMoNTY1MjBGQTFENzZFOTVGMDgxOUI2RERENDk2N0I0NTUw NDY5ODY5RDAeFw0yNTAyMTMyMjM2MTRaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YWU3M2RlLWNhMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCxU06NhlgO2sAJguL8SZ/sxZKjB/UcCRu8Bgpf4BWXc8UMjU3jXnG1EoJ7vl+I wwSexoiQTsWBzq0q6+JBGF19i4BYxzeyk5MnEwzOL2O5UwbUiLsWUuhRlSMjiwhw 7PaZBNRb+sUC92Jye74EVa15/JH896zlpLx0+mz+GfOxCuKp0whGSOHGMdd/i9QA V8XIVhmd8ZnltVU6vdcvvHgBBXrK6+KLsOZB0UeYrOFoDp4SmFIR2Lg6pMe56W4E fE3nRafHiMRfA2IgXrOkS96BBuQPH/3GSZE+Dh1SIV9z8RZ7+BSR4u7tY2ilT5gr RxPrDHluPKKl1n3aSL9BL6VdAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU4eG3xzFX 71xmu/fxXf5hPzNH4XowHwYDVR0jBBgwFoAUVlIPoddulfCBm23dSWe0VQRphp0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MUNCLzVCNkZBMzYwRUE1 QTExRUZCODRBRTQ2OEM0RjlBRTAyL1ZsSVBvZGR1bGZDQm0yM2RTV2UwVlFScGhw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVmxJUG9kZHVsZkNCbTIzZFNXZTBWUVJwaHAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTFDQi81QjZGQTM2MEVBNUExMUVGQjg0QUU0NjhDNEY5QUUwMi9FRThDRDg4RUVB NUExMUVGOTIyQjI3NkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaD66DANBgkqhkiG9w0BAQsFAAOCAQEAJ0K54efTe79xiAxD Y+Wx2g9pLRrXXf7VaGZjtY+6JDOvwRRhXwkiYa9MVk/Yzse2KRnY5MLuCz9yoNNS FrcthXvJJNS/toGljORZKBy6kAhrs57/puWDK+ptttFugSAqC8wyhQwTXdMiwN7H yYvGmvzx4v95WfqFJBzH4VaNFfLVPpUOEO2eKgQS4btDkTa32QGZLcHno1sgB+y8 bg7Cvor+HAAvC9Rm1Eg5KSpNe3HTmzlNJ6iKaEouPu0GLzyIztre0+vHiIfHs7rt N8W2LyXtFZ/xrgZ23Nq9XWjK+u7tANnKNnciMNuGol4xKvt4RexYF2QprKpJYKh3 K90Q2A== -----END CERTIFICATE-----Generated at Wed Nov 5 05:15:10 2025 by rpki-client