$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/EA1E8B8A51C711EE9A3CC954C4F9AE02.roa File: EA1E8B8A51C711EE9A3CC954C4F9AE02.roa (raw, json) Hash identifier: cnJwqqHN4riyku3tEiuuHhIwq5tVnDToY1WIzgvW2u4= Subject key identifier: B0:5A:2A:6E:29:77:DB:07:15:A1:F6:79:63:D0:C6:D0:6F:76:12:38 Certificate issuer: /CN=A91AA5C6/serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Certificate serial: 01A9 Authority key identifier: 3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/EA1E8B8A51C711EE9A3CC954C4F9AE02.roa Signing time: Mon 03 Nov 2025 03:47:53 +0000 ROA not before: Mon 03 Nov 2025 03:47:53 +0000 ROA not after: Sun 01 Mar 2026 00:00:00 +0000 asID: 19905 IP address blocks: 58.28.0.0/16 maxlen: 16 118.90.0.0/16 maxlen: 16 182.154.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:47:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 425 (0x1a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA5C6, serialNumber=3D47E6687BB4DF40C51B03A4559C10CA22F6772F Validity Not Before: Nov 3 03:47:53 2025 GMT Not After : Mar 1 00:00:00 2026 GMT Subject: CN=690825e9-cfd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4f:11:c2:a2:f2:6c:4b:de:92:6d:e3:a0:9f: 28:3f:2d:05:89:75:28:1a:77:04:85:0b:86:14:83: 0c:1f:b5:47:91:b8:2b:af:43:52:82:32:41:54:9b: 70:7e:4d:02:15:d3:ef:30:6f:b4:81:63:85:b3:0f: 31:23:06:57:05:e3:99:20:33:73:af:da:7c:41:bd: a3:fe:98:98:cf:39:fd:cc:01:96:a8:2f:1f:5c:6e: f7:cc:56:0b:4c:28:26:09:5a:66:ab:30:15:a0:53: d5:4d:7e:ae:b2:20:5b:4d:a2:fb:d6:1d:93:16:35: fa:ed:ab:ab:35:71:b6:24:b4:63:7b:43:52:0b:96: 0e:35:f7:b7:fd:9e:d4:98:f1:f1:0f:cb:f0:92:93: dc:eb:b0:50:a3:64:29:44:95:a0:a2:c2:02:1c:91: 50:5c:3d:35:3e:90:90:96:bd:5b:f2:d7:07:51:92: 24:51:a8:65:db:5d:14:0b:c4:29:44:27:72:43:b1: bc:7d:66:90:48:9a:ab:05:26:b7:01:d5:a5:2c:4a: 61:eb:bf:d2:5d:22:f2:c3:cb:af:3d:38:c9:bf:5f: 85:f4:cf:02:8f:de:be:d3:f0:92:8a:ce:b5:9e:7e: 8a:8d:aa:e2:a8:44:2e:be:1c:8a:f4:e7:d3:05:18: 8d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:5A:2A:6E:29:77:DB:07:15:A1:F6:79:63:D0:C6:D0:6F:76:12:38 X509v3 Authority Key Identifier: keyid:3D:47:E6:68:7B:B4:DF:40:C5:1B:03:A4:55:9C:10:CA:22:F6:77:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/PUfmaHu030DFGwOkVZwQyiL2dy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PUfmaHu030DFGwOkVZwQyiL2dy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA5C6/D55519B44C3411EEAEEDA22CC4F9AE02/EA1E8B8A51C711EE9A3CC954C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.28.0.0/16 118.90.0.0/16 182.154.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5e:87:73:fb:62:47:71:40:f5:c8:9f:8d:f3:07:f3:0b:fd:85: 2b:14:43:e8:e1:6f:66:d4:e1:4a:a6:f6:22:b7:0e:46:2c:9b: 3f:37:5f:c4:7f:5c:8a:0a:b9:aa:0d:26:eb:08:d7:4b:4e:e1: 7e:f9:af:70:bc:e1:85:73:a4:2b:52:2b:f2:88:af:f1:5f:d9: 6c:2e:e7:2a:5a:00:61:04:69:4b:75:d7:75:00:33:ab:80:dd: 62:67:77:53:e4:47:85:f0:e0:30:18:e3:e7:36:a7:e5:56:7d: 53:f5:d9:ad:a2:d7:75:a4:31:e1:2e:d2:ca:3b:1a:00:14:fb: ed:64:c4:f2:5d:b9:dd:25:ba:f1:61:a2:b3:f3:6a:11:29:8c: 7c:e4:38:38:11:c0:e7:43:5d:24:01:a7:3b:7c:0c:ae:ee:1a: 6f:9c:47:a0:ca:ed:d7:76:91:eb:c3:93:16:4c:e4:af:c7:b7: b9:4a:a2:ab:f1:6b:9b:6c:f4:b7:82:78:06:1b:b0:49:9d:6e: c3:07:fa:6c:94:77:04:a8:a7:af:75:a8:ea:9f:1a:42:e2:b4: 90:7a:b4:3b:de:c7:80:68:bc:b5:e8:15:31:92:08:e1:0d:7a: a7:14:c0:47:fa:32:e7:57:7d:76:43:86:40:ed:7e:2c:0b:df: 18:d8:35:c3 -----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgICAakwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE1QzYxMTAvBgNVBAUTKDNENDdFNjY4N0JCNERGNDBDNTFCMDNBNDU1OUMxMENB MjJGNjc3MkYwHhcNMjUxMTAzMDM0NzUzWhcNMjYwMzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA4MjVlOS1jZmQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw08RwqLybEvekm3joJ8oPy0FiXUoGncEhQuGFIMMH7VHkbgrr0NSgjJBVJtw fk0CFdPvMG+0gWOFsw8xIwZXBeOZIDNzr9p8Qb2j/piYzzn9zAGWqC8fXG73zFYL TCgmCVpmqzAVoFPVTX6usiBbTaL71h2TFjX67aurNXG2JLRje0NSC5YONfe3/Z7U mPHxD8vwkpPc67BQo2QpRJWgosICHJFQXD01PpCQlr1b8tcHUZIkUahl210UC8Qp RCdyQ7G8fWaQSJqrBSa3AdWlLEph67/SXSLyw8uvPTjJv1+F9M8Cj96+0/CSis61 nn6KjariqEQuvhyK9OfTBRiNWwIDAQABo4ICnjCCApowHQYDVR0OBBYEFLBaKm4p d9sHFaH2eWPQxtBvdhI4MB8GA1UdIwQYMBaAFD1H5mh7tN9AxRsDpFWcEMoi9ncv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTVDNi9ENTU1MTlCNDRD MzQxMUVFQUVFREEyMkNDNEY5QUUwMi9QVWZtYUh1MDMwREZHd09rVlp3UXlpTDJk eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BVZm1hSHUwMzBERkd3T2tWWndReWlMMmR5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUE1QzYvRDU1NTE5QjQ0QzM0MTFFRUFFRURBMjJDQzRGOUFFMDIvRUExRThCOEE1 MUM3MTFFRTlBM0NDOTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKAYIKwYBBQUHAQcBAf8E GTAXMBUEAgABMA8DAwA6HAMDAHZaAwMAtpowDQYJKoZIhvcNAQELBQADggEBAF6H c/tiR3FA9cifjfMH8wv9hSsUQ+jhb2bU4Uqm9iK3DkYsmz83X8R/XIoKuaoNJusI 10tO4X75r3C84YVzpCtSK/KIr/Ff2Wwu5ypaAGEEaUt113UAM6uA3WJnd1PkR4Xw 4DAY4+c2p+VWfVP12a2i13WkMeEu0so7GgAU++1kxPJdud0luvFhorPzahEpjHzk ODgRwOdDXSQBpzt8DK7uGm+cR6DK7dd2kevDkxZM5K/Ht7lKoqvxa5ts9LeCeAYb sEmdbsMH+myUdwSop691qOqfGkLitJB6tDvex4BovLXoFTGSCOENeqcUwEf6MudX fXZDhkDtfiwL3xjYNcM= -----END CERTIFICATE-----Generated at Tue Nov 4 17:01:56 2025 by rpki-client