$ rpki-client -vvf rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/DDDE222CAFBC11F093F1F45DC4F9AE02.roa File: DDDE222CAFBC11F093F1F45DC4F9AE02.roa (raw, json) Hash identifier: gkyZkv6joIA/6cOHnVZYXkGT6FHLqe46MEB12tcCUDE= Subject key identifier: 7C:A8:1C:60:07:74:6E:6C:44:0F:2C:4D:65:51:7F:5A:5D:23:DB:C5 Certificate issuer: /CN=A91B13FE/serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Certificate serial: 4C Authority key identifier: 52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/DDDE222CAFBC11F093F1F45DC4F9AE02.roa Signing time: Thu 23 Oct 2025 07:08:04 +0000 ROA not before: Thu 23 Oct 2025 07:08:04 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 154006 IP address blocks: 165.101.100.0/24 maxlen: 24 165.101.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:36:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B13FE, serialNumber=52A1C420D827C16CEAA04283DD28B640A315634D Validity Not Before: Oct 23 07:08:04 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68f9d454-8f89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7e:42:24:a7:a9:a0:53:d3:5b:de:82:01:23: 1a:f6:b3:9e:fe:39:c0:81:b3:34:ab:29:fa:04:11: a4:c7:dd:d0:52:b6:04:f1:ba:2a:90:07:8d:cd:45: 25:8d:41:5d:10:fe:dc:68:f2:8e:84:61:c1:02:71: 85:2a:49:e0:33:25:f6:5d:a3:10:38:4f:bb:11:35: ea:56:92:5e:2b:82:92:6e:4b:d5:9a:1b:96:e8:17: a0:5a:c2:63:e8:23:fd:31:fb:45:bf:61:11:48:2f: 23:e9:0b:28:e3:1c:d2:a2:a7:13:24:e0:f1:65:ee: 9d:f1:64:bc:75:be:a3:4b:cd:2e:f8:6b:68:cc:85: 3d:89:e5:86:20:c8:77:c5:57:3b:a3:bc:14:3f:38: 9a:ec:ee:54:e8:c9:54:f5:ce:4e:f1:a9:82:c1:f7: ac:ea:77:37:a9:c2:53:65:e3:cf:f7:b1:e7:9a:f2: 1d:53:87:c0:d5:53:8c:81:08:8c:cc:9d:e2:40:67: b1:20:d0:ea:2d:b5:65:84:66:62:37:6a:cc:35:64: 33:da:1d:de:95:ba:90:f9:01:92:17:1a:6b:42:ad: bc:ba:b5:d6:fd:49:2c:f8:4a:03:67:bc:4c:21:35: 36:c4:cd:08:15:0b:12:3f:0e:08:d5:11:16:a4:e2: 46:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:A8:1C:60:07:74:6E:6C:44:0F:2C:4D:65:51:7F:5A:5D:23:DB:C5 X509v3 Authority Key Identifier: keyid:52:A1:C4:20:D8:27:C1:6C:EA:A0:42:83:DD:28:B6:40:A3:15:63:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/UqHEINgnwWzqoEKD3Si2QKMVY00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/UqHEINgnwWzqoEKD3Si2QKMVY00.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B13FE/8D8E22C2564311F0B1627A15C4F9AE02/DDDE222CAFBC11F093F1F45DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.101.100.0/23 Signature Algorithm: sha256WithRSAEncryption 8d:a4:33:68:59:e1:3d:ad:80:1b:d9:35:12:d0:f5:9c:2f:a3: 54:88:6c:c2:ca:b0:01:48:fa:c9:34:4a:2e:72:e8:29:9f:ba: a1:5d:0b:45:3e:25:fe:32:d9:00:bc:af:07:12:a3:ed:34:f7: 34:21:f4:40:f6:93:dd:48:e6:2e:ec:cc:90:c2:e0:e2:9f:62: 93:3b:04:7a:4e:da:0a:b8:20:04:2d:5d:8c:15:51:ad:2f:d9: e5:89:5f:54:6e:c7:bc:01:ed:e0:b6:0e:7e:47:d9:23:7a:fe: 65:d0:2a:80:42:94:96:94:c9:86:de:85:88:0c:56:a6:d8:36: 46:46:e8:00:6b:d9:42:11:07:3f:cf:39:32:cd:e5:14:8d:26: d4:ab:76:1b:57:c3:a0:99:55:6d:97:ca:5e:a4:f4:88:f7:be: 61:25:03:19:eb:83:44:bc:6a:53:c0:f5:d3:75:50:6f:06:92: 97:79:d2:d1:42:12:cb:f7:ea:b7:12:61:d2:59:ae:3a:a9:65: 68:f4:73:76:08:d5:fd:56:5a:d8:87:f0:51:ea:05:5d:61:52: 96:25:87:e8:85:83:34:17:f7:78:dc:ff:99:74:37:22:95:2f: 7d:55:ec:03:19:63:ef:61:8d:cb:27:a1:1b:00:5c:5b:d3:59: 96:a4:5a:16 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MTNGRTExMC8GA1UEBRMoNTJBMUM0MjBEODI3QzE2Q0VBQTA0MjgzREQyOEI2NDBB MzE1NjM0RDAeFw0yNTEwMjMwNzA4MDRaFw0yNjA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZjlkNDU0LThmODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0fkIkp6mgU9Nb3oIBIxr2s57+OcCBszSrKfoEEaTH3dBStgTxuiqQB43NRSWN QV0Q/txo8o6EYcECcYUqSeAzJfZdoxA4T7sRNepWkl4rgpJuS9WaG5boF6BawmPo I/0x+0W/YRFILyPpCyjjHNKipxMk4PFl7p3xZLx1vqNLzS74a2jMhT2J5YYgyHfF VzujvBQ/OJrs7lToyVT1zk7xqYLB96zqdzepwlNl48/3seea8h1Th8DVU4yBCIzM neJAZ7Eg0OottWWEZmI3asw1ZDPaHd6VupD5AZIXGmtCrby6tdb9SSz4SgNnvEwh NTbEzQgVCxI/DgjVERak4kYVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUfKgcYAd0 bmxEDyxNZVF/Wl0j28UwHwYDVR0jBBgwFoAUUqHEINgnwWzqoEKD3Si2QKMVY00w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIxM0ZFLzhEOEUyMkMyNTY0 MzExRjBCMTYyN0ExNUM0RjlBRTAyL1VxSEVJTmdud1d6cW9FS0QzU2kyUUtNVlkw MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVXFIRUlOZ253V3pxb0VLRDNTaTJRS01WWTAwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MTNGRS84RDhFMjJDMjU2NDMxMUYwQjE2MjdBMTVDNEY5QUUwMi9ERERFMjIyQ0FG QkMxMUYwOTNGMUY0NURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaVlZDANBgkqhkiG9w0BAQsFAAOCAQEAjaQzaFnhPa2AG9k1 EtD1nC+jVIhswsqwAUj6yTRKLnLoKZ+6oV0LRT4l/jLZALyvBxKj7TT3NCH0QPaT 3UjmLuzMkMLg4p9ikzsEek7aCrggBC1djBVRrS/Z5YlfVG7HvAHt4LYOfkfZI3r+ ZdAqgEKUlpTJht6FiAxWptg2RkboAGvZQhEHP885Ms3lFI0m1Kt2G1fDoJlVbZfK XqT0iPe+YSUDGeuDRLxqU8D103VQbwaSl3nS0UISy/fqtxJh0lmuOqllaPRzdgjV /VZa2IfwUeoFXWFSliWH6IWDNBf3eNz/mXQ3IpUvfVXsAxlj72GNyyehGwBcW9NZ lqRaFg== -----END CERTIFICATE-----Generated at Wed Nov 5 19:35:59 2025 by rpki-client