$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/ABDDEF28722F11EDA987AB75C4F9AE02.roa File: ABDDEF28722F11EDA987AB75C4F9AE02.roa (raw, json) Hash identifier: vCKD+CzoArcalyziR+d7Ov1DlN61zdE8Qt99sD5HF3I= Subject key identifier: 9A:21:57:B7:99:19:90:7B:EF:5E:70:F4:A5:69:D8:C8:BC:06:7D:5A Certificate issuer: /CN=A91B6172/serialNumber=21B2EA742FF0EF9EBCCEF3998790E3F5B08D6B63 Certificate serial: 022A Authority key identifier: 21:B2:EA:74:2F:F0:EF:9E:BC:CE:F3:99:87:90:E3:F5:B0:8D:6B:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IbLqdC_w7568zvOZh5Dj9bCNa2M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/ABDDEF28722F11EDA987AB75C4F9AE02.roa Signing time: Thu 23 Oct 2025 03:46:12 +0000 ROA not before: Thu 23 Oct 2025 03:46:12 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 15580 IP address blocks: 203.23.96.0/24 maxlen: 24 203.23.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/IbLqdC_w7568zvOZh5Dj9bCNa2M.crl rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/IbLqdC_w7568zvOZh5Dj9bCNa2M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IbLqdC_w7568zvOZh5Dj9bCNa2M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 01:38:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 554 (0x22a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6172, serialNumber=21B2EA742FF0EF9EBCCEF3998790E3F5B08D6B63 Validity Not Before: Oct 23 03:46:12 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68f9a503-138c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a6:ef:78:dd:67:4d:2e:c4:59:ff:16:84:cc: a7:56:4f:9a:bb:99:3b:68:86:1d:4e:d3:2f:86:a7: de:c1:93:7b:ed:94:47:65:1a:03:23:f9:d5:af:ee: d9:c4:26:36:e0:05:3e:23:6d:a8:22:98:86:30:df: 84:7c:bd:91:37:35:f8:9c:64:a4:02:57:ae:c3:42: ff:6f:dc:e9:21:a0:86:07:54:2c:3a:33:f2:bd:5c: 3a:32:f3:b0:71:85:f1:1e:af:8c:9c:e8:41:85:c3: b8:08:9e:af:cc:4b:ce:39:f7:e3:50:b6:84:59:ca: 6d:6c:e3:fa:f6:a3:60:81:38:7e:51:f9:c0:89:f2: 64:15:47:44:84:a8:aa:87:b5:f9:28:84:6e:5f:c6: d7:b3:be:15:c1:49:79:bc:99:61:61:37:e9:06:d4: ca:03:d3:71:07:0f:bd:4d:cc:04:11:37:31:b9:4f: 68:b1:20:68:ff:6c:ae:ca:d4:8f:d6:b3:3f:aa:c1: 7e:c7:62:79:09:a8:42:65:50:6f:aa:ab:05:e1:87: 24:79:5a:16:83:95:ee:57:8a:05:25:8a:cc:fc:3d: c8:2b:68:14:10:17:c0:b5:30:96:d6:30:65:e2:cc: 0f:c7:61:db:fb:6e:e4:d2:56:f8:7f:04:3f:f8:95: fd:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:21:57:B7:99:19:90:7B:EF:5E:70:F4:A5:69:D8:C8:BC:06:7D:5A X509v3 Authority Key Identifier: keyid:21:B2:EA:74:2F:F0:EF:9E:BC:CE:F3:99:87:90:E3:F5:B0:8D:6B:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/IbLqdC_w7568zvOZh5Dj9bCNa2M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IbLqdC_w7568zvOZh5Dj9bCNa2M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/ABDDEF28722F11EDA987AB75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.23.96.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:50:d3:9c:b1:30:12:00:eb:c4:6f:01:e4:ec:f0:98:91:60: ca:ea:e0:e9:ea:11:e9:90:c0:7a:5a:20:4e:cd:21:aa:7e:4e: 8d:a0:84:c8:7a:69:aa:fa:8d:45:8c:2c:68:c6:62:a5:85:ac: af:ff:e0:dd:ce:0d:bb:a6:68:c9:9b:39:23:cf:9a:93:0b:f0: ec:aa:eb:84:3b:39:04:ae:4b:61:78:9c:44:90:c9:da:1f:1b: 85:8e:ce:d4:f4:0b:93:4a:55:9b:27:81:9a:86:56:f5:c6:94: 4f:7d:7d:e8:b4:0d:e9:d4:6a:4b:2c:e0:89:51:d6:2a:0d:06: 95:6f:1b:a5:aa:f3:f1:c9:bd:84:e7:bc:db:7c:87:98:d9:80: cf:f0:d1:b8:2c:03:4c:53:84:1b:3b:4c:05:8f:4d:50:c3:f1: cc:7b:ab:b4:a8:01:63:0d:87:e6:11:a4:69:96:de:21:34:d5: ce:cb:5b:73:ef:8a:78:5a:e5:fb:0e:5c:84:75:34:22:d7:48: 86:54:7e:0d:22:07:d0:a8:ce:22:6f:60:d9:e4:7b:26:d7:90: ea:5d:e0:10:1c:7b:ef:da:ca:b3:f1:7b:85:a2:5d:01:7b:33: 6d:40:f4:0c:41:20:5f:6f:7d:af:27:26:3b:67:cb:76:7d:cf: 5a:e1:3a:28 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYxNzIxMTAvBgNVBAUTKDIxQjJFQTc0MkZGMEVGOUVCQ0NFRjM5OTg3OTBFM0Y1 QjA4RDZCNjMwHhcNMjUxMDIzMDM0NjEyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5YTUwMy0xMzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuabveN1nTS7EWf8WhMynVk+au5k7aIYdTtMvhqfewZN77ZRHZRoDI/nVr+7Z xCY24AU+I22oIpiGMN+EfL2RNzX4nGSkAleuw0L/b9zpIaCGB1QsOjPyvVw6MvOw cYXxHq+MnOhBhcO4CJ6vzEvOOffjULaEWcptbOP69qNggTh+UfnAifJkFUdEhKiq h7X5KIRuX8bXs74VwUl5vJlhYTfpBtTKA9NxBw+9TcwEETcxuU9osSBo/2yuytSP 1rM/qsF+x2J5CahCZVBvqqsF4YckeVoWg5XuV4oFJYrM/D3IK2gUEBfAtTCW1jBl 4swPx2Hb+27k0lb4fwQ/+JX9/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJohV7eZ GZB7715w9KVp2Mi8Bn1aMB8GA1UdIwQYMBaAFCGy6nQv8O+evM7zmYeQ4/WwjWtj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjE3Mi9CQTU0QzEzNDcy MkIxMUVEOTdENzNDNUFDNEY5QUUwMi9JYkxxZENfdzc1Njh6dk9aaDVEajliQ05h Mk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0liTHFkQ193NzU2OHp2T1poNURqOWJDTmEyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYxNzIvQkE1NEMxMzQ3MjJCMTFFRDk3RDczQzVBQzRGOUFFMDIvQUJEREVGMjg3 MjJGMTFFREE5ODdBQjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLF2AwDQYJKoZIhvcNAQELBQADggEBAB1Q05yxMBIA68Rv AeTs8JiRYMrq4OnqEemQwHpaIE7NIap+To2ghMh6aar6jUWMLGjGYqWFrK//4N3O DbumaMmbOSPPmpML8Oyq64Q7OQSuS2F4nESQydofG4WOztT0C5NKVZsngZqGVvXG lE99fei0DenUakss4IlR1ioNBpVvG6Wq8/HJvYTnvNt8h5jZgM/w0bgsA0xThBs7 TAWPTVDD8cx7q7SoAWMNh+YRpGmW3iE01c7LW3Pvinha5fsOXIR1NCLXSIZUfg0i B9CoziJvYNnkeybXkOpd4BAce+/ayrPxe4WiXQF7M21A9AxBIF9vfa8nJjtny3Z9 z1rhOig= -----END CERTIFICATE-----Generated at Wed Nov 5 03:52:17 2025 by rpki-client