$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/AC80FFE2722F11EDA987AB75C4F9AE02.roa File: AC80FFE2722F11EDA987AB75C4F9AE02.roa (raw, json) Hash identifier: Ecx2uEYsiUTMI1pp2hzwrKj0DYLLvVQ4KuzNnfcJWcM= Subject key identifier: 63:3F:43:F8:40:09:54:34:BA:FA:7B:C0:E8:88:3A:78:D4:2C:A6:F1 Certificate issuer: /CN=A91B6172/serialNumber=21B2EA742FF0EF9EBCCEF3998790E3F5B08D6B63 Certificate serial: 022C Authority key identifier: 21:B2:EA:74:2F:F0:EF:9E:BC:CE:F3:99:87:90:E3:F5:B0:8D:6B:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IbLqdC_w7568zvOZh5Dj9bCNa2M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/AC80FFE2722F11EDA987AB75C4F9AE02.roa Signing time: Thu 23 Oct 2025 03:46:14 +0000 ROA not before: Thu 23 Oct 2025 03:46:14 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 8360 IP address blocks: 203.23.96.0/24 maxlen: 24 203.23.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/IbLqdC_w7568zvOZh5Dj9bCNa2M.crl rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/IbLqdC_w7568zvOZh5Dj9bCNa2M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IbLqdC_w7568zvOZh5Dj9bCNa2M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 02:03:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 556 (0x22c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6172, serialNumber=21B2EA742FF0EF9EBCCEF3998790E3F5B08D6B63 Validity Not Before: Oct 23 03:46:14 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68f9a506-528e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:90:58:92:09:91:e8:bf:d8:f1:d0:f7:f2:cc: 3a:be:d4:72:63:a4:32:cb:09:b3:45:52:41:67:f0: d8:11:8b:f5:e0:a6:cf:f7:f1:76:12:01:cf:f2:9d: 57:8a:b6:c6:f0:56:fd:56:a0:15:a0:f7:9f:2e:bd: 57:46:ad:8a:0d:b3:34:15:22:09:2e:09:01:19:fa: ab:de:66:e3:dc:33:c4:63:c4:a8:d9:0d:7e:d4:14: 51:f2:0a:9f:8f:73:2f:fb:cf:6d:b2:cb:87:99:7f: 7a:e9:37:13:4a:8b:e8:3c:5c:81:41:88:d5:e3:23: e5:2e:31:b9:bb:0e:c0:e6:66:fc:bf:b7:3e:d3:ce: 41:04:c4:08:6c:4e:17:46:89:43:17:48:e4:52:73: cb:bd:39:e6:1e:1c:00:88:c7:d0:57:eb:a3:80:bc: 6c:2c:68:0e:0b:6b:c2:27:96:23:16:3f:c0:79:cd: 7d:46:aa:3c:7d:1f:80:68:fd:06:70:83:75:01:4f: 6b:b2:99:a4:36:18:c3:be:93:09:84:cd:f2:4f:6e: 1a:a3:5e:52:dc:18:92:8f:6f:73:50:5d:d7:40:5d: 0c:e5:13:5b:f1:aa:92:58:df:f1:1e:ce:ca:21:82: e4:23:64:2f:8b:c2:3e:d9:43:e4:cc:21:06:42:fd: 1e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:3F:43:F8:40:09:54:34:BA:FA:7B:C0:E8:88:3A:78:D4:2C:A6:F1 X509v3 Authority Key Identifier: keyid:21:B2:EA:74:2F:F0:EF:9E:BC:CE:F3:99:87:90:E3:F5:B0:8D:6B:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/IbLqdC_w7568zvOZh5Dj9bCNa2M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IbLqdC_w7568zvOZh5Dj9bCNa2M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6172/BA54C134722B11ED97D73C5AC4F9AE02/AC80FFE2722F11EDA987AB75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.23.96.0/23 Signature Algorithm: sha256WithRSAEncryption b0:81:a8:f9:44:58:79:0c:05:69:c0:3d:be:3c:a3:44:32:66: 96:6e:2c:bb:b9:36:65:6c:b9:55:c6:5d:2e:1e:72:d6:13:e0: 62:6e:a3:0d:36:d8:48:c3:66:f9:9c:e3:59:8d:7e:13:26:97: 26:38:72:8a:3b:b4:86:00:29:31:d3:e3:d0:a8:66:20:48:f3: b5:35:27:06:96:9f:c0:31:1f:de:45:b6:92:15:59:5f:e1:79: df:83:c6:1f:2c:6d:cb:26:e7:66:48:3b:30:15:b7:62:8c:7d: 68:4c:6f:9c:38:47:de:11:42:1b:e5:ea:b2:dd:55:16:af:86: 5b:12:93:2a:88:c5:f7:33:12:b7:06:a3:44:cb:d5:3e:e6:fb: 58:17:af:ab:c4:a6:56:a1:71:dc:23:e4:82:74:eb:84:8b:fc: 8d:22:6f:71:70:93:3b:7c:4e:a0:82:28:05:e9:40:e7:5c:09: 39:1c:16:8d:ca:fc:7e:31:d4:45:7d:7d:2d:0a:f2:d6:86:21: b0:38:99:61:fd:c2:d6:9c:b8:4c:44:3d:fc:8c:cd:69:06:05: 4d:e3:f1:6d:bc:be:d9:fd:4a:4b:62:8e:80:88:5a:b0:69:76: c1:ee:66:68:ad:e6:eb:08:06:af:ba:e2:d4:be:eb:0c:ad:42: ef:52:46:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjYxNzIxMTAvBgNVBAUTKDIxQjJFQTc0MkZGMEVGOUVCQ0NFRjM5OTg3OTBFM0Y1 QjA4RDZCNjMwHhcNMjUxMDIzMDM0NjE0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5YTUwNi01MjhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnpBYkgmR6L/Y8dD38sw6vtRyY6QyywmzRVJBZ/DYEYv14KbP9/F2EgHP8p1X irbG8Fb9VqAVoPefLr1XRq2KDbM0FSIJLgkBGfqr3mbj3DPEY8So2Q1+1BRR8gqf j3Mv+89tssuHmX966TcTSovoPFyBQYjV4yPlLjG5uw7A5mb8v7c+085BBMQIbE4X RolDF0jkUnPLvTnmHhwAiMfQV+ujgLxsLGgOC2vCJ5YjFj/Aec19Rqo8fR+AaP0G cIN1AU9rspmkNhjDvpMJhM3yT24ao15S3BiSj29zUF3XQF0M5RNb8aqSWN/xHs7K IYLkI2Qvi8I+2UPkzCEGQv0e0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGM/Q/hA CVQ0uvp7wOiIOnjULKbxMB8GA1UdIwQYMBaAFCGy6nQv8O+evM7zmYeQ4/WwjWtj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjE3Mi9CQTU0QzEzNDcy MkIxMUVEOTdENzNDNUFDNEY5QUUwMi9JYkxxZENfdzc1Njh6dk9aaDVEajliQ05h Mk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0liTHFkQ193NzU2OHp2T1poNURqOWJDTmEyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjYxNzIvQkE1NEMxMzQ3MjJCMTFFRDk3RDczQzVBQzRGOUFFMDIvQUM4MEZGRTI3 MjJGMTFFREE5ODdBQjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLF2AwDQYJKoZIhvcNAQELBQADggEBALCBqPlEWHkMBWnA Pb48o0QyZpZuLLu5NmVsuVXGXS4ectYT4GJuow022EjDZvmc41mNfhMmlyY4coo7 tIYAKTHT49CoZiBI87U1JwaWn8AxH95FtpIVWV/hed+Dxh8sbcsm52ZIOzAVt2KM fWhMb5w4R94RQhvl6rLdVRavhlsSkyqIxfczErcGo0TL1T7m+1gXr6vEplahcdwj 5IJ064SL/I0ib3Fwkzt8TqCCKAXpQOdcCTkcFo3K/H4x1EV9fS0K8taGIbA4mWH9 wtacuExEPfyMzWkGBU3j8W28vtn9SktijoCIWrBpdsHuZmit5usIBq+64tS+6wyt Qu9SRlQ= -----END CERTIFICATE-----Generated at Wed Nov 5 01:38:22 2025 by rpki-client