$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/491E49AECDCA11ED8F57D386C4F9AE02.roa File: 491E49AECDCA11ED8F57D386C4F9AE02.roa (raw, json) Hash identifier: eobj/eFuFNpYpHWfoCh4R2f9ILietn5YmlGo8HxPsps= Subject key identifier: 89:C7:A1:BE:64:98:93:F0:46:3A:C2:36:BD:2A:CA:65:D6:F6:0B:F5 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 35BE Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/491E49AECDCA11ED8F57D386C4F9AE02.roa Signing time: Tue 04 Nov 2025 14:30:21 +0000 ROA not before: Tue 04 Nov 2025 14:30:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 18049 IP address blocks: 61.71.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:30:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13758 (0x35be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47, serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: Nov 4 14:30:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=690a0dfd-f5cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:09:f2:aa:fc:c8:e9:ff:03:f8:d9:33:ac:46: d3:35:c3:68:9c:8c:26:7e:c3:93:0b:f6:01:52:5b: 71:e7:21:90:7e:70:9d:d4:a9:db:ca:22:aa:2a:af: 1a:f1:b8:43:f8:18:71:9d:1a:84:ad:3e:f3:12:33: 04:e5:e6:d8:a7:bd:48:43:98:91:bb:cd:0e:33:af: ad:73:17:35:ac:df:a7:8b:e2:b1:d1:df:2c:d2:14: 00:04:7f:6b:29:13:5e:09:95:b8:24:aa:6a:aa:57: 57:05:c2:b8:83:ed:8c:10:6c:08:79:a4:48:da:13: 58:cd:bd:b4:dd:b3:56:37:fd:2f:50:3b:cc:4b:b5: 10:ef:0c:54:55:7d:98:34:c5:a7:93:49:49:80:9b: 21:d5:5a:34:65:31:43:42:6b:6e:b8:3f:11:88:c9: 9f:1f:e7:34:cd:a1:8a:c4:3a:21:f6:a6:ab:00:43: 02:13:20:84:8b:86:2f:1b:69:6e:94:87:c4:eb:d4: 9d:8e:3b:b7:8b:52:07:c0:20:58:6c:46:a9:a6:7b: 68:37:64:1d:68:49:f9:d3:88:08:02:14:01:82:0c: 5f:de:38:42:25:64:73:76:85:0e:94:a0:0d:e8:41: 83:9d:c5:39:f9:17:18:0a:e3:39:48:97:54:81:de: 35:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:C7:A1:BE:64:98:93:F0:46:3A:C2:36:BD:2A:CA:65:D6:F6:0B:F5 X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/491E49AECDCA11ED8F57D386C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.71.0.0/19 Signature Algorithm: sha256WithRSAEncryption 14:e0:e0:0a:0b:c6:04:e2:2d:e5:fa:cf:d0:5d:74:1b:3a:2f: d3:c3:32:c8:df:b7:04:4a:21:56:71:10:fb:ac:df:7f:ae:52: 05:ab:b6:20:10:5f:1e:fc:66:25:81:a5:93:6f:64:e7:e1:fe: e9:7e:11:23:c9:10:75:61:62:80:2d:11:e1:5c:3f:ec:9d:5b: 18:4d:d7:bc:9e:31:fe:1f:38:15:e6:c2:9a:67:47:53:83:3d: 67:ae:2c:e9:b2:86:1f:55:0b:d1:f9:d2:fb:5e:26:f9:3a:c7: 9d:2c:06:71:ad:7f:fa:fb:74:88:c0:3e:a9:dc:df:66:60:c4: 55:44:58:19:c0:00:08:cd:d9:3f:67:b2:a8:b5:33:90:c4:0a: e0:90:09:f3:15:a5:1e:43:92:8b:a0:2d:a5:ee:46:2f:b0:ac: e4:39:0c:73:b5:10:93:fb:5b:3d:fc:ba:bc:5e:33:15:fc:c5: f1:e9:cb:2d:bb:c9:2c:a6:e9:31:2d:6a:75:1a:33:c3:19:8b: 3f:ae:9e:dd:e0:30:7c:5c:0f:23:77:6d:18:f7:5f:11:49:c4: 31:77:6f:4a:bf:ed:65:c9:f3:57:fd:48:01:b1:5e:b0:f8:0b: 5e:26:8e:36:28:5f:96:fc:f3:17:96:3d:ed:89:1c:7f:1f:c3: 60:a8:aa:df -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNb4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjUxMTA0MTQzMDIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhMGRmZC1mNWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gnyqvzI6f8D+NkzrEbTNcNonIwmfsOTC/YBUltx5yGQfnCd1KnbyiKqKq8a 8bhD+BhxnRqErT7zEjME5ebYp71IQ5iRu80OM6+tcxc1rN+ni+Kx0d8s0hQABH9r KRNeCZW4JKpqqldXBcK4g+2MEGwIeaRI2hNYzb203bNWN/0vUDvMS7UQ7wxUVX2Y NMWnk0lJgJsh1Vo0ZTFDQmtuuD8RiMmfH+c0zaGKxDoh9qarAEMCEyCEi4YvG2lu lIfE69Sdjju3i1IHwCBYbEappntoN2QdaEn504gIAhQBggxf3jhCJWRzdoUOlKAN 6EGDncU5+RcYCuM5SJdUgd41gwIDAQABo4IClTCCApEwHQYDVR0OBBYEFInHob5k mJPwRjrCNr0qymXW9gv1MB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZGNDcvQjRBODZDMzgxRDg0MTFFMjk2OUZDNURBMDhCMDJDRDIvNDkxRTQ5QUVD RENBMTFFRDhGNTdEMzg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAU9RwAwDQYJKoZIhvcNAQELBQADggEBABTg4AoLxgTiLeX6 z9BddBs6L9PDMsjftwRKIVZxEPus33+uUgWrtiAQXx78ZiWBpZNvZOfh/ul+ESPJ EHVhYoAtEeFcP+ydWxhN17yeMf4fOBXmwppnR1ODPWeuLOmyhh9VC9H50vteJvk6 x50sBnGtf/r7dIjAPqnc32ZgxFVEWBnAAAjN2T9nsqi1M5DECuCQCfMVpR5Dkoug LaXuRi+wrOQ5DHO1EJP7Wz38urxeMxX8xfHpyy27ySym6TEtanUaM8MZiz+unt3g MHxcDyN3bRj3XxFJxDF3b0q/7WXJ81f9SAGxXrD4C14mjjYoX5b88xeWPe2JHH8f w2Coqt8= -----END CERTIFICATE-----Generated at Wed Nov 5 13:47:06 2025 by rpki-client