$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/16DDC0F4CFE811ECA193B36BC4F9AE02.roa File: 16DDC0F4CFE811ECA193B36BC4F9AE02.roa (raw, json) Hash identifier: Z0vQc/FiRt/D8hScnxTd8nBTWz7d3rs3scQ6DdSb1kk= Subject key identifier: A6:29:76:2D:58:95:03:FE:D7:D3:2A:21:E4:46:07:F2:94:96:B4:73 Certificate issuer: /CN=A91BC269/serialNumber=226F7289D4E37FECE2260C64D3BCBA7AC0315A75 Certificate serial: 0372 Authority key identifier: 22:6F:72:89:D4:E3:7F:EC:E2:26:0C:64:D3:BC:BA:7A:C0:31:5A:75 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Im9yidTjf-ziJgxk07y6esAxWnU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/16DDC0F4CFE811ECA193B36BC4F9AE02.roa Signing time: Wed 22 Oct 2025 04:16:02 +0000 ROA not before: Wed 22 Oct 2025 04:16:02 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 55850 IP address blocks: 139.180.64.0/18 maxlen: 18 149.19.16.0/20 maxlen: 20 167.179.216.0/21 maxlen: 21 208.56.208.0/20 maxlen: 20 209.87.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/Im9yidTjf-ziJgxk07y6esAxWnU.crl rsync://rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/Im9yidTjf-ziJgxk07y6esAxWnU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Im9yidTjf-ziJgxk07y6esAxWnU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:59:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 882 (0x372) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC269, serialNumber=226F7289D4E37FECE2260C64D3BCBA7AC0315A75 Validity Not Before: Oct 22 04:16:02 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f85a81-b6da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:7a:d9:3c:f6:1e:d2:de:a5:d3:f4:04:58:cf: 4d:b3:74:aa:e4:af:e0:e5:46:f6:4c:65:0f:a7:1b: 82:b9:76:d9:30:fc:66:a1:13:bd:95:36:30:64:95: 4b:02:f6:85:21:e3:88:47:22:64:9c:dc:80:72:93: 3d:0a:43:56:ab:33:a4:92:1b:d7:8a:40:29:f9:38: ef:92:9d:e0:eb:64:ec:06:42:36:aa:49:3b:b6:2b: 29:fe:fa:62:c1:55:25:15:58:d7:e6:a7:fe:fd:69: a3:dc:ee:99:8e:94:33:e0:88:38:6f:0b:35:d1:dd: dc:71:ea:aa:5b:64:8c:96:87:47:56:78:c0:a4:8d: 69:e0:c5:fe:98:8a:ec:07:2d:85:be:3f:1a:e5:99: 1a:39:a0:c7:ff:cd:fa:e9:a3:86:0a:b9:2a:60:e1: 51:21:a6:84:f0:d2:7f:a5:fc:70:f7:53:57:0d:61: eb:61:11:12:4b:f5:1a:6c:0a:99:07:57:13:85:b3: 49:d7:02:96:fd:dd:29:fa:58:87:08:b9:b2:a8:35: c8:18:1d:83:f5:24:18:66:af:2c:a7:a8:e8:2a:81: 6d:86:05:8b:0c:4d:e0:e9:0a:4e:81:7e:ab:c6:af: 2c:40:47:41:8f:c0:75:03:49:8b:f0:20:99:01:93: bb:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:29:76:2D:58:95:03:FE:D7:D3:2A:21:E4:46:07:F2:94:96:B4:73 X509v3 Authority Key Identifier: keyid:22:6F:72:89:D4:E3:7F:EC:E2:26:0C:64:D3:BC:BA:7A:C0:31:5A:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/Im9yidTjf-ziJgxk07y6esAxWnU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Im9yidTjf-ziJgxk07y6esAxWnU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC269/B1613118CFE511EC94BBC75AC4F9AE02/16DDC0F4CFE811ECA193B36BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.180.64.0/18 149.19.16.0/20 167.179.216.0/21 208.56.208.0/20 209.87.188.0/22 Signature Algorithm: sha256WithRSAEncryption 30:90:ba:17:ab:e4:37:3c:89:f0:a5:42:14:a3:15:52:7c:a2: 82:43:b5:17:32:fe:a1:cc:8f:d7:75:9a:b6:08:e9:24:3b:21: 1c:27:06:33:57:46:31:68:8b:52:bc:1b:40:4c:1d:35:ae:e1: c9:8b:e2:4b:28:92:50:19:ff:23:35:f0:6f:f9:63:2c:96:de: 8d:ca:78:06:1e:f7:87:d5:07:c9:8d:df:d2:e1:ce:b2:e8:5b: 92:05:4c:eb:d3:12:19:2f:1c:28:a3:1f:b5:14:03:db:87:86: 03:df:39:8b:f6:de:d9:3b:b1:ff:76:0a:77:e1:6a:90:5d:0b: ed:d0:3b:9e:12:10:7f:76:4a:51:fe:7b:c8:61:06:d4:76:3e: 20:36:fe:7a:44:89:0d:10:f7:5e:b1:69:b8:ff:e3:94:e4:0d: c9:6d:49:b1:b8:87:ba:99:f1:22:0d:ad:fd:82:5c:46:28:94: fe:2c:d8:b9:46:7f:ea:4d:fa:e3:54:85:b9:07:fb:6c:73:c2: 0d:34:d4:a0:4f:d9:57:07:78:97:af:4b:54:97:59:2d:08:f7: 2e:ea:29:10:4d:b0:fe:3d:e0:02:b3:7a:90:a0:be:51:95:a3: e5:80:82:6a:fb:f0:fd:61:ae:6a:b6:a2:7b:ab:58:f5:a1:9f: 9a:a3:f6:a0 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICA3IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkMyNjkxMTAvBgNVBAUTKDIyNkY3Mjg5RDRFMzdGRUNFMjI2MEM2NEQzQkNCQTdB QzAzMTVBNzUwHhcNMjUxMDIyMDQxNjAyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY4NWE4MS1iNmRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3XrZPPYe0t6l0/QEWM9Ns3Sq5K/g5Ub2TGUPpxuCuXbZMPxmoRO9lTYwZJVL AvaFIeOIRyJknNyAcpM9CkNWqzOkkhvXikAp+Tjvkp3g62TsBkI2qkk7tisp/vpi wVUlFVjX5qf+/Wmj3O6ZjpQz4Ig4bws10d3cceqqW2SMlodHVnjApI1p4MX+mIrs By2Fvj8a5ZkaOaDH/8366aOGCrkqYOFRIaaE8NJ/pfxw91NXDWHrYRESS/UabAqZ B1cThbNJ1wKW/d0p+liHCLmyqDXIGB2D9SQYZq8sp6joKoFthgWLDE3g6QpOgX6r xq8sQEdBj8B1A0mL8CCZAZO7wQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFKYpdi1Y lQP+19MqIeRGB/KUlrRzMB8GA1UdIwQYMBaAFCJvconU43/s4iYMZNO8unrAMVp1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzI2OS9CMTYxMzExOENG RTUxMUVDOTRCQkM3NUFDNEY5QUUwMi9JbTl5aWRUamYtemlKZ3hrMDd5NmVzQXhX blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0ltOXlpZFRqZi16aUpneGswN3k2ZXNBeFduVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkMyNjkvQjE2MTMxMThDRkU1MTFFQzk0QkJDNzVBQzRGOUFFMDIvMTZEREMwRjRD RkU4MTFFQ0ExOTNCMzZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAaLtEADBASVExADBAOns9gDBATQONADBALRV7wwDQYJKoZI hvcNAQELBQADggEBADCQuher5Dc8ifClQhSjFVJ8ooJDtRcy/qHMj9d1mrYI6SQ7 IRwnBjNXRjFoi1K8G0BMHTWu4cmL4ksoklAZ/yM18G/5YyyW3o3KeAYe94fVB8mN 39LhzrLoW5IFTOvTEhkvHCijH7UUA9uHhgPfOYv23tk7sf92CnfhapBdC+3QO54S EH92SlH+e8hhBtR2PiA2/npEiQ0Q916xabj/45TkDcltSbG4h7qZ8SINrf2CXEYo lP4s2LlGf+pN+uNUhbkH+2xzwg001KBP2VcHeJevS1SXWS0I9y7qKRBNsP494AKz epCgvlGVo+WAgmr78P1hrmq2onurWPWhn5qj9qA= -----END CERTIFICATE-----Generated at Wed Nov 5 19:47:04 2025 by rpki-client