$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/DB175658E9D711EBA3549B09C4F9AE02.roa File: DB175658E9D711EBA3549B09C4F9AE02.roa (raw, json) Hash identifier: JF8OUqEZ4z+S+pWuRQJ1GwisWg+I2Q1w/kc9aPua3PU= Subject key identifier: FB:06:E7:E2:C2:1F:72:04:13:EB:B8:E0:01:BD:FC:8F:52:3C:7B:31 Certificate issuer: /CN=A91BC6DD/serialNumber=4FDD1C93A13CBA91B4F8B7F2C6518F48BA170BAD Certificate serial: 0888 Authority key identifier: 4F:DD:1C:93:A1:3C:BA:91:B4:F8:B7:F2:C6:51:8F:48:BA:17:0B:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T90ck6E8upG0-LfyxlGPSLoXC60.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/DB175658E9D711EBA3549B09C4F9AE02.roa Signing time: Mon 12 May 2025 21:18:16 +0000 ROA not before: Mon 12 May 2025 21:18:16 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 54994 IP address blocks: 45.116.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/T90ck6E8upG0-LfyxlGPSLoXC60.crl rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/T90ck6E8upG0-LfyxlGPSLoXC60.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T90ck6E8upG0-LfyxlGPSLoXC60.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:31:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2184 (0x888) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC6DD, serialNumber=4FDD1C93A13CBA91B4F8B7F2C6518F48BA170BAD Validity Not Before: May 12 21:18:16 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68226598-d6ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ca:e6:4b:6b:97:bd:a4:6e:09:b1:59:b4:5b: c3:0b:9f:a8:3f:88:d1:9d:d3:83:17:b4:27:cb:68: d4:7a:7d:59:72:a3:63:47:be:68:97:5d:0a:60:55: 71:f4:82:7f:1d:2b:35:a6:79:7f:b1:33:98:36:ad: 46:54:a2:67:53:6d:86:c3:50:76:3b:4e:40:27:72: f6:2c:b8:b0:d8:54:98:6d:8a:0f:8a:56:08:93:49: 3b:4d:fd:78:c3:f1:a7:53:3d:ee:74:57:0b:00:bf: 12:2f:bf:66:12:c3:ab:10:91:e5:1b:3a:a7:14:de: af:7d:d8:47:2b:4f:63:d2:02:e0:d8:10:0c:48:20: ec:8a:d0:53:04:ba:9f:3f:0b:dc:0b:a9:be:54:0c: 9c:1d:15:6e:07:fe:6e:36:a3:fd:74:fc:c9:6b:d3: 31:8b:84:45:dd:3d:32:24:ec:d1:c6:bf:66:56:9e: 6a:e8:b7:32:12:bc:96:3c:f2:fa:c2:4f:1c:b4:38: c7:3b:81:22:aa:06:3f:15:4d:4f:6b:ea:8e:14:14: da:f5:ed:e7:9d:1d:0a:4a:74:df:f8:83:1e:c2:50: 01:89:3c:a4:d6:34:9c:0b:bc:d2:44:aa:c4:42:ac: 68:5c:1d:f9:2e:bf:1e:c7:12:2a:09:6d:23:3a:a1: 66:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:06:E7:E2:C2:1F:72:04:13:EB:B8:E0:01:BD:FC:8F:52:3C:7B:31 X509v3 Authority Key Identifier: keyid:4F:DD:1C:93:A1:3C:BA:91:B4:F8:B7:F2:C6:51:8F:48:BA:17:0B:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/T90ck6E8upG0-LfyxlGPSLoXC60.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T90ck6E8upG0-LfyxlGPSLoXC60.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC6DD/F3FB9056C0F411EAB05DFC5EC4F9AE02/DB175658E9D711EBA3549B09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.83.0/24 Signature Algorithm: sha256WithRSAEncryption 59:09:df:6b:c6:fa:97:db:79:73:3f:f1:ff:46:6c:87:94:52: 4f:a1:c0:89:a5:61:4e:6c:ee:37:4c:f5:8f:31:1e:78:c7:65: 24:3c:9d:95:5d:16:c5:8c:b2:d7:ed:f9:a9:82:b5:69:f9:1b: ea:31:42:dd:d7:77:a8:19:87:f8:aa:0c:09:55:08:c0:9b:df: 1a:1d:dd:86:d1:c9:85:14:c4:86:6e:10:b2:e1:20:76:63:d4: 12:c4:31:1f:8d:44:ab:89:2a:3a:ab:03:9a:fe:f7:ed:d9:ea: f9:66:cd:dc:54:67:30:10:19:e5:40:3e:82:5f:cb:aa:94:0c: c3:0b:4d:77:14:f8:1d:c5:8c:ea:70:2a:d2:2c:a5:e4:1c:30: 3a:c1:fd:df:f4:c8:47:13:67:9b:92:56:b2:ab:4b:ff:e0:a0: d6:d2:6d:1c:63:32:28:4d:8c:53:89:13:2d:ed:36:ec:14:38: f4:8c:d1:ae:bf:de:50:30:b3:1b:e3:b7:42:26:f8:68:6b:6d: 06:66:1c:d5:86:6e:b1:e9:b9:61:d2:42:fb:96:8c:28:68:9b: 28:36:32:e8:3c:a9:cd:d5:37:3e:a1:9c:92:30:4d:8f:29:0c: 43:5f:74:ff:3d:a5:35:a7:66:f3:97:b5:ba:c8:88:4b:15:44: c9:3a:83:20 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCIgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2REQxMTAvBgNVBAUTKDRGREQxQzkzQTEzQ0JBOTFCNEY4QjdGMkM2NTE4RjQ4 QkExNzBCQUQwHhcNMjUwNTEyMjExODE2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIyNjU5OC1kNmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3crmS2uXvaRuCbFZtFvDC5+oP4jRndODF7Qny2jUen1ZcqNjR75ol10KYFVx 9IJ/HSs1pnl/sTOYNq1GVKJnU22Gw1B2O05AJ3L2LLiw2FSYbYoPilYIk0k7Tf14 w/GnUz3udFcLAL8SL79mEsOrEJHlGzqnFN6vfdhHK09j0gLg2BAMSCDsitBTBLqf PwvcC6m+VAycHRVuB/5uNqP9dPzJa9Mxi4RF3T0yJOzRxr9mVp5q6LcyEryWPPL6 wk8ctDjHO4EiqgY/FU1Pa+qOFBTa9e3nnR0KSnTf+IMewlABiTyk1jScC7zSRKrE QqxoXB35Lr8exxIqCW0jOqFmaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPsG5+LC H3IEE+u44AG9/I9SPHsxMB8GA1UdIwQYMBaAFE/dHJOhPLqRtPi38sZRj0i6Fwut MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzZERC9GM0ZCOTA1NkMw RjQxMUVBQjA1REZDNUVDNEY5QUUwMi9UOTBjazZFOHVwRzAtTGZ5eGxHUFNMb1hD NjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Q5MGNrNkU4dXBHMC1MZnl4bEdQU0xvWEM2MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM2REQvRjNGQjkwNTZDMEY0MTFFQUIwNURGQzVFQzRGOUFFMDIvREIxNzU2NThF OUQ3MTFFQkEzNTQ5QjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtdFMwDQYJKoZIhvcNAQELBQADggEBAFkJ32vG+pfbeXM/ 8f9GbIeUUk+hwImlYU5s7jdM9Y8xHnjHZSQ8nZVdFsWMstft+amCtWn5G+oxQt3X d6gZh/iqDAlVCMCb3xod3YbRyYUUxIZuELLhIHZj1BLEMR+NRKuJKjqrA5r+9+3Z 6vlmzdxUZzAQGeVAPoJfy6qUDMMLTXcU+B3FjOpwKtIspeQcMDrB/d/0yEcTZ5uS VrKrS//goNbSbRxjMihNjFOJEy3tNuwUOPSM0a6/3lAwsxvjt0Im+GhrbQZmHNWG brHpuWHSQvuWjChomyg2Mug8qc3VNz6hnJIwTY8pDENfdP89pTWnZvOXtbrIiEsV RMk6gyA= -----END CERTIFICATE-----Generated at Wed Nov 5 13:31:41 2025 by rpki-client