$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD939/D15DC08A9D6411F092799347C4F9AE02/ABD937089D6511F0A6A3E74BC4F9AE02.roa File: ABD937089D6511F0A6A3E74BC4F9AE02.roa (raw, json) Hash identifier: Jkbb7HkAq8iDWnzG+rvThhFx1fDkJFLk00mNMZ+k2pU= Subject key identifier: AE:EC:45:24:F2:C9:84:DA:BE:B3:60:A4:F1:A4:1D:1F:C7:37:70:E4 Certificate issuer: /CN=A91BD939/serialNumber=A848854BBFCEBB4D49801BB2AE3D84408B1C3D27 Certificate serial: 07 Authority key identifier: A8:48:85:4B:BF:CE:BB:4D:49:80:1B:B2:AE:3D:84:40:8B:1C:3D:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qEiFS7_Ou01JgBuyrj2EQIscPSc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD939/D15DC08A9D6411F092799347C4F9AE02/ABD937089D6511F0A6A3E74BC4F9AE02.roa Signing time: Mon 06 Oct 2025 04:13:27 +0000 ROA not before: Mon 06 Oct 2025 04:13:27 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 141767 IP address blocks: 157.119.70.0/23 maxlen: 24 2001:df6:2840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD939/D15DC08A9D6411F092799347C4F9AE02/qEiFS7_Ou01JgBuyrj2EQIscPSc.crl rsync://rpki.apnic.net/member_repository/A91BD939/D15DC08A9D6411F092799347C4F9AE02/qEiFS7_Ou01JgBuyrj2EQIscPSc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qEiFS7_Ou01JgBuyrj2EQIscPSc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:05:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD939, serialNumber=A848854BBFCEBB4D49801BB2AE3D84408B1C3D27 Validity Not Before: Oct 6 04:13:27 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e341e7-7866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:88:59:ae:63:43:58:ba:a4:8e:0f:8d:28:8a: 47:5c:bc:ff:9e:81:10:1d:50:10:aa:e7:4c:b2:7b: b0:0d:62:b3:cf:d6:e7:b7:24:a2:4e:2c:25:63:74: 1e:6e:1a:59:5d:34:6b:3d:2f:a7:52:62:d8:bb:26: c2:3a:9b:97:3b:9d:b0:16:9e:c3:62:1f:d7:e3:9f: 3a:48:b7:d3:64:96:cb:2b:6f:7d:04:b3:83:58:5d: 42:ca:a7:55:57:c7:83:2a:a2:0f:1d:8e:02:d7:23: 75:f6:e7:88:91:bd:ea:13:6e:f3:5b:b9:8b:2f:d2: 4c:0a:2e:4e:62:5e:4a:04:92:98:b1:14:91:55:6f: 43:99:a5:20:bb:0b:ff:36:e6:dd:e4:31:90:ed:54: 1e:94:f3:96:24:6f:f3:5f:df:29:f7:e3:31:d1:b9: 4a:60:96:ad:4e:c2:86:01:a2:6e:2d:45:bd:d2:d1: 48:82:95:b2:59:aa:c7:a3:60:89:81:78:3b:64:33: 60:34:55:08:eb:25:23:db:8d:19:0a:c9:ba:46:35: b9:fa:08:a6:0e:4b:33:07:bf:e8:74:db:0d:b3:ed: 39:14:05:e6:04:90:ca:49:d6:57:cf:b4:b7:9f:1b: b7:20:b6:8d:7e:5f:02:d6:13:00:ec:62:4a:dc:70: c6:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:EC:45:24:F2:C9:84:DA:BE:B3:60:A4:F1:A4:1D:1F:C7:37:70:E4 X509v3 Authority Key Identifier: keyid:A8:48:85:4B:BF:CE:BB:4D:49:80:1B:B2:AE:3D:84:40:8B:1C:3D:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD939/D15DC08A9D6411F092799347C4F9AE02/qEiFS7_Ou01JgBuyrj2EQIscPSc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qEiFS7_Ou01JgBuyrj2EQIscPSc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD939/D15DC08A9D6411F092799347C4F9AE02/ABD937089D6511F0A6A3E74BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 157.119.70.0/23 IPv6: 2001:df6:2840::/48 Signature Algorithm: sha256WithRSAEncryption 83:8c:24:f9:20:e1:64:b0:f6:9e:2f:ec:ef:7b:6e:6b:ee:5b: 3d:d2:dc:88:1b:f5:a0:f1:9b:a7:d0:e2:73:2e:57:25:63:fb: df:8e:9b:ee:b4:cf:bf:6d:31:c2:6e:b9:49:2a:b0:99:10:85: fc:18:32:b6:75:9d:7e:58:b1:3c:fd:61:96:74:7f:c6:b7:bd: 8f:b4:30:6d:75:71:84:a6:e2:5c:fc:b1:98:72:67:58:c9:47: a2:cb:95:75:c8:cd:2f:62:aa:49:61:ca:ee:ad:fd:92:09:d1: fd:7c:f9:22:f6:b4:4b:da:e7:71:f2:2b:a4:2b:fa:70:fc:8d: dc:c3:13:32:30:f5:d5:a0:7e:46:51:d4:7d:b5:fa:d4:64:a6: cf:cb:00:8e:a4:11:79:34:ba:f5:a5:bd:96:55:d2:82:43:e2: 68:fc:93:c3:96:4e:05:ef:fb:76:2c:8f:28:3c:ec:78:66:82: da:8e:a0:44:ae:05:0d:5e:25:d9:61:71:c6:1b:3d:0d:8b:ef: be:f2:37:15:56:92:2e:20:92:bc:80:99:cf:f3:47:23:15:20: 92:60:b2:63:25:cb:86:93:70:cb:6b:86:eb:5d:e4:65:c3:5c: 29:a7:2b:a7:ee:32:4e:99:af:fd:dc:a2:82:2d:15:5b:03:31: ee:14:5c:47 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RDkzOTExMC8GA1UEBRMoQTg0ODg1NEJCRkNFQkI0RDQ5ODAxQkIyQUUzRDg0NDA4 QjFDM0QyNzAeFw0yNTEwMDYwNDEzMjdaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZTM0MWU3LTc4NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLiFmuY0NYuqSOD40oikdcvP+egRAdUBCq50yye7ANYrPP1ue3JKJOLCVjdB5u GlldNGs9L6dSYti7JsI6m5c7nbAWnsNiH9fjnzpIt9Nklssrb30Es4NYXULKp1VX x4Mqog8djgLXI3X254iRveoTbvNbuYsv0kwKLk5iXkoEkpixFJFVb0OZpSC7C/82 5t3kMZDtVB6U85Ykb/Nf3yn34zHRuUpglq1OwoYBom4tRb3S0UiClbJZqsejYImB eDtkM2A0VQjrJSPbjRkKybpGNbn6CKYOSzMHv+h02w2z7TkUBeYEkMpJ1lfPtLef G7cgto1+XwLWEwDsYkrccMb9AgMBAAGjggKmMIICojAdBgNVHQ4EFgQUruxFJPLJ hNq+s2Ck8aQdH8c3cOQwHwYDVR0jBBgwFoAUqEiFS7/Ou01JgBuyrj2EQIscPScw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJEOTM5L0QxNURDMDhBOUQ2 NDExRjA5Mjc5OTM0N0M0RjlBRTAyL3FFaUZTN19PdTAxSmdCdXlyajJFUUlzY1BT Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcUVpRlM3X091MDFKZ0J1eXJqMkVRSXNjUFNjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RDkzOS9EMTVEQzA4QTlENjQxMUYwOTI3OTkzNDdDNEY5QUUwMi9BQkQ5MzcwODlE NjUxMUYwQTZBM0U3NEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAZ13RjAPBAIAAjAJAwcAIAEN9ihAMA0GCSqGSIb3DQEBCwUA A4IBAQCDjCT5IOFksPaeL+zve25r7ls90tyIG/Wg8Zun0OJzLlclY/vfjpvutM+/ bTHCbrlJKrCZEIX8GDK2dZ1+WLE8/WGWdH/Gt72PtDBtdXGEpuJc/LGYcmdYyUei y5V1yM0vYqpJYcrurf2SCdH9fPki9rRL2udx8iukK/pw/I3cwxMyMPXVoH5GUdR9 tfrUZKbPywCOpBF5NLr1pb2WVdKCQ+Jo/JPDlk4F7/t2LI8oPOx4ZoLajqBErgUN XiXZYXHGGz0Ni+++8jcVVpIuIJK8gJnP80cjFSCSYLJjJcuGk3DLa4brXeRlw1wp pyun7jJOma/93KKCLRVbAzHuFFxH -----END CERTIFICATE-----Generated at Wed Nov 5 12:35:05 2025 by rpki-client