$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5727/2543244C920711F0A837414CC4F9AE02/54338F04B19111F0A5C55920C4F9AE02.roa File: 54338F04B19111F0A5C55920C4F9AE02.roa (raw, json) Hash identifier: 698t+8gbmef5TGfM4Cz5spoT/C6WF9SKp+ihzDQ5RW0= Subject key identifier: DD:F5:E5:E5:D4:64:76:7D:A3:C2:50:97:7C:96:20:41:C2:68:DC:16 Certificate issuer: /CN=A91C5727/serialNumber=DE6CDA69AB1AC89AE75F765CE77273E11B7FD67E Certificate serial: 14 Authority key identifier: DE:6C:DA:69:AB:1A:C8:9A:E7:5F:76:5C:E7:72:73:E1:1B:7F:D6:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3mzaaasayJrnX3Zc53Jz4Rt_1n4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5727/2543244C920711F0A837414CC4F9AE02/54338F04B19111F0A5C55920C4F9AE02.roa Signing time: Sat 25 Oct 2025 10:56:59 +0000 ROA not before: Sat 25 Oct 2025 10:56:59 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 154223 IP address blocks: 123.253.180.0/24 maxlen: 24 123.253.181.0/24 maxlen: 24 2402:2b20::/48 maxlen: 48 2402:2b20:1::/48 maxlen: 48 2402:2b20:2::/48 maxlen: 48 2402:2b20:3::/48 maxlen: 48 2402:2b20:4::/48 maxlen: 48 2402:2b20:5::/48 maxlen: 48 2402:2b20:6::/48 maxlen: 48 2402:2b20:7::/48 maxlen: 48 2402:2b20:8::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5727/2543244C920711F0A837414CC4F9AE02/3mzaaasayJrnX3Zc53Jz4Rt_1n4.crl rsync://rpki.apnic.net/member_repository/A91C5727/2543244C920711F0A837414CC4F9AE02/3mzaaasayJrnX3Zc53Jz4Rt_1n4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3mzaaasayJrnX3Zc53Jz4Rt_1n4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:01:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20 (0x14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5727, serialNumber=DE6CDA69AB1AC89AE75F765CE77273E11B7FD67E Validity Not Before: Oct 25 10:56:59 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68fcacfb-c71c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0c:dd:21:0a:5f:df:f2:70:d0:93:05:af:24: 3e:c5:e8:af:01:bf:61:e1:05:5a:e5:57:04:ef:9e: f1:cc:ec:d2:8d:0c:9e:35:16:f1:ee:32:e7:9a:49: 39:11:aa:f2:64:54:d3:75:8d:4a:a5:38:d9:ba:55: eb:3a:50:c8:15:e5:6b:3f:b0:aa:85:07:ad:1b:36: f4:7c:51:9f:a8:0c:44:d7:74:da:d3:81:01:48:0f: 51:07:65:6c:61:1c:8e:3f:d3:11:ed:67:48:45:d5: 67:5f:f4:e2:fa:dc:60:6b:c9:6d:2f:2c:f6:1c:39: 4d:8c:1c:b6:3c:ab:dd:8a:0f:d5:0f:2d:72:dc:ba: d0:b2:7b:c5:80:2d:a1:83:c0:fc:34:ef:da:4c:fb: df:f4:d3:fc:bf:43:44:d9:13:84:e2:80:68:12:7c: 1d:7a:27:36:a6:3d:b8:e0:a5:8e:04:3f:97:14:40: 04:7c:c9:04:70:d6:f7:36:59:10:d1:07:4f:1d:fc: 3e:20:10:35:2b:16:e7:ff:02:9d:47:97:94:60:60: c1:84:6d:3a:6e:26:73:e4:d5:8c:ea:6c:e8:88:f1: dd:1a:74:85:df:17:f7:cf:bb:fc:51:7c:c2:32:ef: b8:bd:c0:02:b9:56:0a:12:9d:af:01:fd:e0:b9:1e: 18:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:F5:E5:E5:D4:64:76:7D:A3:C2:50:97:7C:96:20:41:C2:68:DC:16 X509v3 Authority Key Identifier: keyid:DE:6C:DA:69:AB:1A:C8:9A:E7:5F:76:5C:E7:72:73:E1:1B:7F:D6:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5727/2543244C920711F0A837414CC4F9AE02/3mzaaasayJrnX3Zc53Jz4Rt_1n4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3mzaaasayJrnX3Zc53Jz4Rt_1n4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5727/2543244C920711F0A837414CC4F9AE02/54338F04B19111F0A5C55920C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.253.180.0/23 IPv6: 2402:2b20::-2402:2b20:8:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 3f:5a:e3:42:f2:f8:4c:7a:52:3b:6f:3a:82:1c:34:81:27:ff: 95:94:48:36:ae:30:8f:a5:e6:b4:fa:04:c8:59:a5:2b:51:13: 13:07:6a:94:a9:df:c5:70:1c:d7:fc:d9:6d:10:5f:b6:a4:ad: 5f:12:bd:2b:69:10:77:21:de:89:be:8a:1a:ca:7e:5a:50:37: 6e:fb:32:b0:b1:b0:9a:ce:22:8a:3e:f2:f9:7b:7f:aa:7d:a1: 0d:47:25:9d:8e:6d:12:db:d6:73:b5:d6:e6:50:42:95:e0:da: 7d:cd:ff:56:0e:06:c9:c5:d4:21:20:7f:96:06:22:7c:a3:90: 97:ad:15:f7:c2:c0:29:da:80:b6:34:e7:36:e6:c9:9b:2d:b6: 63:7b:0f:f3:b9:5d:9b:06:c1:39:16:45:e0:0e:44:ea:b3:70: 2b:ba:32:01:36:54:82:b3:bb:1f:01:da:90:ad:f0:3c:23:91: 07:d7:7a:cb:c1:e6:9c:71:e6:e6:20:03:0d:00:b7:b0:1d:12: 87:76:37:04:0a:60:f4:f1:4e:68:7a:c7:71:b0:c2:52:ab:7d: c4:b7:bb:60:72:70:7c:30:93:21:e2:93:7e:df:ec:36:73:89: 85:52:19:e9:dd:b8:c1:dc:b4:7f:1a:d2:f9:98:30:a5:54:df: be:3d:97:b7 -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIBFDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NTcyNzExMC8GA1UEBRMoREU2Q0RBNjlBQjFBQzg5QUU3NUY3NjVDRTc3MjczRTEx QjdGRDY3RTAeFw0yNTEwMjUxMDU2NTlaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZmNhY2ZiLWM3MWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4DN0hCl/f8nDQkwWvJD7F6K8Bv2HhBVrlVwTvnvHM7NKNDJ41FvHuMueaSTkR qvJkVNN1jUqlONm6Ves6UMgV5Ws/sKqFB60bNvR8UZ+oDETXdNrTgQFID1EHZWxh HI4/0xHtZ0hF1Wdf9OL63GBryW0vLPYcOU2MHLY8q92KD9UPLXLcutCye8WALaGD wPw079pM+9/00/y/Q0TZE4TigGgSfB16JzamPbjgpY4EP5cUQAR8yQRw1vc2WRDR B08d/D4gEDUrFuf/Ap1Hl5RgYMGEbTpuJnPk1YzqbOiI8d0adIXfF/fPu/xRfMIy 77i9wAK5VgoSna8B/eC5HhjrAgMBAAGjggKvMIICqzAdBgNVHQ4EFgQU3fXl5dRk dn2jwlCXfJYgQcJo3BYwHwYDVR0jBBgwFoAU3mzaaasayJrnX3Zc53Jz4Rt/1n4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1NzI3LzI1NDMyNDRDOTIw NzExRjBBODM3NDE0Q0M0RjlBRTAyLzNtemFhYXNheUpyblgzWmM1M0p6NFJ0XzFu NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM216YWFhc2F5SnJuWDNaYzUzSno0UnRfMW40LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NTcyNy8yNTQzMjQ0QzkyMDcxMUYwQTgzNzQxNENDNEY5QUUwMi81NDMzOEYwNEIx OTExMUYwQTVDNTU5MjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA5BggrBgEFBQcBBwEB/wQq MCgwDAQCAAEwBgMEAXv9tDAYBAIAAjASMBADBQUkAisgAwcAJAIrIAAIMA0GCSqG SIb3DQEBCwUAA4IBAQA/WuNC8vhMelI7bzqCHDSBJ/+VlEg2rjCPpea0+gTIWaUr URMTB2qUqd/FcBzX/NltEF+2pK1fEr0raRB3Id6Jvooayn5aUDdu+zKwsbCaziKK PvL5e3+qfaENRyWdjm0S29ZztdbmUEKV4Np9zf9WDgbJxdQhIH+WBiJ8o5CXrRX3 wsAp2oC2NOc25smbLbZjew/zuV2bBsE5FkXgDkTqs3ArujIBNlSCs7sfAdqQrfA8 I5EH13rLweaccebmIAMNALewHRKHdjcECmD08U5oesdxsMJSq33Et7tgcnB8MJMh 4pN+3+w2c4mFUhnp3bjB3LR/GtL5mDClVN++PZe3 -----END CERTIFICATE-----Generated at Wed Nov 5 09:56:35 2025 by rpki-client