$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/7A9CD75E23E311F0BB28EA29C4F9AE02.roa File: 7A9CD75E23E311F0BB28EA29C4F9AE02.roa (raw, json) Hash identifier: 0Y8jmQQMOsA8otW6hBByMKVBJCFql/NpiEG5lBKFsfk= Subject key identifier: 90:FD:80:47:8E:10:14:EC:65:BA:F1:14:20:4C:8C:E0:BC:9E:0D:3F Certificate issuer: /CN=A91C9606/serialNumber=1B471DADCD91209335136EACF6CC988828654B2A Certificate serial: 0D7F Authority key identifier: 1B:47:1D:AD:CD:91:20:93:35:13:6E:AC:F6:CC:98:88:28:65:4B:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/7A9CD75E23E311F0BB28EA29C4F9AE02.roa Signing time: Tue 04 Nov 2025 18:07:25 +0000 ROA not before: Tue 04 Nov 2025 18:07:25 +0000 ROA not after: Tue 02 Mar 2027 00:00:00 +0000 asID: 55342 IP address blocks: 202.131.1.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.crl rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:07:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3455 (0xd7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9606, serialNumber=1B471DADCD91209335136EACF6CC988828654B2A Validity Not Before: Nov 4 18:07:25 2025 GMT Not After : Mar 2 00:00:00 2027 GMT Subject: CN=690a40dd-3edf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5f:af:54:10:36:78:a0:c5:d4:02:79:99:32: d3:48:f2:1e:83:07:10:54:65:e8:c4:36:ec:54:72: 73:10:74:95:f9:1d:ef:a8:a4:1e:18:2b:85:55:9c: 47:84:01:c1:b3:68:b5:a5:1e:a1:a5:e4:af:95:f3: 12:96:b9:f8:f6:b9:c1:bd:ec:b0:87:91:9f:88:14: 60:7e:0b:b2:b1:cc:eb:e6:88:19:2b:f2:10:d9:e4: f0:10:2b:2f:5d:77:4e:54:32:67:d7:a6:23:44:20: 11:27:b6:9b:a7:68:5a:26:68:19:4c:27:80:33:90: dd:d4:36:93:a7:a5:b0:18:f6:73:d1:55:d5:c4:d1: db:2a:59:5c:d7:57:19:df:1b:f0:2a:2f:02:ec:c3: 6a:a0:a5:ee:72:28:33:29:01:3d:05:a0:89:dd:29: 0e:ea:79:0f:cc:88:be:b3:ff:f1:34:de:83:61:30: 01:33:df:59:a3:84:fe:79:9d:60:c6:33:65:cc:aa: 09:5f:a8:98:17:a8:b5:43:8e:2b:d7:48:0a:ff:cc: 5c:d5:53:5f:7f:81:56:4c:fd:02:32:70:72:19:0a: ac:ad:c3:d9:ad:da:8f:17:9e:7c:7a:a7:7e:d6:42: 64:cb:ba:7c:b9:81:11:a8:56:95:0f:c9:6c:af:d2: 3e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:FD:80:47:8E:10:14:EC:65:BA:F1:14:20:4C:8C:E0:BC:9E:0D:3F X509v3 Authority Key Identifier: keyid:1B:47:1D:AD:CD:91:20:93:35:13:6E:AC:F6:CC:98:88:28:65:4B:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/G0cdrc2RIJM1E26s9syYiChlSyo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G0cdrc2RIJM1E26s9syYiChlSyo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9606/9C9F9F9ADB9011E9A3C12F2CC4F9AE02/7A9CD75E23E311F0BB28EA29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.131.1.0/24 Signature Algorithm: sha256WithRSAEncryption 10:d3:b2:52:d0:ed:d5:df:3a:71:93:0e:1e:86:cf:a0:b4:4f: 69:44:48:a4:5a:98:8e:8e:1b:30:a4:97:70:85:75:13:fc:93: 7c:44:84:4e:95:7f:fe:e9:f5:a3:23:a0:1c:cf:59:38:ef:82: c8:26:c4:8f:f0:94:1e:84:50:f4:b4:81:63:9a:e0:60:c1:e3: 78:b1:85:88:a6:8b:a9:93:2a:34:09:8d:2c:3a:80:90:e2:6c: ce:2d:78:bf:cb:99:e8:e0:30:d2:cf:61:55:7f:80:d5:41:29: b8:da:cb:f0:63:d3:5d:58:9b:5a:31:09:79:60:be:72:92:7c: ae:8f:b5:0f:a5:da:b5:57:a0:19:9a:be:82:1b:83:2c:cb:4f: 15:61:51:5b:8d:24:37:81:eb:b6:5a:7b:0e:cc:c7:3a:7c:cc: 41:7b:8b:85:1e:23:d7:eb:64:d6:d9:9d:42:f5:b4:c6:27:81: 5a:5a:89:da:9b:fb:34:35:0e:58:3f:86:8b:01:a1:c0:d8:1c: 6e:4b:79:c4:e5:16:a9:61:df:50:1e:a5:ad:c5:69:33:fc:d2: 34:57:2d:ce:d3:ea:bd:c4:f3:e1:92:37:8e:fe:8e:0a:ac:cc: e6:64:28:98:20:a1:4f:cf:50:b0:7d:89:a4:61:23:44:65:dc: 26:a5:02:3b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzk2MDYxMTAvBgNVBAUTKDFCNDcxREFEQ0Q5MTIwOTMzNTEzNkVBQ0Y2Q0M5ODg4 Mjg2NTRCMkEwHhcNMjUxMTA0MTgwNzI1WhcNMjcwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhNDBkZC0zZWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv1+vVBA2eKDF1AJ5mTLTSPIegwcQVGXoxDbsVHJzEHSV+R3vqKQeGCuFVZxH hAHBs2i1pR6hpeSvlfMSlrn49rnBveywh5GfiBRgfguysczr5ogZK/IQ2eTwECsv XXdOVDJn16YjRCARJ7abp2haJmgZTCeAM5Dd1DaTp6WwGPZz0VXVxNHbKllc11cZ 3xvwKi8C7MNqoKXucigzKQE9BaCJ3SkO6nkPzIi+s//xNN6DYTABM99Zo4T+eZ1g xjNlzKoJX6iYF6i1Q44r10gK/8xc1VNff4FWTP0CMnByGQqsrcPZrdqPF558eqd+ 1kJky7p8uYERqFaVD8lsr9I+nwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJD9gEeO EBTsZbrxFCBMjOC8ng0/MB8GA1UdIwQYMBaAFBtHHa3NkSCTNRNurPbMmIgoZUsq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTYwNi85QzlGOUY5QURC OTAxMUU5QTNDMTJGMkNDNEY5QUUwMi9HMGNkcmMyUklKTTFFMjZzOXN5WWlDaGxT eW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0cwY2RyYzJSSUpNMUUyNnM5c3lZaUNobFN5by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzk2MDYvOUM5RjlGOUFEQjkwMTFFOUEzQzEyRjJDQzRGOUFFMDIvN0E5Q0Q3NUUy M0UzMTFGMEJCMjhFQTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKgwEwDQYJKoZIhvcNAQELBQADggEBABDTslLQ7dXfOnGT Dh6Gz6C0T2lESKRamI6OGzCkl3CFdRP8k3xEhE6Vf/7p9aMjoBzPWTjvgsgmxI/w lB6EUPS0gWOa4GDB43ixhYimi6mTKjQJjSw6gJDibM4teL/LmejgMNLPYVV/gNVB Kbjay/Bj011Ym1oxCXlgvnKSfK6PtQ+l2rVXoBmavoIbgyzLTxVhUVuNJDeB67Za ew7Mxzp8zEF7i4UeI9frZNbZnUL1tMYngVpaidqb+zQ1Dlg/hosBocDYHG5LecTl Fqlh31Aepa3FaTP80jRXLc7T6r3E8+GSN47+jgqszOZkKJggoU/PULB9iaRhI0Rl 3CalAjs= -----END CERTIFICATE-----Generated at Thu Nov 6 02:43:24 2025 by rpki-client