$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA294/BDC09A2A9DAA11F096420B63C4F9AE02/1F8F98EEA2F811F0ACA39B18C4F9AE02.roa File: 1F8F98EEA2F811F0ACA39B18C4F9AE02.roa (raw, json) Hash identifier: /KNy5MCRgQfgCQnLITh3QQ/nwilhQ6gGRg8j3dhXM+U= Subject key identifier: E6:45:14:BE:C4:69:16:B0:05:20:3E:A1:19:26:AB:75:17:D3:AE:83 Certificate issuer: /CN=A91CA294/serialNumber=19BD822D3EB6FF6E9370245EE874BEA9EB8BEE55 Certificate serial: 0A Authority key identifier: 19:BD:82:2D:3E:B6:FF:6E:93:70:24:5E:E8:74:BE:A9:EB:8B:EE:55 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Gb2CLT62_26TcCRe6HS-qeuL7lU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA294/BDC09A2A9DAA11F096420B63C4F9AE02/1F8F98EEA2F811F0ACA39B18C4F9AE02.roa Signing time: Mon 06 Oct 2025 21:05:01 +0000 ROA not before: Mon 06 Oct 2025 21:05:01 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 4648 IP address blocks: 156.69.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA294/BDC09A2A9DAA11F096420B63C4F9AE02/Gb2CLT62_26TcCRe6HS-qeuL7lU.crl rsync://rpki.apnic.net/member_repository/A91CA294/BDC09A2A9DAA11F096420B63C4F9AE02/Gb2CLT62_26TcCRe6HS-qeuL7lU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Gb2CLT62_26TcCRe6HS-qeuL7lU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 08:06:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA294, serialNumber=19BD822D3EB6FF6E9370245EE874BEA9EB8BEE55 Validity Not Before: Oct 6 21:05:01 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e42efd-3347 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:09:25:00:df:91:34:4a:26:b4:03:f7:ad:d8: 97:c9:7a:57:20:c2:fa:8e:ac:e8:cb:e0:4a:fb:82: bf:c6:8f:3f:ff:7b:cd:bc:85:09:c0:11:16:03:d7: 26:96:01:3b:d0:7e:7b:1f:e9:34:fb:64:84:92:ba: 1f:b3:1c:41:e2:ac:82:03:fb:4a:22:15:a6:7d:2c: fc:2a:03:8c:3d:4b:e8:e6:ab:b7:9e:46:ae:de:53: d2:db:00:73:e5:55:42:ff:a3:4c:be:65:dd:eb:94: 0a:13:ac:f3:07:df:3c:20:b7:63:af:62:de:47:f8: b8:c5:fc:64:3b:d9:c2:79:ff:e1:d9:c9:62:3c:00: 6a:89:ac:f4:3b:1a:0a:97:b3:8a:a8:41:cd:d9:4c: b4:36:0b:d2:34:c1:62:6c:48:93:f5:96:b7:e4:1f: e8:77:1f:86:6c:dc:4b:28:aa:27:02:43:5d:12:13: fd:8b:30:81:a0:6b:cd:f2:80:6f:8c:f7:13:01:e9: 80:7d:fb:6d:0d:39:7f:53:11:f3:10:fd:75:a3:5b: 22:f6:0c:b1:e5:83:2b:8f:b1:0a:cc:6f:aa:ff:29: 08:fa:ec:c4:ef:e3:b7:f3:76:85:d1:ec:85:ea:65: 26:01:6c:98:95:73:d6:8e:04:a3:7a:69:1b:b9:47: 9c:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:45:14:BE:C4:69:16:B0:05:20:3E:A1:19:26:AB:75:17:D3:AE:83 X509v3 Authority Key Identifier: keyid:19:BD:82:2D:3E:B6:FF:6E:93:70:24:5E:E8:74:BE:A9:EB:8B:EE:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA294/BDC09A2A9DAA11F096420B63C4F9AE02/Gb2CLT62_26TcCRe6HS-qeuL7lU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Gb2CLT62_26TcCRe6HS-qeuL7lU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA294/BDC09A2A9DAA11F096420B63C4F9AE02/1F8F98EEA2F811F0ACA39B18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 156.69.31.0/24 Signature Algorithm: sha256WithRSAEncryption 99:e7:5e:d4:46:0f:9e:98:cb:9b:86:7f:d7:8a:43:83:5a:4b: 2c:c1:4f:d1:f2:72:1c:f7:1a:27:34:fb:51:5b:52:25:43:aa: d8:27:95:93:99:ef:60:c9:6d:5d:9d:6e:2b:7e:2b:41:f3:c8: df:05:2e:9b:14:19:59:08:66:96:f6:b3:49:a0:1b:1a:0c:56: 3e:cd:b6:b3:9a:88:bf:0b:1a:68:b5:92:26:fc:b4:f2:88:ab: 4d:34:c3:2d:7e:a0:60:86:6a:cd:f7:5d:db:2a:ff:22:ac:46: c7:9c:17:19:cc:a8:3c:aa:48:fa:d9:54:73:e3:68:2f:00:c7: ae:b5:87:03:49:66:3b:32:06:9c:10:c4:e2:90:14:2f:70:1c: 54:4b:a1:3f:8d:0f:a0:e1:8e:db:81:71:3f:64:e5:6a:a0:a5: 72:b5:ec:00:e7:7b:7b:a4:58:f8:70:74:4e:03:a5:46:2a:11: 19:ea:08:54:64:cc:3b:23:7e:6a:c0:3d:90:b2:b0:8d:31:ea: 80:33:b9:36:eb:3c:f6:8b:4d:4b:e3:95:11:6e:2e:92:04:21: 40:d5:9e:f6:df:d6:a6:01:dd:55:19:79:44:9a:1e:b4:6f:11: 70:d0:37:88:87:b9:d2:a0:dc:b8:b0:7f:1e:fe:28:0e:42:35: 69:dd:8b:8a -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QTI5NDExMC8GA1UEBRMoMTlCRDgyMkQzRUI2RkY2RTkzNzAyNDVFRTg3NEJFQTlF QjhCRUU1NTAeFw0yNTEwMDYyMTA1MDFaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZTQyZWZkLTMzNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDeCSUA35E0Sia0A/et2JfJelcgwvqOrOjL4Er7gr/Gjz//e828hQnAERYD1yaW ATvQfnsf6TT7ZISSuh+zHEHirIID+0oiFaZ9LPwqA4w9S+jmq7eeRq7eU9LbAHPl VUL/o0y+Zd3rlAoTrPMH3zwgt2OvYt5H+LjF/GQ72cJ5/+HZyWI8AGqJrPQ7GgqX s4qoQc3ZTLQ2C9I0wWJsSJP1lrfkH+h3H4Zs3EsoqicCQ10SE/2LMIGga83ygG+M 9xMB6YB9+20NOX9TEfMQ/XWjWyL2DLHlgyuPsQrMb6r/KQj67MTv47fzdoXR7IXq ZSYBbJiVc9aOBKN6aRu5R5wHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5kUUvsRp FrAFID6hGSardRfTroMwHwYDVR0jBBgwFoAUGb2CLT62/26TcCRe6HS+qeuL7lUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNBMjk0L0JEQzA5QTJBOURB QTExRjA5NjQyMEI2M0M0RjlBRTAyL0diMkNMVDYyXzI2VGNDUmU2SFMtcWV1TDds VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvR2IyQ0xUNjJfMjZUY0NSZTZIUy1xZXVMN2xVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTI5NC9CREMwOUEyQTlEQUExMUYwOTY0MjBCNjNDNEY5QUUwMi8xRjhGOThFRUEy RjgxMUYwQUNBMzlCMThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJxFHzANBgkqhkiG9w0BAQsFAAOCAQEAmede1EYPnpjLm4Z/ 14pDg1pLLMFP0fJyHPcaJzT7UVtSJUOq2CeVk5nvYMltXZ1uK34rQfPI3wUumxQZ WQhmlvazSaAbGgxWPs22s5qIvwsaaLWSJvy08oirTTTDLX6gYIZqzfdd2yr/IqxG x5wXGcyoPKpI+tlUc+NoLwDHrrWHA0lmOzIGnBDE4pAUL3AcVEuhP40PoOGO24Fx P2TlaqClcrXsAOd7e6RY+HB0TgOlRioRGeoIVGTMOyN+asA9kLKwjTHqgDO5Nus8 9otNS+OVEW4ukgQhQNWe9t/WpgHdVRl5RJoetG8RcNA3iIe50qDcuLB/Hv4oDkI1 ad2Lig== -----END CERTIFICATE-----Generated at Wed Nov 5 19:08:16 2025 by rpki-client