$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/1104D6A2AF1611F0AF70E679C4F9AE02.roa File: 1104D6A2AF1611F0AF70E679C4F9AE02.roa (raw, json) Hash identifier: FWjLvjv3Gipsu55Q7SW82j2fnJS3sRrWxfm+lFFErW0= Subject key identifier: C0:63:E6:00:E6:48:30:6A:C7:D9:52:21:A5:C3:AA:26:79:64:46:D6 Certificate issuer: /CN=A91CB6E8/serialNumber=5DDFDD383156FA5B6534112E9C8E153BB20057C6 Certificate serial: 0A Authority key identifier: 5D:DF:DD:38:31:56:FA:5B:65:34:11:2E:9C:8E:15:3B:B2:00:57:C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xd_dODFW-ltlNBEunI4VO7IAV8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/1104D6A2AF1611F0AF70E679C4F9AE02.roa Signing time: Wed 22 Oct 2025 07:09:36 +0000 ROA not before: Wed 22 Oct 2025 07:09:36 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 134204 IP address blocks: 138.252.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/Xd_dODFW-ltlNBEunI4VO7IAV8Y.crl rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/Xd_dODFW-ltlNBEunI4VO7IAV8Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xd_dODFW-ltlNBEunI4VO7IAV8Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 08:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB6E8, serialNumber=5DDFDD383156FA5B6534112E9C8E153BB20057C6 Validity Not Before: Oct 22 07:09:36 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=68f88330-062b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cd:42:35:30:b6:b3:bd:eb:ed:0d:b4:b4:bc: 0c:10:63:c0:78:92:d2:de:ab:9b:95:a6:ea:23:c8: d2:dd:5d:40:62:98:54:dc:68:68:60:ed:19:ed:2b: 26:cb:c6:62:c1:05:99:34:1b:bc:aa:1c:7f:5d:b4: e6:1c:24:21:f7:99:3e:c2:92:f0:52:c3:6e:f3:3e: 6f:82:f8:70:59:32:48:c9:2c:0a:6c:5a:f4:3f:c3: 36:89:e8:f8:83:d8:e0:9b:e4:5c:ad:38:f2:1c:6a: c8:4d:b9:80:22:2c:c0:6e:d0:36:a4:92:ee:81:d0: 6a:ba:f3:9e:77:be:0f:b4:36:e6:ad:b4:53:85:d7: f7:44:25:2f:34:75:e6:f9:c3:ac:32:ca:15:85:ac: 32:db:5d:88:af:25:e6:0b:67:10:23:9f:bb:94:54: a8:01:0a:75:37:77:65:9d:b2:5e:cd:f2:13:15:f6: 85:44:60:b9:e2:1f:42:df:78:12:32:71:19:47:0c: b4:b2:a8:97:02:c4:54:c1:a5:11:4e:9a:ef:ef:2d: 28:99:d5:58:7a:a7:12:41:1b:bf:26:74:78:c2:61: 05:ce:ac:c2:8f:ec:1e:05:35:7a:29:d8:bb:c0:92: 23:90:e1:c7:00:50:c4:5b:46:1d:98:58:6b:40:ab: d2:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:63:E6:00:E6:48:30:6A:C7:D9:52:21:A5:C3:AA:26:79:64:46:D6 X509v3 Authority Key Identifier: keyid:5D:DF:DD:38:31:56:FA:5B:65:34:11:2E:9C:8E:15:3B:B2:00:57:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/Xd_dODFW-ltlNBEunI4VO7IAV8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xd_dODFW-ltlNBEunI4VO7IAV8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/1104D6A2AF1611F0AF70E679C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.84.0/24 Signature Algorithm: sha256WithRSAEncryption 07:1c:0d:5f:d0:85:ec:e3:79:13:c2:9f:df:e4:cc:2b:ff:2b: 64:68:7d:7f:b4:46:09:35:e3:22:c1:7e:d9:c9:d1:4a:2d:db: d2:7b:ae:41:b5:df:29:9f:2c:de:32:1b:69:be:0e:8e:41:73: a7:e7:ca:74:6e:d6:b6:1a:8f:ca:da:ff:87:15:43:82:b3:bc: ff:4b:23:31:40:67:59:8b:fb:f7:2a:4f:c8:d7:06:18:9c:5a: 4b:b5:8e:38:48:35:2f:c7:f8:06:00:68:27:7c:85:a0:9a:48: ab:e6:ba:39:3a:46:7a:3a:fa:11:c6:96:6d:7c:1e:50:3e:0e: 71:8d:70:fb:4c:7d:8c:93:ed:8d:df:68:06:58:ed:7e:41:5f: 95:57:50:a7:4f:31:33:3d:62:30:5e:81:9a:d2:ce:9c:e0:04: d2:ef:8d:2c:d8:11:d0:18:c7:dc:5c:20:db:47:ee:d5:d0:7e: 6e:75:5c:1c:5d:6b:ea:de:07:27:38:12:94:cf:45:92:6d:e8: fc:56:78:a7:14:f8:57:ae:d7:0e:61:f2:c2:4c:aa:fb:28:ab: 71:bf:fd:20:18:33:a7:df:61:e2:e6:cf:c5:1d:61:cf:e8:43: b1:ce:39:08:4d:d1:c8:03:07:44:0a:6b:53:db:0c:30:22:69: 2a:bb:97:4d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjZFODExMC8GA1UEBRMoNURERkREMzgzMTU2RkE1QjY1MzQxMTJFOUM4RTE1M0JC MjAwNTdDNjAeFw0yNTEwMjIwNzA5MzZaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Zjg4MzMwLTA2MmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7zUI1MLazvevtDbS0vAwQY8B4ktLeq5uVpuojyNLdXUBimFTcaGhg7RntKybL xmLBBZk0G7yqHH9dtOYcJCH3mT7CkvBSw27zPm+C+HBZMkjJLApsWvQ/wzaJ6PiD 2OCb5FytOPIcashNuYAiLMBu0Dakku6B0Gq68553vg+0NuattFOF1/dEJS80deb5 w6wyyhWFrDLbXYivJeYLZxAjn7uUVKgBCnU3d2Wdsl7N8hMV9oVEYLniH0LfeBIy cRlHDLSyqJcCxFTBpRFOmu/vLSiZ1Vh6pxJBG78mdHjCYQXOrMKP7B4FNXop2LvA kiOQ4ccAUMRbRh2YWGtAq9JVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUwGPmAOZI MGrH2VIhpcOqJnlkRtYwHwYDVR0jBBgwFoAUXd/dODFW+ltlNBEunI4VO7IAV8Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCNkU4L0Y5QjAyODg4QUVG RTExRjA4OEI5OUMyN0M0RjlBRTAyL1hkX2RPREZXLWx0bE5CRXVuSTRWTzdJQVY4 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWGRfZE9ERlctbHRsTkJFdW5JNFZPN0lBVjhZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjZFOC9GOUIwMjg4OEFFRkUxMUYwODhCOTlDMjdDNEY5QUUwMi8xMTA0RDZBMkFG MTYxMUYwQUY3MEU2NzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAIr8VDANBgkqhkiG9w0BAQsFAAOCAQEABxwNX9CF7ON5E8Kf 3+TMK/8rZGh9f7RGCTXjIsF+2cnRSi3b0nuuQbXfKZ8s3jIbab4OjkFzp+fKdG7W thqPytr/hxVDgrO8/0sjMUBnWYv79ypPyNcGGJxaS7WOOEg1L8f4BgBoJ3yFoJpI q+a6OTpGejr6EcaWbXweUD4OcY1w+0x9jJPtjd9oBljtfkFflVdQp08xMz1iMF6B mtLOnOAE0u+NLNgR0BjH3Fwg20fu1dB+bnVcHF1r6t4HJzgSlM9Fkm3o/FZ4pxT4 V67XDmHywkyq+yircb/9IBgzp99h4ubPxR1hz+hDsc45CE3RyAMHRAprU9sMMCJp KruXTQ== -----END CERTIFICATE-----Generated at Wed Nov 5 00:03:24 2025 by rpki-client