$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/65FAD636AF1411F0BE4BF94FC4F9AE02.roa File: 65FAD636AF1411F0BE4BF94FC4F9AE02.roa (raw, json) Hash identifier: C5FWkpg3JA7HokTHMhnJCp3tLDwUp2pk+wUDmviorYo= Subject key identifier: 38:13:CC:28:ED:9F:3E:5C:7E:B4:0A:70:17:50:67:85:39:86:6B:19 Certificate issuer: /CN=A91CB6E8/serialNumber=5DDFDD383156FA5B6534112E9C8E153BB20057C6 Certificate serial: 03 Authority key identifier: 5D:DF:DD:38:31:56:FA:5B:65:34:11:2E:9C:8E:15:3B:B2:00:57:C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xd_dODFW-ltlNBEunI4VO7IAV8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/65FAD636AF1411F0BE4BF94FC4F9AE02.roa Signing time: Wed 22 Oct 2025 06:57:39 +0000 ROA not before: Wed 22 Oct 2025 06:57:39 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 154308 IP address blocks: 138.252.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/Xd_dODFW-ltlNBEunI4VO7IAV8Y.crl rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/Xd_dODFW-ltlNBEunI4VO7IAV8Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xd_dODFW-ltlNBEunI4VO7IAV8Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 08:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB6E8, serialNumber=5DDFDD383156FA5B6534112E9C8E153BB20057C6 Validity Not Before: Oct 22 06:57:39 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=68f88063-07cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:e9:b2:b1:58:1e:3c:5e:cb:2b:0e:bb:cf:3f: 2e:ed:06:6f:b2:14:12:d0:87:16:f1:e2:94:56:01: 98:b7:85:f0:8e:4e:8c:34:44:94:6b:c5:5a:84:b1: d9:9d:e4:c8:e4:c4:07:81:5c:dd:bb:77:34:f8:f0: b3:70:d7:f1:a7:55:b0:f8:56:de:f7:33:2d:32:fd: 0f:1d:e5:b3:e9:51:6e:32:d8:94:07:54:90:17:2f: 56:97:bb:b7:9b:39:ea:a9:3e:46:28:34:49:ea:03: 74:d3:1d:2e:fc:35:94:71:df:07:9e:30:f3:d1:50: 5b:a3:24:2a:a4:6b:ee:ab:7d:44:d6:3c:89:3f:1f: 77:b7:9e:1a:f5:cd:98:ff:f2:89:97:6f:8f:96:01: dc:cc:5a:81:e6:cc:29:9e:23:c4:33:b4:e0:09:64: 46:02:c1:5d:d9:fb:94:3b:f6:5d:08:22:d5:2c:90: 2a:68:9f:a3:f9:62:0f:74:fa:53:11:ef:8c:ff:83: e2:fc:b2:d2:2c:30:e7:4a:c8:c8:92:22:97:ad:0c: 9a:40:10:4e:ba:f4:ba:d1:86:61:f8:29:ad:68:74: 29:1c:e1:5e:80:e8:79:b4:a0:50:1c:bf:97:c4:99: f4:34:2a:35:50:af:5e:e5:fd:98:f6:01:db:a6:65: 5e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:13:CC:28:ED:9F:3E:5C:7E:B4:0A:70:17:50:67:85:39:86:6B:19 X509v3 Authority Key Identifier: keyid:5D:DF:DD:38:31:56:FA:5B:65:34:11:2E:9C:8E:15:3B:B2:00:57:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/Xd_dODFW-ltlNBEunI4VO7IAV8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Xd_dODFW-ltlNBEunI4VO7IAV8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB6E8/F9B02888AEFE11F088B99C27C4F9AE02/65FAD636AF1411F0BE4BF94FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.85.0/24 Signature Algorithm: sha256WithRSAEncryption 30:e0:ec:7e:41:77:16:9d:5f:41:b3:91:a7:b1:f6:73:e9:16: 46:8c:68:58:a8:f8:5b:e3:31:e5:61:51:ac:8c:d4:20:dd:f5: 72:76:e3:8b:15:67:f1:07:db:66:21:ef:0e:d6:65:c4:e1:c0: 1f:74:79:91:f5:d0:74:f9:b5:ef:c7:b5:bb:1e:f4:ad:6a:9b: 1d:bb:0e:ba:33:97:78:b5:cd:f0:b4:94:24:38:37:85:a1:b2: 46:fc:f8:08:ff:d9:7d:7d:42:a2:55:73:8c:40:9d:e0:9e:85: f9:43:1e:68:4e:77:83:e5:0e:a4:b5:25:d7:e5:fe:b4:30:31: d5:c4:f0:ae:36:18:4b:c7:1d:12:c3:98:cd:5d:bd:4b:91:4c: 2f:d6:9b:b8:d5:8f:77:f5:82:d5:17:c5:62:b1:0a:34:7b:76: 8e:d4:63:de:b8:74:2f:45:00:80:a7:9a:0f:16:05:e3:30:64: ae:dc:5f:5f:17:e3:99:ce:c3:3e:8b:e3:26:e0:37:cd:f8:0a: 36:6c:67:9c:71:b7:d0:b7:dc:37:95:ec:56:59:46:50:5b:b3: 5c:ca:d8:2e:8c:34:fc:9e:db:ae:07:1e:76:8d:b5:86:da:69: f4:fd:d7:78:31:3a:5d:0f:a8:48:dc:43:f6:e4:59:30:9a:d7: e7:b9:0c:e2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjZFODExMC8GA1UEBRMoNURERkREMzgzMTU2RkE1QjY1MzQxMTJFOUM4RTE1M0JC MjAwNTdDNjAeFw0yNTEwMjIwNjU3MzlaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Zjg4MDYzLTA3Y2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDX6bKxWB48XssrDrvPPy7tBm+yFBLQhxbx4pRWAZi3hfCOTow0RJRrxVqEsdmd 5MjkxAeBXN27dzT48LNw1/GnVbD4Vt73My0y/Q8d5bPpUW4y2JQHVJAXL1aXu7eb OeqpPkYoNEnqA3TTHS78NZRx3weeMPPRUFujJCqka+6rfUTWPIk/H3e3nhr1zZj/ 8omXb4+WAdzMWoHmzCmeI8QztOAJZEYCwV3Z+5Q79l0IItUskCpon6P5Yg90+lMR 74z/g+L8stIsMOdKyMiSIpetDJpAEE669LrRhmH4Ka1odCkc4V6A6Hm0oFAcv5fE mfQ0KjVQr17l/Zj2AdumZV4bAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUOBPMKO2f Plx+tApwF1BnhTmGaxkwHwYDVR0jBBgwFoAUXd/dODFW+ltlNBEunI4VO7IAV8Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCNkU4L0Y5QjAyODg4QUVG RTExRjA4OEI5OUMyN0M0RjlBRTAyL1hkX2RPREZXLWx0bE5CRXVuSTRWTzdJQVY4 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvWGRfZE9ERlctbHRsTkJFdW5JNFZPN0lBVjhZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjZFOC9GOUIwMjg4OEFFRkUxMUYwODhCOTlDMjdDNEY5QUUwMi82NUZBRDYzNkFG MTQxMUYwQkU0QkY5NEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAIr8VTANBgkqhkiG9w0BAQsFAAOCAQEAMODsfkF3Fp1fQbOR p7H2c+kWRoxoWKj4W+Mx5WFRrIzUIN31cnbjixVn8QfbZiHvDtZlxOHAH3R5kfXQ dPm178e1ux70rWqbHbsOujOXeLXN8LSUJDg3haGyRvz4CP/ZfX1ColVzjECd4J6F +UMeaE53g+UOpLUl1+X+tDAx1cTwrjYYS8cdEsOYzV29S5FML9abuNWPd/WC1RfF YrEKNHt2jtRj3rh0L0UAgKeaDxYF4zBkrtxfXxfjmc7DPovjJuA3zfgKNmxnnHG3 0LfcN5XsVllGUFuzXMrYLow0/J7brgcedo21htpp9P3XeDE6XQ+oSNxD9uRZMJrX 57kM4g== -----END CERTIFICATE-----Generated at Wed Nov 5 00:09:28 2025 by rpki-client