$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/9A1D8B2E867D11ED856A8E54C4F9AE02.roa File: 9A1D8B2E867D11ED856A8E54C4F9AE02.roa (raw, json) Hash identifier: Ftoqw626ZuXPioWRGs+rylGl6w2encEy5Q2oIVggy+I= Subject key identifier: DE:7B:0C:40:4D:C5:24:C9:DE:5C:1A:45:A7:FB:5F:9E:64:9B:E9:CB Certificate issuer: /CN=A91CD39D/serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3 Certificate serial: 063B Authority key identifier: 56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/9A1D8B2E867D11ED856A8E54C4F9AE02.roa Signing time: Mon 03 Nov 2025 00:14:30 +0000 ROA not before: Mon 03 Nov 2025 00:14:30 +0000 ROA not after: Sun 01 Mar 2026 00:00:00 +0000 asID: 65001 IP address blocks: 42.104.91.0/24 maxlen: 24 123.63.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1595 (0x63b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD39D, serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3 Validity Not Before: Nov 3 00:14:30 2025 GMT Not After : Mar 1 00:00:00 2026 GMT Subject: CN=6907f3e5-665b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4e:3e:19:f3:c8:2e:88:f9:f1:35:b3:58:83: 92:32:a4:91:fd:4b:d8:dc:b1:f2:b4:c9:b0:c2:a8: c0:1b:7a:30:88:3d:46:e1:51:45:f0:8a:b3:88:75: 57:f6:8a:14:15:3d:07:b6:9d:da:e8:07:3e:95:a3: c2:9a:3c:27:98:8f:d2:90:30:02:d4:32:0c:c5:1a: 12:1f:e3:f0:ad:76:3a:95:92:40:c7:18:88:50:cc: d9:73:db:7d:2b:e8:62:5c:20:be:e3:7c:74:53:e1: 7f:e0:06:bd:37:d0:56:d9:f2:08:c0:6c:4b:f7:3f: b2:2c:49:f9:a7:d5:4a:47:9a:b5:68:7e:1e:c6:e1: a3:bd:85:f8:7b:e6:79:28:86:94:5a:f7:df:60:e7: f1:be:9e:18:e3:5e:53:b2:83:0b:d0:40:ac:7d:7d: c5:6c:36:c4:42:2a:b0:c6:f5:75:7a:31:c1:11:49: 2e:24:03:d2:87:f4:2f:39:e5:61:25:a4:fa:a3:d5: 9e:14:2c:56:19:3b:11:6c:f6:dc:a3:89:1d:98:35: 8d:c0:f2:16:53:f0:9c:46:7d:6f:2e:c3:dc:f0:b4: af:46:ea:9f:4d:8b:d4:cd:c3:1e:1b:00:af:cf:b0: 74:f2:9b:62:0c:d8:fe:6a:f8:72:83:25:50:3f:5b: 72:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:7B:0C:40:4D:C5:24:C9:DE:5C:1A:45:A7:FB:5F:9E:64:9B:E9:CB X509v3 Authority Key Identifier: keyid:56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/9A1D8B2E867D11ED856A8E54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 42.104.91.0/24 123.63.162.0/24 Signature Algorithm: sha256WithRSAEncryption 05:71:1c:25:e9:43:d6:50:b2:ba:07:80:4c:2c:63:98:9e:0c: 7b:26:68:8e:76:f3:d7:9d:9f:c0:db:8f:38:7b:24:1b:43:bd: e7:c4:98:3e:4d:3a:6a:ae:fb:1f:f3:23:d2:1e:70:e5:68:61: f7:ca:54:fc:19:79:8a:82:e5:49:df:92:c8:25:e1:34:df:80: 49:ff:8c:b5:16:f1:90:70:9d:91:3e:c2:55:8d:1c:cf:27:f6: e0:fb:cc:4d:14:a3:59:25:31:40:79:34:ae:6f:f9:ab:64:5e: 8a:cd:45:f3:02:3f:7e:69:6c:46:14:bd:de:fa:71:5a:05:bd: c4:eb:c3:bc:5d:3c:18:30:2a:37:ec:d6:31:15:74:bf:85:e2: f3:f6:d1:4e:8f:f0:46:84:48:3a:ea:6e:6a:35:17:78:1d:73: 40:c8:0d:27:59:ed:95:5d:36:e1:26:b8:77:0f:3e:eb:23:ab: 9f:5b:ff:f0:aa:1a:81:39:04:22:70:40:7c:70:96:50:f8:4f: de:11:9a:56:df:a0:46:8e:33:0d:cb:cb:d7:3a:ea:f0:c7:69: 63:ee:ce:4e:18:85:e0:b6:a5:fe:0e:c3:0b:6b:8b:fd:c7:b1: c6:ce:20:01:10:97:ef:9a:a4:ac:9b:9c:f0:4e:15:3b:13:8c: 8e:8b:a6:40 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBjswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QzOUQxMTAvBgNVBAUTKDU2Qjk4M0U0NkJDQkExMTVGRjIyNjVGRTQ5MTkwOUM3 RDc0MTQ3RjMwHhcNMjUxMTAzMDAxNDMwWhcNMjYwMzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3ZjNlNS02NjViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxE4+GfPILoj58TWzWIOSMqSR/UvY3LHytMmwwqjAG3owiD1G4VFF8IqziHVX 9ooUFT0Htp3a6Ac+laPCmjwnmI/SkDAC1DIMxRoSH+PwrXY6lZJAxxiIUMzZc9t9 K+hiXCC+43x0U+F/4Aa9N9BW2fIIwGxL9z+yLEn5p9VKR5q1aH4exuGjvYX4e+Z5 KIaUWvffYOfxvp4Y415TsoML0ECsfX3FbDbEQiqwxvV1ejHBEUkuJAPSh/QvOeVh JaT6o9WeFCxWGTsRbPbco4kdmDWNwPIWU/CcRn1vLsPc8LSvRuqfTYvUzcMeGwCv z7B08ptiDNj+avhygyVQP1tycQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFN57DEBN xSTJ3lwaRaf7X55km+nLMB8GA1UdIwQYMBaAFFa5g+Rry6EV/yJl/kkZCcfXQUfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDM5RC9ERTdEMkY5NDRF NzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9Wcm1ENUd2TG9SWF9JbVgtU1JrSng5ZEJS X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZybUQ1R3ZMb1JYX0ltWC1TUmtKeDlkQlJfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0QzOUQvREU3RDJGOTQ0RTc2MTFFQ0E1NzIwQjc5QzRGOUFFMDIvOUExRDhCMkU4 NjdEMTFFRDg1NkE4RTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAqaFsDBAB7P6IwDQYJKoZIhvcNAQELBQADggEBAAVxHCXp Q9ZQsroHgEwsY5ieDHsmaI5289edn8Dbjzh7JBtDvefEmD5NOmqu+x/zI9IecOVo YffKVPwZeYqC5Unfksgl4TTfgEn/jLUW8ZBwnZE+wlWNHM8n9uD7zE0Uo1klMUB5 NK5v+atkXorNRfMCP35pbEYUvd76cVoFvcTrw7xdPBgwKjfs1jEVdL+F4vP20U6P 8EaESDrqbmo1F3gdc0DIDSdZ7ZVdNuEmuHcPPusjq59b//CqGoE5BCJwQHxwllD4 T94RmlbfoEaOMw3Ly9c66vDHaWPuzk4YheC2pf4Owwtri/3HscbOIAEQl++apKyb nPBOFTsTjI6LpkA= -----END CERTIFICATE-----Generated at Wed Nov 5 17:07:58 2025 by rpki-client