$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/D4FCF92C716B11ED9F349A49C4F9AE02.roa File: D4FCF92C716B11ED9F349A49C4F9AE02.roa (raw, json) Hash identifier: 3oz010kHjy9f1SrDCo+LpVpuyACU2GvRan7CsQDERQg= Subject key identifier: B0:61:17:8D:90:DF:DA:5A:B7:B5:71:60:5C:6F:2D:69:69:11:18:81 Certificate issuer: /CN=A91CD39D/serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3 Certificate serial: 063C Authority key identifier: 56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/D4FCF92C716B11ED9F349A49C4F9AE02.roa Signing time: Mon 03 Nov 2025 00:14:30 +0000 ROA not before: Mon 03 Nov 2025 00:14:30 +0000 ROA not after: Sun 01 Mar 2026 00:00:00 +0000 asID: 65004 IP address blocks: 122.15.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 00:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1596 (0x63c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD39D, serialNumber=56B983E46BCBA115FF2265FE491909C7D74147F3 Validity Not Before: Nov 3 00:14:30 2025 GMT Not After : Mar 1 00:00:00 2026 GMT Subject: CN=6907f3e6-a679 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:66:8c:e1:a2:fe:cc:b4:11:6b:a7:3d:e7:4a: de:6c:68:ca:28:12:0b:c7:b6:a7:88:e4:dc:5f:41: 13:7d:4e:ec:ce:7a:7b:92:4f:d6:12:4c:7b:0f:a1: e8:b9:c7:0f:fa:c2:df:08:47:bd:2c:10:92:5a:13: 86:87:c0:b8:f3:ed:68:22:f2:c3:1e:36:c1:2a:4e: ad:5d:d4:e4:30:7f:1d:a1:e0:cc:dd:cb:02:74:a4: 9d:fe:f2:55:5c:26:45:88:39:1c:ce:5a:fe:18:d1: ae:c3:cf:bb:27:1e:32:84:65:aa:9c:8c:2f:ee:cf: ac:8d:db:7e:35:7d:ed:c9:2f:02:12:ae:2a:31:63: 0a:b8:3b:2a:6e:ed:8a:f9:73:43:3f:7b:75:62:6d: 2d:ce:a6:29:e1:1a:6d:ad:4b:ef:e1:55:60:46:d5: 6d:42:ef:66:bc:6d:bb:c9:0e:26:0f:78:ab:9f:00: c7:e8:bf:9f:3b:7b:38:f7:d0:e9:75:16:0d:ac:c5: 9d:11:1b:17:bd:1b:c0:45:bc:87:34:52:92:4f:d2: 5d:c8:a0:ef:b2:29:16:4a:96:ba:fe:e2:62:de:b9: 9d:23:c3:43:a9:99:09:43:2b:44:7f:0e:7a:84:0a: ee:6d:04:d8:66:3d:1f:9e:0e:f6:cb:18:0b:5e:59: 59:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:61:17:8D:90:DF:DA:5A:B7:B5:71:60:5C:6F:2D:69:69:11:18:81 X509v3 Authority Key Identifier: keyid:56:B9:83:E4:6B:CB:A1:15:FF:22:65:FE:49:19:09:C7:D7:41:47:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/VrmD5GvLoRX_ImX-SRkJx9dBR_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrmD5GvLoRX_ImX-SRkJx9dBR_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD39D/DE7D2F944E7611ECA5720B79C4F9AE02/D4FCF92C716B11ED9F349A49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.15.208.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:5a:44:ec:02:a5:c6:72:f5:3e:ae:cf:09:2a:bd:96:a9:97: 20:61:d1:99:ce:97:f3:77:7e:d8:2f:32:6c:a0:2d:2f:94:78: 88:f4:40:06:22:8a:15:35:b4:5a:f7:49:cb:b9:40:97:fa:d2: 8b:43:d1:de:af:9e:45:d8:88:f9:04:85:c3:79:38:03:9d:71: a5:29:95:95:79:48:c8:aa:97:5b:3b:40:f9:53:6c:d1:f2:b1: 25:48:3d:f7:93:ab:0a:bd:dd:c8:75:b1:07:b7:52:10:2e:34: c6:ce:bd:c7:51:c2:b1:b4:6a:b2:d1:6b:47:bc:1e:22:d5:52: 10:a1:d9:f0:30:66:09:96:bd:3d:9d:48:f3:06:c4:b7:95:c4: 1a:6a:54:cc:c4:3b:0d:a2:51:a9:27:70:a5:a0:ea:df:2b:cc: fc:08:0b:e8:77:47:87:94:a1:e2:42:57:48:ce:b5:91:f7:1d: 9d:3d:f5:22:f2:63:eb:40:e2:5c:9f:a1:30:f4:80:13:e3:a6: f6:3f:b5:bd:4f:df:f1:c3:f6:0a:9a:41:ab:0f:63:a1:29:50: 9a:75:d6:e3:17:c8:5f:25:d5:36:37:72:84:99:89:40:8e:25: 54:6c:aa:a0:18:f2:c3:0a:53:78:18:80:1e:1b:66:be:10:1d: 9e:ec:9f:c8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBjwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0QzOUQxMTAvBgNVBAUTKDU2Qjk4M0U0NkJDQkExMTVGRjIyNjVGRTQ5MTkwOUM3 RDc0MTQ3RjMwHhcNMjUxMTAzMDAxNDMwWhcNMjYwMzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3ZjNlNi1hNjc5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzWaM4aL+zLQRa6c950rebGjKKBILx7aniOTcX0ETfU7sznp7kk/WEkx7D6Ho uccP+sLfCEe9LBCSWhOGh8C48+1oIvLDHjbBKk6tXdTkMH8doeDM3csCdKSd/vJV XCZFiDkczlr+GNGuw8+7Jx4yhGWqnIwv7s+sjdt+NX3tyS8CEq4qMWMKuDsqbu2K +XNDP3t1Ym0tzqYp4RptrUvv4VVgRtVtQu9mvG27yQ4mD3irnwDH6L+fO3s499Dp dRYNrMWdERsXvRvARbyHNFKST9JdyKDvsikWSpa6/uJi3rmdI8NDqZkJQytEfw56 hArubQTYZj0fng72yxgLXllZHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLBhF42Q 39pat7VxYFxvLWlpERiBMB8GA1UdIwQYMBaAFFa5g+Rry6EV/yJl/kkZCcfXQUfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDM5RC9ERTdEMkY5NDRF NzYxMUVDQTU3MjBCNzlDNEY5QUUwMi9Wcm1ENUd2TG9SWF9JbVgtU1JrSng5ZEJS X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZybUQ1R3ZMb1JYX0ltWC1TUmtKeDlkQlJfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0QzOUQvREU3RDJGOTQ0RTc2MTFFQ0E1NzIwQjc5QzRGOUFFMDIvRDRGQ0Y5MkM3 MTZCMTFFRDlGMzQ5QTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB6D9AwDQYJKoZIhvcNAQELBQADggEBAHtaROwCpcZy9T6u zwkqvZaplyBh0ZnOl/N3ftgvMmygLS+UeIj0QAYiihU1tFr3Scu5QJf60otD0d6v nkXYiPkEhcN5OAOdcaUplZV5SMiql1s7QPlTbNHysSVIPfeTqwq93ch1sQe3UhAu NMbOvcdRwrG0arLRa0e8HiLVUhCh2fAwZgmWvT2dSPMGxLeVxBpqVMzEOw2iUakn cKWg6t8rzPwIC+h3R4eUoeJCV0jOtZH3HZ099SLyY+tA4lyfoTD0gBPjpvY/tb1P 3/HD9gqaQasPY6EpUJp11uMXyF8l1TY3coSZiUCOJVRsqqAY8sMKU3gYgB4bZr4Q HZ7sn8g= -----END CERTIFICATE-----Generated at Wed Nov 5 05:50:30 2025 by rpki-client