$ rpki-client -vvf rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/67D535ACA32311F0A8D9D520C4F9AE02.roa File: 67D535ACA32311F0A8D9D520C4F9AE02.roa (raw, json) Hash identifier: ZY5NmPmVYKYD8Ao1eKkQAecn1eXKiXTVvX4cp2N0VAQ= Subject key identifier: 3D:A6:A9:7D:7F:ED:0A:11:0A:39:2D:33:63:DC:18:DE:95:0F:E5:14 Certificate issuer: /CN=A91D94CD/serialNumber=E706012A106BD094658E604C5603050F14DC3F4C Certificate serial: 06 Authority key identifier: E7:06:01:2A:10:6B:D0:94:65:8E:60:4C:56:03:05:0F:14:DC:3F:4C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5wYBKhBr0JRljmBMVgMFDxTcP0w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/67D535ACA32311F0A8D9D520C4F9AE02.roa Signing time: Tue 07 Oct 2025 02:14:51 +0000 ROA not before: Tue 07 Oct 2025 02:14:51 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 55547 IP address blocks: 165.84.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.crl rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5wYBKhBr0JRljmBMVgMFDxTcP0w.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:55:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D94CD, serialNumber=E706012A106BD094658E604C5603050F14DC3F4C Validity Not Before: Oct 7 02:14:51 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68e4779b-48bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:00:59:22:13:f0:ee:99:49:26:65:b3:02:ad: 40:c8:1e:da:a7:b3:fc:8b:0c:ac:d3:47:17:f6:0b: d2:8a:19:2f:74:34:7f:70:d7:89:e3:d1:84:c8:ad: 4d:9a:e5:3e:48:6e:cd:15:91:4d:85:fc:b6:23:6d: 68:33:90:73:f2:7f:d1:24:93:8d:8f:b4:07:99:2f: 1b:7a:1b:70:9a:6c:e3:a2:1b:38:e8:9f:74:3f:f2: fb:e2:0f:3a:76:b1:da:23:1f:7e:63:18:f8:2d:77: a0:78:37:5b:29:be:03:2e:9b:29:b1:e6:01:0e:92: 34:fe:d6:d0:aa:8d:7b:76:96:b0:17:73:26:10:30: 85:d9:4a:6c:b6:c2:41:82:66:c7:c9:1f:82:b4:ad: 98:c3:69:4b:98:16:58:4b:c1:85:cc:17:6f:76:2b: 13:c9:e2:ff:d8:04:09:01:8e:01:1f:8b:2b:ea:36: 5e:ba:4c:c0:9f:19:ea:b9:66:53:f8:b6:65:44:32: 51:c8:73:12:5e:99:52:8a:f9:4d:c6:bd:23:21:12: 0e:d8:f7:23:04:7d:ec:8d:4d:6c:fc:f9:58:19:27: fe:ab:78:d2:8c:92:af:c6:88:84:73:5a:95:ce:28: 13:08:c3:b9:bd:2e:75:c0:d7:83:65:40:fb:47:c8: 84:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:A6:A9:7D:7F:ED:0A:11:0A:39:2D:33:63:DC:18:DE:95:0F:E5:14 X509v3 Authority Key Identifier: keyid:E7:06:01:2A:10:6B:D0:94:65:8E:60:4C:56:03:05:0F:14:DC:3F:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/5wYBKhBr0JRljmBMVgMFDxTcP0w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5wYBKhBr0JRljmBMVgMFDxTcP0w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D94CD/2CD7FD0E9EC811F08CD2AC7BC4F9AE02/67D535ACA32311F0A8D9D520C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.84.245.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:ee:8b:b4:03:d2:4c:49:ec:8c:0a:c8:e8:a5:55:f3:1b:9b: ff:01:b2:10:88:97:0d:f9:48:78:d8:f4:07:e3:78:8f:53:bc: 76:49:5e:ed:8b:b1:65:2e:78:ef:24:3f:0a:b2:e5:4b:11:8f: 69:5d:95:37:a3:d1:fb:dc:ef:01:eb:41:ef:71:03:8c:f1:5c: a0:c6:15:6c:04:d3:e6:85:87:d3:66:76:99:75:e0:ab:f8:9a: bf:e3:78:72:40:ff:a2:13:db:73:dd:98:2b:2a:eb:6f:21:bf: 34:ce:ad:1c:11:ed:02:16:37:ff:27:6e:3a:00:d6:db:e5:68: a5:ee:b9:7e:f8:70:2f:c5:63:97:0c:f0:1c:c2:cb:53:09:09: 14:f3:9f:df:6b:8d:93:34:58:d3:6f:76:5f:45:4b:5a:cb:07: 60:e7:c1:f8:56:b6:89:e7:1e:cf:e6:63:4c:b6:27:87:12:80: f9:98:78:94:5e:a5:ad:e6:27:8f:89:89:36:db:25:01:d0:bd: 15:d3:66:56:32:56:63:49:cc:4c:30:11:80:eb:c3:8e:d0:19: ec:9d:0c:08:5a:6e:f4:3f:0f:74:35:e0:a4:2e:b1:19:d0:82: b3:2e:27:94:04:33:9b:ee:be:d6:b8:ff:46:01:96:69:02:69: 9a:66:f0:08 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE OTRDRDExMC8GA1UEBRMoRTcwNjAxMkExMDZCRDA5NDY1OEU2MDRDNTYwMzA1MEYx NERDM0Y0QzAeFw0yNTEwMDcwMjE0NTFaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZTQ3NzliLTQ4YmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmAFkiE/DumUkmZbMCrUDIHtqns/yLDKzTRxf2C9KKGS90NH9w14nj0YTIrU2a 5T5Ibs0VkU2F/LYjbWgzkHPyf9Ekk42PtAeZLxt6G3CabOOiGzjon3Q/8vviDzp2 sdojH35jGPgtd6B4N1spvgMumymx5gEOkjT+1tCqjXt2lrAXcyYQMIXZSmy2wkGC ZsfJH4K0rZjDaUuYFlhLwYXMF292KxPJ4v/YBAkBjgEfiyvqNl66TMCfGeq5ZlP4 tmVEMlHIcxJemVKK+U3GvSMhEg7Y9yMEfeyNTWz8+VgZJ/6reNKMkq/GiIRzWpXO KBMIw7m9LnXA14NlQPtHyIRhAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUPaapfX/t ChEKOS0zY9wY3pUP5RQwHwYDVR0jBBgwFoAU5wYBKhBr0JRljmBMVgMFDxTcP0ww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ5NENELzJDRDdGRDBFOUVD ODExRjA4Q0QyQUM3QkM0RjlBRTAyLzV3WUJLaEJyMEpSbGptQk1WZ01GRHhUY1Aw dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNXdZQktoQnIwSlJsam1CTVZnTUZEeFRjUDB3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE OTRDRC8yQ0Q3RkQwRTlFQzgxMUYwOENEMkFDN0JDNEY5QUUwMi82N0Q1MzVBQ0Ez MjMxMUYwQThEOUQ1MjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKVU9TANBgkqhkiG9w0BAQsFAAOCAQEAa+6LtAPSTEnsjArI 6KVV8xub/wGyEIiXDflIeNj0B+N4j1O8dkle7YuxZS547yQ/CrLlSxGPaV2VN6PR +9zvAetB73EDjPFcoMYVbATT5oWH02Z2mXXgq/iav+N4ckD/ohPbc92YKyrrbyG/ NM6tHBHtAhY3/yduOgDW2+Vope65fvhwL8VjlwzwHMLLUwkJFPOf32uNkzRY0292 X0VLWssHYOfB+Fa2iecez+ZjTLYnhxKA+Zh4lF6lreYnj4mJNtslAdC9FdNmVjJW Y0nMTDARgOvDjtAZ7J0MCFpu9D8PdDXgpC6xGdCCsy4nlAQzm+6+1rj/RgGWaQJp mmbwCA== -----END CERTIFICATE-----Generated at Wed Nov 5 03:36:20 2025 by rpki-client