$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/4944017C8FAF11F0B59F0948C4F9AE02.roa File: 4944017C8FAF11F0B59F0948C4F9AE02.roa (raw, json) Hash identifier: BwcQamXNLiosPDRZ6f2FtmfW9jpBhqektxQqopKnPY4= Subject key identifier: 3C:AA:24:3F:78:C9:6D:5A:D8:F6:05:FB:6E:47:84:15:19:3B:AC:A6 Certificate issuer: /CN=A91DF93A/serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260 Certificate serial: 08F4 Authority key identifier: 07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/4944017C8FAF11F0B59F0948C4F9AE02.roa Signing time: Fri 12 Sep 2025 08:05:46 +0000 ROA not before: Fri 12 Sep 2025 08:05:46 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153259 IP address blocks: 164.90.73.0/24 maxlen: 24 164.90.97.0/24 maxlen: 24 164.90.104.0/24 maxlen: 24 164.90.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.crl rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:49:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2292 (0x8f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A, serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260 Validity Not Before: Sep 12 08:05:46 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68c3d45a-dba0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:18:63:fd:01:e7:37:c5:3c:b3:82:7d:b7:0c: 92:6d:33:72:c7:6b:31:48:01:04:7b:56:81:93:76: b1:f1:d3:39:34:3a:35:90:8d:65:7b:69:7d:d8:79: b1:3d:85:01:6e:72:4c:d1:5c:ae:aa:96:95:b9:01: a8:06:f7:5c:26:b6:64:d5:00:9d:2a:04:45:e1:40: a8:c3:66:88:eb:44:33:07:76:19:af:4d:c3:7c:11: bc:b8:02:8c:23:bd:df:33:4f:16:e5:01:08:aa:8b: 15:28:a9:b4:93:6a:67:19:da:8f:46:e0:67:b5:03: 20:47:7a:8f:57:b5:18:7e:e4:2f:9c:b7:5f:d7:ae: a7:11:4a:c9:fa:c8:12:cc:8c:d6:a7:14:68:1d:29: 74:fb:46:28:77:e9:b7:b8:3e:b4:93:ac:2d:5b:3f: 5d:fd:f6:87:d6:0a:37:7b:d7:91:ba:4e:03:bc:4e: 57:7b:9b:b5:5f:55:c2:c2:99:0d:a2:c8:b8:c3:73: e1:a8:ae:06:2d:c1:12:d7:21:7b:3a:17:36:e6:48: 5a:70:19:54:ce:b5:89:b8:ef:9e:74:4d:86:51:03: 48:fb:5b:9b:6a:ea:e9:da:7e:b6:7d:a4:bc:ae:d5: 3b:2b:6c:14:da:7c:40:78:97:ec:18:9f:fd:22:09: 4e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:AA:24:3F:78:C9:6D:5A:D8:F6:05:FB:6E:47:84:15:19:3B:AC:A6 X509v3 Authority Key Identifier: keyid:07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/4944017C8FAF11F0B59F0948C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 164.90.73.0/24 164.90.97.0/24 164.90.104.0/24 164.90.123.0/24 Signature Algorithm: sha256WithRSAEncryption ac:5c:1c:50:03:93:fb:d3:83:08:26:05:6b:33:c7:4a:d4:cf: de:61:4e:98:ca:e2:52:92:7d:dc:4c:29:6d:23:93:27:5f:50: e8:a3:31:86:f7:63:e5:70:a3:75:c6:68:13:7d:4c:9e:3e:4b: 79:4e:84:91:98:12:92:59:ec:d5:57:c8:ce:bf:c8:1c:60:47: ba:63:e1:fa:62:45:74:ef:6f:72:b9:78:82:61:8b:19:ce:c7: f6:75:fc:91:00:ad:17:11:aa:0d:c9:7c:7e:b5:09:f5:78:74: a5:5b:60:4f:a8:44:a7:cd:bd:58:09:eb:8a:22:4d:27:62:13: 84:c1:c5:ed:93:d9:c5:55:fc:4e:30:ba:b3:a7:c7:90:a7:bd: 84:0d:7a:5a:b8:76:a9:24:00:f8:5f:71:11:3c:55:d0:4a:1b: 03:b6:57:4f:d2:41:e2:75:c5:bc:e8:86:23:c0:35:f9:45:7e: 6a:c4:28:9e:28:d0:1a:31:9a:59:97:cc:88:8e:dd:99:29:78: 55:95:29:40:54:87:df:28:9c:08:b9:48:bc:06:6e:ef:57:ab: 3e:19:07:a3:82:92:2f:d6:42:30:21:a9:d9:f7:da:11:47:89: 08:ec:22:5d:c0:df:a9:11:02:02:d1:63:8d:96:24:73:32:e9: 40:c4:e3:a7 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDA3QTFDMDg1NDVDQUNDNjVFMDg4MkQ0OUU5RjJGOENG RDJCRTgyNjAwHhcNMjUwOTEyMDgwNTQ2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMzZDQ1YS1kYmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzBhj/QHnN8U8s4J9twySbTNyx2sxSAEEe1aBk3ax8dM5NDo1kI1le2l92Hmx PYUBbnJM0VyuqpaVuQGoBvdcJrZk1QCdKgRF4UCow2aI60QzB3YZr03DfBG8uAKM I73fM08W5QEIqosVKKm0k2pnGdqPRuBntQMgR3qPV7UYfuQvnLdf166nEUrJ+sgS zIzWpxRoHSl0+0Yod+m3uD60k6wtWz9d/faH1go3e9eRuk4DvE5Xe5u1X1XCwpkN osi4w3PhqK4GLcES1yF7Ohc25khacBlUzrWJuO+edE2GUQNI+1ubaurp2n62faS8 rtU7K2wU2nxAeJfsGJ/9IglOAwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFDyqJD94 yW1a2PYF+25HhBUZO6ymMB8GA1UdIwQYMBaAFAehwIVFysxl4IgtSeny+M/SvoJg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GRjUxRTU5RUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9CNkhBaFVYS3pHWGdpQzFKNmZMNHo5Sy1n bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I2SEFoVVhLekdYZ2lDMUo2Zkw0ejlLLWdtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRkY1MUU1OUVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvNDk0NDAxN0M4 RkFGMTFGMEI1OUYwOTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBACkWkkDBACkWmEDBACkWmgDBACkWnswDQYJKoZIhvcNAQEL BQADggEBAKxcHFADk/vTgwgmBWszx0rUz95hTpjK4lKSfdxMKW0jkydfUOijMYb3 Y+Vwo3XGaBN9TJ4+S3lOhJGYEpJZ7NVXyM6/yBxgR7pj4fpiRXTvb3K5eIJhixnO x/Z1/JEArRcRqg3JfH61CfV4dKVbYE+oRKfNvVgJ64oiTSdiE4TBxe2T2cVV/E4w urOnx5CnvYQNelq4dqkkAPhfcRE8VdBKGwO2V0/SQeJ1xbzohiPANflFfmrEKJ4o 0BoxmlmXzIiO3ZkpeFWVKUBUh98onAi5SLwGbu9Xqz4ZB6OCki/WQjAhqdn32hFH iQjsIl3A36kRAgLRY42WJHMy6UDE46c= -----END CERTIFICATE-----Generated at Wed Nov 5 22:32:37 2025 by rpki-client