$ rpki-client -vvf rpki.apnic.net/member_repository/A91E13CF/1906AA4E8E3511F09E05E310C4F9AE02/D88B7AD48E3511F0A7463923C4F9AE02.roa File: D88B7AD48E3511F0A7463923C4F9AE02.roa (raw, json) Hash identifier: iBuE2y9jsCxNhDssZJLnYX+1LbXLRzvojv5ZS/EkcXw= Subject key identifier: E6:2F:1A:A1:7F:7C:1C:85:24:CE:9D:AF:AC:24:6D:39:F1:46:A5:DA Certificate issuer: /CN=A91E13CF/serialNumber=65E0AFA4D101BAA05D425DEB7C252896CB8D5A86 Certificate serial: 1C Authority key identifier: 65:E0:AF:A4:D1:01:BA:A0:5D:42:5D:EB:7C:25:28:96:CB:8D:5A:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeCvpNEBuqBdQl3rfCUolsuNWoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E13CF/1906AA4E8E3511F09E05E310C4F9AE02/D88B7AD48E3511F0A7463923C4F9AE02.roa Signing time: Wed 29 Oct 2025 07:51:33 +0000 ROA not before: Wed 29 Oct 2025 07:51:33 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 45460 IP address blocks: 202.158.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E13CF/1906AA4E8E3511F09E05E310C4F9AE02/ZeCvpNEBuqBdQl3rfCUolsuNWoY.crl rsync://rpki.apnic.net/member_repository/A91E13CF/1906AA4E8E3511F09E05E310C4F9AE02/ZeCvpNEBuqBdQl3rfCUolsuNWoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeCvpNEBuqBdQl3rfCUolsuNWoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:59:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28 (0x1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E13CF, serialNumber=65E0AFA4D101BAA05D425DEB7C252896CB8D5A86 Validity Not Before: Oct 29 07:51:33 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=6901c785-bd3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:f2:fb:2d:37:7f:de:09:27:13:38:56:6f:e0: 09:27:63:a1:84:b4:d2:1e:1c:82:b3:28:b0:9c:17: 9f:2d:36:d1:a5:48:59:37:e4:5b:4f:c5:49:58:b5: 9d:5e:83:61:18:3f:f5:42:15:39:e1:84:63:c2:2d: 0d:da:fb:1b:53:6f:ca:70:b5:bd:8b:7c:73:74:05: 58:69:85:b2:cb:d6:d9:ee:d4:e0:7f:c3:ed:cd:6d: 07:70:47:9f:f6:5b:27:68:1e:f5:44:be:56:9b:51: 33:b9:39:8c:54:8c:45:b1:55:f4:38:7b:76:05:54: bf:4b:04:8d:c4:5c:99:bb:c5:a7:c7:6c:ab:d2:72: f5:f8:0a:b9:9e:cc:f1:6a:b6:e1:ca:f4:50:b8:43: f8:8c:4e:37:54:27:e5:a2:74:8c:b2:95:db:e7:c7: 21:49:d4:f7:0a:55:4a:81:e4:87:c1:39:08:c5:cd: 21:5b:99:66:33:47:30:4a:1e:7d:b3:9a:7d:7d:60: 89:b7:e6:f8:7e:71:fc:2d:c6:41:27:03:ab:a1:2b: da:df:5a:9b:d6:e2:d0:4a:5b:78:7d:5b:f6:d1:aa: 28:0a:0e:43:0f:41:6d:17:a3:ae:0c:14:e4:75:b0: f5:cf:0f:ca:8a:09:5e:1c:d2:5c:92:86:35:a2:ef: c3:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:2F:1A:A1:7F:7C:1C:85:24:CE:9D:AF:AC:24:6D:39:F1:46:A5:DA X509v3 Authority Key Identifier: keyid:65:E0:AF:A4:D1:01:BA:A0:5D:42:5D:EB:7C:25:28:96:CB:8D:5A:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E13CF/1906AA4E8E3511F09E05E310C4F9AE02/ZeCvpNEBuqBdQl3rfCUolsuNWoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZeCvpNEBuqBdQl3rfCUolsuNWoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E13CF/1906AA4E8E3511F09E05E310C4F9AE02/D88B7AD48E3511F0A7463923C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.158.241.0/24 Signature Algorithm: sha256WithRSAEncryption ac:9d:28:93:fb:ad:64:a7:b4:09:34:2d:2c:fc:58:6a:98:e8: fb:e3:86:16:bd:9b:6b:81:d6:6c:36:81:6d:48:bd:77:1d:94: b6:8e:00:87:50:88:94:ed:99:e0:8c:05:3f:9c:0e:8c:dc:35: a5:91:b4:27:c1:ad:2c:73:2b:29:ab:5c:5d:9e:bb:c8:04:a3: 4e:2f:9f:03:fa:3c:00:30:31:47:08:73:88:39:4b:d0:24:2e: 11:29:fa:8b:dc:ba:2a:c3:8c:0f:89:4a:b5:36:23:98:4a:e0: 41:f8:2b:6c:89:27:86:36:09:28:36:12:35:91:0a:70:2a:ec: 27:f5:50:e9:c1:be:dd:a9:ba:25:86:14:06:b6:7f:a8:a4:eb: 8f:c0:c1:41:e8:b5:49:54:5a:79:ae:be:4c:ce:b1:56:82:ae: da:3f:c3:79:66:48:6d:8f:98:39:7a:6a:18:ec:46:05:8f:a8: e8:25:14:bc:02:cf:3c:7c:7e:02:79:20:04:45:79:f7:40:1d: da:d8:c4:e4:a1:9f:fa:38:11:20:bf:73:f6:b0:d2:b8:c8:1c: 14:1c:fe:56:02:3e:25:5a:80:25:48:33:d0:ab:ec:f6:ca:7b: 63:a0:4d:1e:4d:11:6b:fb:ff:34:d8:5f:29:60:af:4d:d6:dd: 67:59:52:fa -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MTNDRjExMC8GA1UEBRMoNjVFMEFGQTREMTAxQkFBMDVENDI1REVCN0MyNTI4OTZD QjhENUE4NjAeFw0yNTEwMjkwNzUxMzNaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MDFjNzg1LWJkM2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCd8vstN3/eCScTOFZv4AknY6GEtNIeHIKzKLCcF58tNtGlSFk35FtPxUlYtZ1e g2EYP/VCFTnhhGPCLQ3a+xtTb8pwtb2LfHN0BVhphbLL1tnu1OB/w+3NbQdwR5/2 WydoHvVEvlabUTO5OYxUjEWxVfQ4e3YFVL9LBI3EXJm7xafHbKvScvX4CrmezPFq tuHK9FC4Q/iMTjdUJ+WidIyyldvnxyFJ1PcKVUqB5IfBOQjFzSFbmWYzRzBKHn2z mn19YIm35vh+cfwtxkEnA6uhK9rfWpvW4tBKW3h9W/bRqigKDkMPQW0Xo64MFOR1 sPXPD8qKCV4c0lyShjWi78O3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5i8aoX98 HIUkzp2vrCRtOfFGpdowHwYDVR0jBBgwFoAUZeCvpNEBuqBdQl3rfCUolsuNWoYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUxM0NGLzE5MDZBQTRFOEUz NTExRjA5RTA1RTMxMEM0RjlBRTAyL1plQ3ZwTkVCdXFCZFFsM3JmQ1VvbHN1Tldv WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWmVDdnBORUJ1cUJkUWwzcmZDVW9sc3VOV29ZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MTNDRi8xOTA2QUE0RThFMzUxMUYwOUUwNUUzMTBDNEY5QUUwMi9EODhCN0FENDhF MzUxMUYwQTc0NjM5MjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMqe8TANBgkqhkiG9w0BAQsFAAOCAQEArJ0ok/utZKe0CTQt LPxYapjo++OGFr2ba4HWbDaBbUi9dx2Uto4Ah1CIlO2Z4IwFP5wOjNw1pZG0J8Gt LHMrKatcXZ67yASjTi+fA/o8ADAxRwhziDlL0CQuESn6i9y6KsOMD4lKtTYjmErg QfgrbIknhjYJKDYSNZEKcCrsJ/VQ6cG+3am6JYYUBrZ/qKTrj8DBQei1SVRaea6+ TM6xVoKu2j/DeWZIbY+YOXpqGOxGBY+o6CUUvALPPHx+AnkgBEV590Ad2tjE5KGf +jgRIL9z9rDSuMgcFBz+VgI+JVqAJUgz0Kvs9sp7Y6BNHk0Ra/v/NNhfKWCvTdbd Z1lS+g== -----END CERTIFICATE-----Generated at Wed Nov 5 09:39:18 2025 by rpki-client