$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1B4B4FC2152F11ECB72E546FC4F9AE02.roa File: 1B4B4FC2152F11ECB72E546FC4F9AE02.roa (raw, json) Hash identifier: M6Pt8WXLhq//MKcmuNDOr2BuMndgWlnu7AwCPG6iTjw= Subject key identifier: BB:07:79:E3:A3:71:B9:7B:4D:B1:2A:32:7B:43:33:2B:DD:7C:09:89 Certificate issuer: /CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Certificate serial: 34E6 Authority key identifier: D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1B4B4FC2152F11ECB72E546FC4F9AE02.roa Signing time: Sun 02 Nov 2025 15:30:56 +0000 ROA not before: Sun 02 Nov 2025 15:30:56 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 17890 IP address blocks: 210.7.48.0/21 maxlen: 21 210.7.48.0/24 maxlen: 24 210.7.49.0/24 maxlen: 24 210.7.50.0/24 maxlen: 24 210.7.51.0/24 maxlen: 24 210.7.52.0/24 maxlen: 24 210.7.53.0/24 maxlen: 24 210.7.54.0/24 maxlen: 24 210.7.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:08:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13542 (0x34e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27F3, serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Validity Not Before: Nov 2 15:30:56 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=69077930-5242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a0:7c:f1:08:3e:d8:38:9d:21:2d:88:31:a6: c5:fb:d0:6b:fd:22:58:6a:e8:44:52:53:9e:02:68: e5:a9:40:05:0a:8b:4a:d2:85:d7:2d:04:c4:de:22: 6a:6d:e2:82:89:f4:0a:9e:6e:1f:53:f9:96:82:79: af:2d:ae:a7:06:63:12:9d:8c:00:b7:18:c2:31:9f: 2b:c8:61:68:2d:f8:03:5c:4e:f4:96:e4:97:b7:28: 0a:3d:59:01:bd:82:60:c6:0d:f1:b5:af:6f:d5:24: 35:cc:a2:48:19:5f:d4:d9:c8:74:b8:d3:0c:90:05: c2:c1:41:fb:49:3b:6d:f1:f9:25:c1:8c:2b:93:eb: 72:9b:ce:5b:d7:c9:f0:bc:f9:38:d0:e0:60:82:e1: ee:2f:ed:b3:4d:0e:a9:80:7b:0e:88:64:ce:2d:58: 4f:7b:be:dd:18:0a:db:17:35:d8:3f:52:21:93:e8: 4c:32:8e:18:17:f9:39:5e:ac:ea:ba:8c:16:6f:06: 12:a4:8d:7e:87:b3:4e:42:50:44:80:df:36:21:8f: 56:ca:f0:5b:d1:70:ec:fa:03:5a:fb:18:f5:8b:4c: 5a:0b:7f:3b:41:1d:df:53:94:93:25:19:bb:70:25: fc:8c:f2:44:10:0a:a3:a1:68:77:88:96:e8:8c:1b: 67:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:07:79:E3:A3:71:B9:7B:4D:B1:2A:32:7B:43:33:2B:DD:7C:09:89 X509v3 Authority Key Identifier: keyid:D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1B4B4FC2152F11ECB72E546FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.7.48.0/21 Signature Algorithm: sha256WithRSAEncryption 53:c0:6c:bb:b6:5a:29:d2:c6:51:13:37:d5:b3:a0:6d:3a:05: 69:9b:98:e9:9a:8c:7b:2b:3c:10:a4:f1:5c:30:65:03:48:4e: a3:f0:c5:ab:e8:bf:6d:b2:fd:20:86:a9:12:64:a6:ce:e6:6e: 3f:73:66:a8:65:89:83:cc:21:f2:49:bd:d6:f9:9a:d5:28:f9: b0:8b:a2:91:0f:a5:1e:a9:5c:c6:cc:da:5b:8a:b2:1f:1c:40: de:e5:65:a0:fb:39:49:e2:71:fd:51:7f:f4:a7:f7:64:d7:d4: b7:4f:89:d0:b4:a3:58:30:a5:1a:ca:29:72:e4:31:a6:ef:e5: b7:0e:de:6b:be:52:f7:46:6b:1e:c8:5f:d4:f4:7a:db:45:64: 09:07:89:84:b7:07:66:3b:18:30:c0:3e:21:3c:2c:30:24:b4: b8:d4:fc:d9:ed:68:55:4c:74:14:b2:32:65:34:1b:35:8f:e4: ae:47:59:1a:fc:b5:fa:7f:f0:a6:15:a7:e9:6b:d6:06:cc:d4: d7:75:d4:52:4b:32:ad:2d:76:53:72:f0:11:9c:0b:91:8c:e2: f6:15:7a:6b:f6:fa:63:35:9f:11:01:4b:b4:cf:b5:ae:a9:82: b2:5a:3d:f2:60:1a:1c:57:82:fc:d6:1d:25:41:89:2a:4e:08: e7:a0:b3:0d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3RjMxMTAvBgNVBAUTKEQ0MDIzNDU4NEFGNjA1OTFGMzdERDNGQkEyN0VCQ0I4 NUNDNzY1NkEwHhcNMjUxMTAyMTUzMDU2WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA3NzkzMC01MjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr6B88Qg+2DidIS2IMabF+9Br/SJYauhEUlOeAmjlqUAFCotK0oXXLQTE3iJq beKCifQKnm4fU/mWgnmvLa6nBmMSnYwAtxjCMZ8ryGFoLfgDXE70luSXtygKPVkB vYJgxg3xta9v1SQ1zKJIGV/U2ch0uNMMkAXCwUH7STtt8fklwYwrk+tym85b18nw vPk40OBgguHuL+2zTQ6pgHsOiGTOLVhPe77dGArbFzXYP1Ihk+hMMo4YF/k5Xqzq uowWbwYSpI1+h7NOQlBEgN82IY9WyvBb0XDs+gNa+xj1i0xaC387QR3fU5STJRm7 cCX8jPJEEAqjoWh3iJbojBtn3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLsHeeOj cbl7TbEqMntDMyvdfAmJMB8GA1UdIwQYMBaAFNQCNFhK9gWR833T+6J+vLhcx2Vq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdGMy9BNkRFMUNFODFE QTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJaSHpmZFA3b242OHVGekha V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBSTBXRXIyQlpIemZkUDdvbjY4dUZ6SFpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI3RjMvQTZERTFDRTgxREExMTFFMkEzMkVGMjkzMDhCMDJDRDIvMUI0QjRGQzIx NTJGMTFFQ0I3MkU1NDZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPSBzAwDQYJKoZIhvcNAQELBQADggEBAFPAbLu2WinSxlET N9WzoG06BWmbmOmajHsrPBCk8VwwZQNITqPwxavov22y/SCGqRJkps7mbj9zZqhl iYPMIfJJvdb5mtUo+bCLopEPpR6pXMbM2luKsh8cQN7lZaD7OUnicf1Rf/Sn92TX 1LdPidC0o1gwpRrKKXLkMabv5bcO3mu+UvdGax7IX9T0ettFZAkHiYS3B2Y7GDDA PiE8LDAktLjU/NntaFVMdBSyMmU0GzWP5K5HWRr8tfp/8KYVp+lr1gbM1Nd11FJL Mq0tdlNy8BGcC5GM4vYVemv2+mM1nxEBS7TPta6pgrJaPfJgGhxXgvzWHSVBiSpO COegsw0= -----END CERTIFICATE-----Generated at Wed Nov 5 13:08:29 2025 by rpki-client