$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/25A3C2F46D1B11F09E59264EC4F9AE02.roa File: 25A3C2F46D1B11F09E59264EC4F9AE02.roa (raw, json) Hash identifier: kVvYTMPtgHwsUkZPDczbmpMIcCo1nTBkPJhrNXV6gY8= Subject key identifier: DA:3A:B5:D5:81:47:7E:D1:73:F9:11:B5:8B:B4:05:85:7B:DF:B8:66 Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 28B6 Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/25A3C2F46D1B11F09E59264EC4F9AE02.roa Signing time: Wed 30 Jul 2025 07:59:41 +0000 ROA not before: Wed 30 Jul 2025 07:59:41 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 7843 IP address blocks: 43.254.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:32:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10422 (0x28b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Validity Not Before: Jul 30 07:59:41 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6889d0ed-5acd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5c:2b:5f:fe:37:e3:e2:a9:59:7c:03:eb:36: a1:03:cf:98:44:54:d9:81:fd:f8:d4:bd:91:5b:22: 74:5f:96:bb:b2:c8:69:a9:ab:3f:b5:25:25:b4:c7: ad:14:8e:a5:2d:65:ec:a8:cc:5c:2b:c5:f9:4c:5c: 38:19:0a:c8:1c:19:8d:c4:dc:b9:10:89:1c:e2:60: f6:65:44:ed:19:38:ce:4d:ca:b1:00:4e:b6:d7:a5: c0:a4:1c:e5:df:cc:88:3b:a4:20:ec:fc:cb:2b:2e: 70:e5:75:a4:80:cc:7c:58:58:82:ac:ae:52:b1:40: b2:ef:7b:fe:4a:30:ee:3d:24:a6:2b:f6:99:29:ba: cb:f5:98:84:d1:0a:5d:49:47:73:43:fc:56:f4:70: af:27:7e:70:e3:7c:0f:59:a5:31:1d:b9:9e:1d:56: 7d:cc:c2:c7:ee:ac:8d:02:b7:91:32:e1:97:b4:c0: 7b:1a:a4:ab:a6:62:1f:92:d7:63:be:07:05:fa:bc: 1c:87:ca:43:bc:56:72:5c:b8:68:a2:26:a9:78:9a: 96:34:d0:14:6f:f8:67:51:2a:ce:15:17:04:b6:a2: 67:ff:39:13:3a:18:29:12:97:60:12:09:1a:7d:81: 0b:80:c7:b5:b0:c6:e9:1b:cf:31:36:9d:ea:49:35: db:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:3A:B5:D5:81:47:7E:D1:73:F9:11:B5:8B:B4:05:85:7B:DF:B8:66 X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/25A3C2F46D1B11F09E59264EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.12.0/22 Signature Algorithm: sha256WithRSAEncryption bf:6a:22:9d:77:92:50:fb:ca:15:bf:20:2a:d1:88:34:38:78: 16:ec:46:02:76:eb:b2:9e:03:74:42:0b:1b:f7:ee:67:24:83: f4:a8:ca:b1:b8:bc:bb:9d:e8:b6:a0:b5:ae:19:18:03:dc:ab: 7c:4f:71:bc:68:f9:3b:4d:51:35:5d:bc:5d:e4:4b:8c:67:f0: 64:d7:14:9f:ac:72:ee:e5:55:c6:f3:33:09:3e:38:00:aa:d6: fd:07:88:40:f6:aa:7b:7a:db:07:3d:f0:dd:bf:8b:62:57:f2: a7:a4:03:2c:22:3d:6e:61:43:5f:09:22:ba:8b:61:a9:8e:5c: 5a:ef:07:ab:9a:9f:94:57:17:a2:5a:82:d9:75:46:51:b8:c2: 79:a4:2c:63:51:46:9d:1b:84:fc:b6:04:39:fa:08:2a:fa:db: 52:45:20:90:9b:9e:af:e2:30:8e:ed:10:e2:49:0f:6e:89:18: ef:0e:b4:a4:04:ec:86:77:7a:05:3a:87:0c:4a:c2:c8:c0:c9: 16:2a:fa:a0:01:04:1b:fa:c6:4b:dc:97:f4:d2:cc:aa:07:a4: c3:ba:8e:d1:3d:d4:c6:b2:89:46:d9:a5:72:16:e5:c2:60:2e: 6c:8b:a7:ac:d0:c8:41:c8:43:0f:08:07:7c:af:b0:f4:ba:ea: af:29:fc:e4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKLYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjUwNzMwMDc1OTQxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg5ZDBlZC01YWNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtVwrX/434+KpWXwD6zahA8+YRFTZgf341L2RWyJ0X5a7sshpqas/tSUltMet FI6lLWXsqMxcK8X5TFw4GQrIHBmNxNy5EIkc4mD2ZUTtGTjOTcqxAE6216XApBzl 38yIO6Qg7PzLKy5w5XWkgMx8WFiCrK5SsUCy73v+SjDuPSSmK/aZKbrL9ZiE0Qpd SUdzQ/xW9HCvJ35w43wPWaUxHbmeHVZ9zMLH7qyNAreRMuGXtMB7GqSrpmIfktdj vgcF+rwch8pDvFZyXLhooiapeJqWNNAUb/hnUSrOFRcEtqJn/zkTOhgpEpdgEgka fYELgMe1sMbpG88xNp3qSTXbIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNo6tdWB R37Rc/kRtYu0BYV737hmMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvMjVBM0MyRjQ2 RDFCMTFGMDlFNTkyNjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIr/gwwDQYJKoZIhvcNAQELBQADggEBAL9qIp13klD7yhW/ ICrRiDQ4eBbsRgJ267KeA3RCCxv37mckg/SoyrG4vLud6Lagta4ZGAPcq3xPcbxo +TtNUTVdvF3kS4xn8GTXFJ+scu7lVcbzMwk+OACq1v0HiED2qnt62wc98N2/i2JX 8qekAywiPW5hQ18JIrqLYamOXFrvB6uan5RXF6Jagtl1RlG4wnmkLGNRRp0bhPy2 BDn6CCr621JFIJCbnq/iMI7tEOJJD26JGO8OtKQE7IZ3egU6hwxKwsjAyRYq+qAB BBv6xkvcl/TSzKoHpMO6jtE91MayiUbZpXIW5cJgLmyLp6zQyEHIQw8IB3yvsPS6 6q8p/OQ= -----END CERTIFICATE-----Generated at Wed Nov 5 14:44:05 2025 by rpki-client