$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/F008FF08C22111ECB9FFB964C4F9AE02.roa File: F008FF08C22111ECB9FFB964C4F9AE02.roa (raw, json) Hash identifier: zIG3zLAVWxm/uL6Nnm2BZh9Jzw4mH4IZOJKwMIxedUA= Subject key identifier: C3:24:BA:AF:81:40:0C:C3:C6:50:B0:C1:F6:0E:CE:FE:6A:64:01:31 Certificate issuer: /CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Certificate serial: 0680 Authority key identifier: 25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/F008FF08C22111ECB9FFB964C4F9AE02.roa Signing time: Tue 28 Oct 2025 06:06:33 +0000 ROA not before: Tue 28 Oct 2025 06:06:33 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45758 IP address blocks: 14.207.0.0/16 maxlen: 17 27.130.0.0/16 maxlen: 17 27.130.0.0/24 maxlen: 24 43.245.144.0/22 maxlen: 23 49.48.0.0/15 maxlen: 17 103.16.204.0/22 maxlen: 23 110.164.0.0/16 maxlen: 17 110.164.11.0/24 maxlen: 24 110.164.14.0/24 maxlen: 24 110.164.17.0/24 maxlen: 24 110.164.21.0/24 maxlen: 24 110.164.28.0/24 maxlen: 24 171.4.0.0/14 maxlen: 17 180.183.0.0/16 maxlen: 17 183.88.0.0/15 maxlen: 17 223.204.0.0/14 maxlen: 17 2403:6200::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 23:25:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1664 (0x680) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7561, serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Validity Not Before: Oct 28 06:06:33 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=69005d69-ec3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:0c:90:31:b2:c3:bf:44:7f:0d:b7:ea:fc:93: 2e:38:24:72:38:a1:de:f1:28:7e:e3:cf:4b:8e:1e: a8:d0:54:1a:c7:14:ac:b2:60:53:78:fc:74:b9:ae: 90:f3:2b:09:0d:06:37:1b:67:10:1f:85:64:8e:ee: d7:97:53:4c:cf:fd:cc:ea:dc:6c:cb:b9:3a:e8:60: 60:b8:8a:e1:72:ec:a1:50:78:2c:58:de:73:0a:3c: e1:e4:76:f9:4f:c2:30:a9:8f:5f:1b:dd:06:bf:52: 87:be:61:24:1f:1a:70:51:83:65:92:82:5f:34:a5: ed:f9:5d:f1:18:2b:e5:62:c6:25:87:16:33:d2:8c: 4a:85:b0:45:72:64:ae:fc:24:32:60:40:ea:84:05: de:d7:22:76:61:03:8a:50:f4:87:60:ad:64:46:98: 8b:90:77:ad:b0:bd:27:14:9c:fe:76:aa:85:1e:ae: b5:25:ca:58:05:4d:23:d5:5f:73:45:3b:7c:1d:b6: 30:99:83:70:1c:f0:07:d6:e5:82:60:df:66:bc:d6: c0:00:b0:5c:79:3b:91:76:f8:3b:81:54:d0:4e:2b: 04:3e:f5:65:3f:d7:da:20:aa:b2:d3:bf:cc:21:dd: 25:ea:1a:9f:bc:a6:fc:3a:83:c9:7c:f5:36:63:0b: 04:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:24:BA:AF:81:40:0C:C3:C6:50:B0:C1:F6:0E:CE:FE:6A:64:01:31 X509v3 Authority Key Identifier: keyid:25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/F008FF08C22111ECB9FFB964C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.207.0.0/16 27.130.0.0/16 43.245.144.0/22 49.48.0.0/15 103.16.204.0/22 110.164.0.0/16 171.4.0.0/14 180.183.0.0/16 183.88.0.0/15 223.204.0.0/14 IPv6: 2403:6200::/32 Signature Algorithm: sha256WithRSAEncryption 4b:03:06:a9:7a:76:92:02:11:04:c9:6b:8c:18:2e:ea:c8:7e: db:a0:10:fb:64:67:18:18:99:4e:7a:a9:ff:0b:99:a1:ed:b3: 52:fe:d2:e7:0a:21:8f:32:1c:cf:3c:a7:ea:1f:d9:8d:b2:4f: a1:c3:49:3a:27:27:99:5a:52:84:3a:e2:dd:84:88:0d:77:22: d8:a7:cc:0b:4a:b2:fe:cc:d2:58:f6:62:39:b2:30:9a:f5:86: 8c:2a:64:28:6a:af:6f:c1:d6:56:3f:ec:67:3b:c3:ea:f2:ea: c0:55:e2:b4:1a:ef:f6:a7:38:79:c3:58:e2:79:52:c6:6e:ad: 22:4a:17:52:86:d0:e8:1a:b0:3f:af:63:7e:c4:2e:b9:e7:80: 41:b0:ab:70:6b:3a:00:a3:35:3f:69:92:8e:7f:79:74:12:8e: ec:7e:d3:f5:c0:af:f4:66:cd:8f:4d:3d:e8:ac:9c:b9:2d:c3: 42:9d:81:48:05:a8:61:12:69:44:a1:72:5c:0d:c7:58:d0:25: be:43:01:ff:ac:48:7a:4d:7c:60:42:4f:16:75:02:d4:d5:30: 5c:68:db:3a:bb:92:0b:66:6a:ae:be:a3:d5:ca:47:dc:50:06: 20:3a:02:53:4c:5a:74:91:77:90:56:fa:4c:3e:09:de:94:19: 82:d6:04:84 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgICBoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NjExMTAvBgNVBAUTKDI1QkM3RDRERTc3QkQwMUIzRDE5MTU4NzY5NkU1QUZE RDhDRUNEMDQwHhcNMjUxMDI4MDYwNjMzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTAwNWQ2OS1lYzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwgyQMbLDv0R/Dbfq/JMuOCRyOKHe8Sh+489Ljh6o0FQaxxSssmBTePx0ua6Q 8ysJDQY3G2cQH4Vkju7Xl1NMz/3M6txsy7k66GBguIrhcuyhUHgsWN5zCjzh5Hb5 T8IwqY9fG90Gv1KHvmEkHxpwUYNlkoJfNKXt+V3xGCvlYsYlhxYz0oxKhbBFcmSu /CQyYEDqhAXe1yJ2YQOKUPSHYK1kRpiLkHetsL0nFJz+dqqFHq61JcpYBU0j1V9z RTt8HbYwmYNwHPAH1uWCYN9mvNbAALBceTuRdvg7gVTQTisEPvVlP9faIKqy07/M Id0l6hqfvKb8OoPJfPU2YwsEDQIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFMMkuq+B QAzDxlCwwfYOzv5qZAExMB8GA1UdIwQYMBaAFCW8fU3ne9AbPRkVh2luWv3Yzs0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU2MS9BMjZFMDZFMDA1 NEMxMUVDQkRCNEZFNDZDNEY5QUUwMi9KYng5VGVkNzBCczlHUldIYVc1YV9kak96 UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pieDlUZWQ3MEJzOUdSV0hhVzVhX2RqT3pRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc1NjEvQTI2RTA2RTAwNTRDMTFFQ0JEQjRGRTQ2QzRGOUFFMDIvRjAwOEZGMDhD MjIxMTFFQ0I5RkZCOTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXAYIKwYBBQUHAQcBAf8E TTBLMDoEAgABMDQDAwAOzwMDABuCAwQCK/WQAwMBMTADBAJnEMwDAwBupAMDAqsE AwMAtLcDAwG3WAMDAt/MMA0EAgACMAcDBQAkA2IAMA0GCSqGSIb3DQEBCwUAA4IB AQBLAwapenaSAhEEyWuMGC7qyH7boBD7ZGcYGJlOeqn/C5mh7bNS/tLnCiGPMhzP PKfqH9mNsk+hw0k6JyeZWlKEOuLdhIgNdyLYp8wLSrL+zNJY9mI5sjCa9YaMKmQo aq9vwdZWP+xnO8Pq8urAVeK0Gu/2pzh5w1jieVLGbq0iShdShtDoGrA/r2N+xC65 54BBsKtwazoAozU/aZKOf3l0Eo7sftP1wK/0Zs2PTT3orJy5LcNCnYFIBahhEmlE oXJcDcdY0CW+QwH/rEh6TXxgQk8WdQLU1TBcaNs6u5ILZmquvqPVykfcUAYgOgJT TFp0kXeQVvpMPgnelBmC1gSE -----END CERTIFICATE-----Generated at Wed Nov 5 10:08:19 2025 by rpki-client