$ rpki-client -vvf rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/BAEB4B28FBDF11EA8B73595BC4F9AE02.roa File: BAEB4B28FBDF11EA8B73595BC4F9AE02.roa (raw, json) Hash identifier: ifnttSikDir1yImvAFVipioa7skYYnhRDTcV+wTBhrA= Subject key identifier: 78:B9:BD:17:52:31:A5:7A:55:5B:48:F4:DF:51:84:A2:9F:49:82:55 Certificate issuer: /CN=A91E96D9/serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Certificate serial: 08A4 Authority key identifier: 21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/BAEB4B28FBDF11EA8B73595BC4F9AE02.roa Signing time: Wed 22 Oct 2025 21:39:54 +0000 ROA not before: Wed 22 Oct 2025 21:39:54 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9387 IP address blocks: 116.0.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:49:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2212 (0x8a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E96D9, serialNumber=219EA63C6AC966DDB285886BD711C78A14DF512B Validity Not Before: Oct 22 21:39:54 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f94f2a-549a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9c:01:8b:88:e7:46:73:a2:da:2b:df:bb:62: b5:b7:b2:ce:cd:e6:97:2a:2e:ec:03:7b:3f:d8:41: 16:f3:32:29:c1:31:27:6a:f2:08:8a:a0:be:b5:35: 4e:1a:aa:04:8e:4c:34:a7:d8:fe:29:cc:c7:73:9b: 1d:37:37:69:4d:03:bb:f3:7a:06:12:f0:70:a8:94: 88:bc:12:d9:c7:b0:63:b6:6e:c9:5e:4e:65:56:91: 21:8f:49:0b:51:7a:68:a8:e9:2a:1d:e6:82:ef:82: a6:f9:16:c7:59:66:ee:d5:f9:18:dd:75:46:98:38: 67:c7:c8:43:32:a6:51:82:5e:a2:2e:b3:68:37:17: 2c:a0:fd:bf:26:4c:0d:0e:57:56:58:32:1d:29:6c: 58:88:db:07:a5:4d:17:f1:ba:ff:52:e5:8a:be:46: 94:20:2c:dd:bd:6f:6b:3d:9c:ae:29:6a:6e:4d:23: bf:de:15:3a:2a:52:79:b0:de:41:43:0a:d5:c3:00: e7:66:ea:3e:ab:03:cd:75:23:c1:67:cc:54:cd:1a: bd:bb:cb:05:54:19:bb:fc:13:0c:ab:29:aa:5f:44: 31:b4:b6:1d:7d:45:7a:38:11:7e:04:3d:27:9e:e4: cf:2b:9c:e7:d6:1b:4f:cd:ed:36:f9:62:fa:53:6f: 63:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:B9:BD:17:52:31:A5:7A:55:5B:48:F4:DF:51:84:A2:9F:49:82:55 X509v3 Authority Key Identifier: keyid:21:9E:A6:3C:6A:C9:66:DD:B2:85:88:6B:D7:11:C7:8A:14:DF:51:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/IZ6mPGrJZt2yhYhr1xHHihTfUSs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IZ6mPGrJZt2yhYhr1xHHihTfUSs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E96D9/80DFDEC0E5DD11EAB2468D65C4F9AE02/BAEB4B28FBDF11EA8B73595BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.0.60.0/24 Signature Algorithm: sha256WithRSAEncryption 60:eb:03:00:da:57:d5:94:1b:52:6b:47:1a:85:c9:63:98:d3: b2:28:53:59:f4:8b:31:9c:b7:ab:3d:2f:59:e4:76:a0:da:b5: 0c:0a:20:a5:0d:85:96:bf:c6:e3:74:32:36:b5:b5:68:e6:a4: e4:d4:9d:cf:bd:a4:dd:a1:25:f0:c1:a7:65:16:ce:e2:cd:e4: 3a:ae:b0:c3:6e:ba:6f:e4:d4:3d:e9:4e:40:6f:31:57:fe:11: 45:92:6d:b0:07:bd:44:d6:72:40:a5:98:65:f8:dd:a2:d6:a8: 96:5c:79:75:27:1f:fc:de:cf:e0:c7:a4:3c:41:fc:18:89:2b: ad:d2:df:be:ec:cd:4c:95:54:d5:a9:fb:e4:70:20:98:ca:b3: ef:58:ca:36:e2:cb:81:37:52:95:07:f4:c4:8c:87:f8:a5:a0: f7:ba:f1:25:84:1c:47:f4:e7:b5:cd:b9:99:82:9d:24:31:85: 90:5a:25:da:8c:a2:c5:de:94:e9:44:1a:9a:54:b3:9b:41:fc: e2:18:1d:51:e6:bc:08:62:e9:70:fa:64:cb:0b:56:03:30:79: 13:01:fc:53:df:83:3b:e0:4f:21:ce:93:53:a8:c6:63:48:a7: 1a:84:43:a2:95:aa:65:41:d1:47:26:d7:7e:e2:97:2c:39:8c: 71:a0:cb:11 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk2RDkxMTAvBgNVBAUTKDIxOUVBNjNDNkFDOTY2RERCMjg1ODg2QkQ3MTFDNzhB MTRERjUxMkIwHhcNMjUxMDIyMjEzOTU0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5NGYyYS01NDlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpwBi4jnRnOi2ivfu2K1t7LOzeaXKi7sA3s/2EEW8zIpwTEnavIIiqC+tTVO GqoEjkw0p9j+KczHc5sdNzdpTQO783oGEvBwqJSIvBLZx7Bjtm7JXk5lVpEhj0kL UXpoqOkqHeaC74Km+RbHWWbu1fkY3XVGmDhnx8hDMqZRgl6iLrNoNxcsoP2/JkwN DldWWDIdKWxYiNsHpU0X8br/UuWKvkaUICzdvW9rPZyuKWpuTSO/3hU6KlJ5sN5B QwrVwwDnZuo+qwPNdSPBZ8xUzRq9u8sFVBm7/BMMqymqX0QxtLYdfUV6OBF+BD0n nuTPK5zn1htPze02+WL6U29jRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHi5vRdS MaV6VVtI9N9RhKKfSYJVMB8GA1UdIwQYMBaAFCGepjxqyWbdsoWIa9cRx4oU31Er MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTZEOS84MERGREVDMEU1 REQxMUVBQjI0NjhENjVDNEY5QUUwMi9JWjZtUEdySlp0MnloWWhyMXhISGloVGZV U3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0laNm1QR3JKWnQyeWhZaHIxeEhIaWhUZlVTcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk2RDkvODBERkRFQzBFNUREMTFFQUIyNDY4RDY1QzRGOUFFMDIvQkFFQjRCMjhG QkRGMTFFQThCNzM1OTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0ADwwDQYJKoZIhvcNAQELBQADggEBAGDrAwDaV9WUG1Jr RxqFyWOY07IoU1n0izGct6s9L1nkdqDatQwKIKUNhZa/xuN0Mja1tWjmpOTUnc+9 pN2hJfDBp2UWzuLN5DqusMNuum/k1D3pTkBvMVf+EUWSbbAHvUTWckClmGX43aLW qJZceXUnH/zez+DHpDxB/BiJK63S377szUyVVNWp++RwIJjKs+9Yyjbiy4E3UpUH 9MSMh/iloPe68SWEHEf057XNuZmCnSQxhZBaJdqMosXelOlEGppUs5tB/OIYHVHm vAhi6XD6ZMsLVgMweRMB/FPfgzvgTyHOk1OoxmNIpxqEQ6KVqmVB0Ucm137ilyw5 jHGgyxE= -----END CERTIFICATE-----Generated at Tue Nov 4 22:51:54 2025 by rpki-client