$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/395D655C7E7D11F09D59515FC4F9AE02.roa File: 395D655C7E7D11F09D59515FC4F9AE02.roa (raw, json) Hash identifier: X7yiw9KkbMvfPSh6NmhVBMacnnndeqJr+fXdsNTW1D8= Subject key identifier: 01:A0:09:24:9F:84:2D:C4:37:7E:3A:CD:E2:3B:32:C0:96:BA:46:2C Certificate issuer: /CN=A91F3CB1/serialNumber=7AD79EEB3B928354D950DC6E4F8BECCB25C2FC4B Certificate serial: 86 Authority key identifier: 7A:D7:9E:EB:3B:92:83:54:D9:50:DC:6E:4F:8B:EC:CB:25:C2:FC:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/395D655C7E7D11F09D59515FC4F9AE02.roa Signing time: Thu 23 Oct 2025 20:55:26 +0000 ROA not before: Thu 23 Oct 2025 20:55:26 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 136501 IP address blocks: 202.60.228.0/22 maxlen: 22 202.60.228.0/24 maxlen: 24 202.60.229.0/24 maxlen: 24 202.60.230.0/24 maxlen: 24 202.60.231.0/24 maxlen: 24 202.60.232.0/22 maxlen: 22 202.60.232.0/24 maxlen: 24 202.60.233.0/24 maxlen: 24 202.60.234.0/24 maxlen: 24 202.60.235.0/24 maxlen: 24 202.60.236.0/23 maxlen: 23 202.60.236.0/24 maxlen: 24 202.60.237.0/24 maxlen: 24 202.60.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.crl rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3CB1, serialNumber=7AD79EEB3B928354D950DC6E4F8BECCB25C2FC4B Validity Not Before: Oct 23 20:55:26 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68fa963e-0932 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:78:69:b4:41:d9:d1:f7:3a:fe:dc:d5:d2:f4: ca:40:17:5c:32:4b:89:5b:a9:31:ff:8a:a5:44:58: 87:74:25:80:41:dc:e8:d2:e8:6f:1b:ef:3a:70:66: f6:a2:8b:d8:6c:99:29:e6:41:99:51:ea:08:00:76: 30:81:62:b1:a2:78:6e:76:c6:87:87:49:fc:e5:58: f9:b7:78:26:c8:a5:82:a3:d7:7b:39:c3:8d:27:97: 7a:57:c9:24:65:b9:5c:1c:ab:86:6c:63:40:c1:83: af:99:ad:d6:35:cd:f3:9a:09:51:26:8e:05:a4:c3: e1:d5:2d:1b:aa:bd:cd:53:da:74:ce:21:5b:ce:c7: 14:9e:ea:d9:e5:ca:24:c2:38:51:36:0f:a5:a6:6c: 0d:e2:dc:dc:c8:02:e4:3c:e1:7d:d9:38:13:d9:ac: a9:45:36:27:b9:b3:2a:1f:67:33:77:e0:13:01:8b: 4c:10:68:32:ea:99:c1:da:88:4b:8d:c3:e6:a0:81: 5f:67:a8:c5:3d:88:97:11:54:31:05:20:47:82:89: 49:da:ac:e7:1a:45:2e:54:07:a7:46:70:5c:0d:96: ac:b9:4c:84:50:90:e4:05:e2:46:0b:2f:8b:c1:2b: ba:dc:5a:78:1e:98:09:1f:38:85:e8:07:2c:20:d0: 71:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:A0:09:24:9F:84:2D:C4:37:7E:3A:CD:E2:3B:32:C0:96:BA:46:2C X509v3 Authority Key Identifier: keyid:7A:D7:9E:EB:3B:92:83:54:D9:50:DC:6E:4F:8B:EC:CB:25:C2:FC:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/395D655C7E7D11F09D59515FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.60.228.0-202.60.238.255 Signature Algorithm: sha256WithRSAEncryption 59:25:90:14:89:16:97:ce:23:db:e7:75:19:c3:5a:ff:ae:ac: 55:f7:8f:72:8f:f0:1d:f2:59:ca:ae:ea:e5:93:51:34:8c:43: 03:83:29:eb:85:41:39:66:22:e6:aa:c3:95:7a:bf:84:c3:03: 3e:00:0b:83:61:e8:71:61:a8:f0:af:21:16:60:59:bf:f7:97: fa:f2:bc:50:1f:c5:bb:c8:fa:9b:64:e9:a3:0c:5f:0a:9f:68: 9f:8b:bc:b1:1f:d8:2b:ee:7b:8a:ea:bd:12:0b:27:f4:32:14: 24:d7:e9:1c:45:ea:dc:ac:58:09:79:bc:b6:07:6e:d0:02:88: b2:b7:74:d7:26:35:8f:48:cd:6b:2c:8c:97:e4:9d:9d:1a:52: 06:a9:2a:ff:82:2a:e4:25:75:b9:63:26:87:66:67:2e:07:ce: 7b:55:1e:39:30:74:3b:1c:e0:9c:76:ea:00:9d:aa:f0:e7:32: e4:a0:3e:ad:e9:c7:e7:bd:f5:4b:fb:67:39:cd:d0:e0:f3:51: cb:da:7b:0d:d5:d8:ee:34:fa:2a:44:4b:18:f2:df:c8:e4:e4: bb:a0:0f:b7:5a:d9:58:11:22:d6:48:53:32:c4:02:06:27:aa: 02:02:df:17:59:7f:ef:e9:23:ad:96:6f:38:91:cc:79:6c:81: 56:87:bc:f5 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNDQjExMTAvBgNVBAUTKDdBRDc5RUVCM0I5MjgzNTREOTUwREM2RTRGOEJFQ0NC MjVDMkZDNEIwHhcNMjUxMDIzMjA1NTI2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZhOTYzZS0wOTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv3hptEHZ0fc6/tzV0vTKQBdcMkuJW6kx/4qlRFiHdCWAQdzo0uhvG+86cGb2 oovYbJkp5kGZUeoIAHYwgWKxonhudsaHh0n85Vj5t3gmyKWCo9d7OcONJ5d6V8kk ZblcHKuGbGNAwYOvma3WNc3zmglRJo4FpMPh1S0bqr3NU9p0ziFbzscUnurZ5cok wjhRNg+lpmwN4tzcyALkPOF92TgT2aypRTYnubMqH2czd+ATAYtMEGgy6pnB2ohL jcPmoIFfZ6jFPYiXEVQxBSBHgolJ2qznGkUuVAenRnBcDZasuUyEUJDkBeJGCy+L wSu63Fp4HpgJHziF6AcsINBxaQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFAGgCSSf hC3EN346zeI7MsCWukYsMB8GA1UdIwQYMBaAFHrXnus7koNU2VDcbk+L7MslwvxL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0NCMS8yRDg0MzY5ODE2 ODYxMUYwODkxNjk4NUJDNEY5QUUwMi9ldGVlNnp1U2cxVFpVTnh1VDR2c3l5WENf RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V0ZWU2enVTZzFUWlVOeHVUNHZzeXlYQ19Fcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNDQjEvMkQ4NDM2OTgxNjg2MTFGMDg5MTY5ODVCQzRGOUFFMDIvMzk1RDY1NUM3 RTdEMTFGMDlENTk1MTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAso85AMEAMo87jANBgkqhkiG9w0BAQsFAAOCAQEAWSWQ FIkWl84j2+d1GcNa/66sVfePco/wHfJZyq7q5ZNRNIxDA4Mp64VBOWYi5qrDlXq/ hMMDPgALg2HocWGo8K8hFmBZv/eX+vK8UB/Fu8j6m2TpowxfCp9on4u8sR/YK+57 iuq9Egsn9DIUJNfpHEXq3KxYCXm8tgdu0AKIsrd01yY1j0jNayyMl+SdnRpSBqkq /4Iq5CV1uWMmh2ZnLgfOe1UeOTB0OxzgnHbqAJ2q8Ocy5KA+renH5731S/tnOc3Q 4PNRy9p7DdXY7jT6KkRLGPLfyOTku6APt1rZWBEi1khTMsQCBieqAgLfF1l/7+kj rZZvOJHMeWyBVoe89Q== -----END CERTIFICATE-----Generated at Wed Nov 5 03:08:38 2025 by rpki-client