$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/9217B6681AA811F0B10C6412C4F9AE02.roa File: 9217B6681AA811F0B10C6412C4F9AE02.roa (raw, json) Hash identifier: X1rRaXgadVtl9VfEE2Fs4BNuO0hzLgvUwGhsT4mAVns= Subject key identifier: 48:5B:E0:CD:8A:8F:FF:E2:29:8B:82:4A:B8:86:C2:C2:FD:83:F9:35 Certificate issuer: /CN=A91F3CB1/serialNumber=7AD79EEB3B928354D950DC6E4F8BECCB25C2FC4B Certificate serial: 84 Authority key identifier: 7A:D7:9E:EB:3B:92:83:54:D9:50:DC:6E:4F:8B:EC:CB:25:C2:FC:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/9217B6681AA811F0B10C6412C4F9AE02.roa Signing time: Thu 23 Oct 2025 20:55:04 +0000 ROA not before: Thu 23 Oct 2025 20:55:04 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 7468 IP address blocks: 202.60.224.0/24 maxlen: 24 202.60.225.0/24 maxlen: 24 202.60.226.0/24 maxlen: 24 202.60.227.0/24 maxlen: 24 202.60.228.0/22 maxlen: 22 202.60.228.0/24 maxlen: 24 202.60.229.0/24 maxlen: 24 202.60.230.0/24 maxlen: 24 202.60.231.0/24 maxlen: 24 202.60.232.0/22 maxlen: 22 202.60.232.0/24 maxlen: 24 202.60.233.0/24 maxlen: 24 202.60.234.0/24 maxlen: 24 202.60.235.0/24 maxlen: 24 202.60.236.0/23 maxlen: 23 202.60.236.0/24 maxlen: 24 202.60.237.0/24 maxlen: 24 202.60.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.crl rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3CB1, serialNumber=7AD79EEB3B928354D950DC6E4F8BECCB25C2FC4B Validity Not Before: Oct 23 20:55:04 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68fa9627-aaed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5e:e9:4a:71:23:9d:28:a4:ba:c3:ce:6b:5f: e6:03:33:57:7f:97:65:df:d2:92:5a:1e:e5:c2:de: 9b:87:9d:c0:c1:f6:17:34:79:a4:f1:35:55:0d:96: 74:7e:43:ec:ed:d9:31:71:6a:79:bd:5e:3b:3b:84: 09:3d:64:77:6c:cd:60:06:bf:1c:ba:94:e7:2b:5f: 85:5e:5e:71:91:a7:fd:75:d4:d0:fe:b4:c1:fd:cf: 74:0d:b3:ba:5f:62:b7:96:32:31:46:cd:b6:a8:cc: 51:dd:97:45:61:7a:68:d5:39:bf:e9:ed:2c:c7:19: b1:64:bd:e0:f9:93:cd:3c:05:2a:af:7b:a2:04:16: 13:42:3c:27:ff:98:a6:7f:ae:fb:72:8e:df:09:44: 5f:02:f8:dc:ff:a7:62:4b:d4:7f:24:da:1c:53:4a: 9d:77:eb:d3:b4:7f:25:a7:da:57:1b:d0:2b:ca:28: dd:fd:c8:b3:0d:2f:bb:61:8f:a6:b9:84:ca:34:2d: 25:96:4f:0f:ce:a1:87:1b:f7:6f:b7:7d:0f:17:e5: 82:50:b3:a8:f1:c8:23:4a:94:24:af:6b:f8:f2:cc: a3:f9:65:62:04:6b:4a:e4:9e:15:61:5f:dc:ce:35: 6f:48:91:4e:c4:d5:4d:7e:20:f7:70:02:a1:2c:14: c1:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:5B:E0:CD:8A:8F:FF:E2:29:8B:82:4A:B8:86:C2:C2:FD:83:F9:35 X509v3 Authority Key Identifier: keyid:7A:D7:9E:EB:3B:92:83:54:D9:50:DC:6E:4F:8B:EC:CB:25:C2:FC:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/9217B6681AA811F0B10C6412C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.60.224.0-202.60.238.255 Signature Algorithm: sha256WithRSAEncryption c6:68:b3:c6:0b:96:e8:30:14:fd:7d:17:f4:b6:9b:ba:65:db: 96:7c:6f:2f:f5:56:0f:b0:c3:bd:f9:ea:2f:e9:8c:ce:71:c3: 73:e9:a2:eb:25:b3:dd:45:90:8b:ad:22:25:45:70:04:bb:e6: f3:66:e4:ea:bc:45:da:ee:34:a3:d4:68:32:f3:37:68:d9:ad: 2d:db:7d:1d:8b:eb:71:9c:53:97:11:a1:7a:b0:22:23:50:6b: e8:7d:16:54:03:a4:22:03:bb:0c:5e:77:7d:96:c0:cf:85:99: d0:f3:d6:41:d6:07:1f:64:d9:45:3e:db:f4:e5:ed:f1:ad:f6: 9c:23:6e:19:20:77:3c:54:19:a1:92:96:61:d5:3f:72:07:4a: 56:e3:04:e0:50:f3:e3:5e:e0:19:9f:7a:d9:4c:e0:e5:0b:c4: a8:12:3f:04:59:fa:d0:ea:c2:32:ec:75:bd:a6:98:7a:13:47: 9c:45:b1:dc:04:fa:9d:64:63:47:c7:40:ae:dc:58:f2:9c:9d: e4:e6:72:7f:61:dd:c7:05:44:92:6d:f7:2c:0e:c9:c8:ce:73: 14:8a:71:9d:c8:56:b6:56:d3:82:b6:e4:be:05:86:96:cd:5d: 1a:b6:c8:10:13:62:12:05:8d:a4:72:b7:ed:88:cf:7b:47:9e: 14:10:78:99 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjNDQjExMTAvBgNVBAUTKDdBRDc5RUVCM0I5MjgzNTREOTUwREM2RTRGOEJFQ0NC MjVDMkZDNEIwHhcNMjUxMDIzMjA1NTA0WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZhOTYyNy1hYWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu17pSnEjnSikusPOa1/mAzNXf5dl39KSWh7lwt6bh53AwfYXNHmk8TVVDZZ0 fkPs7dkxcWp5vV47O4QJPWR3bM1gBr8cupTnK1+FXl5xkaf9ddTQ/rTB/c90DbO6 X2K3ljIxRs22qMxR3ZdFYXpo1Tm/6e0sxxmxZL3g+ZPNPAUqr3uiBBYTQjwn/5im f677co7fCURfAvjc/6diS9R/JNocU0qdd+vTtH8lp9pXG9Aryijd/cizDS+7YY+m uYTKNC0llk8PzqGHG/dvt30PF+WCULOo8cgjSpQkr2v48syj+WViBGtK5J4VYV/c zjVvSJFOxNVNfiD3cAKhLBTBqQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFEhb4M2K j//iKYuCSriGwsL9g/k1MB8GA1UdIwQYMBaAFHrXnus7koNU2VDcbk+L7MslwvxL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGM0NCMS8yRDg0MzY5ODE2 ODYxMUYwODkxNjk4NUJDNEY5QUUwMi9ldGVlNnp1U2cxVFpVTnh1VDR2c3l5WENf RXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V0ZWU2enVTZzFUWlVOeHVUNHZzeXlYQ19Fcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjNDQjEvMkQ4NDM2OTgxNjg2MTFGMDg5MTY5ODVCQzRGOUFFMDIvOTIxN0I2Njgx QUE4MTFGMEIxMEM2NDEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBco84AMEAMo87jANBgkqhkiG9w0BAQsFAAOCAQEAxmiz xguW6DAU/X0X9LabumXblnxvL/VWD7DDvfnqL+mMznHDc+mi6yWz3UWQi60iJUVw BLvm82bk6rxF2u40o9RoMvM3aNmtLdt9HYvrcZxTlxGherAiI1Br6H0WVAOkIgO7 DF53fZbAz4WZ0PPWQdYHH2TZRT7b9OXt8a32nCNuGSB3PFQZoZKWYdU/cgdKVuME 4FDz417gGZ962Uzg5QvEqBI/BFn60OrCMux1vaaYehNHnEWx3AT6nWRjR8dArtxY 8pyd5OZyf2HdxwVEkm33LA7JyM5zFIpxnchWtlbTgrbkvgWGls1dGrbIEBNiEgWN pHK37YjPe0eeFBB4mQ== -----END CERTIFICATE-----Generated at Tue Nov 4 21:35:24 2025 by rpki-client