$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/B69D3A2A8AA711EB876EF84BC4F9AE02.roa File: B69D3A2A8AA711EB876EF84BC4F9AE02.roa (raw, json) Hash identifier: oiRTxf178GSVajMFJOV88czGN0g9LsEQwe3fVsmhNYs= Subject key identifier: D9:98:0F:D2:89:D5:79:44:D0:3B:C7:53:74:38:65:32:7D:F4:6D:DC Certificate issuer: /CN=A91FEE70/serialNumber=FA94DE39088EC38A52B692279A42C4AFFB5B73B1 Certificate serial: 0C20 Authority key identifier: FA:94:DE:39:08:8E:C3:8A:52:B6:92:27:9A:42:C4:AF:FB:5B:73:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-pTeOQiOw4pStpInmkLEr_tbc7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/B69D3A2A8AA711EB876EF84BC4F9AE02.roa Signing time: Tue 08 Apr 2025 18:57:32 +0000 ROA not before: Tue 08 Apr 2025 18:57:32 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 14618 IP address blocks: 203.2.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/-pTeOQiOw4pStpInmkLEr_tbc7E.crl rsync://rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/-pTeOQiOw4pStpInmkLEr_tbc7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-pTeOQiOw4pStpInmkLEr_tbc7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:33:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3104 (0xc20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEE70, serialNumber=FA94DE39088EC38A52B692279A42C4AFFB5B73B1 Validity Not Before: Apr 8 18:57:32 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f5719c-e849 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:21:99:79:30:60:64:1a:1c:5a:7c:a2:14:40: 5c:3b:83:8f:96:e4:cf:c4:69:cd:59:45:a7:68:8b: a1:27:7f:8d:83:f6:26:d1:16:35:18:5d:8b:c6:92: 3c:0e:78:85:d6:9b:38:e4:71:22:83:4d:d2:28:09: 94:41:f7:c6:14:50:8b:40:68:0b:cf:e0:8c:13:ad: 9c:92:5c:b8:a9:b5:f1:5d:06:35:8b:d9:ed:4a:1f: 81:f4:b9:2c:e0:d2:94:a9:a1:29:a9:d5:8f:df:29: 1b:ce:1e:e6:8b:50:83:3a:ba:a6:ae:fa:92:3b:84: 60:b6:ef:25:75:5f:50:e8:d1:cd:dc:c8:32:c3:79: 23:d1:5b:30:e6:e6:dd:63:01:ba:7b:02:89:5b:ff: 22:22:ff:86:28:06:7e:83:94:97:60:ef:c6:af:07: 1c:a6:f6:bc:49:2e:99:f0:7d:92:c5:fd:d3:46:dd: 6d:4b:b3:f5:9e:6c:3b:a9:b9:9e:c7:b7:59:16:d1: c2:0f:07:0b:b1:73:b5:07:76:60:2e:50:39:60:5f: 29:77:76:fb:a2:a0:46:b1:1a:87:6a:d8:7d:82:73: a9:9c:ec:d2:a0:20:11:70:b2:68:e9:02:ab:c8:49: 35:40:16:e7:36:7f:6c:ff:00:a2:27:0f:cd:23:98: cb:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:98:0F:D2:89:D5:79:44:D0:3B:C7:53:74:38:65:32:7D:F4:6D:DC X509v3 Authority Key Identifier: keyid:FA:94:DE:39:08:8E:C3:8A:52:B6:92:27:9A:42:C4:AF:FB:5B:73:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/-pTeOQiOw4pStpInmkLEr_tbc7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-pTeOQiOw4pStpInmkLEr_tbc7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/B69D3A2A8AA711EB876EF84BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.2.170.0/24 Signature Algorithm: sha256WithRSAEncryption 54:ae:96:bb:92:bc:80:f1:ae:a9:d9:3f:4f:54:d1:fd:3f:a3: b3:1b:12:8c:fa:36:4c:18:b6:f7:c5:57:98:1d:a3:38:05:af: 0d:a9:1d:e3:46:03:76:c7:2d:d5:14:94:8d:ad:bf:10:3a:1b: e2:dd:2c:4d:2a:9e:59:5f:ae:7e:0a:d5:87:4d:a3:7e:52:41: 18:7f:15:e3:a5:ed:4f:55:8f:c8:0d:84:0b:d1:53:5c:f8:0a: c6:89:ad:2c:96:5a:f3:1e:80:da:ea:ac:24:fd:7a:40:e6:ef: 65:38:e1:9a:ea:00:cd:eb:eb:51:70:f2:43:f9:49:98:82:ba: 72:af:f1:56:e5:19:c3:89:c6:46:ee:1d:bc:94:bf:7f:2c:63: 6e:ef:f3:45:ca:5a:d7:6a:bc:3f:64:aa:78:39:03:16:d8:2d: 0c:25:0a:70:6f:6e:37:97:f5:17:40:ee:c5:d6:5e:54:4b:70: ea:af:51:54:0c:fd:5f:a1:20:fa:82:a5:a6:29:0f:6e:4e:e3: 88:8a:46:fa:e9:57:3e:94:21:6d:46:df:ff:8a:58:05:bb:1a: 28:49:b7:4e:65:19:95:14:47:86:d5:2d:4f:a3:4a:5a:2b:99: 7b:9b:04:ba:a4:9c:54:79:fa:dc:35:03:84:72:85:7c:e3:01: 81:92:ab:21 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVFNzAxMTAvBgNVBAUTKEZBOTRERTM5MDg4RUMzOEE1MkI2OTIyNzlBNDJDNEFG RkI1QjczQjEwHhcNMjUwNDA4MTg1NzMyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NzE5Yy1lODQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApCGZeTBgZBocWnyiFEBcO4OPluTPxGnNWUWnaIuhJ3+Ng/Ym0RY1GF2LxpI8 DniF1ps45HEig03SKAmUQffGFFCLQGgLz+CME62ckly4qbXxXQY1i9ntSh+B9Lks 4NKUqaEpqdWP3ykbzh7mi1CDOrqmrvqSO4Rgtu8ldV9Q6NHN3Mgyw3kj0Vsw5ubd YwG6ewKJW/8iIv+GKAZ+g5SXYO/Grwccpva8SS6Z8H2Sxf3TRt1tS7P1nmw7qbme x7dZFtHCDwcLsXO1B3ZgLlA5YF8pd3b7oqBGsRqHath9gnOpnOzSoCARcLJo6QKr yEk1QBbnNn9s/wCiJw/NI5jLgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNmYD9KJ 1XlE0DvHU3Q4ZTJ99G3cMB8GA1UdIwQYMBaAFPqU3jkIjsOKUraSJ5pCxK/7W3Ox MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUU3MC8wOTEwRDFBMDA5 RTgxMUVBQTYzMDE2NEZDNEY5QUUwMi8tcFRlT1FpT3c0cFN0cElubWtMRXJfdGJj N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1wVGVPUWlPdzRwU3RwSW5ta0xFcl90YmM3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkVFNzAvMDkxMEQxQTAwOUU4MTFFQUE2MzAxNjRGQzRGOUFFMDIvQjY5RDNBMkE4 QUE3MTFFQjg3NkVGODRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLAqowDQYJKoZIhvcNAQELBQADggEBAFSulruSvIDxrqnZ P09U0f0/o7MbEoz6NkwYtvfFV5gdozgFrw2pHeNGA3bHLdUUlI2tvxA6G+LdLE0q nllfrn4K1YdNo35SQRh/FeOl7U9Vj8gNhAvRU1z4CsaJrSyWWvMegNrqrCT9ekDm 72U44ZrqAM3r61Fw8kP5SZiCunKv8VblGcOJxkbuHbyUv38sY27v80XKWtdqvD9k qng5AxbYLQwlCnBvbjeX9RdA7sXWXlRLcOqvUVQM/V+hIPqCpaYpD25O44iKRvrp Vz6UIW1G3/+KWAW7GihJt05lGZUUR4bVLU+jSlormXubBLqknFR5+tw1A4RyhXzj AYGSqyE= -----END CERTIFICATE-----Generated at Tue Nov 4 21:19:06 2025 by rpki-client