$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/474BBE8AA5FF11F08004B67CC4F9AE02.roa File: 474BBE8AA5FF11F08004B67CC4F9AE02.roa (raw, json) Hash identifier: OgKrAW2/hv9VaZwZaVK6Fa0FucKowEYv+xHmxWRfKg0= Subject key identifier: 8D:52:57:61:5C:35:0A:6C:E9:6D:B7:50:DC:77:E4:55:7E:9A:48:E0 Certificate issuer: /CN=A91E3493/serialNumber=31311CFCC1401BD6D0E6B6B39167B65C21092114 Certificate serial: 0D Authority key identifier: 31:31:1C:FC:C1:40:1B:D6:D0:E6:B6:B3:91:67:B6:5C:21:09:21:14 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/474BBE8AA5FF11F08004B67CC4F9AE02.roa Signing time: Fri 10 Oct 2025 17:33:48 +0000 ROA not before: Fri 10 Oct 2025 17:33:48 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139070 IP address blocks: 152.65.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.crl rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 Oct 2025 01:51:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3493, serialNumber=31311CFCC1401BD6D0E6B6B39167B65C21092114 Validity Not Before: Oct 10 17:33:48 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68e9437c-2f5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7a:79:e9:8d:ef:93:7e:a7:34:93:f5:3a:34: 10:e2:d8:fd:31:ce:3c:b8:99:05:3c:33:77:85:02: c7:18:29:2c:03:00:3e:4f:50:8a:83:21:b6:ac:f4: 4e:30:c4:27:4f:5b:a0:bf:ab:e7:26:ef:7a:66:2e: e3:e4:50:92:62:02:70:70:cb:9a:14:bc:f3:c8:07: 59:7d:ed:1f:60:05:2c:f0:b5:86:b7:45:7a:22:dc: 96:98:50:19:d7:31:e1:6a:be:27:4f:b3:ea:77:c8: 69:0b:a7:fd:a4:40:ea:f0:9f:63:6d:6c:fd:7b:e8: 88:58:36:c2:dc:04:cf:86:7b:80:21:da:39:4d:3e: dd:ae:8a:74:e7:51:45:f0:4c:70:37:31:33:0c:be: dd:47:a4:43:f4:9f:97:44:a5:77:3f:8f:c4:35:7d: 5b:c3:ca:68:67:96:ef:d1:85:a5:ac:e7:b1:55:cb: 4b:c2:d4:0d:f6:18:d7:65:f8:72:f3:99:a1:5d:44: 61:e6:48:69:db:97:50:e0:d9:c8:f7:30:71:be:ac: ff:ab:d4:e6:a1:c1:20:32:3f:16:31:a0:73:9f:19: be:9c:cb:ce:95:69:27:16:20:f2:3e:42:96:71:1a: 54:87:ef:b0:b0:f5:68:d1:86:21:94:bb:80:66:97: b6:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:52:57:61:5C:35:0A:6C:E9:6D:B7:50:DC:77:E4:55:7E:9A:48:E0 X509v3 Authority Key Identifier: keyid:31:31:1C:FC:C1:40:1B:D6:D0:E6:B6:B3:91:67:B6:5C:21:09:21:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/MTEc_MFAG9bQ5razkWe2XCEJIRQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MTEc_MFAG9bQ5razkWe2XCEJIRQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3493/E52C14C09FFA11F0BAD50B61C4F9AE02/474BBE8AA5FF11F08004B67CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.65.246.0/24 Signature Algorithm: sha256WithRSAEncryption 50:9c:1f:cb:50:f5:ab:77:6c:69:9e:43:2a:14:d7:87:ff:d1: e7:ca:f7:05:de:84:15:22:40:52:20:c8:b6:de:77:7d:85:05: be:d2:2b:f0:5c:60:f0:b7:4a:79:9a:74:c1:00:c7:eb:3d:a0: 20:20:a7:27:5c:a2:8e:dd:5b:78:66:b0:fa:9a:d8:8d:59:af: 0d:95:20:78:55:38:e9:5d:33:09:1a:87:db:3b:5e:74:95:b2: 1e:15:2b:6d:c3:2e:64:08:cb:c2:80:ff:21:aa:b5:13:f9:85: d1:a7:73:03:21:a7:57:dd:b3:01:ce:2a:de:08:cc:c7:51:f4: 15:c1:f6:b8:26:4f:ae:9f:0a:18:13:d5:b2:61:ff:d9:7a:18: 81:d9:09:7d:d5:4d:f2:3a:ee:27:cb:5f:61:25:13:fa:f9:0a: d9:bd:b9:05:be:26:bc:4f:e7:4e:db:26:40:87:0a:f9:76:3d: b9:93:23:9d:ce:38:a0:4f:0c:c7:8d:a2:f9:45:15:2d:13:7c: e6:eb:16:a1:9a:ac:b3:0f:cf:44:be:ae:b9:ab:47:a5:24:d3: e6:0a:a9:09:bc:b0:72:b6:28:a1:99:65:33:8a:82:ee:c3:00: 02:61:57:7d:1f:72:81:92:ea:13:dc:25:1b:93:3d:d4:ac:a9: 9f:23:dd:e8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MzQ5MzExMC8GA1UEBRMoMzEzMTFDRkNDMTQwMUJENkQwRTZCNkIzOTE2N0I2NUMy MTA5MjExNDAeFw0yNTEwMTAxNzMzNDhaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZTk0MzdjLTJmNWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuennpje+Tfqc0k/U6NBDi2P0xzjy4mQU8M3eFAscYKSwDAD5PUIqDIbas9E4w xCdPW6C/q+cm73pmLuPkUJJiAnBwy5oUvPPIB1l97R9gBSzwtYa3RXoi3JaYUBnX MeFqvidPs+p3yGkLp/2kQOrwn2NtbP176IhYNsLcBM+Ge4Ah2jlNPt2uinTnUUXw THA3MTMMvt1HpEP0n5dEpXc/j8Q1fVvDymhnlu/RhaWs57FVy0vC1A32GNdl+HLz maFdRGHmSGnbl1Dg2cj3MHG+rP+r1OahwSAyPxYxoHOfGb6cy86VaScWIPI+QpZx GlSH77Cw9WjRhiGUu4Bml7YJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUjVJXYVw1 CmzpbbdQ3HfkVX6aSOAwHwYDVR0jBBgwFoAUMTEc/MFAG9bQ5razkWe2XCEJIRQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUzNDkzL0U1MkMxNEMwOUZG QTExRjBCQUQ1MEI2MUM0RjlBRTAyL01URWNfTUZBRzliUTVyYXprV2UyWENFSklS US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTVRFY19NRkFHOWJRNXJhemtXZTJYQ0VKSVJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MzQ5My9FNTJDMTRDMDlGRkExMUYwQkFENTBCNjFDNEY5QUUwMi80NzRCQkU4QUE1 RkYxMUYwODAwNEI2N0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAJhB9jANBgkqhkiG9w0BAQsFAAOCAQEAUJwfy1D1q3dsaZ5D KhTXh//R58r3Bd6EFSJAUiDItt53fYUFvtIr8Fxg8LdKeZp0wQDH6z2gICCnJ1yi jt1beGaw+prYjVmvDZUgeFU46V0zCRqH2ztedJWyHhUrbcMuZAjLwoD/Iaq1E/mF 0adzAyGnV92zAc4q3gjMx1H0FcH2uCZPrp8KGBPVsmH/2XoYgdkJfdVN8jruJ8tf YSUT+vkK2b25Bb4mvE/nTtsmQIcK+XY9uZMjnc44oE8Mx42i+UUVLRN85usWoZqs sw/PRL6uuatHpSTT5gqpCbywcrYooZllM4qC7sMAAmFXfR9ygZLqE9wlG5M91Kyp nyPd6A== -----END CERTIFICATE-----Generated at Sat Oct 11 14:14:00 2025 by rpki-client