$ rpki-client -vvf rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/5D8DFB5684CA11EF9F92574DC4F9AE02.roa File: 5D8DFB5684CA11EF9F92574DC4F9AE02.roa (raw, json) Hash identifier: hQ+Gx7Vv9Bqml1yrkYB3EZZ2s/v+ssA89alsVLHowuc= Subject key identifier: 84:EE:D4:C8:6F:8F:73:15:7D:25:EC:F4:69:C6:39:8C:07:E8:0D:80 Certificate issuer: /CN=A91276FA/serialNumber=5533A7C57BF4DB1E538F9E77E0B4868B8F90C582 Certificate serial: D0 Authority key identifier: 55:33:A7:C5:7B:F4:DB:1E:53:8F:9E:77:E0:B4:86:8B:8F:90:C5:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTOnxXv02x5Tj5534LSGi4-QxYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/5D8DFB5684CA11EF9F92574DC4F9AE02.roa Signing time: Thu 23 Oct 2025 08:20:11 +0000 ROA not before: Thu 23 Oct 2025 08:20:11 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 55933 IP address blocks: 45.125.16.0/22 maxlen: 24 103.242.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.crl rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTOnxXv02x5Tj5534LSGi4-QxYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 08:20:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 208 (0xd0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276FA, serialNumber=5533A7C57BF4DB1E538F9E77E0B4868B8F90C582 Validity Not Before: Oct 23 08:20:11 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f9e53b-df0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:44:98:9d:8e:b3:db:a7:72:9e:ef:d2:ce:1f: e3:96:c2:a2:1c:e1:31:e5:44:50:a5:05:0d:d4:ba: ff:96:92:01:8a:9f:94:53:2f:26:ab:06:d5:bc:64: d7:d7:5b:25:c5:e6:eb:c8:15:81:38:77:25:76:9e: 79:9b:cf:be:af:fc:fb:5d:85:41:eb:15:67:4a:17: e7:70:b5:c7:24:8e:3d:f6:cd:14:e1:74:e1:5a:e0: 68:d5:44:a4:45:a8:18:33:f5:69:da:dd:54:19:a6: 00:8e:ae:3a:4f:69:01:9f:52:79:ae:47:e1:d6:62: 80:59:50:8a:cf:eb:6a:3d:29:5b:7d:9c:4f:ff:65: f5:d2:6c:0e:12:06:76:72:d6:d3:e0:d6:44:29:61: f6:b4:96:6a:0c:92:d3:28:13:42:4a:3b:9e:5e:c7: c3:b2:61:34:26:91:22:16:5d:0f:1a:b0:61:b8:ec: e6:52:a3:d6:4e:e7:de:ac:92:33:09:1e:e6:05:82: 32:5f:09:cc:bb:c9:37:29:07:af:61:60:1d:94:0d: 5c:ef:c4:f7:c4:28:6b:8d:43:ed:5b:39:da:0c:c7: 33:4d:8c:fe:45:44:da:71:7d:c8:5d:13:30:6b:b3: 77:7e:fb:f3:ad:2b:27:7c:9f:29:d0:4d:ce:c9:62: f2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:EE:D4:C8:6F:8F:73:15:7D:25:EC:F4:69:C6:39:8C:07:E8:0D:80 X509v3 Authority Key Identifier: keyid:55:33:A7:C5:7B:F4:DB:1E:53:8F:9E:77:E0:B4:86:8B:8F:90:C5:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTOnxXv02x5Tj5534LSGi4-QxYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/5D8DFB5684CA11EF9F92574DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.125.16.0/22 103.242.132.0/22 Signature Algorithm: sha256WithRSAEncryption 06:9e:c1:a1:50:cd:50:a2:ce:9e:35:fa:4b:5b:56:bd:95:00: fa:77:2e:b2:97:c3:8b:b0:4f:45:3c:7c:65:17:d9:e2:f4:0a: 21:69:53:c5:d6:e8:8e:19:ef:9c:2f:31:1c:67:16:21:cf:9b: 54:f7:c9:50:ab:31:fc:d9:ab:08:07:9c:fe:4f:93:91:22:67: 37:c7:0c:d9:d2:c1:b6:bf:12:d6:63:9c:cc:5d:16:b1:91:43: 83:a8:e4:6f:79:66:12:f8:6d:64:45:61:35:17:cb:83:9d:7a: 8f:55:60:d8:8d:66:05:84:b2:60:f1:fd:51:af:b3:12:82:9c: ec:0d:a5:ca:58:b3:9a:8f:40:72:75:5e:51:93:cc:dd:fb:76: e7:73:e5:ab:3c:85:6e:d6:f6:8b:29:f6:34:10:62:ba:ba:a3: 47:92:15:cf:d8:e7:eb:3c:03:29:57:69:1f:eb:ed:ec:88:9b: f7:9f:3d:76:00:b3:12:e5:fe:c2:4c:65:d6:e2:93:92:18:95: 8a:e6:72:fb:71:bc:dd:7b:c8:71:65:4b:82:2d:cc:c7:23:83: cf:12:c9:90:9b:c2:f2:aa:d3:0d:db:96:3c:6d:f1:9b:af:7f: 57:a6:4b:aa:0f:67:69:1d:0b:3e:cd:b0:20:c0:5d:e0:b2:bf: 99:a8:0a:28 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICANAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2RkExMTAvBgNVBAUTKDU1MzNBN0M1N0JGNERCMUU1MzhGOUU3N0UwQjQ4NjhC OEY5MEM1ODIwHhcNMjUxMDIzMDgyMDExWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5ZTUzYi1kZjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0SYnY6z26dynu/Szh/jlsKiHOEx5URQpQUN1Lr/lpIBip+UUy8mqwbVvGTX 11slxebryBWBOHcldp55m8++r/z7XYVB6xVnShfncLXHJI499s0U4XThWuBo1USk RagYM/Vp2t1UGaYAjq46T2kBn1J5rkfh1mKAWVCKz+tqPSlbfZxP/2X10mwOEgZ2 ctbT4NZEKWH2tJZqDJLTKBNCSjueXsfDsmE0JpEiFl0PGrBhuOzmUqPWTuferJIz CR7mBYIyXwnMu8k3KQevYWAdlA1c78T3xChrjUPtWznaDMczTYz+RUTacX3IXRMw a7N3fvvzrSsnfJ8p0E3OyWLylwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFITu1Mhv j3MVfSXs9GnGOYwH6A2AMB8GA1UdIwQYMBaAFFUzp8V79NseU4+ed+C0houPkMWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZGQS85QzUyQTdFODg0 QzkxMUVGQjU0RDBDNDlDNEY5QUUwMi9WVE9ueFh2MDJ4NVRqNTUzNExTR2k0LVF4 WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZUT254WHYwMng1VGo1NTM0TFNHaTQtUXhZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc2RkEvOUM1MkE3RTg4NEM5MTFFRkI1NEQwQzQ5QzRGOUFFMDIvNUQ4REZCNTY4 NENBMTFFRjlGOTI1NzREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItfRADBAJn8oQwDQYJKoZIhvcNAQELBQADggEBAAaewaFQ zVCizp41+ktbVr2VAPp3LrKXw4uwT0U8fGUX2eL0CiFpU8XW6I4Z75wvMRxnFiHP m1T3yVCrMfzZqwgHnP5Pk5EiZzfHDNnSwba/EtZjnMxdFrGRQ4Oo5G95ZhL4bWRF YTUXy4Odeo9VYNiNZgWEsmDx/VGvsxKCnOwNpcpYs5qPQHJ1XlGTzN37dudz5as8 hW7W9osp9jQQYrq6o0eSFc/Y5+s8AylXaR/r7eyIm/efPXYAsxLl/sJMZdbik5IY lYrmcvtxvN17yHFlS4ItzMcjg88SyZCbwvKq0w3bljxt8Zuvf1emS6oPZ2kdCz7N sCDAXeCyv5moCig= -----END CERTIFICATE-----Generated at Sat Oct 25 08:02:54 2025 by rpki-client