$ rpki-client -vvf rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/7EC9705C84CA11EFA41F8D4DC4F9AE02.roa File: 7EC9705C84CA11EFA41F8D4DC4F9AE02.roa (raw, json) Hash identifier: 3sSuU9QTymYHLk6nKJf8ZY9J70HL/WV6OzgAH7Dy+z8= Subject key identifier: 0C:C0:A5:2C:8E:6B:71:B2:C4:7B:1C:36:56:60:50:F0:18:9F:39:2C Certificate issuer: /CN=A91276FA/serialNumber=5533A7C57BF4DB1E538F9E77E0B4868B8F90C582 Certificate serial: D1 Authority key identifier: 55:33:A7:C5:7B:F4:DB:1E:53:8F:9E:77:E0:B4:86:8B:8F:90:C5:82 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTOnxXv02x5Tj5534LSGi4-QxYI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/7EC9705C84CA11EFA41F8D4DC4F9AE02.roa Signing time: Thu 23 Oct 2025 08:20:12 +0000 ROA not before: Thu 23 Oct 2025 08:20:12 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 6134 IP address blocks: 45.125.16.0/22 maxlen: 24 103.242.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.crl rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTOnxXv02x5Tj5534LSGi4-QxYI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 Oct 2025 08:20:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 209 (0xd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91276FA, serialNumber=5533A7C57BF4DB1E538F9E77E0B4868B8F90C582 Validity Not Before: Oct 23 08:20:12 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f9e53c-c6a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ce:29:5a:46:fd:1e:83:93:0f:39:76:57:e1: 00:39:dc:24:44:33:6c:83:1f:70:6a:9b:b1:89:b2: 89:70:b4:26:a4:5d:01:79:48:29:12:37:67:fc:00: f7:f1:4c:45:59:ac:7d:e8:8f:77:37:92:d2:ec:09: 89:ae:5c:71:21:c9:86:e8:21:5c:ec:23:07:9b:e7: 27:38:f3:21:6a:d6:72:e1:4c:02:37:61:5d:5c:e4: 3f:33:2f:03:39:1a:ad:66:cf:3a:1b:60:f2:51:15: e4:dd:93:c0:6b:ee:98:50:1e:73:dd:85:13:99:7a: 53:4e:0b:47:45:82:1e:63:f0:48:90:6f:f8:fd:68: 36:33:50:31:8d:ff:46:35:94:2a:23:22:33:c5:cc: fa:40:ff:05:b6:97:f0:c7:3c:23:1c:86:74:76:50: 7a:8b:05:c5:2c:26:f2:f7:85:c6:4b:f8:b0:76:4f: 17:99:0b:1c:51:a9:d7:72:58:57:ed:e3:60:16:f8: 04:54:10:ac:4f:99:ed:ec:c7:c8:c1:77:ac:17:c5: d9:c9:14:2d:52:42:95:31:f8:2c:8b:1d:ea:b1:a9: f5:a5:48:30:14:96:17:42:fb:c2:21:0c:82:83:6d: 0a:ed:28:c4:51:50:29:2b:06:da:77:b9:ba:3e:1f: 86:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:C0:A5:2C:8E:6B:71:B2:C4:7B:1C:36:56:60:50:F0:18:9F:39:2C X509v3 Authority Key Identifier: keyid:55:33:A7:C5:7B:F4:DB:1E:53:8F:9E:77:E0:B4:86:8B:8F:90:C5:82 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTOnxXv02x5Tj5534LSGi4-QxYI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/7EC9705C84CA11EFA41F8D4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.125.16.0/22 103.242.132.0/22 Signature Algorithm: sha256WithRSAEncryption a9:25:f4:29:56:bc:91:88:0e:1b:7d:b4:30:3e:8f:9f:a4:79: ea:59:9f:68:62:21:4e:53:71:1f:de:96:a9:4c:74:f8:dc:38: ab:b3:e2:0e:d3:0b:2f:f4:88:76:93:90:7f:c0:87:e2:47:96: 3d:4d:2a:89:6f:96:5c:61:46:35:b6:bf:16:ef:d1:90:35:62: e6:26:8a:ed:98:6e:c1:6f:55:37:55:82:a1:1f:72:07:a5:d3: c1:4e:5c:07:3d:8e:52:2a:ba:ab:69:e5:dc:5d:b0:ef:d4:a1: 4d:9a:50:92:18:d4:c7:db:87:ae:6e:77:0c:d6:75:39:e1:61: 8d:2d:cd:5a:09:db:e9:29:ab:39:8e:1c:51:aa:09:0a:e8:4c: be:1f:76:f6:fd:29:bc:95:de:99:fc:da:78:2b:9f:0f:17:59: 04:8a:72:2e:ff:19:0a:d5:09:78:f7:65:10:9f:72:2f:d5:d8: ae:01:46:54:00:f3:d8:66:62:70:fa:d0:18:7e:28:50:1d:cc: aa:52:25:a4:dc:9a:13:fb:53:4d:c0:28:01:58:f0:58:3a:f0: b8:61:13:a3:0f:04:76:f3:cd:9d:d4:e6:03:c4:87:a1:aa:4c: 57:da:d0:14:bf:83:e5:d4:6b:af:63:07:5a:a6:9a:1c:29:d0: 84:65:fe:67 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICANEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc2RkExMTAvBgNVBAUTKDU1MzNBN0M1N0JGNERCMUU1MzhGOUU3N0UwQjQ4NjhC OEY5MEM1ODIwHhcNMjUxMDIzMDgyMDEyWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5ZTUzYy1jNmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxc4pWkb9HoOTDzl2V+EAOdwkRDNsgx9wapuxibKJcLQmpF0BeUgpEjdn/AD3 8UxFWax96I93N5LS7AmJrlxxIcmG6CFc7CMHm+cnOPMhatZy4UwCN2FdXOQ/My8D ORqtZs86G2DyURXk3ZPAa+6YUB5z3YUTmXpTTgtHRYIeY/BIkG/4/Wg2M1Axjf9G NZQqIyIzxcz6QP8FtpfwxzwjHIZ0dlB6iwXFLCby94XGS/iwdk8XmQscUanXclhX 7eNgFvgEVBCsT5nt7MfIwXesF8XZyRQtUkKVMfgsix3qsan1pUgwFJYXQvvCIQyC g20K7SjEUVApKwbad7m6Ph+G4wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAzApSyO a3GyxHscNlZgUPAYnzksMB8GA1UdIwQYMBaAFFUzp8V79NseU4+ed+C0houPkMWC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzZGQS85QzUyQTdFODg0 QzkxMUVGQjU0RDBDNDlDNEY5QUUwMi9WVE9ueFh2MDJ4NVRqNTUzNExTR2k0LVF4 WUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZUT254WHYwMng1VGo1NTM0TFNHaTQtUXhZSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc2RkEvOUM1MkE3RTg4NEM5MTFFRkI1NEQwQzQ5QzRGOUFFMDIvN0VDOTcwNUM4 NENBMTFFRkE0MUY4RDREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAItfRADBAJn8oQwDQYJKoZIhvcNAQELBQADggEBAKkl9ClW vJGIDht9tDA+j5+keepZn2hiIU5TcR/elqlMdPjcOKuz4g7TCy/0iHaTkH/Ah+JH lj1NKolvllxhRjW2vxbv0ZA1YuYmiu2YbsFvVTdVgqEfcgel08FOXAc9jlIquqtp 5dxdsO/UoU2aUJIY1Mfbh65udwzWdTnhYY0tzVoJ2+kpqzmOHFGqCQroTL4fdvb9 KbyV3pn82ngrnw8XWQSKci7/GQrVCXj3ZRCfci/V2K4BRlQA89hmYnD60Bh+KFAd zKpSJaTcmhP7U03AKAFY8Fg68LhhE6MPBHbzzZ3U5gPEh6GqTFfa0BS/g+XUa69j B1qmmhwp0IRl/mc= -----END CERTIFICATE-----Generated at Fri Oct 24 08:30:29 2025 by rpki-client