$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/50A2F64264BC11E8ACC7951EC4F9AE02.roa File: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (raw, json) Hash identifier: mzRK3TSpPRAdSBZvLPRDHoBd646mt2gZoJEdzJuirAk= Subject key identifier: AE:3F:FC:15:C1:C9:41:AB:6C:4A:35:A8:8D:67:AA:F9:D2:80:B3:C5 Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 24F4 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/50A2F64264BC11E8ACC7951EC4F9AE02.roa Signing time: Fri 24 Oct 2025 16:03:10 +0000 ROA not before: Fri 24 Oct 2025 16:03:10 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 24218 IP address blocks: 61.11.208.0/20 maxlen: 20 116.0.96.0/19 maxlen: 19 119.110.0.0/18 maxlen: 18 119.110.128.0/18 maxlen: 18 124.158.224.0/19 maxlen: 19 124.158.224.0/22 maxlen: 22 202.76.224.0/20 maxlen: 20 203.223.128.0/19 maxlen: 19 203.223.141.0/24 maxlen: 24 2001:4498::/32 maxlen: 32 2401:5000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:47:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9460 (0x24f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5, serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Oct 24 16:03:10 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68fba33e-581d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:de:b3:0b:12:ec:96:5b:21:56:42:99:04:b3: e5:eb:d6:b9:03:96:c8:f6:bc:a8:6a:34:eb:3f:d7: 20:7f:a8:e0:e5:58:4e:9a:cd:9e:da:ae:b5:ae:b3: 51:e5:9f:78:eb:05:8a:4d:a8:13:b7:ae:f4:bc:7a: 15:d8:c7:22:5c:96:c0:d1:63:c9:b8:8b:b2:fb:1b: c4:20:12:ba:df:3d:83:5c:6b:ee:6d:f7:1a:44:be: 11:ce:ce:13:c6:96:fd:62:f5:03:9f:72:4b:a0:ec: 4a:ff:67:57:83:95:15:2f:16:46:3a:67:db:5a:d5: ba:6d:e3:b6:ad:f3:04:34:3a:19:44:8f:b3:7d:ad: e4:de:75:69:26:c3:79:35:7b:fe:9a:d8:d6:59:b9: d2:c8:09:6d:4a:e2:3e:dc:0b:f0:99:16:94:a3:c5: ec:f1:23:18:70:6e:5f:72:90:bc:83:51:79:fd:66: 82:62:2e:96:4d:7b:54:64:b9:fc:18:e2:1c:cf:b7: ff:58:2a:e5:3e:ce:75:38:f0:2c:0f:98:5c:b0:a6: 6d:9e:88:df:f2:de:54:7e:18:04:fb:40:1a:82:1e: 1d:98:d3:cc:bf:2a:80:ea:6e:56:97:38:1b:b0:58: 4f:f9:9a:49:82:4e:6d:c2:36:0b:ca:01:a2:6f:7b: 61:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:3F:FC:15:C1:C9:41:AB:6C:4A:35:A8:8D:67:AA:F9:D2:80:B3:C5 X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/50A2F64264BC11E8ACC7951EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.11.208.0/20 116.0.96.0/19 119.110.0.0/18 119.110.128.0/18 124.158.224.0/19 202.76.224.0/20 203.223.128.0/19 IPv6: 2001:4498::/32 2401:5000::/32 Signature Algorithm: sha256WithRSAEncryption 2f:41:49:bb:8f:8d:64:89:cf:8c:6e:8d:42:28:4a:ae:39:df: d4:89:36:d1:9e:81:30:1c:ea:70:d3:0f:46:50:d7:ba:c5:ee: 4e:b6:6a:15:d2:d3:50:cf:5d:6e:7a:26:6a:1d:a8:cb:65:af: 5a:79:83:aa:f5:2e:dc:98:b8:2b:87:ce:f9:1f:be:bf:6c:7e: b4:16:8a:49:07:0b:cb:c9:1b:94:72:9c:8b:db:d2:95:3c:6b: 5d:a1:bf:e1:4c:fb:01:0b:fc:97:20:76:6e:eb:65:0d:9d:52: 45:9a:26:25:d3:5a:1c:51:37:dc:a9:d7:15:53:74:8f:78:71: 5b:54:1f:51:66:92:b5:90:1f:18:05:0e:bd:6a:f1:ae:60:b3: 9f:d5:53:63:30:20:4a:0e:02:92:32:38:38:13:31:1b:fe:3d: fc:c2:31:49:84:94:3b:ce:16:94:13:3e:1c:88:b0:53:98:94: 83:88:2c:5e:ac:1b:96:28:b7:62:50:72:37:8c:1d:c8:0d:17: 2f:bc:a5:4a:4e:7e:c4:6d:10:07:21:09:fd:b2:95:0e:78:14: 89:40:4f:60:a3:87:bb:cc:52:bf:19:ad:5d:24:ed:c6:df:a4: 24:8d:05:76:b5:6f:56:9f:5e:a9:ea:6f:4c:d8:f9:1d:a5:09: 7b:e0:c0:26 -----BEGIN CERTIFICATE----- MIIFqzCCBJOgAwIBAgICJPQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjUxMDI0MTYwMzEwWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGZiYTMzZS01ODFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyd6zCxLsllshVkKZBLPl69a5A5bI9ryoajTrP9cgf6jg5VhOms2e2q61rrNR 5Z946wWKTagTt670vHoV2MciXJbA0WPJuIuy+xvEIBK63z2DXGvubfcaRL4Rzs4T xpb9YvUDn3JLoOxK/2dXg5UVLxZGOmfbWtW6beO2rfMENDoZRI+zfa3k3nVpJsN5 NXv+mtjWWbnSyAltSuI+3AvwmRaUo8Xs8SMYcG5fcpC8g1F5/WaCYi6WTXtUZLn8 GOIcz7f/WCrlPs51OPAsD5hcsKZtnojf8t5UfhgE+0Aagh4dmNPMvyqA6m5Wlzgb sFhP+ZpJgk5twjYLygGib3thiQIDAQABo4ICzzCCAsswHQYDVR0OBBYEFK4//BXB yUGrbEo1qI1nqvnSgLPFMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjUwQTUvMTdERkIzNUE0NkU2MTFFNUIwOERBMTdCQzRGOUFFMDIvNTBBMkY2NDI2 NEJDMTFFOEFDQzc5NTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWQYIKwYBBQUHAQcBAf8E SjBIMDAEAgABMCoDBAQ9C9ADBAV0AGADBAZ3bgADBAZ3boADBAV8nuADBATKTOAD BAXL34AwFAQCAAIwDgMFACABRJgDBQAkAVAAMA0GCSqGSIb3DQEBCwUAA4IBAQAv QUm7j41kic+Mbo1CKEquOd/UiTbRnoEwHOpw0w9GUNe6xe5OtmoV0tNQz11ueiZq HajLZa9aeYOq9S7cmLgrh875H76/bH60FopJBwvLyRuUcpyL29KVPGtdob/hTPsB C/yXIHZu62UNnVJFmiYl01ocUTfcqdcVU3SPeHFbVB9RZpK1kB8YBQ69avGuYLOf 1VNjMCBKDgKSMjg4EzEb/j38wjFJhJQ7zhaUEz4ciLBTmJSDiCxerBuWKLdiUHI3 jB3IDRcvvKVKTn7EbRAHIQn9spUOeBSJQE9go4e7zFK/Ga1dJO3G36QkjQV2tW9W n16p6m9M2PkdpQl74MAm -----END CERTIFICATE-----Generated at Tue Nov 4 01:08:20 2025 by rpki-client