$ rpki-client -vvf rpki.apnic.net/member_repository/A91951AF/6B28B3E495C411F094E84E36C4F9AE02/0A86FD7C95E011F0B2B5CE77C4F9AE02.roa File: 0A86FD7C95E011F0B2B5CE77C4F9AE02.roa (raw, json) Hash identifier: 9TR+7jMSEj42WP2HgrvlmxnuqGeYCxwav28DarkHDK0= Subject key identifier: C0:FB:A3:AE:14:C7:11:0C:F8:DD:BD:C9:E8:FA:E9:F5:C8:C0:F1:8C Certificate issuer: /CN=A91951AF/serialNumber=18ECE629EEF3B6A2696EBAB34B3FB02EF8A8B887 Certificate serial: 05 Authority key identifier: 18:EC:E6:29:EE:F3:B6:A2:69:6E:BA:B3:4B:3F:B0:2E:F8:A8:B8:87 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOzmKe7ztqJpbrqzSz-wLviouIc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91951AF/6B28B3E495C411F094E84E36C4F9AE02/0A86FD7C95E011F0B2B5CE77C4F9AE02.roa Signing time: Sat 20 Sep 2025 05:09:53 +0000 ROA not before: Sat 20 Sep 2025 05:09:53 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 9829 IP address blocks: 45.117.84.0/24 maxlen: 24 45.117.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91951AF/6B28B3E495C411F094E84E36C4F9AE02/GOzmKe7ztqJpbrqzSz-wLviouIc.crl rsync://rpki.apnic.net/member_repository/A91951AF/6B28B3E495C411F094E84E36C4F9AE02/GOzmKe7ztqJpbrqzSz-wLviouIc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOzmKe7ztqJpbrqzSz-wLviouIc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 09:59:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91951AF, serialNumber=18ECE629EEF3B6A2696EBAB34B3FB02EF8A8B887 Validity Not Before: Sep 20 05:09:53 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68ce3721-ec64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:68:26:f7:43:3c:83:78:01:f7:f2:4a:89:ea: 85:63:c4:21:69:1c:b7:83:f5:bb:f8:a4:87:3f:a1: e2:fa:f7:ba:e9:d1:62:62:3d:12:75:4b:ff:0f:68: 88:cc:39:ee:18:93:52:2d:3e:c3:53:b2:69:0c:86: 07:ac:6f:fc:79:6d:96:8c:ab:e9:56:7f:b1:01:3c: e8:3f:f0:14:47:c8:43:ad:d8:4a:7d:a2:13:3d:42: da:57:55:92:e3:5b:62:31:eb:0b:5b:74:30:09:85: ba:58:6e:db:2d:14:f3:1c:bf:d7:07:e3:8a:27:d0: d8:c2:c4:37:ec:f4:ab:a1:0c:91:d6:15:49:02:9d: 97:b7:f9:4f:e0:64:bc:a6:f9:e4:ac:07:a7:e1:54: e9:0f:f0:d8:97:3e:57:8c:95:fb:5e:2c:37:58:31: c4:97:03:70:12:48:24:29:c1:44:5a:50:08:f5:5b: 25:53:1d:12:b4:ee:e7:3d:fa:4f:97:c0:18:37:ad: 2e:09:ee:5a:2d:a0:33:e2:5f:9f:30:8a:6f:8d:8d: d3:ea:92:4e:2d:c2:19:53:cc:65:e7:cc:e2:9f:f1: e4:ff:73:7a:fd:6d:74:2b:bc:dc:75:a6:2f:18:d4: 1e:27:36:30:09:c0:10:f9:eb:69:a0:ed:7d:10:7d: cb:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:FB:A3:AE:14:C7:11:0C:F8:DD:BD:C9:E8:FA:E9:F5:C8:C0:F1:8C X509v3 Authority Key Identifier: keyid:18:EC:E6:29:EE:F3:B6:A2:69:6E:BA:B3:4B:3F:B0:2E:F8:A8:B8:87 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91951AF/6B28B3E495C411F094E84E36C4F9AE02/GOzmKe7ztqJpbrqzSz-wLviouIc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GOzmKe7ztqJpbrqzSz-wLviouIc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91951AF/6B28B3E495C411F094E84E36C4F9AE02/0A86FD7C95E011F0B2B5CE77C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.84.0/23 Signature Algorithm: sha256WithRSAEncryption 84:06:ce:86:40:e8:6e:e9:87:3b:f6:a6:6c:89:57:5d:4b:b6: 12:a4:bd:cb:47:03:fb:df:27:68:5b:f1:d4:ab:02:8d:d8:18: 9d:39:be:e1:ae:39:0a:88:a9:9a:36:47:fb:98:36:8e:ee:40: b2:e2:46:db:6f:25:08:ad:64:54:fa:05:b0:91:23:8b:8c:f6: a0:33:fc:ec:c5:e1:b5:79:cd:86:e5:1e:2e:d5:6d:d7:1c:49: 4c:ef:8a:92:b8:cc:01:67:b3:61:d3:1a:ba:4e:06:54:a2:83: 40:ef:43:59:46:00:b4:55:59:ba:86:a0:f3:ea:ec:1f:08:ea: 5c:98:fb:01:2a:a3:77:26:79:6d:6a:7a:2f:b9:d9:58:28:4f: 56:9e:da:18:dd:88:80:7a:b4:45:a2:34:55:93:a8:29:44:c3: 13:f5:59:53:27:5b:b7:f1:72:31:3c:08:82:0a:c0:42:6c:74: 56:ae:9f:31:94:d7:0d:d9:c1:10:97:05:f9:4d:03:25:fc:e5: 7c:bd:fe:12:0a:64:09:22:bb:85:ca:02:4f:9c:a5:de:79:9f: 7a:df:fc:34:9c:5b:30:7d:8d:75:61:27:10:4e:e6:7b:fc:3d: 0b:ca:bd:8d:bb:6d:c2:b6:f3:00:d3:cc:d3:1a:be:34:4a:cf: de:40:f9:43 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NTFBRjExMC8GA1UEBRMoMThFQ0U2MjlFRUYzQjZBMjY5NkVCQUIzNEIzRkIwMkVG OEE4Qjg4NzAeFw0yNTA5MjAwNTA5NTNaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Y2UzNzIxLWVjNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvaCb3QzyDeAH38kqJ6oVjxCFpHLeD9bv4pIc/oeL697rp0WJiPRJ1S/8PaIjM Oe4Yk1ItPsNTsmkMhgesb/x5bZaMq+lWf7EBPOg/8BRHyEOt2Ep9ohM9QtpXVZLj W2Ix6wtbdDAJhbpYbtstFPMcv9cH44on0NjCxDfs9KuhDJHWFUkCnZe3+U/gZLym +eSsB6fhVOkP8NiXPleMlfteLDdYMcSXA3ASSCQpwURaUAj1WyVTHRK07uc9+k+X wBg3rS4J7lotoDPiX58wim+NjdPqkk4twhlTzGXnzOKf8eT/c3r9bXQrvNx1pi8Y 1B4nNjAJwBD562mg7X0QfcvZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUwPujrhTH EQz43b3J6Prp9cjA8YwwHwYDVR0jBBgwFoAUGOzmKe7ztqJpbrqzSz+wLviouIcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1MUFGLzZCMjhCM0U0OTVD NDExRjA5NEU4NEUzNkM0RjlBRTAyL0dPem1LZTd6dHFKcGJycXpTei13THZpb3VJ Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR096bUtlN3p0cUpwYnJxelN6LXdMdmlvdUljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NTFBRi82QjI4QjNFNDk1QzQxMUYwOTRFODRFMzZDNEY5QUUwMi8wQTg2RkQ3Qzk1 RTAxMUYwQjJCNUNFNzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAS11VDANBgkqhkiG9w0BAQsFAAOCAQEAhAbOhkDobumHO/am bIlXXUu2EqS9y0cD+98naFvx1KsCjdgYnTm+4a45CoipmjZH+5g2ju5AsuJG228l CK1kVPoFsJEji4z2oDP87MXhtXnNhuUeLtVt1xxJTO+KkrjMAWezYdMauk4GVKKD QO9DWUYAtFVZuoag8+rsHwjqXJj7ASqjdyZ5bWp6L7nZWChPVp7aGN2IgHq0RaI0 VZOoKUTDE/VZUydbt/FyMTwIggrAQmx0Vq6fMZTXDdnBEJcF+U0DJfzlfL3+Egpk CSK7hcoCT5yl3nmfet/8NJxbMH2NdWEnEE7me/w9C8q9jbttwrbzANPM0xq+NErP 3kD5Qw== -----END CERTIFICATE-----Generated at Wed Oct 22 09:19:27 2025 by rpki-client