$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/1BE0AAE6AE9A11F0B8FE6621C4F9AE02.roa File: 1BE0AAE6AE9A11F0B8FE6621C4F9AE02.roa (raw, json) Hash identifier: lQXg+x/pxYEw6RZp1vPPXfhhm8xX80IO6STDBaCkyJw= Subject key identifier: CB:79:60:3C:A9:C7:B5:59:17:9B:DB:2E:A4:62:94:56:87:4F:09:7D Certificate issuer: /CN=A91BF27F/serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Certificate serial: 21A8 Authority key identifier: 59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/1BE0AAE6AE9A11F0B8FE6621C4F9AE02.roa Signing time: Tue 21 Oct 2025 16:22:17 +0000 ROA not before: Tue 21 Oct 2025 16:22:17 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 31898 IP address blocks: 43.243.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 15:55:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8616 (0x21a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF27F, serialNumber=59A64728EE01D6AE34FE77B01E8859C82097E57F Validity Not Before: Oct 21 16:22:17 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68f7b338-fb83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6d:c4:35:ca:9d:81:ba:a0:7b:56:63:53:25: 73:e4:db:2e:d0:9c:7d:99:3c:4f:6c:b2:a0:61:14: f5:65:50:9d:f7:80:37:3b:81:79:12:e4:00:69:f2: 63:0d:40:d0:16:ba:72:e6:00:9c:42:95:2e:50:88: 47:51:a1:13:9b:8a:80:a3:38:53:c4:91:0b:65:67: 8e:9a:d2:dc:e9:a1:51:11:96:a1:66:a5:f9:c3:67: df:b8:bf:21:c5:7b:fc:ac:e0:58:3e:cd:6e:25:f0: fb:39:11:79:e1:51:73:85:3a:3c:f5:78:d3:47:f4: 9d:0b:e1:36:76:97:c6:c6:60:15:92:9c:f9:ae:f0: 83:a8:28:87:80:d8:2b:77:6d:57:e5:24:1b:69:0d: f0:5f:d9:0d:ec:0d:50:3f:ea:3b:1b:86:e6:f1:f5: a5:6e:e0:1e:3a:1f:2e:f8:b3:81:91:35:8c:79:5f: e3:7a:79:98:27:52:fc:dc:84:96:aa:da:b7:eb:13: e5:c5:6c:9c:64:07:f5:c9:1a:1f:44:00:3f:15:0f: a3:c6:81:f4:80:6d:66:aa:ed:3b:fd:b1:9f:31:bb: e9:dc:b6:dc:af:47:80:ed:b3:bb:a4:aa:8c:87:4a: e9:80:42:78:29:77:a0:30:29:ca:5d:c9:84:73:6b: 53:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:79:60:3C:A9:C7:B5:59:17:9B:DB:2E:A4:62:94:56:87:4F:09:7D X509v3 Authority Key Identifier: keyid:59:A6:47:28:EE:01:D6:AE:34:FE:77:B0:1E:88:59:C8:20:97:E5:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/WaZHKO4B1q40_newHohZyCCX5X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WaZHKO4B1q40_newHohZyCCX5X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF27F/9C3256A2E98F11E5B2ADC567C4F9AE02/1BE0AAE6AE9A11F0B8FE6621C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.116.0/22 Signature Algorithm: sha256WithRSAEncryption 33:20:6a:3d:7b:91:b4:dc:e4:08:d1:6b:05:55:c3:ed:63:7e: 81:21:38:ad:98:cd:5b:74:f8:a5:66:9a:f0:01:f3:c8:11:d8: 8c:de:4b:2d:12:1e:ac:4b:52:7d:f9:cb:eb:68:4f:f1:d6:1d: 6a:1e:b9:fa:e3:28:f9:f2:f4:28:c7:3a:9b:dd:b9:9d:aa:49: 78:ad:7c:42:0f:70:6b:c8:d2:87:e3:36:d3:5f:19:b6:09:5f: 57:7a:42:3a:dc:66:12:26:b6:35:7e:c8:bb:30:a6:58:95:88: 51:88:10:2f:18:47:29:49:43:1b:8f:b8:31:3a:4d:fd:cb:ca: 5a:41:d4:0d:aa:8f:d4:e3:68:e6:89:c3:2e:ce:2b:5c:04:55: ad:ad:c4:8a:04:02:87:1d:fb:c0:42:80:9d:63:72:77:02:05: 67:46:80:d1:5a:1f:54:4a:ca:ef:cc:4d:1b:70:53:9c:23:b1: c5:2b:1e:93:94:05:81:6c:01:2d:e8:d1:52:f0:7d:82:36:12: 10:00:99:4e:6a:b4:99:83:84:02:b6:99:0c:1c:6f:f8:cc:2f: a0:b2:57:11:1c:ce:fd:e2:85:30:d4:01:11:1b:35:d3:91:91: 1c:79:97:25:89:06:0b:e0:44:2c:1c:47:5d:e7:5e:e2:ab:47: b8:00:8b:ee -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyN0YxMTAvBgNVBAUTKDU5QTY0NzI4RUUwMUQ2QUUzNEZFNzdCMDFFODg1OUM4 MjA5N0U1N0YwHhcNMjUxMDIxMTYyMjE3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGY3YjMzOC1mYjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu23ENcqdgbqge1ZjUyVz5Nsu0Jx9mTxPbLKgYRT1ZVCd94A3O4F5EuQAafJj DUDQFrpy5gCcQpUuUIhHUaETm4qAozhTxJELZWeOmtLc6aFREZahZqX5w2ffuL8h xXv8rOBYPs1uJfD7ORF54VFzhTo89XjTR/SdC+E2dpfGxmAVkpz5rvCDqCiHgNgr d21X5SQbaQ3wX9kN7A1QP+o7G4bm8fWlbuAeOh8u+LOBkTWMeV/jenmYJ1L83ISW qtq36xPlxWycZAf1yRofRAA/FQ+jxoH0gG1mqu07/bGfMbvp3Lbcr0eA7bO7pKqM h0rpgEJ4KXegMCnKXcmEc2tTKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMt5YDyp x7VZF5vbLqRilFaHTwl9MB8GA1UdIwQYMBaAFFmmRyjuAdauNP53sB6IWcggl+V/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjI3Ri85QzMyNTZBMkU5 OEYxMUU1QjJBREM1NjdDNEY5QUUwMi9XYVpIS080QjFxNDBfbmV3SG9oWnlDQ1g1 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dhWkhLTzRCMXE0MF9uZXdIb2haeUNDWDVYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkYyN0YvOUMzMjU2QTJFOThGMTFFNUIyQURDNTY3QzRGOUFFMDIvMUJFMEFBRTZB RTlBMTFGMEI4RkU2NjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIr83QwDQYJKoZIhvcNAQELBQADggEBADMgaj17kbTc5AjR awVVw+1jfoEhOK2YzVt0+KVmmvAB88gR2IzeSy0SHqxLUn35y+toT/HWHWoeufrj KPny9CjHOpvduZ2qSXitfEIPcGvI0ofjNtNfGbYJX1d6QjrcZhImtjV+yLswpliV iFGIEC8YRylJQxuPuDE6Tf3LylpB1A2qj9TjaOaJwy7OK1wEVa2txIoEAocd+8BC gJ1jcncCBWdGgNFaH1RKyu/MTRtwU5wjscUrHpOUBYFsAS3o0VLwfYI2EhAAmU5q tJmDhAK2mQwcb/jML6CyVxEczv3ihTDUAREbNdORkRx5lyWJBgvgRCwcR13nXuKr R7gAi+4= -----END CERTIFICATE-----Generated at Mon Nov 3 17:00:23 2025 by rpki-client