$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/70F3668238F711EFB4132D26C4F9AE02.roa File: 70F3668238F711EFB4132D26C4F9AE02.roa (raw, json) Hash identifier: uz9vSc9mw92nL6Ktvm9xgb3SiGv4W99WeVuYNZ1qMcs= Subject key identifier: BA:FD:C8:8A:FC:14:CF:00:C2:3D:D5:CC:CA:4E:AA:25:76:E2:FA:75 Certificate issuer: /CN=A91C6FD6/serialNumber=E86821E9F23D42F362E42AE2AFB5BD98E0B11193 Certificate serial: F8 Authority key identifier: E8:68:21:E9:F2:3D:42:F3:62:E4:2A:E2:AF:B5:BD:98:E0:B1:11:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Ggh6fI9QvNi5Crir7W9mOCxEZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/70F3668238F711EFB4132D26C4F9AE02.roa Signing time: Thu 23 Oct 2025 07:19:38 +0000 ROA not before: Thu 23 Oct 2025 07:19:38 +0000 ROA not after: Sat 30 Dec 2028 00:00:00 +0000 asID: 151953 IP address blocks: 203.19.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/6Ggh6fI9QvNi5Crir7W9mOCxEZM.crl rsync://rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/6Ggh6fI9QvNi5Crir7W9mOCxEZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Ggh6fI9QvNi5Crir7W9mOCxEZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 05:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 248 (0xf8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6FD6, serialNumber=E86821E9F23D42F362E42AE2AFB5BD98E0B11193 Validity Not Before: Oct 23 07:19:38 2025 GMT Not After : Dec 30 00:00:00 2028 GMT Subject: CN=68f9d70a-b3b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:21:a0:d3:8b:fe:7b:92:e4:8e:e6:da:b7:85: 8b:64:c7:5c:12:92:0e:cb:17:a8:26:9a:49:f4:93: e7:a7:8c:98:c8:50:e4:a2:fb:f5:05:41:0b:c0:57: 88:01:b5:b7:67:61:25:99:10:61:b3:96:eb:1e:54: 3b:92:1e:1f:ad:9b:68:24:b6:16:ae:11:45:92:dc: 93:c0:41:a6:9c:dd:cc:40:eb:1b:4c:c6:33:5a:a9: be:e4:e1:02:02:14:9c:7a:e6:86:01:1f:0d:a7:87: ca:b5:11:dc:f8:2a:e2:15:6a:cd:97:d6:30:9e:af: d1:e8:07:a5:41:2b:12:bf:5f:61:b0:fc:ee:cc:6b: 74:85:44:49:b2:18:98:e1:68:bb:d0:05:97:bc:6e: cd:a3:7f:b6:8d:34:58:ed:15:5e:39:85:e5:61:ba: 08:b6:4c:83:b1:fa:cd:4a:9b:9a:5f:0c:2d:7e:ea: 2c:bd:fb:49:f6:ad:72:e1:5a:b2:08:31:1f:50:36: db:fb:78:08:b9:de:39:ad:27:d2:9f:4d:61:e0:aa: 5a:d3:05:8e:5d:0e:3b:88:ef:e5:ab:98:0b:43:09: a1:2b:9f:ef:c8:6e:82:78:03:3f:65:14:7d:34:b3: 29:22:f3:ab:3b:2b:c6:4a:07:c6:fe:4d:d4:7d:f1: 00:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:FD:C8:8A:FC:14:CF:00:C2:3D:D5:CC:CA:4E:AA:25:76:E2:FA:75 X509v3 Authority Key Identifier: keyid:E8:68:21:E9:F2:3D:42:F3:62:E4:2A:E2:AF:B5:BD:98:E0:B1:11:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/6Ggh6fI9QvNi5Crir7W9mOCxEZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6Ggh6fI9QvNi5Crir7W9mOCxEZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6FD6/68DA4B6A38F611EFB1318423C4F9AE02/70F3668238F711EFB4132D26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.19.5.0/24 Signature Algorithm: sha256WithRSAEncryption b1:74:55:e4:c8:a1:0a:b5:9a:9d:3f:51:8a:9c:4f:b5:52:7a: c2:83:6f:35:4d:de:2f:7f:3a:37:18:9a:70:bc:47:95:0d:8f: 42:ec:8c:e1:75:1c:3b:77:32:23:0e:9d:d7:47:ce:0b:ca:c6: 1f:63:72:4f:b0:90:6b:17:c9:35:88:4f:d0:6a:aa:b7:10:38: 43:67:90:1a:4d:fb:fa:11:cb:49:4f:34:6d:31:73:3e:14:24: 7c:07:49:36:6e:58:1c:bb:70:e2:9f:b0:91:25:8e:ef:fc:51: f1:7a:01:23:c8:41:6c:5b:3f:0e:99:06:70:22:44:92:90:a0: 9b:4c:73:47:ff:c4:18:bf:32:dc:9e:2a:0f:7a:87:03:8b:f6: 93:d8:2a:29:ca:5d:06:0a:08:f1:9b:0b:dc:8c:4d:8d:d1:a3: 08:40:e3:70:49:de:81:ee:e4:aa:94:ec:5c:d0:cb:2d:c3:45: a4:b5:57:95:6c:3d:50:13:ac:7a:c2:ba:d2:ed:62:a4:f6:b3: 6d:13:00:75:7c:3f:8f:fd:fa:5b:e5:47:e1:2d:5d:27:26:91: f4:73:6e:18:9b:1c:dd:ca:49:16:8b:ec:04:01:a9:78:53:2b: 16:9e:b5:48:4c:9e:bc:f3:ae:c3:c3:8e:f5:aa:e2:93:a8:54: d8:59:a1:0b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZGRDYxMTAvBgNVBAUTKEU4NjgyMUU5RjIzRDQyRjM2MkU0MkFFMkFGQjVCRDk4 RTBCMTExOTMwHhcNMjUxMDIzMDcxOTM4WhcNMjgxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY5ZDcwYS1iM2I3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxiGg04v+e5Lkjubat4WLZMdcEpIOyxeoJppJ9JPnp4yYyFDkovv1BUELwFeI AbW3Z2ElmRBhs5brHlQ7kh4frZtoJLYWrhFFktyTwEGmnN3MQOsbTMYzWqm+5OEC AhSceuaGAR8Np4fKtRHc+CriFWrNl9Ywnq/R6AelQSsSv19hsPzuzGt0hURJshiY 4Wi70AWXvG7No3+2jTRY7RVeOYXlYboItkyDsfrNSpuaXwwtfuosvftJ9q1y4Vqy CDEfUDbb+3gIud45rSfSn01h4Kpa0wWOXQ47iO/lq5gLQwmhK5/vyG6CeAM/ZRR9 NLMpIvOrOyvGSgfG/k3UffEAbQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLr9yIr8 FM8Awj3VzMpOqiV24vp1MB8GA1UdIwQYMBaAFOhoIenyPULzYuQq4q+1vZjgsRGT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkZENi82OERBNEI2QTM4 RjYxMUVGQjEzMTg0MjNDNEY5QUUwMi82R2doNmZJOVF2Tmk1Q3JpcjdXOW1PQ3hF Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZHZ2g2Zkk5UXZOaTVDcmlyN1c5bU9DeEVaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZGRDYvNjhEQTRCNkEzOEY2MTFFRkIxMzE4NDIzQzRGOUFFMDIvNzBGMzY2ODIz OEY3MTFFRkI0MTMyRDI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLEwUwDQYJKoZIhvcNAQELBQADggEBALF0VeTIoQq1mp0/ UYqcT7VSesKDbzVN3i9/OjcYmnC8R5UNj0LsjOF1HDt3MiMOnddHzgvKxh9jck+w kGsXyTWIT9BqqrcQOENnkBpN+/oRy0lPNG0xcz4UJHwHSTZuWBy7cOKfsJElju/8 UfF6ASPIQWxbPw6ZBnAiRJKQoJtMc0f/xBi/MtyeKg96hwOL9pPYKinKXQYKCPGb C9yMTY3RowhA43BJ3oHu5KqU7FzQyy3DRaS1V5VsPVATrHrCutLtYqT2s20TAHV8 P4/9+lvlR+EtXScmkfRzbhibHN3KSRaL7AQBqXhTKxaetUhMnrzzrsPDjvWq4pOo VNhZoQs= -----END CERTIFICATE-----Generated at Tue Nov 4 16:04:18 2025 by rpki-client