$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC4A7/FA98FB3EAB4411F0843D0657C4F9AE02/944C9A24AB4511F09AA0C458C4F9AE02.roa File: 944C9A24AB4511F09AA0C458C4F9AE02.roa (raw, json) Hash identifier: Vrxbp4tg7Ch8ynxq67uyQgBvWF4QcT0YiwQ07xaqChg= Subject key identifier: 69:5A:EA:ED:9C:4C:BC:87:4A:DF:91:7A:E1:80:E8:BF:87:43:74:9B Certificate issuer: /CN=A91CC4A7/serialNumber=E42F5DEF2659B5E7FA2703768E9487EFDC595BB0 Certificate serial: 02 Authority key identifier: E4:2F:5D:EF:26:59:B5:E7:FA:27:03:76:8E:94:87:EF:DC:59:5B:B0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5C9d7yZZtef6JwN2jpSH79xZW7A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC4A7/FA98FB3EAB4411F0843D0657C4F9AE02/944C9A24AB4511F09AA0C458C4F9AE02.roa Signing time: Fri 17 Oct 2025 10:39:38 +0000 ROA not before: Fri 17 Oct 2025 10:39:38 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 134738 IP address blocks: 138.252.56.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC4A7/FA98FB3EAB4411F0843D0657C4F9AE02/5C9d7yZZtef6JwN2jpSH79xZW7A.crl rsync://rpki.apnic.net/member_repository/A91CC4A7/FA98FB3EAB4411F0843D0657C4F9AE02/5C9d7yZZtef6JwN2jpSH79xZW7A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5C9d7yZZtef6JwN2jpSH79xZW7A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 10:39:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC4A7, serialNumber=E42F5DEF2659B5E7FA2703768E9487EFDC595BB0 Validity Not Before: Oct 17 10:39:38 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f21cea-4622 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:d3:c8:95:2b:38:71:5f:ce:ba:66:99:55:4a: 54:ad:5c:20:b9:4b:47:4f:6e:bc:5d:04:13:f9:2d: 43:44:a4:05:51:96:e7:f4:70:45:e5:91:2f:56:b5: 16:d5:ed:b0:e1:fd:aa:b5:ea:dc:bf:d2:a3:66:85: 2a:23:c2:8c:7d:77:a2:81:a3:8e:b1:1d:ed:ab:8a: 93:ed:07:e0:ec:8c:c9:b9:91:15:1c:f5:65:0c:ba: 64:da:85:8e:73:c4:af:b6:d7:c5:07:40:62:cd:bc: fe:f6:76:3c:2d:e5:89:de:ff:6d:93:0a:ce:33:a4: 7b:e1:05:8d:74:1b:c2:51:4a:94:23:a5:e3:32:14: 3a:de:f6:b4:d7:52:77:fe:09:41:9f:dc:1e:e7:de: df:dd:67:b4:e9:f6:b6:b4:39:b3:88:65:c5:58:45: ab:2d:4c:4c:22:02:e4:cf:b7:b9:64:50:4d:13:7a: 2c:da:9d:ac:79:6a:ea:68:86:6d:e1:57:1a:52:3f: 92:80:8c:70:07:36:87:d9:bd:e9:a6:0a:bd:fe:3a: a8:55:ec:34:12:f7:28:7e:10:f4:47:36:a1:24:d4: c1:a9:30:36:8c:1c:22:38:82:d7:d7:11:45:be:99: c0:19:42:f3:1c:f2:61:04:18:1d:d3:ff:72:e2:6b: e7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:5A:EA:ED:9C:4C:BC:87:4A:DF:91:7A:E1:80:E8:BF:87:43:74:9B X509v3 Authority Key Identifier: keyid:E4:2F:5D:EF:26:59:B5:E7:FA:27:03:76:8E:94:87:EF:DC:59:5B:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC4A7/FA98FB3EAB4411F0843D0657C4F9AE02/5C9d7yZZtef6JwN2jpSH79xZW7A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5C9d7yZZtef6JwN2jpSH79xZW7A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC4A7/FA98FB3EAB4411F0843D0657C4F9AE02/944C9A24AB4511F09AA0C458C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.56.0/23 Signature Algorithm: sha256WithRSAEncryption 36:c3:05:1f:22:e2:4e:5b:6d:31:5c:79:25:c8:da:c5:2d:f1: 30:54:09:7c:b1:c2:a7:9c:6a:f8:cb:a2:be:87:87:75:8d:27: 83:ab:15:fe:e6:53:cc:cb:c6:04:b4:8b:f2:75:6b:31:de:61: 94:80:a0:e5:21:4b:14:d8:d4:30:b1:19:6f:1b:3a:46:b7:62: bc:43:d4:c8:28:26:23:a3:11:95:28:45:ff:41:bc:9d:10:c1: b0:b8:9a:d1:22:62:95:f4:02:b4:6f:20:04:a8:41:f2:11:98: eb:b6:8e:9b:74:b6:20:24:e9:40:b5:de:e3:90:c0:9d:e0:33: 69:99:03:32:db:00:fc:cd:ea:51:20:10:47:43:2d:4c:5d:0e: 54:ad:07:60:9f:ee:04:f6:34:b8:3e:fe:83:3e:11:c0:5c:1d: 88:16:2d:82:68:d7:fa:6c:9f:f1:e1:44:43:2f:57:99:d3:0e: d0:3f:db:23:77:13:4b:8d:f9:e8:b0:6e:04:2e:7f:27:6a:2a: 5b:91:53:3e:01:e2:bd:98:59:b5:fd:a8:59:a3:99:d1:1a:ba: 19:24:30:31:05:66:cf:ac:90:07:15:c8:59:52:24:67:d5:73: ba:69:1a:5e:4b:61:e1:02:3a:3b:7e:19:25:ec:99:80:ee:74: a1:b3:80:4d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QzRBNzExMC8GA1UEBRMoRTQyRjVERUYyNjU5QjVFN0ZBMjcwMzc2OEU5NDg3RUZE QzU5NUJCMDAeFw0yNTEwMTcxMDM5MzhaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZjIxY2VhLTQ2MjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCW08iVKzhxX866ZplVSlStXCC5S0dPbrxdBBP5LUNEpAVRluf0cEXlkS9WtRbV 7bDh/aq16ty/0qNmhSojwox9d6KBo46xHe2ripPtB+DsjMm5kRUc9WUMumTahY5z xK+218UHQGLNvP72djwt5Yne/22TCs4zpHvhBY10G8JRSpQjpeMyFDre9rTXUnf+ CUGf3B7n3t/dZ7Tp9ra0ObOIZcVYRastTEwiAuTPt7lkUE0Teizanax5aupohm3h VxpSP5KAjHAHNofZvemmCr3+OqhV7DQS9yh+EPRHNqEk1MGpMDaMHCI4gtfXEUW+ mcAZQvMc8mEEGB3T/3Lia+f1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUaVrq7ZxM vIdK35F64YDov4dDdJswHwYDVR0jBBgwFoAU5C9d7yZZtef6JwN2jpSH79xZW7Aw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNDNEE3L0ZBOThGQjNFQUI0 NDExRjA4NDNEMDY1N0M0RjlBRTAyLzVDOWQ3eVpadGVmNkp3TjJqcFNINzl4Wlc3 QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNUM5ZDd5Wlp0ZWY2SndOMmpwU0g3OXhaVzdBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QzRBNy9GQTk4RkIzRUFCNDQxMUYwODQzRDA2NTdDNEY5QUUwMi85NDRDOUEyNEFC NDUxMUYwOUFBMEM0NThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAYr8ODANBgkqhkiG9w0BAQsFAAOCAQEANsMFHyLiTlttMVx5 JcjaxS3xMFQJfLHCp5xq+MuivoeHdY0ng6sV/uZTzMvGBLSL8nVrMd5hlICg5SFL FNjUMLEZbxs6RrdivEPUyCgmI6MRlShF/0G8nRDBsLia0SJilfQCtG8gBKhB8hGY 67aOm3S2ICTpQLXe45DAneAzaZkDMtsA/M3qUSAQR0MtTF0OVK0HYJ/uBPY0uD7+ gz4RwFwdiBYtgmjX+myf8eFEQy9XmdMO0D/bI3cTS4356LBuBC5/J2oqW5FTPgHi vZhZtf2oWaOZ0Rq6GSQwMQVmz6yQBxXIWVIkZ9VzumkaXkth4QI6O34ZJeyZgO50 obOATQ== -----END CERTIFICATE-----Generated at Sun Oct 19 07:05:53 2025 by rpki-client