$ rpki-client -vvf rpki.apnic.net/member_repository/A91D0853/5B94390E044111EB91C43E45C4F9AE02/01F74A7EBFAC11EE89B0182DC4F9AE02.roa File: 01F74A7EBFAC11EE89B0182DC4F9AE02.roa (raw, json) Hash identifier: Zz2NVstL8auBq8I64jr8lENGYJp2GsiOwFTr/pV3kVI= Subject key identifier: D5:F7:EC:B0:7A:A4:8B:25:3E:D5:9D:99:B1:46:4D:D7:79:B8:51:EF Certificate issuer: /CN=A91D0853/serialNumber=E0F3CFBDFA7D074274FA749D4029CEE3588F77C3 Certificate serial: 0802 Authority key identifier: E0:F3:CF:BD:FA:7D:07:42:74:FA:74:9D:40:29:CE:E3:58:8F:77:C3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4PPPvfp9B0J0-nSdQCnO41iPd8M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D0853/5B94390E044111EB91C43E45C4F9AE02/01F74A7EBFAC11EE89B0182DC4F9AE02.roa Signing time: Tue 04 Nov 2025 21:10:57 +0000 ROA not before: Tue 04 Nov 2025 21:10:57 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 212238 IP address blocks: 202.91.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D0853/5B94390E044111EB91C43E45C4F9AE02/4PPPvfp9B0J0-nSdQCnO41iPd8M.crl rsync://rpki.apnic.net/member_repository/A91D0853/5B94390E044111EB91C43E45C4F9AE02/4PPPvfp9B0J0-nSdQCnO41iPd8M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4PPPvfp9B0J0-nSdQCnO41iPd8M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 09:22:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2050 (0x802) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D0853, serialNumber=E0F3CFBDFA7D074274FA749D4029CEE3588F77C3 Validity Not Before: Nov 4 21:10:57 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=690a6be0-ceec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:09:1f:02:d9:91:7c:4b:db:b5:64:60:4e:25: 66:54:f8:3d:c4:bf:49:f4:c2:0d:77:98:c1:64:f7: c7:19:fb:af:ff:55:c3:bd:05:78:a4:9a:e6:9e:83: 3f:dd:55:d1:29:89:c1:bf:05:bb:9d:bc:03:d8:3c: 6e:a1:8d:80:b7:84:c8:76:cd:6d:7d:2e:f5:8d:e8: aa:45:fd:6d:68:ca:61:45:1b:88:60:6d:1e:30:75: bd:af:ea:78:6c:57:b5:17:f1:e4:bd:b2:5d:c1:a7: 20:05:01:3f:e7:27:7f:02:ef:f1:c3:1c:b3:e6:1f: 3d:69:4d:06:33:c2:6a:4e:2d:18:08:e1:c4:ea:8b: 45:2a:2d:9d:c7:4e:a7:3d:34:31:dd:c9:eb:84:3c: fe:47:a8:67:db:95:21:f1:c1:c0:c2:71:89:31:ec: 6f:f5:90:c4:ad:44:08:b7:f3:3f:c5:14:5b:50:c7: 4a:32:52:c4:e5:3d:e2:15:3a:f0:ce:64:82:96:26: 94:14:c9:3a:94:d7:76:03:5f:cc:02:7a:2f:06:38: fb:47:4e:bc:a1:e4:69:be:22:17:91:65:82:e6:6c: 89:80:9a:62:20:c6:8f:56:a4:06:05:17:98:a5:cf: 85:bb:69:6c:e9:d1:c9:0e:d2:2f:f5:8b:c1:fe:d1: dc:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:F7:EC:B0:7A:A4:8B:25:3E:D5:9D:99:B1:46:4D:D7:79:B8:51:EF X509v3 Authority Key Identifier: keyid:E0:F3:CF:BD:FA:7D:07:42:74:FA:74:9D:40:29:CE:E3:58:8F:77:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D0853/5B94390E044111EB91C43E45C4F9AE02/4PPPvfp9B0J0-nSdQCnO41iPd8M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4PPPvfp9B0J0-nSdQCnO41iPd8M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D0853/5B94390E044111EB91C43E45C4F9AE02/01F74A7EBFAC11EE89B0182DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.91.171.0/24 Signature Algorithm: sha256WithRSAEncryption 08:dd:bb:5f:22:1a:99:63:b3:e5:13:ef:2d:66:a4:6c:1e:76: c8:57:1d:53:d6:8b:2f:a4:c6:84:fd:c1:56:c5:1b:19:15:ba: c9:c3:87:35:4f:47:98:58:22:31:22:ce:ec:23:f4:d4:78:ab: 91:e5:99:f5:b8:30:df:d3:8e:2a:c4:f4:0e:32:db:6f:5d:fb: d7:d8:03:28:5c:5b:b2:87:65:fa:ec:16:ea:b2:cf:df:36:96: d6:5b:90:19:4d:8a:d2:2e:ac:87:60:21:09:33:80:d2:4f:d3: 00:3f:17:8f:30:03:96:d6:3f:0e:74:a1:13:fb:83:67:45:59: 6a:67:4c:e8:04:d1:03:96:db:e9:5e:8b:ce:e2:67:d5:0f:b8: 7b:17:3f:31:f9:d6:19:d9:58:c2:ba:53:57:f8:f8:ee:7a:1c: 03:35:40:56:1d:70:b8:bf:66:f1:13:9c:63:7d:9a:45:b9:a7: 9d:34:92:d0:ec:7f:25:ca:58:80:46:c2:07:b3:45:39:b6:0b: da:ef:33:7f:be:8e:74:ca:39:9a:69:e2:76:cf:8d:34:83:11: aa:62:3a:28:3b:3c:b6:48:71:8a:f6:9f:94:6f:19:32:98:ca: ca:45:12:ff:ea:84:42:b8:0c:bb:4f:bb:88:41:f5:b6:c0:b8: c5:8f:33:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDA4NTMxMTAvBgNVBAUTKEUwRjNDRkJERkE3RDA3NDI3NEZBNzQ5RDQwMjlDRUUz NTg4Rjc3QzMwHhcNMjUxMTA0MjExMDU3WhcNMjcwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTBhNmJlMC1jZWVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8AkfAtmRfEvbtWRgTiVmVPg9xL9J9MINd5jBZPfHGfuv/1XDvQV4pJrmnoM/ 3VXRKYnBvwW7nbwD2DxuoY2At4TIds1tfS71jeiqRf1taMphRRuIYG0eMHW9r+p4 bFe1F/HkvbJdwacgBQE/5yd/Au/xwxyz5h89aU0GM8JqTi0YCOHE6otFKi2dx06n PTQx3cnrhDz+R6hn25Uh8cHAwnGJMexv9ZDErUQIt/M/xRRbUMdKMlLE5T3iFTrw zmSCliaUFMk6lNd2A1/MAnovBjj7R068oeRpviIXkWWC5myJgJpiIMaPVqQGBReY pc+Fu2ls6dHJDtIv9YvB/tHchwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNX37LB6 pIslPtWdmbFGTdd5uFHvMB8GA1UdIwQYMBaAFODzz736fQdCdPp0nUApzuNYj3fD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMDg1My81Qjk0MzkwRTA0 NDExMUVCOTFDNDNFNDVDNEY5QUUwMi80UFBQdmZwOUIwSjAtblNkUUNuTzQxaVBk OE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRQUFB2ZnA5QjBKMC1uU2RRQ25PNDFpUGQ4TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDA4NTMvNUI5NDM5MEUwNDQxMTFFQjkxQzQzRTQ1QzRGOUFFMDIvMDFGNzRBN0VC RkFDMTFFRTg5QjAxODJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKW6swDQYJKoZIhvcNAQELBQADggEBAAjdu18iGpljs+UT 7y1mpGwedshXHVPWiy+kxoT9wVbFGxkVusnDhzVPR5hYIjEizuwj9NR4q5HlmfW4 MN/TjirE9A4y229d+9fYAyhcW7KHZfrsFuqyz982ltZbkBlNitIurIdgIQkzgNJP 0wA/F48wA5bWPw50oRP7g2dFWWpnTOgE0QOW2+lei87iZ9UPuHsXPzH51hnZWMK6 U1f4+O56HAM1QFYdcLi/ZvETnGN9mkW5p500ktDsfyXKWIBGwgezRTm2C9rvM3++ jnTKOZpp4nbPjTSDEapiOig7PLZIcYr2n5RvGTKYyspFEv/qhEK4DLtPu4hB9bbA uMWPMyY= -----END CERTIFICATE-----Generated at Wed Nov 5 16:41:03 2025 by rpki-client