$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/AE21A9C6818911EA81577016C4F9AE02.roa File: AE21A9C6818911EA81577016C4F9AE02.roa (raw, json) Hash identifier: Hi67OIgPZ7TBkvwrxhK9udO+gzYygQSZ8bHnr5IGMCw= Subject key identifier: C7:0F:58:83:AD:D1:63:99:AF:0B:C9:1E:B7:12:D9:C1:3D:A1:30:E6 Certificate issuer: /CN=A91D1691/serialNumber=D1479EF60341E39ECA172E4376443A471975CBEF Certificate serial: 18C0 Authority key identifier: D1:47:9E:F6:03:41:E3:9E:CA:17:2E:43:76:44:3A:47:19:75:CB:EF Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0Uee9gNB457KFy5DdkQ6Rxl1y-8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/AE21A9C6818911EA81577016C4F9AE02.roa Signing time: Tue 26 Aug 2025 16:23:19 +0000 ROA not before: Tue 26 Aug 2025 16:23:19 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45352 IP address blocks: 162.253.16.0/22 maxlen: 22 162.253.16.0/24 maxlen: 24 162.253.17.0/24 maxlen: 24 162.253.18.0/24 maxlen: 24 162.253.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/0Uee9gNB457KFy5DdkQ6Rxl1y-8.crl rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/0Uee9gNB457KFy5DdkQ6Rxl1y-8.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0Uee9gNB457KFy5DdkQ6Rxl1y-8.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6336 (0x18c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691, serialNumber=D1479EF60341E39ECA172E4376443A471975CBEF Validity Not Before: Aug 26 16:23:19 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68addf77-6e3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:0f:06:f0:87:66:82:02:96:69:b0:e9:54:97: c2:61:31:90:7d:6d:98:15:a5:9c:c5:7f:6c:05:19: ad:1b:4b:2a:c7:b1:58:d2:fc:5a:2b:37:11:78:a4: 3b:e5:42:6d:c3:b3:45:66:8c:d1:34:c6:26:ce:0f: 12:8d:69:04:6e:c5:fc:7a:22:ba:14:24:68:9d:51: ce:03:cc:c8:3f:dd:0c:0f:bd:86:22:78:db:b2:c8: 40:92:7f:61:7f:8f:3c:f9:f3:95:25:28:7c:38:3f: 00:0b:62:48:5b:81:d2:e7:5c:4e:12:28:f5:90:2b: 1f:0e:f9:c4:b2:5a:16:2c:82:97:fb:03:9b:f5:d3: 14:ad:34:03:85:24:5f:b9:7f:6a:c0:f5:26:b5:7a: b3:8e:9b:e9:43:f0:b3:92:66:41:1c:c7:6d:81:a6: 9a:22:2a:c3:7e:0d:0c:3b:7f:bf:8c:fe:1c:10:2e: 97:42:b8:bb:7b:4d:0e:74:9d:ae:38:86:2f:37:b7: 59:6a:f3:f7:4f:c0:ca:3f:d3:d3:e6:ff:36:1b:8c: 2a:36:0f:36:a8:3b:75:e7:a9:9d:33:3a:a8:8c:3d: f1:85:c1:7e:7e:11:6a:bb:ca:af:65:3d:28:30:60: bc:33:0c:47:4c:46:65:e2:fb:79:7d:f1:1c:7d:d8: e6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:0F:58:83:AD:D1:63:99:AF:0B:C9:1E:B7:12:D9:C1:3D:A1:30:E6 X509v3 Authority Key Identifier: keyid:D1:47:9E:F6:03:41:E3:9E:CA:17:2E:43:76:44:3A:47:19:75:CB:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/0Uee9gNB457KFy5DdkQ6Rxl1y-8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/0Uee9gNB457KFy5DdkQ6Rxl1y-8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/482BA1729D2411E7861A226BC4F9AE02/AE21A9C6818911EA81577016C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 162.253.16.0/22 Signature Algorithm: sha256WithRSAEncryption 8c:1d:c2:15:82:8d:ed:73:35:ae:26:4c:24:0e:91:6a:b3:c1: 1f:87:ad:2d:fb:0a:4a:d4:0f:14:60:ef:fa:d7:3c:0b:50:ae: e6:1a:00:24:11:5d:b1:cc:a9:af:56:84:36:8d:2e:45:86:0e: 1d:ab:64:a3:f7:47:76:0d:a6:7e:eb:41:87:b1:b6:4a:52:52: af:6c:24:f1:03:e1:86:8e:b5:4a:e0:30:0f:fe:94:7b:c5:11: c0:5c:63:57:93:f6:2d:6d:98:95:28:f2:50:37:61:ba:77:93: a2:ad:02:a5:7f:ff:a6:a5:f6:d5:7f:ee:b9:0f:86:20:71:11: 05:05:9e:6b:4f:0f:dd:36:b8:47:87:54:35:d5:50:57:6a:d9: 85:12:2e:ef:4f:5e:c9:f0:f4:8f:31:aa:bb:31:70:1e:84:e9: 4c:5a:13:60:cd:92:5c:2a:af:04:a2:b2:da:d4:86:9c:10:5d: f6:73:fb:0c:1a:0c:99:70:78:b0:1e:74:77:79:a5:05:13:ce: e2:19:40:ba:20:78:54:bf:f5:2f:f7:30:58:fd:51:6c:f5:4b: d8:a9:e4:73:f6:e7:97:31:2c:55:5d:3a:80:3c:52:66:7f:7d: c5:11:d3:aa:de:d3:f5:3a:f8:97:3a:8a:d4:a3:cf:0e:9c:64: 0f:fa:7a:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKEQxNDc5RUY2MDM0MUUzOUVDQTE3MkU0Mzc2NDQzQTQ3 MTk3NUNCRUYwHhcNMjUwODI2MTYyMzE5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFkZGY3Ny02ZTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Q8G8IdmggKWabDpVJfCYTGQfW2YFaWcxX9sBRmtG0sqx7FY0vxaKzcReKQ7 5UJtw7NFZozRNMYmzg8SjWkEbsX8eiK6FCRonVHOA8zIP90MD72GInjbsshAkn9h f488+fOVJSh8OD8AC2JIW4HS51xOEij1kCsfDvnEsloWLIKX+wOb9dMUrTQDhSRf uX9qwPUmtXqzjpvpQ/CzkmZBHMdtgaaaIirDfg0MO3+/jP4cEC6XQri7e00OdJ2u OIYvN7dZavP3T8DKP9PT5v82G4wqNg82qDt156mdMzqojD3xhcF+fhFqu8qvZT0o MGC8MwxHTEZl4vt5ffEcfdjmLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMcPWIOt 0WOZrwvJHrcS2cE9oTDmMB8GA1UdIwQYMBaAFNFHnvYDQeOeyhcuQ3ZEOkcZdcvv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS80ODJCQTE3MjlE MjQxMUU3ODYxQTIyNkJDNEY5QUUwMi8wVWVlOWdOQjQ1N0tGeTVEZGtRNlJ4bDF5 LTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzBVZWU5Z05CNDU3S0Z5NURka1E2UnhsMXktOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE2OTEvNDgyQkExNzI5RDI0MTFFNzg2MUEyMjZCQzRGOUFFMDIvQUUyMUE5QzY4 MTg5MTFFQTgxNTc3MDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKi/RAwDQYJKoZIhvcNAQELBQADggEBAIwdwhWCje1zNa4m TCQOkWqzwR+HrS37CkrUDxRg7/rXPAtQruYaACQRXbHMqa9WhDaNLkWGDh2rZKP3 R3YNpn7rQYextkpSUq9sJPED4YaOtUrgMA/+lHvFEcBcY1eT9i1tmJUo8lA3Ybp3 k6KtAqV//6al9tV/7rkPhiBxEQUFnmtPD902uEeHVDXVUFdq2YUSLu9PXsnw9I8x qrsxcB6E6UxaE2DNklwqrwSistrUhpwQXfZz+wwaDJlweLAedHd5pQUTzuIZQLog eFS/9S/3MFj9UWz1S9ip5HP255cxLFVdOoA8UmZ/fcUR06re0/U6+Jc6itSjzw6c ZA/6euo= -----END CERTIFICATE-----Generated at Wed Nov 5 21:19:18 2025 by rpki-client