$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/E9BDEF2CABD011F0B868ED11C4F9AE02.roa File: E9BDEF2CABD011F0B868ED11C4F9AE02.roa (raw, json) Hash identifier: WrRhZ+VcPHGC3dqSfUQV3PGRsqcEeVFs0llndXVdriQ= Subject key identifier: 2C:4C:DD:3B:A3:25:05:2E:CE:10:D5:DE:72:93:0C:F4:09:BA:20:CA Certificate issuer: /CN=A91D2B62/serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Certificate serial: E1 Authority key identifier: E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/E9BDEF2CABD011F0B868ED11C4F9AE02.roa Signing time: Sat 18 Oct 2025 03:17:01 +0000 ROA not before: Sat 18 Oct 2025 03:17:01 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 26658 IP address blocks: 59.153.144.0/22 maxlen: 24 103.198.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 07:35:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2B62, serialNumber=E6F65D221B595F6BA13EB314DEE338CA241E2720 Validity Not Before: Oct 18 03:17:01 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=68f306ad-67d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:82:76:c5:79:8d:28:05:03:ba:ba:9f:05:3a: e6:c2:96:18:cc:df:47:ba:28:ea:97:ed:7a:3e:53: 45:b1:0d:9c:26:77:da:ca:d9:e6:b3:a4:d5:8e:8b: 43:06:33:0e:7a:50:77:60:f2:12:c3:b6:0b:59:2a: 94:d6:43:83:9b:a5:3c:54:f7:c8:54:43:a5:ce:0e: 16:5b:c6:69:dc:7c:7a:d8:97:32:5a:fa:4d:91:86: f4:f4:ea:75:18:47:ec:87:94:ea:91:a4:c0:e8:ef: 78:fd:c8:00:74:49:09:19:79:22:26:27:cc:6c:0e: 84:fd:ec:88:2c:e8:3a:eb:e2:c5:29:7d:92:71:83: dd:df:34:34:2d:a8:da:dc:2d:38:af:c7:9b:e7:b4: ef:d1:3b:05:25:ab:15:11:d2:36:73:01:ad:07:05: f2:37:c3:21:97:ca:8d:db:ef:38:9d:aa:17:01:db: 99:1b:67:c7:15:01:ce:3e:16:30:4e:ee:e5:db:fa: 45:db:61:0a:a5:e0:a1:28:39:9e:b9:0e:58:a9:31: 20:58:c3:42:95:78:70:0e:89:73:ef:5e:24:8f:94: 64:db:24:3c:16:e3:81:59:89:5f:fa:1b:02:c4:2e: d6:93:5b:6d:37:bd:80:7e:24:c2:21:ed:43:82:8f: 52:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:4C:DD:3B:A3:25:05:2E:CE:10:D5:DE:72:93:0C:F4:09:BA:20:CA X509v3 Authority Key Identifier: keyid:E6:F6:5D:22:1B:59:5F:6B:A1:3E:B3:14:DE:E3:38:CA:24:1E:27:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/5vZdIhtZX2uhPrMU3uM4yiQeJyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5vZdIhtZX2uhPrMU3uM4yiQeJyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2B62/BD29B8165AE011EF8651B61BC4F9AE02/E9BDEF2CABD011F0B868ED11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.153.144.0/22 103.198.188.0/22 Signature Algorithm: sha256WithRSAEncryption 90:9c:b7:ae:58:e8:85:3a:1e:94:5b:89:6e:33:cd:3a:29:15: e3:da:95:2f:87:89:d9:3f:3c:ae:02:4c:6f:67:ed:12:e9:7c: eb:9b:31:c8:3b:79:e0:5d:cc:2a:34:36:a3:7e:2b:b7:f7:b0: ec:fe:27:91:38:66:57:91:fb:da:9a:a2:84:8a:6a:f9:07:d5: b9:a1:6d:98:fc:f2:c9:a3:51:cd:b8:8f:3b:fb:17:f8:5f:12: cb:af:c0:85:38:9e:d4:a4:3e:b4:ca:a1:ce:d6:f2:97:77:97: 4d:e9:4d:c8:79:c8:19:a1:39:d6:e8:28:0a:c7:a0:bc:b2:c0: ee:7c:4f:ee:6f:34:e6:8b:14:e4:b2:43:04:64:50:7e:ac:5e: 6e:44:90:85:60:39:1c:8e:e0:a9:0b:e5:98:d9:d2:d0:dc:0f: 3e:71:52:07:f9:b8:56:da:b5:d1:8d:0b:f3:1c:a9:f3:28:bd: ec:12:d5:c4:d1:c8:40:a1:2c:9f:59:e6:c5:6d:3d:3b:5e:55: 20:02:00:84:b9:5e:e8:82:03:8f:88:5a:56:61:e2:65:cf:ab: 84:6d:82:8a:67:45:81:c3:be:92:06:65:d3:83:77:f6:88:c2: a4:fb:ef:0d:f2:a1:30:00:1a:c1:2f:13:ab:bf:5f:3a:e2:c8: 89:f9:1c:09 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJCNjIxMTAvBgNVBAUTKEU2RjY1RDIyMUI1OTVGNkJBMTNFQjMxNERFRTMzOENB MjQxRTI3MjAwHhcNMjUxMDE4MDMxNzAxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYzMDZhZC02N2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu4J2xXmNKAUDurqfBTrmwpYYzN9Huijql+16PlNFsQ2cJnfaytnms6TVjotD BjMOelB3YPISw7YLWSqU1kODm6U8VPfIVEOlzg4WW8Zp3Hx62JcyWvpNkYb09Op1 GEfsh5TqkaTA6O94/cgAdEkJGXkiJifMbA6E/eyILOg66+LFKX2ScYPd3zQ0Laja 3C04r8eb57Tv0TsFJasVEdI2cwGtBwXyN8Mhl8qN2+84naoXAduZG2fHFQHOPhYw Tu7l2/pF22EKpeChKDmeuQ5YqTEgWMNClXhwDolz714kj5Rk2yQ8FuOBWYlf+hsC xC7Wk1ttN72AfiTCIe1Dgo9S3wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCxM3Tuj JQUuzhDV3nKTDPQJuiDKMB8GA1UdIwQYMBaAFOb2XSIbWV9roT6zFN7jOMokHicg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkI2Mi9CRDI5QjgxNjVB RTAxMUVGODY1MUI2MUJDNEY5QUUwMi81dlpkSWh0WlgydWhQck1VM3VNNHlpUWVK eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzV2WmRJaHRaWDJ1aFByTVUzdU00eWlRZUp5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDJCNjIvQkQyOUI4MTY1QUUwMTFFRjg2NTFCNjFCQzRGOUFFMDIvRTlCREVGMkNB QkQwMTFGMEI4NjhFRDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAI7mZADBAJnxrwwDQYJKoZIhvcNAQELBQADggEBAJCct65Y 6IU6HpRbiW4zzTopFePalS+Hidk/PK4CTG9n7RLpfOubMcg7eeBdzCo0NqN+K7f3 sOz+J5E4ZleR+9qaooSKavkH1bmhbZj88smjUc24jzv7F/hfEsuvwIU4ntSkPrTK oc7W8pd3l03pTch5yBmhOdboKArHoLyywO58T+5vNOaLFOSyQwRkUH6sXm5EkIVg ORyO4KkL5ZjZ0tDcDz5xUgf5uFbatdGNC/McqfMovewS1cTRyEChLJ9Z5sVtPTte VSACAIS5XuiCA4+IWlZh4mXPq4RtgopnRYHDvpIGZdODd/aIwqT77w3yoTAAGsEv E6u/XzriyIn5HAk= -----END CERTIFICATE-----Generated at Tue Oct 28 06:43:33 2025 by rpki-client