$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4781/D90042CEA48D11F0AD97F016C4F9AE02/9F7CD49AA55A11F0A8F84D83C4F9AE02.roa File: 9F7CD49AA55A11F0A8F84D83C4F9AE02.roa (raw, json) Hash identifier: pbHyabcv277elA+5L6jLrPBHXOT6ujxTAobCaGjI5cg= Subject key identifier: 5C:F0:D2:23:C6:0D:14:DE:25:23:FE:DC:39:C3:F1:E1:75:02:13:BF Certificate issuer: /CN=A91D4781/serialNumber=227620FFCBDFAC95D46E6A1DB317B08BA5628480 Certificate serial: 03 Authority key identifier: 22:76:20:FF:CB:DF:AC:95:D4:6E:6A:1D:B3:17:B0:8B:A5:62:84:80 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/InYg_8vfrJXUbmodsxewi6VihIA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4781/D90042CEA48D11F0AD97F016C4F9AE02/9F7CD49AA55A11F0A8F84D83C4F9AE02.roa Signing time: Thu 09 Oct 2025 21:55:09 +0000 ROA not before: Thu 09 Oct 2025 21:55:09 +0000 ROA not after: Sun 31 Jan 2027 00:00:00 +0000 asID: 151660 IP address blocks: 138.252.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4781/D90042CEA48D11F0AD97F016C4F9AE02/InYg_8vfrJXUbmodsxewi6VihIA.crl rsync://rpki.apnic.net/member_repository/A91D4781/D90042CEA48D11F0AD97F016C4F9AE02/InYg_8vfrJXUbmodsxewi6VihIA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/InYg_8vfrJXUbmodsxewi6VihIA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:55:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4781, serialNumber=227620FFCBDFAC95D46E6A1DB317B08BA5628480 Validity Not Before: Oct 9 21:55:09 2025 GMT Not After : Jan 31 00:00:00 2027 GMT Subject: CN=68e82f3d-d1ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:a5:39:51:64:2d:0b:5f:d9:bd:2a:2c:a2:17: 86:58:9f:19:2f:00:1a:af:b3:75:1f:ea:1d:a5:76: 6f:a9:12:95:3e:d7:9a:bd:d9:62:a3:9e:d4:55:5a: e1:70:7a:30:6c:90:4a:eb:22:8a:ec:2e:aa:16:20: 68:34:8e:e1:32:c3:a7:78:e4:b3:28:5b:4f:81:50: 8f:a5:5d:97:eb:a5:9f:25:3c:04:f2:d0:58:cf:16: 03:a6:66:2f:ee:36:4c:6a:9e:71:3e:46:97:03:66: 99:2c:3c:46:44:f2:1d:3a:5d:07:a7:f1:41:6a:d2: 7c:b2:ae:cd:a1:44:e6:0a:d9:4c:cc:51:f3:d8:16: 75:1f:04:ff:63:af:14:66:e2:fe:39:2a:b3:6a:2e: a9:13:fa:9a:4d:1c:c4:61:1b:fc:f4:28:e7:b5:2e: 3d:cb:37:3f:1a:0b:0e:74:fc:1d:b1:ab:73:00:ac: 1d:d0:b7:2b:bb:7b:1e:b8:26:fb:71:dd:ba:83:98: 8b:df:bd:49:bb:60:c1:af:f8:14:f0:e0:e7:bb:f5: cc:62:77:d9:ac:ca:5b:cd:ff:4a:3e:8c:3a:12:be: 5e:e9:1c:e9:34:88:6f:c8:5f:3c:c5:05:55:ed:13: ee:dd:8a:41:fd:af:82:ee:6b:e3:b2:47:9b:09:5f: 5f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:F0:D2:23:C6:0D:14:DE:25:23:FE:DC:39:C3:F1:E1:75:02:13:BF X509v3 Authority Key Identifier: keyid:22:76:20:FF:CB:DF:AC:95:D4:6E:6A:1D:B3:17:B0:8B:A5:62:84:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4781/D90042CEA48D11F0AD97F016C4F9AE02/InYg_8vfrJXUbmodsxewi6VihIA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/InYg_8vfrJXUbmodsxewi6VihIA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4781/D90042CEA48D11F0AD97F016C4F9AE02/9F7CD49AA55A11F0A8F84D83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.252.22.0/23 Signature Algorithm: sha256WithRSAEncryption 33:d2:05:ba:74:33:4f:09:3d:fb:f5:4d:73:b6:b0:22:52:0c: 88:0c:a2:84:16:92:4a:39:38:5c:53:cc:46:e0:53:64:21:dd: a3:63:dd:ec:a2:97:39:be:d4:6d:88:ab:58:bc:17:c6:a2:64: 8c:fb:2f:2a:df:02:b6:1c:64:37:15:1b:b0:bb:36:00:7e:19: c6:1a:65:6d:99:1e:d7:be:80:3a:56:de:ce:b8:53:74:43:9b: 5f:f2:89:1b:c4:4d:df:96:70:3d:56:31:81:2a:bd:df:75:e3: f7:a6:d7:58:83:f0:5a:74:74:e9:dd:41:15:14:4d:fe:4f:66: a1:17:dd:c0:23:d0:f9:ea:bb:f1:24:08:45:c9:02:41:09:e5: 0c:d2:03:c3:72:87:f2:2c:a7:b0:da:57:73:c3:99:de:7b:4f: 11:e7:e3:c4:46:ba:dd:63:33:ea:25:49:8a:78:94:c6:60:ba: 60:db:b0:2c:10:90:5c:eb:c4:f0:35:a4:46:a8:d3:04:31:37: c5:bf:ec:a3:3e:8a:96:1d:01:6a:5b:a7:74:f4:71:3a:c5:7c: f8:3c:61:c2:c4:cf:26:d6:65:e1:7a:c5:9c:45:7f:1e:63:16: 2d:e3:a2:d7:b8:ff:88:ab:c1:23:30:e2:e8:42:d7:08:ab:5c: 52:a0:2a:e2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NDc4MTExMC8GA1UEBRMoMjI3NjIwRkZDQkRGQUM5NUQ0NkU2QTFEQjMxN0IwOEJB NTYyODQ4MDAeFw0yNTEwMDkyMTU1MDlaFw0yNzAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZTgyZjNkLWQxZWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvpTlRZC0LX9m9KiyiF4ZYnxkvABqvs3Uf6h2ldm+pEpU+15q92WKjntRVWuFw ejBskErrIorsLqoWIGg0juEyw6d45LMoW0+BUI+lXZfrpZ8lPATy0FjPFgOmZi/u NkxqnnE+RpcDZpksPEZE8h06XQen8UFq0nyyrs2hROYK2UzMUfPYFnUfBP9jrxRm 4v45KrNqLqkT+ppNHMRhG/z0KOe1Lj3LNz8aCw50/B2xq3MArB3Qtyu7ex64Jvtx 3bqDmIvfvUm7YMGv+BTw4Oe79cxid9msylvN/0o+jDoSvl7pHOk0iG/IXzzFBVXt E+7dikH9r4Lua+OyR5sJX1+ZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUXPDSI8YN FN4lI/7cOcPx4XUCE78wHwYDVR0jBBgwFoAUInYg/8vfrJXUbmodsxewi6VihIAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0NzgxL0Q5MDA0MkNFQTQ4 RDExRjBBRDk3RjAxNkM0RjlBRTAyL0luWWdfOHZmckpYVWJtb2RzeGV3aTZWaWhJ QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSW5ZZ184dmZySlhVYm1vZHN4ZXdpNlZpaElBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NDc4MS9EOTAwNDJDRUE0OEQxMUYwQUQ5N0YwMTZDNEY5QUUwMi85RjdDRDQ5QUE1 NUExMUYwQThGODREODNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAYr8FjANBgkqhkiG9w0BAQsFAAOCAQEAM9IFunQzTwk9+/VN c7awIlIMiAyihBaSSjk4XFPMRuBTZCHdo2Pd7KKXOb7UbYirWLwXxqJkjPsvKt8C thxkNxUbsLs2AH4ZxhplbZke176AOlbezrhTdEObX/KJG8RN35ZwPVYxgSq933Xj 96bXWIPwWnR06d1BFRRN/k9moRfdwCPQ+eq78SQIRckCQQnlDNIDw3KH8iynsNpX c8OZ3ntPEefjxEa63WMz6iVJiniUxmC6YNuwLBCQXOvE8DWkRqjTBDE3xb/soz6K lh0BalundPRxOsV8+DxhwsTPJtZl4XrFnEV/HmMWLeOi17j/iKvBIzDi6ELXCKtc UqAq4g== -----END CERTIFICATE-----Generated at Sun Oct 19 00:36:55 2025 by rpki-client