$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/89A73D46772311EBB972032EC4F9AE02.roa File: 89A73D46772311EBB972032EC4F9AE02.roa (raw, json) Hash identifier: ENYLfShbh18F4DkP0j/X7mK87WIoKIhUNMFfz+VNeYQ= Subject key identifier: 93:F2:39:70:9C:DC:CD:27:A1:8B:D6:8B:1E:D8:23:81:53:58:B9:7B Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3663 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/89A73D46772311EBB972032EC4F9AE02.roa Signing time: Tue 30 Sep 2025 14:40:13 +0000 ROA not before: Tue 30 Sep 2025 14:40:13 +0000 ROA not after: Fri 30 Jan 2026 00:00:00 +0000 asID: 135538 IP address blocks: 61.45.253.0/24 maxlen: 24 2401:4601:253::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 00:46:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13923 (0x3663) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Sep 30 14:40:13 2025 GMT Not After : Jan 30 00:00:00 2026 GMT Subject: CN=68dbebcc-0fde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:d2:56:cd:54:18:61:63:14:92:30:d1:44:ab: eb:3e:3d:52:c2:52:43:df:5c:57:eb:d5:f6:73:bb: 60:64:0f:29:3e:16:ba:e9:47:b9:2f:4f:fc:57:40: fb:fa:01:5c:1e:41:58:6c:2e:4f:66:42:bc:2b:9a: 07:39:6f:05:7f:05:bb:84:9c:c4:43:be:a7:db:ae: bc:40:91:cc:64:79:e4:71:82:07:4e:a2:b5:d3:c1: 24:f1:bd:1a:45:0b:24:73:5b:51:85:50:34:b4:78: 5b:ba:46:e8:25:2a:7f:ec:4d:c5:73:66:82:5c:ac: 3d:1b:83:2f:51:84:65:2c:d3:f6:50:34:d9:f9:fe: 78:6b:0f:27:dc:4a:48:9f:13:b9:89:25:d7:5c:0f: cd:db:6b:ad:e3:9d:24:59:3b:02:45:d2:ad:1a:92: f2:2d:7b:88:5b:34:b0:09:62:2d:d9:6f:b7:46:0a: 20:16:da:ec:9a:c8:af:0c:25:22:5c:21:07:3c:22: 6a:67:dc:98:43:84:b1:0d:99:0d:e1:73:49:7e:b0: 48:c8:3a:56:07:94:8c:29:6a:ae:44:18:53:d0:d0: 13:19:24:ae:44:20:5c:90:3f:e6:a4:a7:01:26:b1: 39:d5:64:b8:f3:cb:d8:c0:b0:6f:a1:44:60:d5:00: 74:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:F2:39:70:9C:DC:CD:27:A1:8B:D6:8B:1E:D8:23:81:53:58:B9:7B X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/89A73D46772311EBB972032EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.253.0/24 IPv6: 2401:4601:253::/48 Signature Algorithm: sha256WithRSAEncryption 92:90:05:a4:3e:75:12:d3:e4:31:f9:6e:04:e5:24:9d:06:a2: f0:aa:8e:da:76:f7:c0:07:1f:73:e1:ee:04:62:90:39:5c:9f: 99:25:3c:99:3d:73:5b:0b:9c:5e:ff:d1:0d:58:1d:25:7a:dd: 04:a3:60:46:61:77:f0:dc:fd:5e:5a:bf:32:48:59:97:4d:fb: ea:e2:50:dd:a9:fb:b9:b0:0c:0a:e5:3c:60:56:c1:10:d0:68: 72:c2:38:82:8d:90:63:25:8a:81:fb:da:1d:83:22:0b:4c:f8: 13:7a:a2:59:8e:57:c4:db:07:da:04:7e:7d:6f:2e:18:56:af: 46:ce:29:01:5e:3d:a2:65:6b:24:71:0a:20:a0:ec:d2:d4:08: 7d:73:6e:f6:2f:4c:26:59:17:bf:0e:2d:c0:f2:f4:75:e6:55: 6b:67:53:4a:42:ef:0a:8c:20:b9:21:05:27:d6:36:be:ce:7b: 07:c1:de:26:57:16:30:f6:e1:09:11:0d:02:cf:c9:1f:98:cb: 60:3d:f2:45:8b:5e:f0:a3:a5:11:7f:71:8c:83:0a:d1:fc:aa: 36:98:36:b4:28:d6:11:10:20:67:04:ec:86:cb:e6:96:9c:28: 30:28:b6:f2:d4:70:88:41:3b:80:b4:29:22:af:54:9d:e8:bc: a1:4f:a1:40 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwOTMwMTQ0MDEzWhcNMjYwMTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRiZWJjYy0wZmRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1tJWzVQYYWMUkjDRRKvrPj1SwlJD31xX69X2c7tgZA8pPha66Ue5L0/8V0D7 +gFcHkFYbC5PZkK8K5oHOW8FfwW7hJzEQ76n2668QJHMZHnkcYIHTqK108Ek8b0a RQskc1tRhVA0tHhbukboJSp/7E3Fc2aCXKw9G4MvUYRlLNP2UDTZ+f54aw8n3EpI nxO5iSXXXA/N22ut450kWTsCRdKtGpLyLXuIWzSwCWIt2W+3RgogFtrsmsivDCUi XCEHPCJqZ9yYQ4SxDZkN4XNJfrBIyDpWB5SMKWquRBhT0NATGSSuRCBckD/mpKcB JrE51WS488vYwLBvoURg1QB0UQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJPyOXCc 3M0noYvWix7YI4FTWLl7MB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvODlBNzNENDY3 NzIzMTFFQkI5NzIwMzJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAA9Lf0wDwQCAAIwCQMHACQBRgECUzANBgkqhkiG9w0BAQsF AAOCAQEAkpAFpD51EtPkMfluBOUknQai8KqO2nb3wAcfc+HuBGKQOVyfmSU8mT1z WwucXv/RDVgdJXrdBKNgRmF38Nz9Xlq/MkhZl0376uJQ3an7ubAMCuU8YFbBENBo csI4go2QYyWKgfvaHYMiC0z4E3qiWY5XxNsH2gR+fW8uGFavRs4pAV49omVrJHEK IKDs0tQIfXNu9i9MJlkXvw4twPL0deZVa2dTSkLvCowguSEFJ9Y2vs57B8HeJlcW MPbhCRENAs/JH5jLYD3yRYte8KOlEX9xjIMK0fyqNpg2tCjWERAgZwTshsvmlpwo MCi28tRwiEE7gLQpIq9Unei8oU+hQA== -----END CERTIFICATE-----Generated at Mon Oct 27 17:12:07 2025 by rpki-client