$ rpki-client -vvf rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/829DF1C85EA811EAA1DC5284C4F9AE02.roa File: 829DF1C85EA811EAA1DC5284C4F9AE02.roa (raw, json) Hash identifier: 5Zn/NXgpFmO6vwefOP5YQZGHnsLFk/qGC1rRCPIC8NI= Subject key identifier: 34:43:6D:09:07:C0:FE:72:BE:D1:90:47:0F:94:40:2B:F7:2E:6E:C0 Certificate issuer: /CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Certificate serial: 0B59 Authority key identifier: 6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/829DF1C85EA811EAA1DC5284C4F9AE02.roa Signing time: Wed 22 Oct 2025 04:09:21 +0000 ROA not before: Wed 22 Oct 2025 04:09:21 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 139619 IP address blocks: 223.119.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 19:25:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2905 (0xb59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EECAF, serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Validity Not Before: Oct 22 04:09:21 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f858f1-ced5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:17:1d:a1:2e:4e:02:cf:50:e3:88:16:78:12: 7e:66:39:67:76:56:8e:75:89:e2:6a:83:88:a0:9c: 01:c3:bc:e7:dd:e9:b1:e5:5b:7a:ca:6e:7a:28:6f: cd:ed:f0:d9:1d:92:3f:70:9f:30:68:2e:7e:1b:38: de:28:51:e5:13:f7:fd:33:86:f0:2b:21:bd:d5:ee: 06:f2:ba:8b:0f:6b:ca:f1:f1:d1:96:42:3a:11:a3: e8:a9:cb:b7:0a:34:50:a7:06:ee:23:02:4f:e6:b4: 20:66:5d:d4:bc:01:09:c2:ae:00:c8:43:f1:f2:39: 74:58:46:3b:ff:72:8e:8f:02:9e:df:84:c0:27:f3: 5b:70:7c:99:af:1b:bc:b4:8b:39:7a:47:ae:46:63: 01:38:a8:31:08:28:7f:f8:72:f0:33:17:71:f1:93: 70:cf:d5:8d:c4:aa:5f:c0:be:e9:68:67:40:3b:a2: eb:b7:3e:9b:ce:0a:60:5f:f6:50:b4:03:72:d2:88: c2:33:aa:28:cf:3a:1b:db:d2:ae:4d:fe:0a:8e:3d: 60:0e:d3:a5:d2:4f:84:3f:a4:ea:8f:82:97:f9:b9: ab:f4:8c:2c:1a:ed:9b:94:80:c9:a3:ff:cd:c9:e7: 10:4d:3a:93:22:60:46:69:5d:09:d9:0e:19:5e:e6: 08:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:43:6D:09:07:C0:FE:72:BE:D1:90:47:0F:94:40:2B:F7:2E:6E:C0 X509v3 Authority Key Identifier: keyid:6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/829DF1C85EA811EAA1DC5284C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.119.255.0/24 Signature Algorithm: sha256WithRSAEncryption 51:87:8c:5b:76:af:ab:d9:1d:1b:85:22:07:37:a9:3c:c4:2b: 0a:5b:47:40:95:9e:d6:f5:0a:ea:18:9a:fc:78:18:92:a5:ea: 36:65:c2:80:cf:a5:1e:9f:29:3c:ed:96:20:3e:34:6c:12:50: 14:0b:05:ce:9f:99:fc:99:3e:77:66:a4:ce:ff:6c:54:c8:13: 92:0e:ed:24:8b:5b:ab:15:8b:ff:c0:14:ca:24:ca:cf:46:9c: 92:e2:df:70:b7:b2:2d:b5:f1:72:4c:83:66:56:ac:79:87:ba: 3e:eb:92:90:81:57:e3:91:b0:b6:c2:aa:93:42:4a:81:01:8b: 0c:f5:1f:00:af:28:cf:7a:78:04:42:32:1c:68:a4:dd:9a:e4: 06:b5:d4:50:24:c8:bf:cb:ea:90:b9:26:74:b4:10:01:a2:c4: 08:8e:4d:de:ce:79:13:f8:1c:5d:05:c0:66:e0:e7:b0:9f:71: 99:c6:38:a8:42:08:27:8b:64:4c:d1:81:39:8e:16:11:00:8c: 94:ce:c3:55:e4:99:9b:22:a5:e8:66:16:86:60:23:79:b6:ad: ca:71:1c:15:95:db:1d:9c:5f:87:e6:74:8c:80:05:54:b8:be: 0f:27:a9:fb:c6:82:94:82:5e:44:e3:95:62:26:c0:12:43:2c: 92:ca:9a:bb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDQUYxMTAvBgNVBAUTKDZFQkQzQTI2OTc4NTEyM0FEQzNGNDk2NjM5QUVERkIx MEYzMEQ2MTgwHhcNMjUxMDIyMDQwOTIxWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGY4NThmMS1jZWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7hcdoS5OAs9Q44gWeBJ+ZjlndlaOdYniaoOIoJwBw7zn3emx5Vt6ym56KG/N 7fDZHZI/cJ8waC5+GzjeKFHlE/f9M4bwKyG91e4G8rqLD2vK8fHRlkI6EaPoqcu3 CjRQpwbuIwJP5rQgZl3UvAEJwq4AyEPx8jl0WEY7/3KOjwKe34TAJ/NbcHyZrxu8 tIs5ekeuRmMBOKgxCCh/+HLwMxdx8ZNwz9WNxKpfwL7paGdAO6Lrtz6bzgpgX/ZQ tANy0ojCM6oozzob29KuTf4Kjj1gDtOl0k+EP6Tqj4KX+bmr9IwsGu2blIDJo//N yecQTTqTImBGaV0J2Q4ZXuYITwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDRDbQkH wP5yvtGQRw+UQCv3Lm7AMB8GA1UdIwQYMBaAFG69OiaXhRI63D9JZjmu37EPMNYY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUNBRi9FRUZERkVBNDVF QTcxMUVBQTVFODMxODRDNEY5QUUwMi9icjA2SnBlRkVqcmNQMGxtT2E3ZnNROHcx aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JyMDZKcGVGRWpyY1AwbG1PYTdmc1E4dzFoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVDQUYvRUVGREZFQTQ1RUE3MTFFQUE1RTgzMTg0QzRGOUFFMDIvODI5REYxQzg1 RUE4MTFFQUExREM1Mjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADfd/8wDQYJKoZIhvcNAQELBQADggEBAFGHjFt2r6vZHRuF Igc3qTzEKwpbR0CVntb1CuoYmvx4GJKl6jZlwoDPpR6fKTztliA+NGwSUBQLBc6f mfyZPndmpM7/bFTIE5IO7SSLW6sVi//AFMokys9GnJLi33C3si218XJMg2ZWrHmH uj7rkpCBV+ORsLbCqpNCSoEBiwz1HwCvKM96eARCMhxopN2a5Aa11FAkyL/L6pC5 JnS0EAGixAiOTd7OeRP4HF0FwGbg57CfcZnGOKhCCCeLZEzRgTmOFhEAjJTOw1Xk mZsipehmFoZgI3m2rcpxHBWV2x2cX4fmdIyABVS4vg8nqfvGgpSCXkTjlWImwBJD LJLKmrs= -----END CERTIFICATE-----Generated at Tue Nov 4 01:02:38 2025 by rpki-client