$ rpki-client -vvf rpki.apnic.net/member_repository/A91F300B/A5AC5EDA8C6E11F0BB43BF27C4F9AE02/A7CEC08691E611F0A8D76134C4F9AE02.roa File: A7CEC08691E611F0A8D76134C4F9AE02.roa (raw, json) Hash identifier: GDfPEylawrKx56Y2TAT5tXuGZ2rH6VnvaaNVcgNRZcE= Subject key identifier: CB:14:CB:A6:62:7B:E1:88:B1:B3:B6:2B:3D:99:75:CE:BC:B4:4F:A2 Certificate issuer: /CN=A91F300B/serialNumber=CDE9391EA8139E402B46D1D8843E40AB1D22D2F3 Certificate serial: 0A Authority key identifier: CD:E9:39:1E:A8:13:9E:40:2B:46:D1:D8:84:3E:40:AB:1D:22:D2:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zek5HqgTnkArRtHYhD5Aqx0i0vM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F300B/A5AC5EDA8C6E11F0BB43BF27C4F9AE02/A7CEC08691E611F0A8D76134C4F9AE02.roa Signing time: Mon 15 Sep 2025 03:47:09 +0000 ROA not before: Mon 15 Sep 2025 03:47:09 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 141217 IP address blocks: 122.50.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F300B/A5AC5EDA8C6E11F0BB43BF27C4F9AE02/zek5HqgTnkArRtHYhD5Aqx0i0vM.crl rsync://rpki.apnic.net/member_repository/A91F300B/A5AC5EDA8C6E11F0BB43BF27C4F9AE02/zek5HqgTnkArRtHYhD5Aqx0i0vM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zek5HqgTnkArRtHYhD5Aqx0i0vM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 07:58:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F300B, serialNumber=CDE9391EA8139E402B46D1D8843E40AB1D22D2F3 Validity Not Before: Sep 15 03:47:09 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c78c3d-8b62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2e:dd:3d:f8:d5:0e:4b:61:5d:b1:fe:cc:a7: 27:e9:d6:9f:44:32:42:64:22:1b:f1:2e:ef:17:fe: 5a:24:c4:16:1d:7c:fb:d9:7f:47:04:d7:53:59:d3: 04:94:78:a3:cb:97:ab:e7:e2:e5:06:39:de:a7:67: af:2e:4f:9f:75:f2:9a:db:16:88:af:0d:f6:9e:cf: 19:7b:6a:71:f8:cd:fb:60:9c:03:66:4f:82:b0:19: 01:27:9a:d7:d6:3d:c1:89:3e:75:e2:14:66:90:aa: bb:2e:51:ba:1a:2a:54:c3:11:98:30:c7:38:1f:d4: 1c:f7:d8:69:d2:8a:b9:60:5d:ba:4e:3b:40:8c:2f: aa:2c:b6:78:b3:3a:c8:b2:25:6c:53:58:6b:86:8d: 43:89:5b:91:84:bd:06:6f:ae:ae:e2:7b:e7:62:a5: 8f:09:4e:d8:ec:7b:b5:72:86:32:7c:fa:74:d5:9c: d3:8e:80:45:db:7a:a6:2e:c4:43:d0:14:2a:94:8f: b1:60:25:f9:fa:ab:29:db:1c:40:66:f4:04:2d:f3: 38:79:9f:cf:ad:c3:8e:74:b0:df:80:13:2a:63:77: 11:86:37:b0:38:b1:7c:68:a4:4e:1e:c4:19:c3:34: e3:d7:84:40:3a:3f:ca:f2:3a:c4:48:f8:33:c3:da: af:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:14:CB:A6:62:7B:E1:88:B1:B3:B6:2B:3D:99:75:CE:BC:B4:4F:A2 X509v3 Authority Key Identifier: keyid:CD:E9:39:1E:A8:13:9E:40:2B:46:D1:D8:84:3E:40:AB:1D:22:D2:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F300B/A5AC5EDA8C6E11F0BB43BF27C4F9AE02/zek5HqgTnkArRtHYhD5Aqx0i0vM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zek5HqgTnkArRtHYhD5Aqx0i0vM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F300B/A5AC5EDA8C6E11F0BB43BF27C4F9AE02/A7CEC08691E611F0A8D76134C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.50.11.0/24 Signature Algorithm: sha256WithRSAEncryption 91:a4:4b:bb:f8:a2:2d:4d:51:76:43:da:11:65:34:a4:99:73: 21:4f:9a:14:a3:a4:1d:e0:85:82:e3:b9:cb:b7:81:89:6d:6f: 46:72:0c:0f:cf:31:66:44:cf:0f:80:64:a7:a8:15:71:66:e1: 09:3b:d6:51:fe:f9:e1:fb:3b:10:50:97:d3:6b:42:f4:b0:c2: 67:6b:54:d5:22:65:c9:f2:3f:a9:6a:fa:85:21:42:7e:dc:89: 98:55:f3:a3:d2:45:19:ef:f8:91:6f:e2:90:8d:62:4d:96:b6: c0:dc:ef:50:a0:b1:77:4d:66:eb:0e:c8:c6:59:2b:8e:40:60: c2:ab:c0:c8:c4:bf:6e:2f:f0:6f:67:74:08:e9:54:e2:cb:ba: 13:d6:ab:ba:44:36:18:a0:ea:c7:74:a0:77:5b:52:b3:17:88: 88:3e:bc:d4:6e:7f:a2:53:dc:02:a3:29:df:86:b0:52:48:5d: e7:5c:74:31:c9:5d:7e:58:91:cd:8a:52:53:be:dc:96:65:dc: 95:67:fa:7b:4a:3b:6e:84:c2:b6:e6:5f:f2:f2:5c:25:b0:d3: 9d:6d:f6:7a:9b:a1:e7:94:55:75:71:26:33:73:e1:23:8d:5d: 3a:3b:6f:a2:70:84:2f:0c:98:d9:5d:37:31:0f:28:84:db:b6: f3:5a:7c:68 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MzAwQjExMC8GA1UEBRMoQ0RFOTM5MUVBODEzOUU0MDJCNDZEMUQ4ODQzRTQwQUIx RDIyRDJGMzAeFw0yNTA5MTUwMzQ3MDlaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Yzc4YzNkLThiNjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCgLt09+NUOS2Fdsf7Mpyfp1p9EMkJkIhvxLu8X/lokxBYdfPvZf0cE11NZ0wSU eKPLl6vn4uUGOd6nZ68uT5918prbFoivDfaezxl7anH4zftgnANmT4KwGQEnmtfW PcGJPnXiFGaQqrsuUboaKlTDEZgwxzgf1Bz32GnSirlgXbpOO0CML6ostnizOsiy JWxTWGuGjUOJW5GEvQZvrq7ie+dipY8JTtjse7VyhjJ8+nTVnNOOgEXbeqYuxEPQ FCqUj7FgJfn6qynbHEBm9AQt8zh5n8+tw450sN+AEypjdxGGN7A4sXxopE4exBnD NOPXhEA6P8ryOsRI+DPD2q8FAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUyxTLpmJ7 4Yixs7YrPZl1zry0T6IwHwYDVR0jBBgwFoAUzek5HqgTnkArRtHYhD5Aqx0i0vMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzMDBCL0E1QUM1RURBOEM2 RTExRjBCQjQzQkYyN0M0RjlBRTAyL3plazVIcWdUbmtBclJ0SFloRDVBcXgwaTB2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvemVrNUhxZ1Rua0FyUnRIWWhENUFxeDBpMHZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzAwQi9BNUFDNUVEQThDNkUxMUYwQkI0M0JGMjdDNEY5QUUwMi9BN0NFQzA4Njkx RTYxMUYwQThENzYxMzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAHoyCzANBgkqhkiG9w0BAQsFAAOCAQEAkaRLu/iiLU1RdkPa EWU0pJlzIU+aFKOkHeCFguO5y7eBiW1vRnIMD88xZkTPD4Bkp6gVcWbhCTvWUf75 4fs7EFCX02tC9LDCZ2tU1SJlyfI/qWr6hSFCftyJmFXzo9JFGe/4kW/ikI1iTZa2 wNzvUKCxd01m6w7IxlkrjkBgwqvAyMS/bi/wb2d0COlU4su6E9arukQ2GKDqx3Sg d1tSsxeIiD681G5/olPcAqMp34awUkhd51x0McldfliRzYpSU77clmXclWf6e0o7 boTCtuZf8vJcJbDTnW32epuh55RVdXEmM3PhI41dOjtvonCELwyY2V03MQ8ohNu2 81p8aA== -----END CERTIFICATE-----Generated at Wed Nov 5 10:59:25 2025 by rpki-client