$ rpki-client -vvf rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/A23D5DE87A6911EA930EB439C4F9AE02.roa File: A23D5DE87A6911EA930EB439C4F9AE02.roa (raw, json) Hash identifier: 0c8vFwsGm0y9J7tirCRPVhjPNwdGg4DZRn3e0fuJjls= Subject key identifier: 76:A7:A2:A5:54:CA:59:A8:EA:8C:15:23:1B:77:CC:C3:02:6D:7B:0C Certificate issuer: /CN=A91F6227/serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Certificate serial: 09FC Authority key identifier: 1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/A23D5DE87A6911EA930EB439C4F9AE02.roa Signing time: Wed 04 Jun 2025 20:05:29 +0000 ROA not before: Wed 04 Jun 2025 20:05:29 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134201 IP address blocks: 45.118.60.0/22 maxlen: 24 103.58.92.0/22 maxlen: 24 2402:6480::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 19:48:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2556 (0x9fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F6227, serialNumber=1DF34B9E3F7A38D75898ED4B05F9ED4C4004CEBC Validity Not Before: Jun 4 20:05:29 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6840a709-f373 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:15:6b:09:c5:a3:4f:8a:4a:b3:ea:81:83:1f: 4f:f8:0c:a3:c7:0f:d5:f8:53:8a:40:51:18:0a:0e: d0:5b:84:00:a1:30:07:f6:bd:43:b1:b3:70:07:68: ce:4a:b0:a6:4c:89:55:4c:1a:0a:4e:f4:9d:6d:c4: 27:28:18:47:48:78:3a:5d:fc:b3:89:32:ab:34:ef: 5d:58:03:0a:f3:58:77:c8:63:da:3a:75:27:7c:f6: 95:7f:44:85:c7:03:49:44:58:ba:ad:8f:c3:5c:6b: 35:5c:18:60:b2:b0:43:00:bb:d8:65:1c:e7:c3:70: 36:11:dc:fe:3e:1f:55:18:69:2a:5a:62:bc:0c:9e: 68:62:07:37:63:06:9c:34:ee:ea:7c:28:8f:97:2d: 4c:7e:9b:a5:30:d4:77:8f:11:2a:fa:20:0f:ca:38: 8d:7c:75:4c:3e:52:f9:f3:04:d7:ce:d0:2a:52:80: 16:48:e5:b2:a3:81:45:c4:9b:cc:c9:2a:ad:67:76: a1:e7:2d:99:d2:2a:5e:af:3e:2e:fe:e0:c7:a1:46: 52:ce:9a:f0:48:05:d9:8a:6f:e8:d0:7b:13:7c:d0: 52:b3:2c:38:56:dd:d5:e2:14:c8:10:bb:92:d7:25: 66:59:7b:cb:76:9c:da:84:c1:43:27:0c:85:7c:5f: 53:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:A7:A2:A5:54:CA:59:A8:EA:8C:15:23:1B:77:CC:C3:02:6D:7B:0C X509v3 Authority Key Identifier: keyid:1D:F3:4B:9E:3F:7A:38:D7:58:98:ED:4B:05:F9:ED:4C:40:04:CE:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/HfNLnj96ONdYmO1LBfntTEAEzrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HfNLnj96ONdYmO1LBfntTEAEzrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F6227/0D728A0A7A3F11EA8E3D8035C4F9AE02/A23D5DE87A6911EA930EB439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.118.60.0/22 103.58.92.0/22 IPv6: 2402:6480::/32 Signature Algorithm: sha256WithRSAEncryption da:b4:37:91:87:a5:d5:fb:29:77:c5:3b:44:2d:bc:3c:37:9a: 10:19:48:e4:cc:13:d4:23:bd:a2:6b:4b:15:53:8a:08:06:08: e7:29:d4:7c:ed:8b:c0:cb:80:44:3a:a7:e0:82:b9:fe:47:7c: df:2a:b8:54:47:91:a8:52:f2:13:6f:0a:2d:69:fb:4a:74:bc: 3c:14:fa:e1:90:42:ef:55:b0:9e:c3:29:d4:c9:b2:22:a1:58: 88:0d:28:53:41:b0:10:bc:e5:d0:1a:ef:9c:52:ff:6b:ce:cf: bc:48:5a:ba:c7:8b:23:61:ad:ad:87:ab:09:cc:48:1f:2d:40: e1:47:c9:7e:6f:5b:7b:dd:86:b7:e7:7e:62:d7:06:38:6a:bf: 4c:9e:52:ad:5f:2c:c5:0e:da:45:a7:02:01:62:9c:9b:fc:81: a4:d8:28:5d:51:8d:04:83:44:e1:ea:cd:f0:2b:73:c3:cc:d0: 57:fc:46:d4:a5:60:d6:ea:db:a8:b4:fd:96:1f:50:76:6c:36: b5:66:e8:e5:9d:7c:9f:d8:b0:31:c6:cf:bc:3f:70:26:62:5f: a7:41:d9:6f:91:a5:9d:b0:36:e3:ba:bc:b8:e7:4b:0a:84:1a: f7:42:f0:64:61:8e:e1:03:cc:1d:e4:d6:5a:f3:b0:09:bc:d1: a8:05:5d:ce -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjYyMjcxMTAvBgNVBAUTKDFERjM0QjlFM0Y3QTM4RDc1ODk4RUQ0QjA1RjlFRDRD NDAwNENFQkMwHhcNMjUwNjA0MjAwNTI5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwYTcwOS1mMzczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5hVrCcWjT4pKs+qBgx9P+Ayjxw/V+FOKQFEYCg7QW4QAoTAH9r1DsbNwB2jO SrCmTIlVTBoKTvSdbcQnKBhHSHg6XfyziTKrNO9dWAMK81h3yGPaOnUnfPaVf0SF xwNJRFi6rY/DXGs1XBhgsrBDALvYZRznw3A2Edz+Ph9VGGkqWmK8DJ5oYgc3Ywac NO7qfCiPly1MfpulMNR3jxEq+iAPyjiNfHVMPlL58wTXztAqUoAWSOWyo4FFxJvM ySqtZ3ah5y2Z0iperz4u/uDHoUZSzprwSAXZim/o0HsTfNBSsyw4Vt3V4hTIELuS 1yVmWXvLdpzahMFDJwyFfF9TpQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFHanoqVU ylmo6owVIxt3zMMCbXsMMB8GA1UdIwQYMBaAFB3zS54/ejjXWJjtSwX57UxABM68 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjIyNy8wRDcyOEEwQTdB M0YxMUVBOEUzRDgwMzVDNEY5QUUwMi9IZk5Mbmo5Nk9OZFltTzFMQmZudFRFQUV6 cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hmTkxuajk2T05kWW1PMUxCZm50VEVBRXpydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjYyMjcvMEQ3MjhBMEE3QTNGMTFFQThFM0Q4MDM1QzRGOUFFMDIvQTIzRDVERTg3 QTY5MTFFQTkzMEVCNDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItdjwDBAJnOlwwDQQCAAIwBwMFACQCZIAwDQYJKoZIhvcN AQELBQADggEBANq0N5GHpdX7KXfFO0QtvDw3mhAZSOTME9QjvaJrSxVTiggGCOcp 1Hzti8DLgEQ6p+CCuf5HfN8quFRHkahS8hNvCi1p+0p0vDwU+uGQQu9VsJ7DKdTJ siKhWIgNKFNBsBC85dAa75xS/2vOz7xIWrrHiyNhra2HqwnMSB8tQOFHyX5vW3vd hrfnfmLXBjhqv0yeUq1fLMUO2kWnAgFinJv8gaTYKF1RjQSDROHqzfArc8PM0Ff8 RtSlYNbq26i0/ZYfUHZsNrVm6OWdfJ/YsDHGz7w/cCZiX6dB2W+RpZ2wNuO6vLjn SwqEGvdC8GRhjuEDzB3k1lrzsAm80agFXc4= -----END CERTIFICATE-----Generated at Thu Nov 6 01:54:53 2025 by rpki-client