$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/E658E72CB4A611F08CEAB576C4F9AE02.roa File: E658E72CB4A611F08CEAB576C4F9AE02.roa (raw, json) Hash identifier: 3K0DVSQ88H0vE5ErqZjrHuBFz3ioSOB+/QcjArPUvp0= Subject key identifier: F0:19:7F:DF:D8:01:BB:1A:7D:B7:5E:E0:40:FC:25:5B:D7:4A:3E:BE Certificate issuer: /CN=A91FF5B9/serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Certificate serial: 79 Authority key identifier: 91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/E658E72CB4A611F08CEAB576C4F9AE02.roa Signing time: Wed 29 Oct 2025 09:08:57 +0000 ROA not before: Wed 29 Oct 2025 09:08:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 46559 IP address blocks: 163.223.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 06:54:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 121 (0x79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5B9, serialNumber=91176D169C42F03D95282BBBA204C4E44D31ED09 Validity Not Before: Oct 29 09:08:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6901d9a9-d59e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:24:3e:2a:2b:f1:86:e9:c8:ff:f1:80:ad:ad: 63:f0:f3:ab:03:dc:20:18:ff:86:31:b2:0d:79:92: b2:f8:f4:ee:93:93:ee:05:c6:f1:18:e8:0b:13:ab: 53:b6:20:2f:52:c8:52:78:4d:a6:ab:31:3e:d0:c7: e1:bf:b8:65:4a:a7:8e:09:24:e9:49:f8:7c:e8:3f: cd:ab:d7:57:fb:39:16:42:43:0c:79:62:8c:f5:dc: 98:ec:f6:3b:f1:a8:da:61:ed:7b:35:1a:c3:0f:f5: 4d:37:08:7b:80:c6:74:85:64:5b:5a:a0:5e:7b:00: c5:e1:65:8f:00:2c:ef:ee:fc:9f:e2:f3:f8:5e:1e: 5d:16:7d:f7:c1:c7:bf:7a:08:d9:02:69:06:a2:51: 9e:76:a7:80:ac:e0:c9:a3:20:e5:ae:93:86:72:8b: 2f:c5:8c:00:91:6b:76:45:6a:6b:96:38:b7:09:a2: 63:7a:16:b6:a3:cd:f4:1a:a5:cc:68:8e:98:3b:73: 50:41:57:42:78:b6:66:3b:6f:21:6e:53:39:f5:90: 77:70:2c:3f:59:da:1c:8a:55:40:c3:4a:cd:b5:6f: 80:2a:6a:3a:83:ed:03:d2:0a:de:18:63:34:72:f2: 4e:3c:b1:a4:6e:48:75:69:59:56:62:a1:e8:aa:e7: a0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:19:7F:DF:D8:01:BB:1A:7D:B7:5E:E0:40:FC:25:5B:D7:4A:3E:BE X509v3 Authority Key Identifier: keyid:91:17:6D:16:9C:42:F0:3D:95:28:2B:BB:A2:04:C4:E4:4D:31:ED:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kRdtFpxC8D2VKCu7ogTE5E0x7Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5B9/5202D0280DF911F08E6E762AC4F9AE02/E658E72CB4A611F08CEAB576C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.216.0/23 Signature Algorithm: sha256WithRSAEncryption 97:39:22:ee:2c:8d:a8:94:a3:de:f7:96:b1:95:09:73:07:86: 06:b4:d7:5a:cf:11:90:c7:49:f1:85:49:9d:23:ec:d1:31:3a: 9e:56:fe:6e:bf:d0:f3:75:3b:04:26:4a:19:b5:49:26:73:1e: 86:fc:0f:d9:a8:b3:bf:46:a2:da:c8:28:f3:2a:ee:ab:8b:fe: c6:f1:0b:cc:f9:26:4c:04:3c:35:32:90:d7:24:7b:96:1f:bf: ca:3a:1e:ce:38:51:19:e7:7d:9e:27:2b:5b:78:a0:af:54:86: 8f:85:44:69:ac:eb:6a:b0:b8:81:4f:18:25:6f:eb:c6:c9:3a: 11:79:28:f2:fb:79:16:70:80:ce:39:66:33:87:9d:39:92:22: a4:6c:72:1b:f5:d3:1e:ef:df:dd:ab:3c:5b:e0:40:75:e4:46: 7d:6e:2b:14:e5:4d:bd:e9:ce:5e:5a:5d:6c:e8:81:d3:f8:36: e8:97:d2:a7:e7:73:ff:0f:45:37:c8:3b:9e:52:b4:2c:91:08: c8:28:24:5d:da:f4:48:74:60:29:5b:26:db:99:b8:3b:78:0e: ab:72:a3:42:f8:f0:e2:0a:b1:2e:ac:41:f7:20:2f:8a:ca:c8: 2f:ff:de:ed:f8:2f:83:5d:0b:df:e8:8f:a4:e5:57:ab:eb:84: 55:2b:ff:1d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBeTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RjVCOTExMC8GA1UEBRMoOTExNzZEMTY5QzQyRjAzRDk1MjgyQkJCQTIwNEM0RTQ0 RDMxRUQwOTAeFw0yNTEwMjkwOTA4NTdaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5MDFkOWE5LWQ1OWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKJD4qK/GG6cj/8YCtrWPw86sD3CAY/4Yxsg15krL49O6Tk+4FxvEY6AsTq1O2 IC9SyFJ4TaarMT7Qx+G/uGVKp44JJOlJ+HzoP82r11f7ORZCQwx5Yoz13Jjs9jvx qNph7Xs1GsMP9U03CHuAxnSFZFtaoF57AMXhZY8ALO/u/J/i8/heHl0WfffBx796 CNkCaQaiUZ52p4Cs4MmjIOWuk4Zyiy/FjACRa3ZFamuWOLcJomN6FrajzfQapcxo jpg7c1BBV0J4tmY7byFuUzn1kHdwLD9Z2hyKVUDDSs21b4AqajqD7QPSCt4YYzRy 8k48saRuSHVpWVZioeiq56DRAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU8Bl/39gB uxp9t17gQPwlW9dKPr4wHwYDVR0jBBgwFoAUkRdtFpxC8D2VKCu7ogTE5E0x7Qkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZGNUI5LzUyMDJEMDI4MERG OTExRjA4RTZFNzYyQUM0RjlBRTAyL2tSZHRGcHhDOEQyVktDdTdvZ1RFNUUweDdR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1JkdEZweEM4RDJWS0N1N29nVEU1RTB4N1FrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RjVCOS81MjAyRDAyODBERjkxMUYwOEU2RTc2MkFDNEY5QUUwMi9FNjU4RTcyQ0I0 QTYxMUYwOENFQUI1NzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaPf2DANBgkqhkiG9w0BAQsFAAOCAQEAlzki7iyNqJSj3veW sZUJcweGBrTXWs8RkMdJ8YVJnSPs0TE6nlb+br/Q83U7BCZKGbVJJnMehvwP2aiz v0ai2sgo8yruq4v+xvELzPkmTAQ8NTKQ1yR7lh+/yjoezjhRGed9nicrW3igr1SG j4VEaazrarC4gU8YJW/rxsk6EXko8vt5FnCAzjlmM4edOZIipGxyG/XTHu/f3as8 W+BAdeRGfW4rFOVNvenOXlpdbOiB0/g26JfSp+dz/w9FN8g7nlK0LJEIyCgkXdr0 SHRgKVsm25m4O3gOq3KjQvjw4gqxLqxB9yAvisrIL//e7fgvg10L3+iPpOVXq+uE VSv/HQ== -----END CERTIFICATE-----Generated at Wed Nov 5 07:54:53 2025 by rpki-client