$ rpki-client -vvf rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/A2DE5B44AE1C11EAA46DAF7FC4F9AE02.roa File: A2DE5B44AE1C11EAA46DAF7FC4F9AE02.roa (raw, json) Hash identifier: V6+vy3CAemLZlLXO9CQsgxzuypWLmdriyqfxb6TbA2w= Subject key identifier: 65:C3:24:88:BB:4F:74:AD:36:4D:48:B0:3A:47:C4:F4:60:9B:9B:9C Certificate issuer: /CN=A91325DC/serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230 Certificate serial: 0B53 Authority key identifier: D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/A2DE5B44AE1C11EAA46DAF7FC4F9AE02.roa Signing time: Wed 08 Oct 2025 19:20:18 +0000 ROA not before: Wed 08 Oct 2025 19:20:18 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 136758 IP address blocks: 58.84.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 19:54:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2899 (0xb53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91325DC, serialNumber=D10E43E0593DEF1DB8D7F44C6F1CD13E73C2F230 Validity Not Before: Oct 8 19:20:18 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e6b972-cb82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:f6:8c:7a:85:6b:41:3c:20:ab:cf:84:c9:9c: d8:34:b1:02:ca:66:2f:7f:1b:96:24:80:4b:49:c0: 8c:b4:cd:9a:7c:b1:2b:5e:91:39:fb:f8:04:ee:30: 80:18:ac:a6:5c:a0:9a:c8:0f:cb:7d:26:44:27:15: 6b:06:46:34:45:c8:fb:ff:3e:9a:cd:ea:17:6b:5b: f4:af:e8:d1:44:79:fb:e9:d9:61:81:dc:a0:91:a5: 25:97:6f:43:86:08:b4:3a:f1:dd:5c:4c:91:7f:b0: 38:92:66:21:11:21:b1:ed:fb:cf:18:41:30:37:1a: a8:0d:bc:b1:7f:0d:c9:a3:c0:68:f2:56:b9:cb:54: 74:b6:80:76:f5:5f:b2:c2:5a:60:fa:d7:94:39:d6: 71:5a:e3:f1:cc:0b:e2:1d:97:57:26:69:3e:38:29: a1:f7:51:b9:3b:17:ff:67:10:04:7f:b1:e3:56:5f: 44:4b:16:7e:cc:e1:58:2a:f4:c9:b3:a0:b9:32:05: 5e:45:9e:a4:15:49:31:41:0c:b7:dd:b5:41:46:8b: 82:2d:5c:ea:21:b3:db:83:f8:50:a9:89:98:82:a3: bd:f1:fc:62:41:f9:a1:fe:4f:e2:f9:5e:c3:08:92: e5:2d:8f:49:25:d7:22:46:22:0e:c0:3c:9c:9c:64: 1f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:C3:24:88:BB:4F:74:AD:36:4D:48:B0:3A:47:C4:F4:60:9B:9B:9C X509v3 Authority Key Identifier: keyid:D1:0E:43:E0:59:3D:EF:1D:B8:D7:F4:4C:6F:1C:D1:3E:73:C2:F2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/0Q5D4Fk97x241_RMbxzRPnPC8jA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Q5D4Fk97x241_RMbxzRPnPC8jA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91325DC/4612D51E431611EAB262781DC4F9AE02/A2DE5B44AE1C11EAA46DAF7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.84.5.0/24 Signature Algorithm: sha256WithRSAEncryption 63:e5:5b:9e:94:23:e0:f9:a2:24:66:9a:e3:d9:67:c7:1b:cd: 2a:12:3b:77:27:90:04:a5:e2:78:a6:fe:55:c6:bd:9d:e4:7c: ff:97:7c:ca:d3:33:0e:3a:4d:cc:99:68:1a:57:f8:53:70:5c: 9a:1e:4e:fe:fa:46:ea:ba:3e:fc:e2:e7:21:c4:f7:57:08:f2: 4c:ab:08:90:8a:b6:e7:46:8f:81:c4:7e:82:37:68:e8:84:2c: e8:90:27:b9:99:a0:69:3e:22:59:1f:5b:96:80:5d:9f:42:b0: 35:a6:15:6e:9e:40:1c:92:37:8b:f2:92:dd:16:fc:73:d8:08: 45:8d:23:9d:e5:76:ec:83:04:c9:30:e0:e4:db:e2:17:35:9d: 6f:22:2c:64:ff:9c:c3:d8:5d:7d:e6:1e:08:f5:90:99:45:af: 10:c1:56:5b:31:37:b9:0a:17:ab:76:f4:d5:99:80:24:fb:12: e9:ab:fb:51:c7:3c:97:27:64:e3:45:04:5b:e2:f5:5f:0d:1c: 8f:a4:cf:4a:e8:18:e1:5d:1f:8d:b3:e3:61:79:52:b5:98:e4: 47:c9:a0:69:ba:fc:8b:e7:89:a3:17:4e:55:60:e3:71:32:95: b4:cc:1a:81:00:39:f2:ae:e8:29:5d:8d:9a:83:cd:8d:59:ce: e1:01:2d:97 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI1REMxMTAvBgNVBAUTKEQxMEU0M0UwNTkzREVGMURCOEQ3RjQ0QzZGMUNEMTNF NzNDMkYyMzAwHhcNMjUxMDA4MTkyMDE4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2Yjk3Mi1jYjgyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3faMeoVrQTwgq8+EyZzYNLECymYvfxuWJIBLScCMtM2afLErXpE5+/gE7jCA GKymXKCayA/LfSZEJxVrBkY0Rcj7/z6azeoXa1v0r+jRRHn76dlhgdygkaUll29D hgi0OvHdXEyRf7A4kmYhESGx7fvPGEEwNxqoDbyxfw3Jo8Bo8la5y1R0toB29V+y wlpg+teUOdZxWuPxzAviHZdXJmk+OCmh91G5Oxf/ZxAEf7HjVl9ESxZ+zOFYKvTJ s6C5MgVeRZ6kFUkxQQy33bVBRouCLVzqIbPbg/hQqYmYgqO98fxiQfmh/k/i+V7D CJLlLY9JJdciRiIOwDycnGQfaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGXDJIi7 T3StNk1IsDpHxPRgm5ucMB8GA1UdIwQYMBaAFNEOQ+BZPe8duNf0TG8c0T5zwvIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjVEQy80NjEyRDUxRTQz MTYxMUVBQjI2Mjc4MURDNEY5QUUwMi8wUTVENEZrOTd4MjQxX1JNYnh6UlBuUEM4 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBRNUQ0Rms5N3gyNDFfUk1ieHpSUG5QQzhqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzI1REMvNDYxMkQ1MUU0MzE2MTFFQUIyNjI3ODFEQzRGOUFFMDIvQTJERTVCNDRB RTFDMTFFQUE0NkRBRjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6VAUwDQYJKoZIhvcNAQELBQADggEBAGPlW56UI+D5oiRm muPZZ8cbzSoSO3cnkASl4nim/lXGvZ3kfP+XfMrTMw46TcyZaBpX+FNwXJoeTv76 Ruq6Pvzi5yHE91cI8kyrCJCKtudGj4HEfoI3aOiELOiQJ7mZoGk+IlkfW5aAXZ9C sDWmFW6eQBySN4vykt0W/HPYCEWNI53lduyDBMkw4OTb4hc1nW8iLGT/nMPYXX3m Hgj1kJlFrxDBVlsxN7kKF6t29NWZgCT7Eumr+1HHPJcnZONFBFvi9V8NHI+kz0ro GOFdH42z42F5UrWY5EfJoGm6/IvniaMXTlVg43EylbTMGoEAOfKu6CldjZqDzY1Z zuEBLZc= -----END CERTIFICATE-----Generated at Mon Oct 20 22:33:05 2025 by rpki-client