$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/EDA092C2A72B11EDAC3DA56CC4F9AE02.roa File: EDA092C2A72B11EDAC3DA56CC4F9AE02.roa (raw, json) Hash identifier: SjDNqIV8bfIECZ7LITLY5GAVFbuQWPpjP+0XRPHjJnM= Subject key identifier: A0:08:5B:85:61:5B:B6:60:3A:5B:99:8C:5A:A5:F5:B2:13:4A:AD:F9 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 06F2 Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/EDA092C2A72B11EDAC3DA56CC4F9AE02.roa Signing time: Wed 08 Oct 2025 22:24:23 +0000 ROA not before: Wed 08 Oct 2025 22:24:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 56304 IP address blocks: 131.203.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1778 (0x6f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Oct 8 22:24:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e6e497-fedf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:fd:5f:9c:34:a5:60:77:79:81:d1:36:58:b3: 4d:07:a1:d4:85:95:89:1d:bf:7a:89:16:1a:24:b8: a2:64:69:ec:d9:c2:57:28:f3:e4:11:2f:f8:33:12: a3:33:9e:8b:53:c5:e9:79:9d:64:6a:a1:27:d0:23: b2:cf:7a:82:c7:1c:45:31:31:ee:9e:1e:47:32:9c: 68:70:49:a4:ca:3d:c6:4d:2f:a0:d5:28:ed:7b:62: 2e:3b:b0:fa:b4:e9:f8:ac:e4:7a:8d:18:91:fd:32: 2d:9d:c8:42:f1:43:de:9b:57:39:3b:e7:45:22:29: 3c:e2:2f:a9:22:c4:f5:f3:a9:94:d3:2f:f1:aa:ab: 25:1d:02:8a:5c:ea:87:f8:4f:2f:06:fd:92:4a:38: 46:53:85:bb:1c:16:fc:be:41:cc:4d:4e:1b:46:b6: a3:60:57:67:8b:b6:7b:19:44:17:55:12:6a:f3:35: 0d:30:18:40:b8:84:19:91:0a:6d:08:ba:51:5a:57: 87:36:5f:4b:6d:0b:99:81:a3:8d:dc:73:ce:30:ec: 53:45:54:98:83:59:0e:a4:24:dd:bf:63:51:1e:ba: 63:80:1a:d4:cb:32:8b:23:ff:29:79:3a:e3:9b:5e: 65:e9:e8:64:76:da:1d:f1:9a:ae:cd:34:7c:ac:f4: 67:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:08:5B:85:61:5B:B6:60:3A:5B:99:8C:5A:A5:F5:B2:13:4A:AD:F9 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/EDA092C2A72B11EDAC3DA56CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 131.203.63.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:8c:10:9c:20:c6:43:85:e2:31:11:a0:5c:ab:1f:4c:55:46: 44:66:a9:8e:10:2a:89:42:14:a1:13:a6:45:88:c1:d2:bc:c2: 72:cf:47:ac:ff:78:98:b1:74:d3:f2:23:5e:12:16:87:b9:c9: dc:d9:2f:92:83:91:e7:4e:3a:f8:71:be:b8:8d:38:3b:0e:e0: a8:c4:54:c0:0c:6f:29:ce:a8:b6:74:39:85:dd:8d:31:a9:ed: a6:87:6c:96:73:6a:c8:7f:39:40:26:f3:36:40:1c:ae:db:c8: 7d:2f:5f:38:6d:55:59:bc:e5:f4:c3:d0:b5:b5:72:73:e4:0d: bf:79:55:93:04:8d:32:13:71:bd:79:a0:79:1d:10:30:72:fa: 5d:89:22:be:ab:c9:50:08:ed:39:01:35:98:d4:91:c1:b6:51: 12:c3:10:86:9e:da:9e:ee:48:ae:2a:45:13:24:23:61:d0:b4: fc:2c:9f:d5:e6:76:0d:e4:09:3f:ab:6f:25:8c:46:61:fb:05: 38:59:0f:ea:c5:6e:6d:64:68:64:5f:c4:d6:a5:e9:5e:b8:07: 95:09:f4:d7:06:5f:09:00:24:76:b0:4d:c6:48:5d:ee:ca:1f: 56:f9:63:b6:69:6c:e0:c8:12:9a:ef:c7:75:a9:44:8d:ca:4a: e0:13:a7:d3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBvIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjUxMDA4MjIyNDIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2ZTQ5Ny1mZWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1f1fnDSlYHd5gdE2WLNNB6HUhZWJHb96iRYaJLiiZGns2cJXKPPkES/4MxKj M56LU8XpeZ1kaqEn0COyz3qCxxxFMTHunh5HMpxocEmkyj3GTS+g1Sjte2IuO7D6 tOn4rOR6jRiR/TItnchC8UPem1c5O+dFIik84i+pIsT186mU0y/xqqslHQKKXOqH +E8vBv2SSjhGU4W7HBb8vkHMTU4bRrajYFdni7Z7GUQXVRJq8zUNMBhAuIQZkQpt CLpRWleHNl9LbQuZgaON3HPOMOxTRVSYg1kOpCTdv2NRHrpjgBrUyzKLI/8peTrj m15l6ehkdtod8ZquzTR8rPRnNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKAIW4Vh W7ZgOluZjFql9bITSq35MB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvODY1OEU0NjY4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvRURBMDkyQzJB NzJCMTFFREFDM0RBNTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACDyz8wDQYJKoZIhvcNAQELBQADggEBAEyMEJwgxkOF4jER oFyrH0xVRkRmqY4QKolCFKETpkWIwdK8wnLPR6z/eJixdNPyI14SFoe5ydzZL5KD kedOOvhxvriNODsO4KjEVMAMbynOqLZ0OYXdjTGp7aaHbJZzash/OUAm8zZAHK7b yH0vXzhtVVm85fTD0LW1cnPkDb95VZMEjTITcb15oHkdEDBy+l2JIr6ryVAI7TkB NZjUkcG2URLDEIae2p7uSK4qRRMkI2HQtPwsn9Xmdg3kCT+rbyWMRmH7BThZD+rF bm1kaGRfxNal6V64B5UJ9NcGXwkAJHawTcZIXe7KH1b5Y7ZpbODIEprvx3WpRI3K SuATp9M= -----END CERTIFICATE-----Generated at Mon Oct 20 22:44:38 2025 by rpki-client