$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/CB91CC20915A11F0869D352DC4F9AE02.roa File: CB91CC20915A11F0869D352DC4F9AE02.roa (raw, json) Hash identifier: S1+pe+6U0FsDEzNiYgqDr8vc7USPQ1p/pPxn0nNHMaU= Subject key identifier: 96:A2:2D:EF:87:63:0F:7F:A6:60:EB:FE:C1:0A:E6:FF:AB:C7:AB:F7 Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Certificate serial: 36CD Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/CB91CC20915A11F0869D352DC4F9AE02.roa Signing time: Wed 08 Oct 2025 14:40:58 +0000 ROA not before: Wed 08 Oct 2025 14:40:58 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 834 IP address blocks: 175.29.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:15:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14029 (0x36cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91510AD, serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Validity Not Before: Oct 8 14:40:58 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e677fa-d040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:55:f6:fd:f3:59:6d:d9:a4:82:74:03:fa:00: 0b:49:af:03:64:d2:d9:68:5c:dd:53:61:e1:33:06: 97:d0:57:00:15:e3:5d:b6:0c:c3:24:c7:72:09:7a: 4d:85:20:45:b5:6b:99:4c:b2:bd:c3:ef:83:8d:b8: 68:04:4a:65:0d:35:37:df:8b:5c:8b:6b:26:a8:4d: 27:58:99:ff:1b:98:9e:d5:e1:47:61:76:8a:15:c3: 17:be:28:c3:59:5a:9e:49:aa:9c:56:21:22:ad:cf: fb:42:8f:44:78:50:1b:93:fd:a1:95:e4:66:7b:5a: e6:3c:99:6c:c0:9b:a3:87:97:78:7a:a0:60:32:bc: 3f:ec:6e:8b:f2:a5:f0:37:e4:03:fd:fd:4d:4a:1f: 77:a6:42:a4:3f:00:ca:c0:33:9b:ce:24:49:4d:cb: 36:6f:eb:a0:43:b3:a8:f1:f3:86:75:fd:8a:bb:58: db:05:62:18:be:94:95:71:81:b8:26:d3:a0:23:e2: 30:58:4a:50:13:30:9f:05:cd:19:8e:23:15:21:91: e8:4d:7f:35:a9:6e:01:9f:7b:b0:3b:a0:0e:eb:bc: bf:d9:e0:45:0d:4e:32:a5:13:92:25:db:33:9d:70: 69:cf:be:70:e2:ad:eb:cd:53:f1:41:da:14:9b:9f: 58:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:A2:2D:EF:87:63:0F:7F:A6:60:EB:FE:C1:0A:E6:FF:AB:C7:AB:F7 X509v3 Authority Key Identifier: keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/CB91CC20915A11F0869D352DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.29.32.0/19 Signature Algorithm: sha256WithRSAEncryption 5e:2e:fe:90:da:f3:b8:25:99:cc:fb:04:4e:21:d9:b5:2e:92: 18:9e:7a:a2:3d:db:18:3d:8d:fa:3e:8f:7a:c4:e6:a9:50:b9: 4e:69:e2:bb:10:0b:d5:14:ea:4e:64:26:92:85:8d:15:11:d1: 21:25:1e:a6:df:82:08:18:ef:76:d7:d5:13:21:22:d0:23:e7: b7:ae:3a:15:d1:59:1d:e9:92:0b:95:04:e0:22:31:33:9d:09: 85:85:33:cc:c7:db:b8:17:b9:f6:77:05:f1:2e:f1:cf:6c:b7: 4f:b5:ca:84:ed:1b:8b:52:a5:a8:37:db:36:70:47:11:7f:ad: 89:4e:12:21:b4:83:eb:3e:f3:e8:96:fb:bb:61:e2:31:ee:7b: 22:fa:57:3f:08:92:dc:90:04:4a:aa:ed:2d:a0:54:97:4d:4c: e1:f1:bc:f6:43:38:bc:58:bb:b2:5a:81:5a:b3:7d:2f:2a:68: 8b:a5:5f:9e:bd:40:18:74:c6:18:36:ad:f9:56:96:ae:33:08: eb:88:a4:0f:b6:10:aa:a1:ac:f6:1b:1c:69:ff:53:c5:a4:cd: 11:f9:93:de:6f:64:00:ea:06:f5:f0:bb:1f:6e:3e:94:f8:e9: 88:b3:b3:4e:3a:d5:4a:a8:b3:03:2a:5e:f4:2f:d7:b6:04:d8: e4:aa:d9:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEwQUQxMTAvBgNVBAUTKEUxRTY5MDhBMTZFQzgxM0RBQTBCRDY0Nzk3QUU5REJE RUIwOTIyNTcwHhcNMjUxMDA4MTQ0MDU4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2NzdmYS1kMDQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2VX2/fNZbdmkgnQD+gALSa8DZNLZaFzdU2HhMwaX0FcAFeNdtgzDJMdyCXpN hSBFtWuZTLK9w++DjbhoBEplDTU334tci2smqE0nWJn/G5ie1eFHYXaKFcMXvijD WVqeSaqcViEirc/7Qo9EeFAbk/2hleRme1rmPJlswJujh5d4eqBgMrw/7G6L8qXw N+QD/f1NSh93pkKkPwDKwDObziRJTcs2b+ugQ7Oo8fOGdf2Ku1jbBWIYvpSVcYG4 JtOgI+IwWEpQEzCfBc0ZjiMVIZHoTX81qW4Bn3uwO6AO67y/2eBFDU4ypROSJdsz nXBpz75w4q3rzVPxQdoUm59YgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJaiLe+H Yw9/pmDr/sEK5v+rx6v3MB8GA1UdIwQYMBaAFOHmkIoW7IE9qgvWR5eunb3rCSJX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTBBRC84QjVFNzVGRTFE ODcxMUUyODRCMzgzREYwOEIwMkNEMi80ZWFRaWhic2dUMnFDOVpIbDY2ZHZlc0pJ bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRlYVFpaGJzZ1QycUM5WkhsNjZkdmVzSklsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEwQUQvOEI1RTc1RkUxRDg3MTFFMjg0QjM4M0RGMDhCMDJDRDIvQ0I5MUNDMjA5 MTVBMTFGMDg2OUQzNTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAWvHSAwDQYJKoZIhvcNAQELBQADggEBAF4u/pDa87glmcz7 BE4h2bUukhieeqI92xg9jfo+j3rE5qlQuU5p4rsQC9UU6k5kJpKFjRUR0SElHqbf gggY73bX1RMhItAj57euOhXRWR3pkguVBOAiMTOdCYWFM8zH27gXufZ3BfEu8c9s t0+1yoTtG4tSpag32zZwRxF/rYlOEiG0g+s+8+iW+7th4jHueyL6Vz8IktyQBEqq 7S2gVJdNTOHxvPZDOLxYu7JagVqzfS8qaIulX569QBh0xhg2rflWlq4zCOuIpA+2 EKqhrPYbHGn/U8WkzRH5k95vZADqBvXwux9uPpT46Yizs0461UqoswMqXvQv17YE 2OSq2YQ= -----END CERTIFICATE-----Generated at Sun Oct 19 14:41:21 2025 by rpki-client