$ rpki-client -vvf rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/E3239FCAD48C11EFA27EEC37C4F9AE02.roa File: E3239FCAD48C11EFA27EEC37C4F9AE02.roa (raw, json) Hash identifier: eDrkrHM6e7G8MkefF8uO0ebeRL2ZiilrSCVyjl1v/78= Subject key identifier: CE:C5:83:7C:FF:DB:A3:11:57:8E:68:37:6E:55:92:0A:57:B7:CC:E0 Certificate issuer: /CN=A91685E9/serialNumber=624B96E1D665ED78E78DFAF6C220191073DB66CC Certificate serial: B5 Authority key identifier: 62:4B:96:E1:D6:65:ED:78:E7:8D:FA:F6:C2:20:19:10:73:DB:66:CC Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/E3239FCAD48C11EFA27EEC37C4F9AE02.roa Signing time: Sat 04 Oct 2025 07:19:00 +0000 ROA not before: Sat 04 Oct 2025 07:19:00 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 152565 IP address blocks: 161.248.162.0/23 maxlen: 23 161.248.162.0/24 maxlen: 24 161.248.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.crl rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:45:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91685E9, serialNumber=624B96E1D665ED78E78DFAF6C220191073DB66CC Validity Not Before: Oct 4 07:19:00 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68e0ca64-8c06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:56:d5:99:d4:bb:f2:ae:c8:ef:fb:7b:e1:b6: bc:06:43:ea:48:e6:da:d9:b4:b9:3b:29:b7:2a:e6: 52:c8:94:a8:74:f2:8b:34:3b:04:79:57:12:fd:40: 34:ef:ff:57:e1:b6:e5:9b:84:bb:83:0d:42:8a:81: ee:5b:77:6d:ce:e6:a0:87:83:80:ff:f6:6f:e7:37: af:dc:59:05:c6:50:a3:bc:05:66:4a:8c:9c:9b:8a: da:4f:9c:74:03:6a:b0:a1:3c:20:c7:99:ef:e2:db: 9f:79:1a:c9:22:9a:a8:8d:27:31:39:22:20:81:36: c6:b9:33:27:13:af:7b:7a:27:c1:f1:b1:73:69:45: 91:83:b5:be:88:bb:79:f7:57:f1:77:67:ef:0f:57: e5:88:20:37:d0:ac:34:6f:18:a8:c4:49:49:0c:af: 22:3a:82:86:a8:3d:ca:70:a6:6e:bf:70:fb:7f:29: d7:bf:05:90:a7:84:4d:1f:b9:01:33:79:65:4c:43: 21:88:db:b8:8b:2c:d1:b7:75:27:75:17:5a:7d:cf: 56:89:69:b5:25:5c:2d:09:30:92:7b:3e:0b:0d:0a: 72:da:f4:7d:c2:d0:e4:2f:b2:f1:8c:f7:35:0b:ab: 5d:6a:26:bf:35:d1:7d:62:64:05:18:17:e4:50:18: 5a:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:C5:83:7C:FF:DB:A3:11:57:8E:68:37:6E:55:92:0A:57:B7:CC:E0 X509v3 Authority Key Identifier: keyid:62:4B:96:E1:D6:65:ED:78:E7:8D:FA:F6:C2:20:19:10:73:DB:66:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YkuW4dZl7Xjnjfr2wiAZEHPbZsw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91685E9/C112F55CD17611EF95C5DE5AC4F9AE02/E3239FCAD48C11EFA27EEC37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.162.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:4c:5d:d5:a7:7c:09:e5:57:44:66:59:d3:1c:23:46:fa:a2: 0a:fb:52:d0:35:9b:a2:89:40:bc:5b:03:93:16:5b:03:2d:20: bd:39:d9:c1:dd:98:50:35:0d:6a:d9:ab:7a:39:80:67:47:38: d5:70:b4:14:08:6a:c9:21:16:f8:e5:6f:8e:79:7f:e2:0a:aa: 43:fa:d3:c7:93:e6:d4:69:f1:b0:5e:26:73:4a:fd:77:0c:c4: d8:f2:60:df:4c:16:67:0b:7b:48:a6:31:b4:d5:cf:10:94:18: f8:3d:c7:7e:c3:1f:31:96:ff:26:62:b8:b4:cd:a7:39:ae:fe: bb:81:a2:47:11:7d:eb:b5:10:2e:38:39:b1:3b:5c:9f:d6:92: 50:a0:00:40:aa:2f:38:fc:1d:e9:7b:0c:d4:68:68:5c:78:2a: ef:7e:6a:50:dd:56:3b:d1:a7:88:23:c3:5f:64:8a:74:d4:22: a1:83:6f:77:92:29:c8:b2:1f:ad:99:16:d9:f3:2e:e6:07:5d: 16:a0:78:7d:a4:d7:53:09:ed:c3:5f:9f:1b:06:27:9b:1f:10: e3:41:fd:0d:dd:49:e6:a0:5f:ac:49:4a:73:68:66:87:e2:80: 18:83:ea:bb:ea:24:c7:9a:d9:bd:b0:c1:f3:41:a7:58:cb:b5: 31:ff:07:2e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njg1RTkxMTAvBgNVBAUTKDYyNEI5NkUxRDY2NUVENzhFNzhERkFGNkMyMjAxOTEw NzNEQjY2Q0MwHhcNMjUxMDA0MDcxOTAwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGUwY2E2NC04YzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArVbVmdS78q7I7/t74ba8BkPqSOba2bS5Oym3KuZSyJSodPKLNDsEeVcS/UA0 7/9X4bblm4S7gw1CioHuW3dtzuagh4OA//Zv5zev3FkFxlCjvAVmSoycm4raT5x0 A2qwoTwgx5nv4tufeRrJIpqojScxOSIggTbGuTMnE697eifB8bFzaUWRg7W+iLt5 91fxd2fvD1fliCA30Kw0bxioxElJDK8iOoKGqD3KcKZuv3D7fynXvwWQp4RNH7kB M3llTEMhiNu4iyzRt3UndRdafc9WiWm1JVwtCTCSez4LDQpy2vR9wtDkL7LxjPc1 C6tdaia/NdF9YmQFGBfkUBhauQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM7Fg3z/ 26MRV45oN25VkgpXt8zgMB8GA1UdIwQYMBaAFGJLluHWZe1454369sIgGRBz22bM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODVFOS9DMTEyRjU1Q0Qx NzYxMUVGOTVDNURFNUFDNEY5QUUwMi9Za3VXNGRabDdYam5qZnIyd2lBWkVIUGJa c3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lrdVc0ZFpsN1hqbmpmcjJ3aUFaRUhQYlpzdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njg1RTkvQzExMkY1NUNEMTc2MTFFRjk1QzVERTVBQzRGOUFFMDIvRTMyMzlGQ0FE NDhDMTFFRkEyN0VFQzM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+KIwDQYJKoZIhvcNAQELBQADggEBAD1MXdWnfAnlV0Rm WdMcI0b6ogr7UtA1m6KJQLxbA5MWWwMtIL052cHdmFA1DWrZq3o5gGdHONVwtBQI askhFvjlb455f+IKqkP608eT5tRp8bBeJnNK/XcMxNjyYN9MFmcLe0imMbTVzxCU GPg9x37DHzGW/yZiuLTNpzmu/ruBokcRfeu1EC44ObE7XJ/WklCgAECqLzj8Hel7 DNRoaFx4Ku9+alDdVjvRp4gjw19kinTUIqGDb3eSKciyH62ZFtnzLuYHXRageH2k 11MJ7cNfnxsGJ5sfEONB/Q3dSeagX6xJSnNoZofigBiD6rvqJMea2b2wwfNBp1jL tTH/By4= -----END CERTIFICATE-----Generated at Mon Oct 20 10:40:38 2025 by rpki-client