$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/F84FF96A493911ED805EB686C4F9AE02.roa File: F84FF96A493911ED805EB686C4F9AE02.roa (raw, json) Hash identifier: piVutmjNzZ4LWdxVos9KOORv1t2npbwh4keUJmvsk68= Subject key identifier: 9D:FD:15:7C:32:64:A8:A2:9B:A8:CB:D3:0D:73:B1:06:60:B3:82:61 Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 02AB Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/F84FF96A493911ED805EB686C4F9AE02.roa Signing time: Wed 01 Oct 2025 02:29:04 +0000 ROA not before: Wed 01 Oct 2025 02:29:04 +0000 ROA not after: Fri 30 Jan 2026 00:00:00 +0000 asID: 32787 IP address blocks: 140.168.240.0/24 maxlen: 24 140.168.241.0/24 maxlen: 24 140.168.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 04:04:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 683 (0x2ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98, serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Oct 1 02:29:04 2025 GMT Not After : Jan 30 00:00:00 2026 GMT Subject: CN=68dc91f0-393e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8d:e2:3a:cb:52:7e:c7:91:42:ad:d9:fb:24: 82:ac:a5:f3:b2:ff:91:d6:ca:4e:20:8d:29:d6:c1: e1:59:9e:0b:f0:96:a5:31:da:cd:49:f9:bf:25:44: f0:e0:ce:c2:d5:a0:3a:88:5e:dd:db:30:d3:74:69: e4:5f:53:86:27:45:22:e0:24:68:b3:6d:9a:cd:ec: fb:46:fa:9e:33:31:9c:80:27:11:fc:f2:a2:10:f8: 90:63:3e:11:5a:ed:a3:60:78:3f:2b:23:2a:a8:f8: 91:1b:2d:f8:fa:26:6b:d2:08:f7:59:aa:fd:e8:e1: e6:a8:75:a7:c7:04:57:9f:7a:02:31:4a:e5:8f:9b: 86:1f:88:13:2b:5d:d0:3c:ef:79:f4:9a:2a:36:e1: 47:b8:8e:44:a5:7b:57:8e:c3:13:df:a1:4d:6c:d4: a2:be:8b:14:7a:b9:18:fd:12:85:01:d7:f6:3d:81: d5:b3:94:4a:87:07:8d:9c:2f:76:94:3a:9b:ef:7e: fb:fc:7b:96:36:78:8b:91:80:e0:4c:64:81:91:8d: fb:96:11:d3:bc:b4:e2:7a:92:7d:63:2e:ad:1e:a6: d9:9f:0b:0b:3a:4c:85:68:7c:20:ab:5b:b1:c9:11: bd:aa:bf:56:d5:ec:4d:22:25:f4:3c:97:35:28:fa: 2a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:FD:15:7C:32:64:A8:A2:9B:A8:CB:D3:0D:73:B1:06:60:B3:82:61 X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/F84FF96A493911ED805EB686C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.168.240.0/23 140.168.243.0/24 Signature Algorithm: sha256WithRSAEncryption 13:ec:f0:8d:3c:db:c4:e9:ef:9e:c2:b2:3b:c9:ef:7f:e7:c9: 66:80:eb:63:36:1f:ab:36:b1:00:14:3a:5a:35:8e:c6:68:3b: 6c:49:dc:82:18:6c:25:e6:56:d6:ee:65:91:da:b6:a6:58:bf: ae:78:c5:bd:89:3d:95:27:2f:44:35:70:8c:d8:8c:1f:23:27: f2:4b:77:db:25:4c:ce:42:f2:45:37:c1:20:87:32:08:ed:8a: 1a:c0:d2:84:7a:1f:d0:5d:75:c2:2e:ce:3e:16:c9:df:d8:92: 8a:17:46:89:8c:9d:9b:47:ba:86:37:6a:50:26:9d:8e:cc:f1: 81:57:bd:35:02:d5:eb:44:3c:6b:3d:fe:3d:06:3b:b6:78:7d: 92:07:60:04:10:fd:a6:da:89:c7:84:b8:26:13:6c:8e:20:c4: cd:13:ec:83:36:10:a3:6f:cc:f7:45:4a:e5:ba:cb:cb:12:a1: fc:76:ec:e1:a9:5b:23:11:91:f1:7a:84:f4:60:9a:55:ab:ba: f2:13:8e:17:df:2e:3a:54:64:58:31:5b:12:df:e2:a4:b7:0c: 16:53:c6:22:77:b0:e6:f4:09:c5:bd:76:c9:2d:4e:67:4e:bf: 83:47:b9:c2:38:ba:9f:40:6c:cd:e6:92:55:8e:18:64:46:86: 38:16:ad:dd -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjUxMDAxMDIyOTA0WhcNMjYwMTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjOTFmMC0zOTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu43iOstSfseRQq3Z+ySCrKXzsv+R1spOII0p1sHhWZ4L8JalMdrNSfm/JUTw 4M7C1aA6iF7d2zDTdGnkX1OGJ0Ui4CRos22azez7RvqeMzGcgCcR/PKiEPiQYz4R Wu2jYHg/KyMqqPiRGy34+iZr0gj3War96OHmqHWnxwRXn3oCMUrlj5uGH4gTK13Q PO959JoqNuFHuI5EpXtXjsMT36FNbNSivosUerkY/RKFAdf2PYHVs5RKhweNnC92 lDqb7377/HuWNniLkYDgTGSBkY37lhHTvLTiepJ9Yy6tHqbZnwsLOkyFaHwgq1ux yRG9qr9W1exNIiX0PJc1KPoqpwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJ39FXwy ZKiim6jL0w1zsQZgs4JhMB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvRjg0RkY5NkE0 OTM5MTFFRDgwNUVCNjg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGMqPADBACMqPMwDQYJKoZIhvcNAQELBQADggEBABPs8I08 28Tp757CsjvJ73/nyWaA62M2H6s2sQAUOlo1jsZoO2xJ3IIYbCXmVtbuZZHatqZY v654xb2JPZUnL0Q1cIzYjB8jJ/JLd9slTM5C8kU3wSCHMgjtihrA0oR6H9BddcIu zj4Wyd/YkooXRomMnZtHuoY3alAmnY7M8YFXvTUC1etEPGs9/j0GO7Z4fZIHYAQQ /abaiceEuCYTbI4gxM0T7IM2EKNvzPdFSuW6y8sSofx27OGpWyMRkfF6hPRgmlWr uvITjhffLjpUZFgxWxLf4qS3DBZTxiJ3sOb0CcW9dsktTmdOv4NHucI4up9AbM3m klWOGGRGhjgWrd0= -----END CERTIFICATE-----Generated at Mon Oct 20 08:03:11 2025 by rpki-client