$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/44C226F2A5B111F095806166C4F9AE02.roa File: 44C226F2A5B111F095806166C4F9AE02.roa (raw, json) Hash identifier: Z5IARCPdVB3zQ2o9DruEtHimglf8XZQg6KsX+TluqNQ= Subject key identifier: EF:87:CA:3C:15:45:C7:A7:AE:02:3E:06:AD:93:A4:B0:CA:11:36:89 Certificate issuer: /CN=A91B3247/serialNumber=0DDABBF31EEC68766EF669AF9735240C38993459 Certificate serial: 2F Authority key identifier: 0D:DA:BB:F3:1E:EC:68:76:6E:F6:69:AF:97:35:24:0C:38:99:34:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/44C226F2A5B111F095806166C4F9AE02.roa Signing time: Fri 10 Oct 2025 08:15:23 +0000 ROA not before: Fri 10 Oct 2025 08:15:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 147181 IP address blocks: 203.9.214.0/24 maxlen: 24 2001:df5:f240::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.crl rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:15:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47 (0x2f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3247, serialNumber=0DDABBF31EEC68766EF669AF9735240C38993459 Validity Not Before: Oct 10 08:15:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e8c09b-0bfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b1:95:a5:47:a3:75:ac:db:c9:6f:b0:25:d4: a5:6d:b9:a1:e6:d3:b9:fb:0b:3e:04:aa:70:cf:cc: 16:fd:c3:85:b3:9b:90:eb:5a:36:7b:d5:2b:c5:df: f0:9a:46:26:44:58:34:82:d7:39:f9:ef:f0:45:83: fa:b9:85:9a:bf:a1:38:c4:d3:74:8f:80:ac:29:54: 46:99:ec:a4:a9:9d:2d:33:48:23:75:15:9c:69:0e: 2c:e0:e0:07:2b:5c:fc:7a:7e:ee:8c:8b:20:a0:84: f3:f7:59:71:0f:08:64:c3:c9:25:a3:ea:9b:e3:d6: 2b:ac:32:e7:0f:68:d1:c6:78:3a:e8:73:04:7b:5a: 59:b9:71:69:c0:fc:2c:16:fe:af:f9:98:03:fc:ff: 35:b3:a4:3b:3c:d7:d3:60:25:25:53:b7:91:50:91: 1b:aa:a8:c1:79:5d:8e:b7:b2:49:ef:77:a6:41:f4: de:0f:af:c9:29:ea:82:aa:55:05:26:d5:85:e2:66: ce:83:0f:52:85:45:8d:4f:52:0c:47:95:a8:cd:b1: b5:a3:e4:5e:84:21:71:40:96:95:05:9b:ca:0b:c5: 9c:34:2d:a9:18:e9:a3:ed:02:be:45:74:8b:6d:2f: da:1f:88:fb:09:82:4b:37:21:cf:7c:9c:9a:aa:72: 56:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:87:CA:3C:15:45:C7:A7:AE:02:3E:06:AD:93:A4:B0:CA:11:36:89 X509v3 Authority Key Identifier: keyid:0D:DA:BB:F3:1E:EC:68:76:6E:F6:69:AF:97:35:24:0C:38:99:34:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/Ddq78x7saHZu9mmvlzUkDDiZNFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ddq78x7saHZu9mmvlzUkDDiZNFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3247/32044BFE71EE11F093C22E18C4F9AE02/44C226F2A5B111F095806166C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.9.214.0/24 IPv6: 2001:df5:f240::/48 Signature Algorithm: sha256WithRSAEncryption 21:f5:56:59:3c:16:93:9b:a1:0e:6b:c5:72:4d:05:cc:48:b8: fe:bc:9c:60:53:1b:db:e9:06:f9:8b:89:bc:9e:c0:cf:93:c4: fc:4c:a1:a0:a7:43:2e:25:9f:dd:0d:a3:ce:e0:31:30:ee:86: 26:b7:5c:be:09:b0:15:4e:92:91:e5:ec:e8:ad:fe:d4:09:ae: 25:8b:2f:0d:0a:c6:cc:27:aa:10:e2:54:91:fa:d2:6f:9a:fa: 4f:53:08:60:e2:a3:33:44:1f:bf:3a:02:d5:20:60:45:09:9b: 62:10:63:77:ce:71:71:4b:20:9f:0f:39:54:61:4d:af:e6:95: 63:9b:e2:8b:d8:70:44:61:38:8d:8c:90:4a:11:68:ee:73:b1: ca:9f:62:30:b3:78:ec:52:79:0d:d9:e4:a7:73:89:3e:5c:f1: 01:3a:c9:69:20:c3:e4:2b:04:b0:4c:07:41:21:75:42:89:1e: d9:0e:3b:ae:64:86:a4:0f:9a:d8:fc:a7:d4:e4:09:51:19:ea: e7:ec:54:1a:ce:2a:23:1a:4d:70:90:e5:e4:7a:2e:d6:b8:d5: ef:57:0c:a6:7e:94:3d:0c:d6:c6:b8:68:71:b5:33:01:8a:6e: f1:66:2a:72:9d:bf:9e:18:27:b0:ac:34:31:80:e0:14:8a:3c: 51:cd:57:2b -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBLzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzI0NzExMC8GA1UEBRMoMEREQUJCRjMxRUVDNjg3NjZFRjY2OUFGOTczNTI0MEMz ODk5MzQ1OTAeFw0yNTEwMTAwODE1MjNaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZThjMDliLTBiZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDWsZWlR6N1rNvJb7Al1KVtuaHm07n7Cz4EqnDPzBb9w4Wzm5DrWjZ71SvF3/Ca RiZEWDSC1zn57/BFg/q5hZq/oTjE03SPgKwpVEaZ7KSpnS0zSCN1FZxpDizg4Acr XPx6fu6MiyCghPP3WXEPCGTDySWj6pvj1iusMucPaNHGeDrocwR7Wlm5cWnA/CwW /q/5mAP8/zWzpDs819NgJSVTt5FQkRuqqMF5XY63sknvd6ZB9N4Pr8kp6oKqVQUm 1YXiZs6DD1KFRY1PUgxHlajNsbWj5F6EIXFAlpUFm8oLxZw0LakY6aPtAr5FdItt L9ofiPsJgks3Ic98nJqqclb7AgMBAAGjggKmMIICojAdBgNVHQ4EFgQU74fKPBVF x6euAj4GrZOksMoRNokwHwYDVR0jBBgwFoAUDdq78x7saHZu9mmvlzUkDDiZNFkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzMjQ3LzMyMDQ0QkZFNzFF RTExRjA5M0MyMkUxOEM0RjlBRTAyL0RkcTc4eDdzYUhadTltbXZselVrRERpWk5G ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRGRxNzh4N3NhSFp1OW1tdmx6VWtERGlaTkZrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzI0Ny8zMjA0NEJGRTcxRUUxMUYwOTNDMjJFMThDNEY5QUUwMi80NEMyMjZGMkE1 QjExMUYwOTU4MDYxNjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAMsJ1jAPBAIAAjAJAwcAIAEN9fJAMA0GCSqGSIb3DQEBCwUA A4IBAQAh9VZZPBaTm6EOa8VyTQXMSLj+vJxgUxvb6Qb5i4m8nsDPk8T8TKGgp0Mu JZ/dDaPO4DEw7oYmt1y+CbAVTpKR5ezorf7UCa4liy8NCsbMJ6oQ4lSR+tJvmvpP Uwhg4qMzRB+/OgLVIGBFCZtiEGN3znFxSyCfDzlUYU2v5pVjm+KL2HBEYTiNjJBK EWjuc7HKn2Iws3jsUnkN2eSnc4k+XPEBOslpIMPkKwSwTAdBIXVCiR7ZDjuuZIak D5rY/KfU5AlRGern7FQaziojGk1wkOXkei7WuNXvVwymfpQ9DNbGuGhxtTMBim7x Zipynb+eGCewrDQxgOAUijxRzVcr -----END CERTIFICATE-----Generated at Tue Oct 21 02:19:59 2025 by rpki-client