$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/F6722FA6822411F088762570C4F9AE02.roa File: F6722FA6822411F088762570C4F9AE02.roa (raw, json) Hash identifier: 6cwVFvvqQcA0BWrig1rdOJJl09Bzs2MEoyjinBBklP4= Subject key identifier: 22:94:B6:A5:94:9D:73:E3:F8:20:97:4C:33:FC:52:7E:F6:6A:ED:C9 Certificate issuer: /CN=A91B3D30/serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Certificate serial: 0B96 Authority key identifier: 01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/F6722FA6822411F088762570C4F9AE02.roa Signing time: Thu 09 Oct 2025 12:30:39 +0000 ROA not before: Thu 09 Oct 2025 12:30:39 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 202736 IP address blocks: 45.124.204.0/24 maxlen: 24 45.124.205.0/24 maxlen: 24 45.124.206.0/24 maxlen: 24 45.124.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2966 (0xb96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3D30, serialNumber=01EE089DD4867B2CB276582AA97B318F509EA6EE Validity Not Before: Oct 9 12:30:39 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68e7aaef-10de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c0:ac:88:01:4c:76:e9:d6:ea:97:c6:f1:fc: 7f:b3:3c:69:20:0e:e4:38:4b:e8:2b:b5:35:0c:f6: 01:dd:4e:12:e1:73:11:43:2a:25:dd:d9:cf:1d:40: ee:54:42:e9:56:2f:65:fc:5f:b8:ee:6c:34:39:82: fb:31:40:41:7e:5d:38:d8:f4:04:ac:ca:7c:77:8c: ff:f5:95:cf:1a:e0:cc:d6:db:c1:48:62:fd:e9:dc: b7:73:d6:b8:8f:4b:55:57:26:7e:c0:67:0d:cc:7c: d9:da:77:2f:f8:a1:7e:1e:59:3c:be:25:04:41:da: e8:ce:b9:1b:8e:78:a2:15:2a:60:48:95:af:12:f3: 31:dc:e3:ca:a9:5a:28:44:59:8d:62:9e:1b:f4:7d: d9:c7:73:96:7a:f2:21:9a:5f:55:d2:c9:ce:ab:30: 0d:f1:d0:c0:09:ba:ef:46:f0:2d:e2:a6:2e:7f:25: ef:4d:eb:53:e7:7e:d7:64:84:4e:8e:a3:60:25:34: ca:02:69:e1:bc:c8:c0:f1:a5:a7:12:1f:4f:05:21: 5b:d6:f5:d6:69:09:e7:9c:b8:1f:16:91:2b:31:04: 18:91:0c:d2:1b:4d:16:8e:bc:97:13:bd:72:f6:b8: 23:a0:ca:04:1d:8c:b9:e2:cc:53:71:63:44:27:da: 4e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:94:B6:A5:94:9D:73:E3:F8:20:97:4C:33:FC:52:7E:F6:6A:ED:C9 X509v3 Authority Key Identifier: keyid:01:EE:08:9D:D4:86:7B:2C:B2:76:58:2A:A9:7B:31:8F:50:9E:A6:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/Ae4IndSGeyyydlgqqXsxj1Cepu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ae4IndSGeyyydlgqqXsxj1Cepu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3D30/E3DF469C416811EAAE8A7750C4F9AE02/F6722FA6822411F088762570C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.124.204.0/22 Signature Algorithm: sha256WithRSAEncryption 26:b2:e9:0d:ee:6e:59:0a:aa:7c:bb:d6:fd:c9:6b:49:ce:ad: 6c:69:43:02:e5:7c:75:03:cc:00:b9:89:47:df:b0:fb:d9:9a: 7b:59:73:6e:6b:6f:d1:71:c8:d6:85:87:54:1b:cf:58:47:79: 22:9e:26:f2:c3:46:b8:e7:ee:db:1b:15:90:4f:4f:04:fd:cc: 22:51:bd:e2:8c:85:61:30:ea:0e:73:c5:ff:9c:5f:6f:2f:3a: 0f:f3:2f:df:a8:e7:99:1d:22:07:64:ec:5f:ca:e0:8e:24:bc: ca:64:58:f3:71:9a:c2:94:b6:6f:c6:da:6d:54:5f:c3:bd:89: c7:62:c7:2d:0f:11:0e:c7:bd:dd:5f:0b:0f:de:ae:c6:15:6e: 25:20:9e:a6:e9:a6:c1:26:a9:2b:0a:38:d7:5b:aa:91:f1:89: a1:35:2a:0a:c9:e7:4f:7d:80:b3:f0:0e:d6:d0:cc:84:48:9c: e7:09:20:4e:2e:90:b3:df:ea:b9:77:f3:d8:85:57:e7:fb:bd: da:6d:9a:1f:c0:f8:42:fa:be:e8:0e:ef:60:39:74:d6:41:98: de:da:a5:d2:53:0b:e2:ea:a9:d6:8c:fe:43:22:77:96:24:15: f7:35:b1:d9:9a:ad:9b:82:5c:79:b3:d9:ab:c9:89:da:0a:dd: b1:4c:63:55 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNEMzAxMTAvBgNVBAUTKDAxRUUwODlERDQ4NjdCMkNCMjc2NTgyQUE5N0IzMThG NTA5RUE2RUUwHhcNMjUxMDA5MTIzMDM5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU3YWFlZi0xMGRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0MCsiAFMdunW6pfG8fx/szxpIA7kOEvoK7U1DPYB3U4S4XMRQyol3dnPHUDu VELpVi9l/F+47mw0OYL7MUBBfl042PQErMp8d4z/9ZXPGuDM1tvBSGL96dy3c9a4 j0tVVyZ+wGcNzHzZ2ncv+KF+Hlk8viUEQdrozrkbjniiFSpgSJWvEvMx3OPKqVoo RFmNYp4b9H3Zx3OWevIhml9V0snOqzAN8dDACbrvRvAt4qYufyXvTetT537XZIRO jqNgJTTKAmnhvMjA8aWnEh9PBSFb1vXWaQnnnLgfFpErMQQYkQzSG00WjryXE71y 9rgjoMoEHYy54sxTcWNEJ9pOUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCKUtqWU nXPj+CCXTDP8Un72au3JMB8GA1UdIwQYMBaAFAHuCJ3UhnsssnZYKql7MY9Qnqbu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0QzMC9FM0RGNDY5QzQx NjgxMUVBQUU4QTc3NTBDNEY5QUUwMi9BZTRJbmRTR2V5eXlkbGdxcVhzeGoxQ2Vw dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FlNEluZFNHZXl5eWRsZ3FxWHN4ajFDZXB1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNEMzAvRTNERjQ2OUM0MTY4MTFFQUFFOEE3NzUwQzRGOUFFMDIvRjY3MjJGQTY4 MjI0MTFGMDg4NzYyNTcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAItfMwwDQYJKoZIhvcNAQELBQADggEBACay6Q3ublkKqny7 1v3Ja0nOrWxpQwLlfHUDzAC5iUffsPvZmntZc25rb9FxyNaFh1Qbz1hHeSKeJvLD Rrjn7tsbFZBPTwT9zCJRveKMhWEw6g5zxf+cX28vOg/zL9+o55kdIgdk7F/K4I4k vMpkWPNxmsKUtm/G2m1UX8O9icdixy0PEQ7Hvd1fCw/ersYVbiUgnqbppsEmqSsK ONdbqpHxiaE1KgrJ5099gLPwDtbQzIRInOcJIE4ukLPf6rl389iFV+f7vdptmh/A +EL6vugO72A5dNZBmN7apdJTC+LqqdaM/kMid5YkFfc1sdmarZuCXHmz2avJidoK 3bFMY1U= -----END CERTIFICATE-----Generated at Mon Oct 20 03:49:19 2025 by rpki-client