$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/6470410AABD811F08E1F646DC4F9AE02.roa File: 6470410AABD811F08E1F646DC4F9AE02.roa (raw, json) Hash identifier: gIfrHvYhUG2Gl5XcrG0jaQjZFDq9QfoPF3cQ+mbSIDM= Subject key identifier: 4A:B7:24:B6:51:89:FE:F3:13:67:69:73:62:1F:6A:FA:A2:9F:67:4A Certificate issuer: /CN=A91B6E73/serialNumber=4A17AF66A048FC81DAE8545F7E35D9DAABD40271 Certificate serial: 126B Authority key identifier: 4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/6470410AABD811F08E1F646DC4F9AE02.roa Signing time: Sat 18 Oct 2025 04:10:34 +0000 ROA not before: Sat 18 Oct 2025 04:10:34 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 400618 IP address blocks: 124.108.22.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.crl rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 17:39:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4715 (0x126b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6E73, serialNumber=4A17AF66A048FC81DAE8545F7E35D9DAABD40271 Validity Not Before: Oct 18 04:10:34 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68f31339-5750 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:5c:45:5c:8a:5d:e7:6e:e3:57:11:e6:f4:9e: 11:19:8e:c0:bf:82:5b:ef:c5:d7:91:5a:15:a3:32: e9:31:64:49:8c:75:99:67:6a:a3:c1:17:c3:f6:44: 1b:59:cf:a3:d9:05:2a:b6:12:fe:06:5b:24:11:10: 10:47:2e:0e:e8:25:7f:91:bf:2b:8f:8e:d8:91:fd: fe:7a:e7:7f:48:4d:4d:6c:be:3b:9c:a8:83:4d:99: 9a:38:df:cf:62:4b:19:6c:51:f1:13:70:d8:ae:90: 92:64:00:8a:fd:eb:f3:ca:4a:98:7b:35:70:cf:5b: 7c:f8:12:79:7f:c5:94:9b:e3:04:ab:11:57:d0:9b: f8:b4:c6:c6:49:66:a6:40:35:21:ed:2e:fc:9c:33: cd:67:b6:9b:ad:42:de:9b:8d:a0:5c:96:0a:8e:fe: b3:be:14:f5:ec:ef:68:51:db:73:90:92:db:ad:c9: f2:e0:13:b5:43:b8:2c:4d:0f:b0:f9:22:c5:14:3a: 79:73:0b:af:b5:43:f5:52:17:bc:b8:d7:27:bd:2a: 41:46:56:1e:e2:85:ed:d7:15:7a:7e:99:f7:ab:cc: 72:7d:d2:2f:e6:ca:0a:05:da:8a:ee:79:c2:d3:fa: f6:c0:29:1d:19:18:4c:b7:e9:cf:67:31:fa:77:39: 5f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:B7:24:B6:51:89:FE:F3:13:67:69:73:62:1F:6A:FA:A2:9F:67:4A X509v3 Authority Key Identifier: keyid:4A:17:AF:66:A0:48:FC:81:DA:E8:54:5F:7E:35:D9:DA:AB:D4:02:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/ShevZqBI_IHa6FRffjXZ2qvUAnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ShevZqBI_IHa6FRffjXZ2qvUAnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6E73/F41D40F2EA0911E8ADA2ED0CC4F9AE02/6470410AABD811F08E1F646DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.108.22.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:f4:9f:fd:fa:78:a5:8f:9b:f4:b7:e9:15:78:b8:e4:69:95: 8a:04:d6:b2:fc:f5:66:9d:e9:fa:49:cb:87:c5:75:7c:aa:d0: ed:2a:2a:23:71:4f:5c:09:3f:57:d0:35:45:59:5a:53:e5:29: 63:74:83:73:23:1f:06:48:61:d2:50:8b:50:c1:5f:73:bc:f7: a3:01:92:fa:22:f5:73:a7:06:a2:97:10:ec:12:2e:ac:0c:bf: b7:e6:7f:ee:3b:37:f3:47:1a:05:e8:6a:c9:3e:04:33:ef:27: 93:a9:4e:a9:10:b3:12:97:a5:2d:23:8e:af:f7:62:da:7c:ee: 06:c2:5b:80:a2:79:d0:c2:31:f7:6b:b5:3b:3c:a5:36:67:91: 10:35:c3:83:d4:4b:31:02:f3:2c:ee:54:db:15:9b:40:df:35: c0:f7:b5:0d:7a:db:4e:b7:03:84:49:e0:ee:de:b0:fd:62:3a: 82:89:0b:23:f4:70:15:f5:09:78:71:f8:62:67:a9:06:4f:f1: 40:a5:95:b1:a3:a0:74:9a:d5:9b:e8:b2:70:32:5e:95:67:7e: e4:9b:3e:cf:01:8c:39:d7:25:80:75:71:50:73:e4:60:dc:e7: 68:a9:33:28:78:9f:2b:b9:0d:6b:7f:02:6e:cd:45:61:28:78: 2c:22:4c:d8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZFNzMxMTAvBgNVBAUTKDRBMTdBRjY2QTA0OEZDODFEQUU4NTQ1RjdFMzVEOURB QUJENDAyNzEwHhcNMjUxMDE4MDQxMDM0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYzMTMzOS01NzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA31xFXIpd527jVxHm9J4RGY7Av4Jb78XXkVoVozLpMWRJjHWZZ2qjwRfD9kQb Wc+j2QUqthL+BlskERAQRy4O6CV/kb8rj47Ykf3+eud/SE1NbL47nKiDTZmaON/P YksZbFHxE3DYrpCSZACK/evzykqYezVwz1t8+BJ5f8WUm+MEqxFX0Jv4tMbGSWam QDUh7S78nDPNZ7abrULem42gXJYKjv6zvhT17O9oUdtzkJLbrcny4BO1Q7gsTQ+w +SLFFDp5cwuvtUP1Uhe8uNcnvSpBRlYe4oXt1xV6fpn3q8xyfdIv5soKBdqK7nnC 0/r2wCkdGRhMt+nPZzH6dzlfSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEq3JLZR if7zE2dpc2Ifavqin2dKMB8GA1UdIwQYMBaAFEoXr2agSPyB2uhUX3412dqr1AJx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkU3My9GNDFENDBGMkVB MDkxMUU4QURBMkVEMENDNEY5QUUwMi9TaGV2WnFCSV9JSGE2RlJmZmpYWjJxdlVB bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NoZXZacUJJX0lIYTZGUmZmalhaMnF2VUFuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZFNzMvRjQxRDQwRjJFQTA5MTFFOEFEQTJFRDBDQzRGOUFFMDIvNjQ3MDQxMEFB QkQ4MTFGMDhFMUY2NDZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF8bBYwDQYJKoZIhvcNAQELBQADggEBAHz0n/36eKWPm/S3 6RV4uORplYoE1rL89Wad6fpJy4fFdXyq0O0qKiNxT1wJP1fQNUVZWlPlKWN0g3Mj HwZIYdJQi1DBX3O896MBkvoi9XOnBqKXEOwSLqwMv7fmf+47N/NHGgXoask+BDPv J5OpTqkQsxKXpS0jjq/3Ytp87gbCW4CiedDCMfdrtTs8pTZnkRA1w4PUSzEC8yzu VNsVm0DfNcD3tQ162063A4RJ4O7esP1iOoKJCyP0cBX1CXhx+GJnqQZP8UCllbGj oHSa1ZvosnAyXpVnfuSbPs8BjDnXJYB1cVBz5GDc52ipMyh4nyu5DWt/Am7NRWEo eCwiTNg= -----END CERTIFICATE-----Generated at Mon Oct 20 10:10:00 2025 by rpki-client