$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/25414F2653C111EFAFCEBF4BC4F9AE02.roa File: 25414F2653C111EFAFCEBF4BC4F9AE02.roa (raw, json) Hash identifier: 5PwwEtr0WdaGFqWetfTa+iIVtcVhNqtyf5KVj5gOAK4= Subject key identifier: 86:18:6D:C0:BD:80:88:3A:DC:81:BF:2F:6C:C5:F1:1F:EB:A6:44:E0 Certificate issuer: /CN=A91BD6D4/serialNumber=6528A61459599C060197EB59A9FC78E665849755 Certificate serial: DB Authority key identifier: 65:28:A6:14:59:59:9C:06:01:97:EB:59:A9:FC:78:E6:65:84:97:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZSimFFlZnAYBl-tZqfx45mWEl1U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/25414F2653C111EFAFCEBF4BC4F9AE02.roa Signing time: Tue 23 Sep 2025 06:25:30 +0000 ROA not before: Tue 23 Sep 2025 06:25:30 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58713 IP address blocks: 203.28.22.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/ZSimFFlZnAYBl-tZqfx45mWEl1U.crl rsync://rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/ZSimFFlZnAYBl-tZqfx45mWEl1U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZSimFFlZnAYBl-tZqfx45mWEl1U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:25:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD6D4, serialNumber=6528A61459599C060197EB59A9FC78E665849755 Validity Not Before: Sep 23 06:25:30 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d23d5a-c857 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f2:27:69:ba:7f:9f:46:05:f0:7c:18:f5:66: 7b:4d:91:83:86:bb:a1:5e:a2:c7:da:11:04:2f:77: 2b:b9:62:13:8c:35:d3:79:0e:37:e8:3a:ee:44:68: 32:06:1a:e8:d7:1b:6d:e5:78:38:dc:cc:d7:d0:cd: 6e:2c:2c:37:07:5f:fb:1a:d8:c8:2f:45:80:6c:be: 73:51:b2:e9:57:da:1f:3b:74:08:ba:16:37:fe:5d: a2:39:2c:73:33:14:31:d1:dc:64:8f:9c:a7:5f:32: c9:69:cd:c1:97:b5:e8:5a:71:f2:11:97:9a:ae:9d: a3:b7:da:a2:39:2f:41:59:e8:b9:d4:d1:71:d2:51: ee:a6:ce:21:a0:f5:54:98:35:d8:66:e7:fa:0a:af: 4e:2f:25:37:ae:22:b2:33:91:80:61:be:18:0e:be: 10:0b:ec:b5:16:9d:2f:7d:41:59:b7:eb:da:45:e7: 2e:84:f3:33:a0:5b:07:e4:8c:fb:66:76:3b:ab:52: c3:fd:1f:a8:77:29:e8:3f:43:62:f0:28:2a:32:a3: 2e:5b:42:74:07:2e:c7:52:b5:a4:a0:e5:29:41:8d: 78:62:a9:25:c6:1a:9e:91:bd:8f:57:78:34:c5:ef: 1c:28:19:52:86:16:6d:0b:e1:22:f0:4e:f1:89:7e: e9:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:18:6D:C0:BD:80:88:3A:DC:81:BF:2F:6C:C5:F1:1F:EB:A6:44:E0 X509v3 Authority Key Identifier: keyid:65:28:A6:14:59:59:9C:06:01:97:EB:59:A9:FC:78:E6:65:84:97:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/ZSimFFlZnAYBl-tZqfx45mWEl1U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZSimFFlZnAYBl-tZqfx45mWEl1U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD6D4/B341E030538D11EF82400B1CC4F9AE02/25414F2653C111EFAFCEBF4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.28.22.0/24 Signature Algorithm: sha256WithRSAEncryption c6:97:62:e8:27:ac:2a:a8:a5:4c:9a:e4:53:7b:1e:90:12:1c: da:f2:bc:35:6e:35:89:02:54:39:62:bc:80:fe:94:ae:f6:a4: 5c:29:be:94:54:e6:f4:90:58:d6:80:3b:fe:c2:a4:b9:d6:29: 9d:4d:ec:83:46:ca:c4:5e:89:46:d2:99:2f:3a:20:b5:1d:b5: 06:03:67:c9:cf:51:f9:21:c5:f5:e6:6e:77:2e:d0:70:d4:07: 2d:45:74:e1:8e:bb:87:6c:d3:ec:57:83:8b:97:15:bf:28:17: 2f:0e:77:62:29:ea:30:32:05:df:28:6a:90:6a:29:ed:61:a0: 84:f0:80:eb:ca:bc:8d:8b:11:fe:95:2d:b2:4b:d5:c3:22:a6: e7:f9:b3:66:38:f2:29:9f:30:a7:53:5e:63:ca:ca:9b:f9:2c: f2:12:17:95:0c:cc:32:0f:17:aa:18:98:1d:20:32:f0:98:ca: e5:0e:ff:32:0d:97:16:31:df:58:f3:d7:1d:c5:4a:f3:00:dc: 76:65:d7:de:82:5a:c5:98:fa:72:59:4d:d7:e5:cc:2b:a0:71: 55:02:d7:e7:32:97:be:84:af:3c:a4:43:3f:4d:26:4f:e9:d1: 79:2a:92:67:4a:cb:55:36:cd:21:cc:56:29:47:69:a5:7d:3f: 93:6c:89:11 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ2RDQxMTAvBgNVBAUTKDY1MjhBNjE0NTk1OTlDMDYwMTk3RUI1OUE5RkM3OEU2 NjU4NDk3NTUwHhcNMjUwOTIzMDYyNTMwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQyM2Q1YS1jODU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvvInabp/n0YF8HwY9WZ7TZGDhruhXqLH2hEEL3cruWITjDXTeQ436DruRGgy Bhro1xtt5Xg43MzX0M1uLCw3B1/7GtjIL0WAbL5zUbLpV9ofO3QIuhY3/l2iOSxz MxQx0dxkj5ynXzLJac3Bl7XoWnHyEZearp2jt9qiOS9BWei51NFx0lHups4hoPVU mDXYZuf6Cq9OLyU3riKyM5GAYb4YDr4QC+y1Fp0vfUFZt+vaRecuhPMzoFsH5Iz7 ZnY7q1LD/R+odynoP0Ni8CgqMqMuW0J0By7HUrWkoOUpQY14Yqklxhqekb2PV3g0 xe8cKBlShhZtC+Ei8E7xiX7pAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIYYbcC9 gIg63IG/L2zF8R/rpkTgMB8GA1UdIwQYMBaAFGUophRZWZwGAZfrWan8eOZlhJdV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDZENC9CMzQxRTAzMDUz OEQxMUVGODI0MDBCMUNDNEY5QUUwMi9aU2ltRkZsWm5BWUJsLXRacWZ4NDVtV0Vs MVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pTaW1GRmxabkFZQmwtdFpxZng0NW1XRWwxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQ2RDQvQjM0MUUwMzA1MzhEMTFFRjgyNDAwQjFDQzRGOUFFMDIvMjU0MTRGMjY1 M0MxMTFFRkFGQ0VCRjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLHBYwDQYJKoZIhvcNAQELBQADggEBAMaXYugnrCqopUya 5FN7HpASHNryvDVuNYkCVDlivID+lK72pFwpvpRU5vSQWNaAO/7CpLnWKZ1N7ING ysReiUbSmS86ILUdtQYDZ8nPUfkhxfXmbncu0HDUBy1FdOGOu4ds0+xXg4uXFb8o Fy8Od2Ip6jAyBd8oapBqKe1hoITwgOvKvI2LEf6VLbJL1cMipuf5s2Y48imfMKdT XmPKypv5LPISF5UMzDIPF6oYmB0gMvCYyuUO/zINlxYx31jz1x3FSvMA3HZl196C WsWY+nJZTdflzCugcVUC1+cyl76ErzykQz9NJk/p0XkqkmdKy1U2zSHMVilHaaV9 P5NsiRE= -----END CERTIFICATE-----Generated at Mon Oct 20 11:27:12 2025 by rpki-client