$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/A7C7EF962A8911F09526D35BC4F9AE02.roa File: A7C7EF962A8911F09526D35BC4F9AE02.roa (raw, json) Hash identifier: t0RTmg56JthvruW6/lKLjUx4XzWAwdY96H4SSM4fLcA= Subject key identifier: 63:B3:B6:E3:44:95:70:E8:3F:5A:C5:07:A7:5D:AE:A7:56:F0:B4:13 Certificate issuer: /CN=A91DC7AA/serialNumber=75FE37A83EDA800A6102608587EDF4089D8240E0 Certificate serial: 51 Authority key identifier: 75:FE:37:A8:3E:DA:80:0A:61:02:60:85:87:ED:F4:08:9D:82:40:E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/A7C7EF962A8911F09526D35BC4F9AE02.roa Signing time: Sat 04 Oct 2025 05:03:15 +0000 ROA not before: Sat 04 Oct 2025 05:03:15 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153856 IP address blocks: 163.227.246.0/23 maxlen: 23 163.227.246.0/24 maxlen: 24 163.227.247.0/24 maxlen: 24 2001:df5:7ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.crl rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 10:35:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC7AA, serialNumber=75FE37A83EDA800A6102608587EDF4089D8240E0 Validity Not Before: Oct 4 05:03:15 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68e0aa93-0007 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:10:8e:c2:e9:11:d5:ad:a1:4d:47:3d:33:2a: eb:8f:91:a1:44:2c:b1:35:36:6d:44:25:ac:0e:96: a7:1c:08:67:62:09:a9:38:f6:41:3f:9e:b4:c8:69: e0:d1:28:f8:70:ce:66:2b:ff:33:8b:d8:51:8f:c6: 5c:4f:c2:29:2d:94:a6:02:02:fa:60:68:b9:5e:ea: 12:ac:8e:b5:d6:04:6a:06:10:27:ea:93:dc:60:f2: 52:ca:a5:3b:35:57:ce:4b:97:c6:fd:1d:8c:b2:ae: 8f:18:3e:69:fc:d8:42:c3:1c:23:c3:e3:d8:4e:dc: be:d6:1e:cf:99:96:30:a2:87:35:ab:54:7b:2b:26: 72:36:a9:7e:5d:9f:8c:5e:a3:97:40:78:e4:bc:35: b8:d6:f4:53:87:6e:d8:bf:95:c4:a7:8d:e8:5b:45: 78:58:7f:5e:95:e1:e6:be:6b:04:af:c1:30:01:11: 7e:a3:3d:fd:8d:65:f1:3c:dd:b4:1c:9d:6e:77:ef: 05:27:f4:c9:88:53:4a:3e:2a:72:4e:f2:88:ed:d4: 36:17:1c:d2:ca:63:19:60:cd:06:01:5b:db:91:b3: 44:64:08:3a:6d:a5:11:29:fd:65:82:9e:71:bf:18: 06:64:be:55:a4:6b:5f:9c:f7:65:d1:66:e0:9b:96: 93:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:B3:B6:E3:44:95:70:E8:3F:5A:C5:07:A7:5D:AE:A7:56:F0:B4:13 X509v3 Authority Key Identifier: keyid:75:FE:37:A8:3E:DA:80:0A:61:02:60:85:87:ED:F4:08:9D:82:40:E0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/df43qD7agAphAmCFh-30CJ2CQOA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/df43qD7agAphAmCFh-30CJ2CQOA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC7AA/D22EDA342A8811F0A30D9159C4F9AE02/A7C7EF962A8911F09526D35BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.246.0/23 IPv6: 2001:df5:7ec0::/48 Signature Algorithm: sha256WithRSAEncryption b4:0e:40:6d:81:b0:9f:d3:2d:7d:70:ee:a6:48:26:30:bf:c7: 20:83:60:1d:d3:06:9e:33:b9:b6:8d:0b:23:39:c5:9f:c8:4d: aa:9a:50:22:c9:82:dd:b3:a4:d0:19:87:4f:c4:62:1d:57:c1: 83:f1:63:c9:60:88:17:90:69:07:e5:06:89:94:2a:1e:fe:36: 62:a9:5e:28:0b:91:ed:f7:d7:53:ae:9b:5b:00:78:92:e6:88: c8:5f:f4:72:60:1a:02:6c:97:c9:87:22:3e:1e:3f:5f:c3:6c: 34:30:96:aa:32:da:20:51:c7:f2:f4:fe:70:af:f9:4a:4f:e8: 75:3c:9e:9c:ad:ad:9d:41:b2:7d:ae:4d:a0:b7:a4:33:20:48: 2d:97:de:c0:a4:49:17:a3:4a:f8:96:e7:e2:bf:15:b4:32:3e: 46:b3:98:c1:73:68:6d:1d:6e:27:c3:67:99:bc:91:09:48:45: 24:1b:d8:de:6e:97:eb:59:06:41:dd:36:0f:68:90:e7:77:9c: 7e:ad:57:4b:41:92:56:21:62:aa:07:a9:4b:0e:16:a4:f2:29: c9:fe:ce:eb:cb:14:b1:e4:cf:48:f4:a5:b3:50:8f:a9:76:35: 42:33:75:10:de:61:b5:c1:59:b1:e4:ad:1e:71:7c:03:d6:d4: f8:f3:97:4b -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBUTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QzdBQTExMC8GA1UEBRMoNzVGRTM3QTgzRURBODAwQTYxMDI2MDg1ODdFREY0MDg5 RDgyNDBFMDAeFw0yNTEwMDQwNTAzMTVaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZTBhYTkzLTAwMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDOEI7C6RHVraFNRz0zKuuPkaFELLE1Nm1EJawOlqccCGdiCak49kE/nrTIaeDR KPhwzmYr/zOL2FGPxlxPwiktlKYCAvpgaLle6hKsjrXWBGoGECfqk9xg8lLKpTs1 V85Ll8b9HYyyro8YPmn82ELDHCPD49hO3L7WHs+ZljCihzWrVHsrJnI2qX5dn4xe o5dAeOS8NbjW9FOHbti/lcSnjehbRXhYf16V4ea+awSvwTABEX6jPf2NZfE83bQc nW537wUn9MmIU0o+KnJO8ojt1DYXHNLKYxlgzQYBW9uRs0RkCDptpREp/WWCnnG/ GAZkvlWka1+c92XRZuCblpO5AgMBAAGjggKmMIICojAdBgNVHQ4EFgQUY7O240SV cOg/WsUHp12up1bwtBMwHwYDVR0jBBgwFoAUdf43qD7agAphAmCFh+30CJ2CQOAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURDN0FBL0QyMkVEQTM0MkE4 ODExRjBBMzBEOTE1OUM0RjlBRTAyL2RmNDNxRDdhZ0FwaEFtQ0ZoLTMwQ0oyQ1FP QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZGY0M3FEN2FnQXBoQW1DRmgtMzBDSjJDUU9BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QzdBQS9EMjJFREEzNDJBODgxMUYwQTMwRDkxNTlDNEY5QUUwMi9BN0M3RUY5NjJB ODkxMUYwOTUyNkQzNUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAaPj9jAPBAIAAjAJAwcAIAEN9X7AMA0GCSqGSIb3DQEBCwUA A4IBAQC0DkBtgbCf0y19cO6mSCYwv8cgg2Ad0waeM7m2jQsjOcWfyE2qmlAiyYLd s6TQGYdPxGIdV8GD8WPJYIgXkGkH5QaJlCoe/jZiqV4oC5Ht99dTrptbAHiS5ojI X/RyYBoCbJfJhyI+Hj9fw2w0MJaqMtogUcfy9P5wr/lKT+h1PJ6cra2dQbJ9rk2g t6QzIEgtl97ApEkXo0r4lufivxW0Mj5Gs5jBc2htHW4nw2eZvJEJSEUkG9jebpfr WQZB3TYPaJDnd5x+rVdLQZJWIWKqB6lLDhak8inJ/s7ryxSx5M9I9KWzUI+pdjVC M3UQ3mG1wVmx5K0ecXwD1tT485dL -----END CERTIFICATE-----Generated at Tue Oct 21 11:14:08 2025 by rpki-client