$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/43AB9FC641A311ECA73C8C0EC4F9AE02.roa File: 43AB9FC641A311ECA73C8C0EC4F9AE02.roa (raw, json) Hash identifier: olSuTXg4z8rAQVRr4bLY3JWSgH6wfZWF5NWyI+YF42Y= Subject key identifier: 28:12:F2:B7:F4:4D:95:69:71:4B:73:3C:C8:C3:1D:77:F8:F4:D5:66 Certificate issuer: /CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Certificate serial: 055F Authority key identifier: AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/43AB9FC641A311ECA73C8C0EC4F9AE02.roa Signing time: Mon 22 Sep 2025 16:35:22 +0000 ROA not before: Mon 22 Sep 2025 16:35:21 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 16509 IP address blocks: 213.170.156.0/24 maxlen: 24 213.170.157.0/24 maxlen: 24 213.170.158.0/24 maxlen: 24 213.170.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:42:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1375 (0x55f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09, serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Validity Not Before: Sep 22 16:35:21 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d17ac9-34e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:17:67:c4:09:55:42:d2:94:40:97:61:54:49: 2d:02:6a:33:d6:ef:1f:b7:ea:6b:91:3f:de:b0:30: c3:d9:71:51:90:21:65:ea:41:01:a4:59:f8:fb:51: 7b:ae:5c:28:04:d2:cf:61:d1:a2:a7:91:39:d3:b2: 2d:a8:31:60:dc:ff:fb:6d:f5:cc:51:49:ad:1f:fb: 20:90:56:06:db:cc:27:5b:61:f7:e1:89:ac:29:67: bd:1d:27:1c:f5:7c:52:95:97:77:38:ea:11:b4:50: a3:9f:5f:7d:59:33:22:8e:75:03:6f:5c:4e:eb:57: 45:32:40:2a:d6:4d:38:3a:f4:60:15:4a:29:ea:a8: b2:46:ce:03:11:0c:ae:5d:1b:d4:d2:39:4a:a0:3d: 18:81:16:94:f7:0b:cb:c1:7d:ac:71:85:ae:eb:c1: cd:1f:bb:2e:94:1f:f5:21:b2:d4:5d:57:b2:0e:c3: 9a:5a:10:07:73:c3:db:4c:58:f6:b5:d5:3d:0d:ee: 45:7b:0f:31:5f:e2:6c:9a:b2:e8:3c:f3:62:e9:ed: 0b:df:f5:39:1d:c3:33:3c:88:a6:f6:bc:df:7a:e1: 78:5f:96:c9:4d:2a:d9:fa:4d:c6:b7:d4:d6:46:a0: 07:e2:75:54:c0:9e:63:44:ce:80:32:82:19:48:47: 4a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:12:F2:B7:F4:4D:95:69:71:4B:73:3C:C8:C3:1D:77:F8:F4:D5:66 X509v3 Authority Key Identifier: keyid:AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/43AB9FC641A311ECA73C8C0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 213.170.156.0/22 Signature Algorithm: sha256WithRSAEncryption 77:a3:4f:3a:e5:fb:9b:24:39:98:9a:9e:b0:1d:8a:2b:3a:df: 93:1e:9b:d3:db:5b:41:bf:8c:4f:08:06:3b:f0:fb:4f:d6:14: fa:e9:17:37:5f:8b:0b:55:54:b7:fc:72:51:b4:e3:8c:ac:97: 1a:67:2f:3c:d5:b0:33:08:e2:18:24:80:95:e2:29:7f:09:c4: 1d:90:90:26:34:e3:92:cc:fa:2a:e2:22:8a:a3:0e:3e:70:f2: 0a:a6:31:ec:d7:b5:b5:53:a1:dc:04:98:d7:8e:a1:3a:52:eb: d2:cb:69:66:4c:4d:7a:74:9b:d4:23:9e:d7:b2:59:bb:1a:5b: 3e:d4:99:e9:fe:49:37:52:95:4a:d7:ae:10:45:20:21:36:11: 0e:db:c5:06:b5:f7:9c:da:91:e7:7e:38:b0:9c:e9:1e:55:b6: b4:f3:3f:da:20:47:48:59:05:19:af:c1:ef:c2:b6:e4:3a:ad: d5:21:03:65:15:1d:83:14:03:a7:ad:c8:f6:34:0b:bf:6c:cb: 14:3f:d3:d3:52:09:28:c4:2c:c6:58:19:b4:df:9d:62:dc:b0: 6f:0a:0c:31:60:67:55:33:21:be:b4:10:5b:a1:a0:20:2b:c9: dc:f1:d3:0b:cb:4e:fb:a7:c6:e4:e1:f6:8e:2a:10:bc:f4:bd: 49:92:a0:45 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKEFEQjk4OTc4RkQ3NTFGOTlEOUE4RUIyQUU3MkQzQzBD NTUwNDUzQTQwHhcNMjUwOTIyMTYzNTIxWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQxN2FjOS0zNGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnhdnxAlVQtKUQJdhVEktAmoz1u8ft+prkT/esDDD2XFRkCFl6kEBpFn4+1F7 rlwoBNLPYdGip5E507ItqDFg3P/7bfXMUUmtH/sgkFYG28wnW2H34YmsKWe9HScc 9XxSlZd3OOoRtFCjn199WTMijnUDb1xO61dFMkAq1k04OvRgFUop6qiyRs4DEQyu XRvU0jlKoD0YgRaU9wvLwX2scYWu68HNH7sulB/1IbLUXVeyDsOaWhAHc8PbTFj2 tdU9De5Few8xX+JsmrLoPPNi6e0L3/U5HcMzPIim9rzfeuF4X5bJTSrZ+k3Gt9TW RqAH4nVUwJ5jRM6AMoIZSEdK1wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCgS8rf0 TZVpcUtzPMjDHXf49NVmMB8GA1UdIwQYMBaAFK25iXj9dR+Z2ajrKuctPAxVBFOk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS9FQUM3RUVBMDEx MkQxMUVDOEQ4NzA1N0RDNEY5QUUwMi9yYm1KZVAxMUg1blpxT3NxNXkwOERGVUVV NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JibUplUDExSDVuWnFPc3E1eTA4REZVRVU2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvRUFDN0VFQTAxMTJEMTFFQzhEODcwNTdEQzRGOUFFMDIvNDNBQjlGQzY0 MUEzMTFFQ0E3M0M4QzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALVqpwwDQYJKoZIhvcNAQELBQADggEBAHejTzrl+5skOZia nrAdiis635Mem9PbW0G/jE8IBjvw+0/WFPrpFzdfiwtVVLf8clG044yslxpnLzzV sDMI4hgkgJXiKX8JxB2QkCY045LM+iriIoqjDj5w8gqmMezXtbVTodwEmNeOoTpS 69LLaWZMTXp0m9QjnteyWbsaWz7Umen+STdSlUrXrhBFICE2EQ7bxQa195zaked+ OLCc6R5VtrTzP9ogR0hZBRmvwe/CtuQ6rdUhA2UVHYMUA6etyPY0C79syxQ/09NS CSjELMZYGbTfnWLcsG8KDDFgZ1UzIb60EFuhoCArydzx0wvLTvunxuTh9o4qELz0 vUmSoEU= -----END CERTIFICATE-----Generated at Mon Oct 20 06:30:46 2025 by rpki-client