$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/5B0ADC308D3A11EC94DEEC7BC4F9AE02.roa File: 5B0ADC308D3A11EC94DEEC7BC4F9AE02.roa (raw, json) Hash identifier: gNw6+2AtUDlZqQnfDSX/fakH8OEL/fzgw5/WC6J/FXA= Subject key identifier: C1:E2:8D:69:71:BD:02:B1:4A:63:FF:EC:CA:81:06:5E:AD:68:0E:B2 Certificate issuer: /CN=A91DCD09/serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Certificate serial: 0560 Authority key identifier: AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/5B0ADC308D3A11EC94DEEC7BC4F9AE02.roa Signing time: Mon 22 Sep 2025 16:35:22 +0000 ROA not before: Mon 22 Sep 2025 16:35:22 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 19905 IP address blocks: 213.170.156.0/24 maxlen: 24 213.170.157.0/24 maxlen: 24 213.170.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:42:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1376 (0x560) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09, serialNumber=ADB98978FD751F99D9A8EB2AE72D3C0C550453A4 Validity Not Before: Sep 22 16:35:22 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d17aca-8d3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:ed:0e:ed:e5:30:c8:c4:a1:a8:03:b4:09:a6: 41:24:b8:e0:fc:6a:60:98:08:ca:60:20:f9:4a:db: a3:4b:42:a7:a1:3f:94:f2:d8:d8:57:2f:13:b6:8a: 7f:6d:94:92:ce:69:2b:c9:a4:f1:02:bc:ad:45:57: 72:50:1c:44:1a:2b:0f:2b:45:91:4a:7a:5f:c3:40: 74:7e:21:78:68:3f:93:88:9e:81:1b:1d:e1:b5:7d: bd:d2:e4:55:1f:72:bd:a4:a3:98:f6:79:8f:02:92: 61:33:96:ab:0f:6e:01:83:f4:6e:15:49:01:a4:42: 5e:51:18:c4:4b:97:fc:ce:b0:f2:2e:e2:59:e7:fe: b0:7c:6f:f3:34:c6:ab:c8:86:05:13:dd:97:e1:2f: 6c:67:61:9c:94:3f:b1:61:58:84:97:34:68:cb:e5: e2:dc:d8:f0:f6:e5:59:00:16:ee:b5:43:46:d3:85: dc:bf:85:31:60:e4:6c:34:f5:d5:e3:e3:d5:15:54: af:99:48:2e:00:92:6d:f7:68:b5:3b:4a:98:bb:a6: 1f:47:2b:9f:b5:76:6b:b1:b3:61:73:25:d6:68:ad: df:b9:fe:56:9a:a1:02:90:dc:6f:a9:3d:12:2f:4d: 2b:06:ed:25:4f:6c:83:50:68:41:cb:8b:3e:ad:28: 73:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:E2:8D:69:71:BD:02:B1:4A:63:FF:EC:CA:81:06:5E:AD:68:0E:B2 X509v3 Authority Key Identifier: keyid:AD:B9:89:78:FD:75:1F:99:D9:A8:EB:2A:E7:2D:3C:0C:55:04:53:A4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/rbmJeP11H5nZqOsq5y08DFUEU6Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rbmJeP11H5nZqOsq5y08DFUEU6Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/EAC7EEA0112D11EC8D87057DC4F9AE02/5B0ADC308D3A11EC94DEEC7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 213.170.156.0-213.170.158.255 Signature Algorithm: sha256WithRSAEncryption 7c:09:c1:e3:37:96:fc:1e:fd:cf:c0:0e:97:4f:7c:65:c4:62: 04:f1:48:8a:bc:51:46:52:30:12:60:30:c8:21:c6:60:18:49: b4:c6:ef:86:08:d2:48:0e:a2:1a:4e:0e:e3:76:dd:fe:b6:5d: 3c:e0:3c:b2:b0:1c:b0:51:75:65:91:99:8d:88:1f:d0:f1:52: d2:0e:40:2f:76:33:cb:5a:ab:12:59:9b:82:e5:f1:f3:34:34: d6:e4:a6:53:2b:43:9f:f3:af:1b:71:eb:15:a2:12:b9:a7:9e: 00:ac:37:39:54:10:c5:3d:db:23:2e:eb:fb:4c:90:0a:f8:87: a4:76:fc:83:e4:66:82:cf:59:7d:6b:6a:76:69:91:79:7b:7c: bd:dd:71:82:76:45:c1:72:37:2d:e3:ba:dc:0b:27:9d:e5:1e: cb:47:40:50:63:24:1c:fb:ed:0a:1e:c7:ff:b4:24:f7:9e:d8: 73:de:1b:eb:08:69:92:b4:f5:f8:e3:c7:78:8e:2e:c3:e3:d0: 65:a0:a3:3e:0f:20:6d:82:ca:ec:f1:27:f2:53:e4:5a:c0:f4: 1a:86:a0:54:44:7e:e1:9d:67:7d:6f:b5:33:ca:13:9d:e1:66: 5e:74:e8:61:9f:45:a3:ca:e6:6d:b3:7c:91:49:b0:61:e3:a1: 55:4c:ab:20 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICBWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKEFEQjk4OTc4RkQ3NTFGOTlEOUE4RUIyQUU3MkQzQzBD NTUwNDUzQTQwHhcNMjUwOTIyMTYzNTIyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQxN2FjYS04ZDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAze0O7eUwyMShqAO0CaZBJLjg/GpgmAjKYCD5StujS0KnoT+U8tjYVy8Ttop/ bZSSzmkryaTxArytRVdyUBxEGisPK0WRSnpfw0B0fiF4aD+TiJ6BGx3htX290uRV H3K9pKOY9nmPApJhM5arD24Bg/RuFUkBpEJeURjES5f8zrDyLuJZ5/6wfG/zNMar yIYFE92X4S9sZ2GclD+xYViElzRoy+Xi3Njw9uVZABbutUNG04Xcv4UxYORsNPXV 4+PVFVSvmUguAJJt92i1O0qYu6YfRyuftXZrsbNhcyXWaK3fuf5WmqECkNxvqT0S L00rBu0lT2yDUGhBy4s+rShzcwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFMHijWlx vQKxSmP/7MqBBl6taA6yMB8GA1UdIwQYMBaAFK25iXj9dR+Z2ajrKuctPAxVBFOk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS9FQUM3RUVBMDEx MkQxMUVDOEQ4NzA1N0RDNEY5QUUwMi9yYm1KZVAxMUg1blpxT3NxNXkwOERGVUVV NlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JibUplUDExSDVuWnFPc3E1eTA4REZVRVU2US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvRUFDN0VFQTAxMTJEMTFFQzhEODcwNTdEQzRGOUFFMDIvNUIwQURDMzA4 RDNBMTFFQzk0REVFQzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAtWqnAMEANWqnjANBgkqhkiG9w0BAQsFAAOCAQEAfAnB 4zeW/B79z8AOl098ZcRiBPFIirxRRlIwEmAwyCHGYBhJtMbvhgjSSA6iGk4O43bd /rZdPOA8srAcsFF1ZZGZjYgf0PFS0g5AL3Yzy1qrElmbguXx8zQ01uSmUytDn/Ov G3HrFaISuaeeAKw3OVQQxT3bIy7r+0yQCviHpHb8g+Rmgs9ZfWtqdmmReXt8vd1x gnZFwXI3LeO63AsnneUey0dAUGMkHPvtCh7H/7Qk957Yc94b6whpkrT1+OPHeI4u w+PQZaCjPg8gbYLK7PEn8lPkWsD0GoagVER+4Z1nfW+1M8oTneFmXnToYZ9Fo8rm bbN8kUmwYeOhVUyrIA== -----END CERTIFICATE-----Generated at Sun Oct 19 21:01:43 2025 by rpki-client