$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/00756F7E63F011EC987F5B19C4F9AE02.roa File: 00756F7E63F011EC987F5B19C4F9AE02.roa (raw, json) Hash identifier: s8i5IxWnvTImsz9H5D4MuEQAm14mPHlkRay9ZZj+Qsc= Subject key identifier: B1:58:B6:CB:BB:E9:2F:82:86:92:F3:DF:67:DA:52:43:21:A6:C6:BD Certificate issuer: /CN=A91DDCB6/serialNumber=18DC531D44F05962E97F23845736141D3E02681B Certificate serial: 06ED Authority key identifier: 18:DC:53:1D:44:F0:59:62:E9:7F:23:84:57:36:14:1D:3E:02:68:1B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GNxTHUTwWWLpfyOEVzYUHT4CaBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/00756F7E63F011EC987F5B19C4F9AE02.roa Signing time: Wed 08 Oct 2025 20:51:38 +0000 ROA not before: Wed 08 Oct 2025 20:51:38 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 132420 IP address blocks: 91.203.132.0/22 maxlen: 24 151.185.32.0/19 maxlen: 24 217.18.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/GNxTHUTwWWLpfyOEVzYUHT4CaBs.crl rsync://rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/GNxTHUTwWWLpfyOEVzYUHT4CaBs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GNxTHUTwWWLpfyOEVzYUHT4CaBs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:42:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1773 (0x6ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCB6, serialNumber=18DC531D44F05962E97F23845736141D3E02681B Validity Not Before: Oct 8 20:51:38 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e6ceda-5c49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:d9:df:db:4b:ce:03:b2:e5:e5:14:e5:34:96: 00:79:30:5d:c4:ef:ff:5c:de:a4:ab:77:a4:f1:dc: e5:60:35:76:93:3a:f4:a5:0c:72:5e:91:de:97:31: 86:82:bd:fb:50:7a:92:7b:c3:ed:32:59:5a:2d:29: 37:ab:be:4d:63:9f:3c:27:8c:f3:4d:8d:7a:52:91: 25:b8:26:c5:fc:26:b3:96:2c:c4:d4:2a:00:39:3a: 05:08:9c:58:e7:76:45:9f:62:37:fd:b4:0b:df:5b: 9b:31:bc:8b:f4:e6:88:72:ad:32:f7:fe:73:3d:45: 44:25:e5:0a:32:d8:96:3e:45:a0:c5:25:5f:18:9c: a5:1b:16:03:e6:86:6f:38:72:77:76:96:90:77:38: a8:57:0d:c0:86:be:18:41:9e:ee:b0:eb:3e:d0:59: 1e:60:44:f6:b4:af:52:31:41:4e:77:5e:6f:e9:41: 32:7d:81:bf:dd:a9:52:18:fa:28:f4:d1:1d:a8:fa: 13:d7:8e:f6:5b:95:1f:74:cd:70:ac:9f:80:1b:1a: 50:cb:3b:d1:b9:92:08:a0:8f:97:e0:4c:14:aa:5e: 38:f5:f9:30:74:0d:35:fe:dd:cf:7d:0e:b9:1e:fc: 41:01:6e:41:6c:1e:93:f5:a2:d1:18:7e:4a:91:81: 61:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:58:B6:CB:BB:E9:2F:82:86:92:F3:DF:67:DA:52:43:21:A6:C6:BD X509v3 Authority Key Identifier: keyid:18:DC:53:1D:44:F0:59:62:E9:7F:23:84:57:36:14:1D:3E:02:68:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/GNxTHUTwWWLpfyOEVzYUHT4CaBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GNxTHUTwWWLpfyOEVzYUHT4CaBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/00756F7E63F011EC987F5B19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 91.203.132.0/22 151.185.32.0/19 217.18.52.0/22 Signature Algorithm: sha256WithRSAEncryption 44:32:0e:d0:4e:c7:f0:a2:4a:a9:8a:58:56:2a:48:4d:f5:5e: ae:c9:0d:8b:59:a1:a8:5a:6a:93:d5:5c:05:0d:68:22:09:36: 83:b2:cd:1b:7f:67:b7:f3:60:61:e8:3d:f9:67:da:c7:8c:63: ad:2e:3e:fa:72:79:37:1e:2c:6e:00:50:c2:e1:a3:13:69:6e: ce:1b:46:14:92:23:bd:53:11:a9:27:ad:19:07:de:e0:b3:30: 9a:00:50:3b:a1:e6:02:63:7b:cb:fb:68:17:48:50:a9:77:05: af:a5:8d:9c:55:3c:30:e9:ab:09:bf:05:c0:4e:59:94:e0:80: 0f:b5:8b:52:98:09:67:8b:a7:e7:ff:c2:85:35:30:1b:0d:d9: f4:c8:c3:3d:b5:94:49:f9:98:2e:ec:83:8c:5f:43:e6:10:78: 32:e9:71:68:12:4f:cb:de:ba:d1:d6:43:cc:fb:a4:b2:06:57: 07:84:26:39:e9:62:ed:c8:5d:4f:d4:8f:87:d8:8c:f5:3b:1d: e9:6a:ac:77:e0:2a:94:27:9a:3b:77:dd:e5:e8:6a:1a:86:5d: 4a:e3:a7:cc:6a:3a:24:b5:8b:7a:07:30:19:9e:8c:b5:59:fb: 19:02:84:72:28:c0:ef:12:dc:41:ad:09:62:72:5c:f6:4a:fe: e7:77:52:38 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBu0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERDQjYxMTAvBgNVBAUTKDE4REM1MzFENDRGMDU5NjJFOTdGMjM4NDU3MzYxNDFE M0UwMjY4MUIwHhcNMjUxMDA4MjA1MTM4WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2Y2VkYS01YzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxNnf20vOA7Ll5RTlNJYAeTBdxO//XN6kq3ek8dzlYDV2kzr0pQxyXpHelzGG gr37UHqSe8PtMllaLSk3q75NY588J4zzTY16UpEluCbF/CazlizE1CoAOToFCJxY 53ZFn2I3/bQL31ubMbyL9OaIcq0y9/5zPUVEJeUKMtiWPkWgxSVfGJylGxYD5oZv OHJ3dpaQdzioVw3Ahr4YQZ7usOs+0FkeYET2tK9SMUFOd15v6UEyfYG/3alSGPoo 9NEdqPoT1472W5UfdM1wrJ+AGxpQyzvRuZIIoI+X4EwUql449fkwdA01/t3PfQ65 HvxBAW5BbB6T9aLRGH5KkYFhuQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLFYtsu7 6S+ChpLz32faUkMhpsa9MB8GA1UdIwQYMBaAFBjcUx1E8Fli6X8jhFc2FB0+Amgb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERENCNi82RTlBQzgwNjcx RDgxMUVCODA0NzcyMURDNEY5QUUwMi9HTnhUSFVUd1dXTHBmeU9FVnpZVUhUNENh QnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0dOeFRIVVR3V1dMcGZ5T0VWellVSFQ0Q2FCcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RERDQjYvNkU5QUM4MDY3MUQ4MTFFQjgwNDc3MjFEQzRGOUFFMDIvMDA3NTZGN0U2 M0YwMTFFQzk4N0Y1QjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJby4QDBAWXuSADBALZEjQwDQYJKoZIhvcNAQELBQADggEB AEQyDtBOx/CiSqmKWFYqSE31Xq7JDYtZoahaapPVXAUNaCIJNoOyzRt/Z7fzYGHo Pfln2seMY60uPvpyeTceLG4AUMLhoxNpbs4bRhSSI71TEaknrRkH3uCzMJoAUDuh 5gJje8v7aBdIUKl3Ba+ljZxVPDDpqwm/BcBOWZTggA+1i1KYCWeLp+f/woU1MBsN 2fTIwz21lEn5mC7sg4xfQ+YQeDLpcWgST8veutHWQ8z7pLIGVweEJjnpYu3IXU/U j4fYjPU7HelqrHfgKpQnmjt33eXoahqGXUrjp8xqOiS1i3oHMBmejLVZ+xkChHIo wO8S3EGtCWJyXPZK/ud3Ujg= -----END CERTIFICATE-----Generated at Mon Oct 20 04:10:53 2025 by rpki-client