$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/48DDFB8E8FAF11F0B59F0948C4F9AE02.roa File: 48DDFB8E8FAF11F0B59F0948C4F9AE02.roa (raw, json) Hash identifier: mA/WE2Bh4RmqFgp1Gp11Wu83VKDJFyoxbw2SeY/E7bk= Subject key identifier: 26:35:BA:1C:E9:E8:89:E6:25:BB:0E:84:59:0A:F7:E9:7F:40:9E:76 Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Certificate serial: 08EF Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/48DDFB8E8FAF11F0B59F0948C4F9AE02.roa Signing time: Fri 12 Sep 2025 08:05:45 +0000 ROA not before: Fri 12 Sep 2025 08:05:45 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153259 IP address blocks: 169.136.109.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:56:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2287 (0x8ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A, serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Validity Not Before: Sep 12 08:05:45 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68c3d459-6e19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c6:c3:46:74:4b:36:f0:a9:48:52:60:9d:4a: 2a:81:48:ce:ce:6f:12:86:02:ce:7d:a4:53:9e:c1: 73:9e:c8:89:ae:0a:1d:c4:27:b4:d1:22:d0:bd:f8: ed:60:cf:d2:e0:69:5a:ce:b2:95:f0:eb:e8:ed:56: 46:57:06:a8:07:52:87:77:11:6d:f1:44:d0:e4:2c: ce:59:d2:03:98:48:bb:a8:79:86:ac:da:44:40:7e: 83:b2:72:f3:30:98:5c:57:d1:7e:32:11:6a:50:4a: 6f:72:ed:39:ca:5a:77:af:d7:23:4e:cb:10:0f:7a: 14:84:a5:2c:6a:27:66:b3:19:27:df:a5:b1:a5:06: 09:5c:13:ab:e3:ee:dc:30:3d:d2:41:0a:f5:cb:27: 17:8a:fa:07:b2:b7:44:83:6d:08:15:74:2f:1a:5b: ae:87:48:f2:80:79:2f:26:46:e7:20:84:1d:38:fc: 74:6f:0e:2c:f2:8b:1b:8a:47:bc:81:b8:22:e9:7f: a6:9a:ef:a3:0c:78:06:0d:22:41:ea:6a:3d:cd:97: 06:93:99:11:35:48:7b:78:92:56:ff:5d:db:3c:95: d0:3b:22:60:86:49:f7:2f:ca:e0:a8:ad:fc:a4:6d: 72:5d:76:5c:e0:14:df:7d:c3:54:25:7d:49:f7:e7: 85:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:35:BA:1C:E9:E8:89:E6:25:BB:0E:84:59:0A:F7:E9:7F:40:9E:76 X509v3 Authority Key Identifier: keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/48DDFB8E8FAF11F0B59F0948C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 169.136.109.0/24 Signature Algorithm: sha256WithRSAEncryption 57:8b:30:68:54:98:b1:f0:37:95:95:18:bf:6e:55:4b:6b:89: 8d:d2:0f:f4:d8:52:43:bc:78:76:a4:8e:1b:f6:53:05:2f:e6: 3c:00:8c:43:b0:9b:7a:ba:ad:56:9d:dd:d4:98:9e:eb:dd:a1: b6:38:8e:f8:2a:6c:9a:e0:a5:43:3c:40:5a:b7:0a:65:9b:f1: e2:ab:7f:0a:9e:04:8d:1d:50:50:4c:b4:cf:5a:da:72:8a:f3: 21:5e:3a:cd:1c:26:1c:10:9f:6f:83:07:e8:eb:35:64:46:5b: 25:e3:7a:58:0d:76:bc:c9:de:61:f4:15:47:7c:52:cf:90:6d: bf:6c:e7:82:2c:d5:4c:2a:0f:3f:00:98:ba:cd:87:48:d2:58: 42:bb:19:99:c3:52:44:98:0e:44:ef:80:d2:9c:b8:86:56:51: 5c:4a:b6:52:d0:25:49:53:39:61:c2:39:4a:73:5b:ba:54:c9: 4f:ee:91:de:6c:87:1a:14:d0:0d:e0:47:08:b3:8f:5b:7c:1e: 14:7d:05:22:75:cf:89:cd:8f:4d:38:7c:88:e5:aa:c5:33:74: c6:62:96:06:b2:8c:77:f4:f1:52:67:3d:94:e8:0f:62:eb:d3: d0:8b:73:a9:47:e6:52:41:5f:76:de:91:a6:e4:7a:e5:4e:cd: 5e:77:3e:38 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDdFMjQ0MzEwRDdBNDU2RUIxMjdCOTI2QzQyRjI2RDc5 RTlBQ0RCODgwHhcNMjUwOTEyMDgwNTQ1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMzZDQ1OS02ZTE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssbDRnRLNvCpSFJgnUoqgUjOzm8ShgLOfaRTnsFznsiJrgodxCe00SLQvfjt YM/S4GlazrKV8Ovo7VZGVwaoB1KHdxFt8UTQ5CzOWdIDmEi7qHmGrNpEQH6DsnLz MJhcV9F+MhFqUEpvcu05ylp3r9cjTssQD3oUhKUsaidmsxkn36WxpQYJXBOr4+7c MD3SQQr1yycXivoHsrdEg20IFXQvGluuh0jygHkvJkbnIIQdOPx0bw4s8osbike8 gbgi6X+mmu+jDHgGDSJB6mo9zZcGk5kRNUh7eJJW/13bPJXQOyJghkn3L8rgqK38 pG1yXXZc4BTffcNUJX1J9+eFjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCY1uhzp 6InmJbsOhFkK9+l/QJ52MB8GA1UdIwQYMBaAFH4kQxDXpFbrEnuSbELybXnprNuI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GN0RGQTcyRUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9maVJERU5la1Z1c1NlNUpzUXZKdGVlbXMy NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZpUkRFTmVrVnVzU2U1SnNRdkp0ZWVtczI0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRjdERkE3MkVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvNDhEREZCOEU4 RkFGMTFGMEI1OUYwOTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACpiG0wDQYJKoZIhvcNAQELBQADggEBAFeLMGhUmLHwN5WV GL9uVUtriY3SD/TYUkO8eHakjhv2UwUv5jwAjEOwm3q6rVad3dSYnuvdobY4jvgq bJrgpUM8QFq3CmWb8eKrfwqeBI0dUFBMtM9a2nKK8yFeOs0cJhwQn2+DB+jrNWRG WyXjelgNdrzJ3mH0FUd8Us+Qbb9s54Is1UwqDz8AmLrNh0jSWEK7GZnDUkSYDkTv gNKcuIZWUVxKtlLQJUlTOWHCOUpzW7pUyU/ukd5shxoU0A3gRwizj1t8HhR9BSJ1 z4nNj004fIjlqsUzdMZilgayjHf08VJnPZToD2Lr09CLc6lH5lJBX3bekabkeuVO zV53Pjg= -----END CERTIFICATE-----Generated at Mon Oct 20 19:55:55 2025 by rpki-client