$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/3204348A383611E6B2282B5DC4F9AE02.roa File: 3204348A383611E6B2282B5DC4F9AE02.roa (raw, json) Hash identifier: aOSpyI8MZjB7JifoHMKo83Bhs4V52OgvV8PHhV/cS3k= Subject key identifier: 05:F9:80:E4:58:C9:DC:7C:FA:EC:6B:81:57:AB:8C:D8:5C:FB:4D:C6 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3660 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/3204348A383611E6B2282B5DC4F9AE02.roa Signing time: Tue 30 Sep 2025 14:40:11 +0000 ROA not before: Tue 30 Sep 2025 14:40:11 +0000 ROA not after: Fri 30 Jan 2026 00:00:00 +0000 asID: 135535 IP address blocks: 61.45.250.0/24 maxlen: 24 2401:4601:250::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13920 (0x3660) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Sep 30 14:40:11 2025 GMT Not After : Jan 30 00:00:00 2026 GMT Subject: CN=68dbebca-5059 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0d:c0:fa:48:6c:01:f9:4b:b3:c2:a7:f8:0c: 26:3e:13:11:b3:32:53:80:fd:46:50:f8:2f:f5:af: 80:3a:8f:58:29:84:ae:63:3d:a0:27:f8:55:db:7d: f4:32:aa:f9:68:01:8f:6c:b8:1c:f0:d2:61:23:93: 9d:ea:1a:59:05:94:7c:18:17:26:f9:de:bb:cd:b3: 19:09:20:12:ba:8e:19:eb:87:11:d6:a2:27:e9:8c: bb:73:11:3d:15:05:78:2d:e1:40:a1:c6:59:7a:21: f3:b3:92:99:59:f8:c8:5d:f6:58:75:e1:26:4f:56: a2:21:79:45:52:7a:e3:c6:1f:2e:b4:5d:e7:80:e6: 8d:8b:f5:54:04:0d:63:e4:b0:22:89:04:c5:f8:a5: 2c:3d:6b:91:17:0a:85:87:fa:26:ff:62:48:7f:b6: de:92:e4:81:09:98:a2:ea:e1:81:8a:ac:01:65:6e: 86:45:a1:b9:2d:d7:fb:6b:16:20:fc:4e:74:35:7f: 64:04:a1:7a:5c:1b:31:80:48:8d:01:1f:9c:b6:01: 4f:78:a6:4b:0c:b5:db:92:99:10:3c:de:d9:c9:27: 5a:7e:a3:10:1f:5d:37:c5:46:f2:c5:de:2d:c9:ca: 72:6c:78:67:9b:3c:7d:0e:a1:c8:79:28:97:93:bd: 9b:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:F9:80:E4:58:C9:DC:7C:FA:EC:6B:81:57:AB:8C:D8:5C:FB:4D:C6 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/3204348A383611E6B2282B5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.250.0/24 IPv6: 2401:4601:250::/48 Signature Algorithm: sha256WithRSAEncryption 27:8f:37:14:69:1e:93:f8:52:86:8f:75:47:a2:e6:17:59:9d: 08:73:b7:3f:1f:ea:79:9d:7f:a2:2f:88:18:f2:f1:70:ef:15: 24:35:03:7e:28:86:0a:4d:5d:c4:48:8f:66:1b:e4:65:d9:0a: cf:8e:a2:4b:d6:4c:a2:03:02:c4:2e:2e:b5:95:37:aa:13:91: 6a:74:7f:cc:ba:5f:7f:38:ae:5d:bd:be:4e:ab:07:a3:b7:72: 45:87:e4:a4:a2:3e:8f:99:68:d7:af:d7:e8:c4:be:f7:9d:76: ee:6f:0c:0e:3d:9b:4b:a3:c5:30:70:55:1e:94:f4:84:a0:a1: bf:42:df:bb:44:28:32:05:25:c0:48:5d:bf:cf:00:a6:cf:92: 84:64:e1:8d:3e:3c:cf:82:52:f8:1a:b7:fc:e3:0b:9b:f5:19: 5f:c8:8d:2c:d0:cc:76:06:50:15:8e:bc:6b:d6:cf:8b:23:8b: 90:2b:9e:4e:2c:e2:c5:0b:72:f3:c4:53:93:2b:4f:49:e1:8a: e0:3f:7f:06:34:99:a2:96:f1:a2:6c:3b:ab:0d:b8:c3:43:14: 96:a7:39:ac:fd:5e:72:bc:e1:28:50:65:d6:0a:97:33:16:a5: da:48:aa:0f:9f:8f:17:97:b4:89:f9:fd:66:3c:f5:32:2e:f2: b9:dc:5e:85 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNmAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwOTMwMTQ0MDExWhcNMjYwMTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRiZWJjYS01MDU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzQ3A+khsAflLs8Kn+AwmPhMRszJTgP1GUPgv9a+AOo9YKYSuYz2gJ/hV2330 Mqr5aAGPbLgc8NJhI5Od6hpZBZR8GBcm+d67zbMZCSASuo4Z64cR1qIn6Yy7cxE9 FQV4LeFAocZZeiHzs5KZWfjIXfZYdeEmT1aiIXlFUnrjxh8utF3ngOaNi/VUBA1j 5LAiiQTF+KUsPWuRFwqFh/om/2JIf7bekuSBCZii6uGBiqwBZW6GRaG5Ldf7axYg /E50NX9kBKF6XBsxgEiNAR+ctgFPeKZLDLXbkpkQPN7ZySdafqMQH103xUbyxd4t ycpybHhnmzx9DqHIeSiXk72bxQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAX5gORY ydx8+uxrgVerjNhc+03GMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvMzIwNDM0OEEz ODM2MTFFNkIyMjgyQjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAA9LfowDwQCAAIwCQMHACQBRgECUDANBgkqhkiG9w0BAQsF AAOCAQEAJ483FGkek/hSho91R6LmF1mdCHO3Px/qeZ1/oi+IGPLxcO8VJDUDfiiG Ck1dxEiPZhvkZdkKz46iS9ZMogMCxC4utZU3qhORanR/zLpffziuXb2+TqsHo7dy RYfkpKI+j5lo16/X6MS+95127m8MDj2bS6PFMHBVHpT0hKChv0Lfu0QoMgUlwEhd v88Aps+ShGThjT48z4JS+Bq3/OMLm/UZX8iNLNDMdgZQFY68a9bPiyOLkCueTizi xQty88RTkytPSeGK4D9/BjSZopbxomw7qw24w0MUlqc5rP1ecrzhKFBl1gqXMxal 2kiqD5+PF5e0ifn9Zjz1Mi7yudxehQ== -----END CERTIFICATE-----Generated at Mon Oct 20 15:52:04 2025 by rpki-client