$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/328EDB76383611E6B2282B5DC4F9AE02.roa File: 328EDB76383611E6B2282B5DC4F9AE02.roa (raw, json) Hash identifier: LVPfSpZ0kKMp22v4SWIIQyCCry6IBJmlcWqFISdxj5A= Subject key identifier: F0:F5:BB:90:84:4D:8F:FA:01:A9:E3:03:B0:D4:82:E1:2F:D1:58:04 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3661 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/328EDB76383611E6B2282B5DC4F9AE02.roa Signing time: Tue 30 Sep 2025 14:40:11 +0000 ROA not before: Tue 30 Sep 2025 14:40:11 +0000 ROA not after: Fri 30 Jan 2026 00:00:00 +0000 asID: 135536 IP address blocks: 61.45.251.0/24 maxlen: 24 2401:4601:251::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:18:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13921 (0x3661) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Sep 30 14:40:11 2025 GMT Not After : Jan 30 00:00:00 2026 GMT Subject: CN=68dbebcb-a0df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:5d:03:2c:7e:c2:e4:7c:eb:5c:47:55:95:9d: f1:26:cd:07:1b:35:3f:e7:4d:74:dd:9c:d2:d4:43: dd:c5:19:a7:07:04:41:08:f2:a4:2d:91:ac:98:43: 57:6b:98:09:5c:33:84:a1:f4:70:63:bb:3d:d3:0d: 9d:d5:58:5f:27:10:de:34:7b:70:60:ed:8a:bf:d9: 37:4b:9e:20:0f:c0:9a:ea:a7:82:33:45:82:ae:d7: 6e:73:33:3a:a9:57:28:de:40:7e:4f:20:60:c6:98: e9:ee:45:f9:aa:54:48:68:ea:90:b2:cf:a0:4f:df: ff:97:af:aa:d5:0a:13:af:71:59:6e:40:f8:32:42: 1b:b5:fd:ba:54:b7:01:17:03:9c:8d:21:ec:fc:c8: 84:d4:56:86:bf:e1:15:bc:77:06:11:bb:9f:e4:5f: a3:7d:32:70:4b:54:73:bd:82:87:16:a8:d0:86:06: 03:22:49:ac:96:d9:3f:d7:0b:d4:27:3d:c0:f2:00: af:f8:5b:57:24:f3:ea:25:94:e4:0a:03:c6:3d:52: 4e:42:8b:44:8f:76:2e:87:dc:af:05:5f:e3:e3:35: 43:c5:92:be:8f:ba:23:b2:2b:ad:44:b5:e7:08:35: 24:26:6b:61:f1:d2:fc:f5:d6:48:56:86:96:95:24: 22:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F5:BB:90:84:4D:8F:FA:01:A9:E3:03:B0:D4:82:E1:2F:D1:58:04 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/328EDB76383611E6B2282B5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.251.0/24 IPv6: 2401:4601:251::/48 Signature Algorithm: sha256WithRSAEncryption 7c:41:55:16:83:ab:0d:d7:b5:22:db:5c:3e:a5:63:b4:4f:0b: 5d:57:8b:80:a8:db:d9:c4:a9:26:8f:6a:44:4f:22:d4:b0:5c: 01:78:e4:75:de:d1:f2:8b:ce:e5:1c:26:49:3d:06:e3:30:4f: 97:31:09:9f:b4:91:8b:28:55:0b:9b:60:39:dd:04:32:de:50: 19:2e:ff:b1:12:5a:26:be:58:c5:27:2f:9b:f5:92:1d:54:e0: 25:a3:92:94:62:6e:9e:2f:37:72:fd:ed:28:de:94:23:ae:4d: e9:fd:09:64:80:be:2b:3a:81:bf:18:34:eb:f6:09:ce:f3:af: 73:35:b2:da:f7:23:ac:17:50:87:fc:07:14:2e:d9:e6:40:29: 67:94:2e:9d:df:98:61:5e:9d:de:f0:ff:8c:14:86:49:3c:8c: 19:ca:9d:bf:c8:26:68:b4:b3:ff:14:5b:42:4d:24:b9:d9:db: 3d:f9:d7:80:1a:7c:e3:a2:0e:50:04:2c:ab:98:a7:79:b1:c0: 5e:fc:52:42:98:9d:6c:ca:82:27:dd:46:07:3d:dd:46:5a:ad: d3:07:55:38:2c:24:9a:c1:f8:20:24:9a:9c:59:e5:20:3d:0e: ca:65:30:00:6f:d8:bb:38:e1:8a:1a:ce:dd:7a:d4:19:b5:4b: 9e:97:af:4e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwOTMwMTQ0MDExWhcNMjYwMTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRiZWJjYi1hMGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArV0DLH7C5HzrXEdVlZ3xJs0HGzU/50103ZzS1EPdxRmnBwRBCPKkLZGsmENX a5gJXDOEofRwY7s90w2d1VhfJxDeNHtwYO2Kv9k3S54gD8Ca6qeCM0WCrtduczM6 qVco3kB+TyBgxpjp7kX5qlRIaOqQss+gT9//l6+q1QoTr3FZbkD4MkIbtf26VLcB FwOcjSHs/MiE1FaGv+EVvHcGEbuf5F+jfTJwS1RzvYKHFqjQhgYDIkmsltk/1wvU Jz3A8gCv+FtXJPPqJZTkCgPGPVJOQotEj3Yuh9yvBV/j4zVDxZK+j7ojsiutRLXn CDUkJmth8dL89dZIVoaWlSQiCQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPD1u5CE TY/6AanjA7DUguEv0VgEMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvMzI4RURCNzYz ODM2MTFFNkIyMjgyQjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAA9LfswDwQCAAIwCQMHACQBRgECUTANBgkqhkiG9w0BAQsF AAOCAQEAfEFVFoOrDde1IttcPqVjtE8LXVeLgKjb2cSpJo9qRE8i1LBcAXjkdd7R 8ovO5RwmST0G4zBPlzEJn7SRiyhVC5tgOd0EMt5QGS7/sRJaJr5YxScvm/WSHVTg JaOSlGJuni83cv3tKN6UI65N6f0JZIC+KzqBvxg06/YJzvOvczWy2vcjrBdQh/wH FC7Z5kApZ5Qund+YYV6d3vD/jBSGSTyMGcqdv8gmaLSz/xRbQk0kudnbPfnXgBp8 46IOUAQsq5inebHAXvxSQpidbMqCJ91GBz3dRlqt0wdVOCwkmsH4ICSanFnlID0O ymUwAG/YuzjhihrO3XrUGbVLnpevTg== -----END CERTIFICATE-----Generated at Mon Oct 20 18:53:02 2025 by rpki-client