$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/4703352E2BC311EEA3EEFA66C4F9AE02.roa File: 4703352E2BC311EEA3EEFA66C4F9AE02.roa (raw, json) Hash identifier: QIkAoP/By0cGmSZKZV7Us1AkVMW2odFekLlf+/kQhNs= Subject key identifier: F0:D1:11:0A:82:B4:BA:29:B0:85:9B:34:32:52:0E:F4:F5:8D:F5:ED Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 365E Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/4703352E2BC311EEA3EEFA66C4F9AE02.roa Signing time: Tue 30 Sep 2025 14:40:08 +0000 ROA not before: Tue 30 Sep 2025 14:40:08 +0000 ROA not after: Fri 30 Jan 2026 00:00:00 +0000 asID: 135533 IP address blocks: 61.45.248.0/24 maxlen: 24 2401:4601:248::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13918 (0x365e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Sep 30 14:40:08 2025 GMT Not After : Jan 30 00:00:00 2026 GMT Subject: CN=68dbebc8-68e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:70:9a:a7:eb:4f:1a:8f:06:94:0f:2b:42:c1: 83:b6:0f:77:63:a5:b4:92:8d:6e:2a:80:74:4c:52: 2b:0c:98:0a:64:3f:19:c5:70:30:64:bb:e1:c8:bf: 76:7b:3d:b8:a1:a4:05:a9:cb:a0:52:55:ef:83:3d: fe:38:41:81:5e:f8:28:d5:bc:70:00:b3:cf:2d:c8: 8a:3c:94:06:02:eb:bd:c7:db:89:06:1e:9e:22:e4: 6c:28:5c:d0:f1:17:90:e0:0e:86:fa:ec:c3:d6:af: e7:5f:7b:f7:05:82:bd:99:15:ae:47:61:ff:d7:9a: 37:f6:50:a5:2f:d7:a1:a2:1d:fd:86:77:ae:cd:a9: ce:b2:19:5d:fb:d4:2a:0e:66:45:ec:d8:ee:05:e7: 43:0c:97:17:53:45:40:a5:b4:b5:61:5e:1c:b8:ac: 92:77:31:07:af:dc:41:73:89:34:ef:f8:2f:78:dd: 6a:9f:b3:53:e7:3b:a2:35:14:03:08:7d:d5:47:01: 36:c9:e8:6d:c3:c9:eb:c3:05:cc:ee:25:1b:64:d8: bf:49:62:66:a6:fb:ab:40:2d:94:7f:8a:63:3a:86: 2a:38:45:ce:87:dd:fa:1a:6a:d0:31:22:0b:e5:fd: 0a:e2:e3:d4:03:18:59:ed:36:31:40:17:5d:b0:b2: d8:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:D1:11:0A:82:B4:BA:29:B0:85:9B:34:32:52:0E:F4:F5:8D:F5:ED X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/4703352E2BC311EEA3EEFA66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.248.0/24 IPv6: 2401:4601:248::/48 Signature Algorithm: sha256WithRSAEncryption 47:3d:db:52:6b:06:b8:0f:28:6a:98:21:d2:ba:21:14:80:44: 24:6f:d6:34:63:bd:c7:3a:97:c1:76:46:2e:6b:6d:7c:fc:95: c6:1a:9b:fd:64:c4:da:9b:65:4b:8b:54:df:91:6a:47:85:5e: b4:78:dc:bc:2a:53:63:59:38:9f:9b:8e:37:c5:92:f3:ff:7f: 8b:94:fc:55:7e:da:e5:8b:95:17:7a:6f:aa:4b:56:6b:62:a0: fd:d4:1d:42:57:a6:8c:2e:38:c6:64:87:b1:a8:50:08:c3:6f: 7e:6c:5d:f6:de:ec:40:2f:31:67:6d:9b:42:5d:d8:9a:fa:05: 17:0c:b0:59:ac:78:20:b7:14:7c:3d:ba:ea:90:e6:ab:66:7c: 84:b9:22:f9:cb:53:c1:44:c5:6e:a2:47:9b:32:6d:c2:a3:4f: 27:af:38:e2:27:e6:44:88:8c:a7:74:f7:8c:b6:87:84:fa:16: d0:4e:2d:c3:94:50:4f:7f:ae:7a:70:2a:e3:cf:b5:80:61:cb: fd:07:b0:8e:30:47:38:29:7f:90:f5:6c:06:a6:2b:82:94:42: 85:11:00:fc:fb:3b:ba:10:a0:05:62:ff:95:18:2b:0c:34:ff: 8d:d6:08:0b:d5:92:20:fb:4a:7d:a6:a9:9d:66:da:a6:55:5b: cc:57:a7:0f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwOTMwMTQ0MDA4WhcNMjYwMTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRiZWJjOC02OGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXCap+tPGo8GlA8rQsGDtg93Y6W0ko1uKoB0TFIrDJgKZD8ZxXAwZLvhyL92 ez24oaQFqcugUlXvgz3+OEGBXvgo1bxwALPPLciKPJQGAuu9x9uJBh6eIuRsKFzQ 8ReQ4A6G+uzD1q/nX3v3BYK9mRWuR2H/15o39lClL9ehoh39hneuzanOshld+9Qq DmZF7NjuBedDDJcXU0VApbS1YV4cuKySdzEHr9xBc4k07/gveN1qn7NT5zuiNRQD CH3VRwE2yehtw8nrwwXM7iUbZNi/SWJmpvurQC2Uf4pjOoYqOEXOh936GmrQMSIL 5f0K4uPUAxhZ7TYxQBddsLLYrwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFPDREQqC tLopsIWbNDJSDvT1jfXtMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvNDcwMzM1MkUy QkMzMTFFRUEzRUVGQTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAA9LfgwDwQCAAIwCQMHACQBRgECSDANBgkqhkiG9w0BAQsF AAOCAQEARz3bUmsGuA8oapgh0rohFIBEJG/WNGO9xzqXwXZGLmttfPyVxhqb/WTE 2ptlS4tU35FqR4VetHjcvCpTY1k4n5uON8WS8/9/i5T8VX7a5YuVF3pvqktWa2Kg /dQdQlemjC44xmSHsahQCMNvfmxd9t7sQC8xZ22bQl3YmvoFFwywWax4ILcUfD26 6pDmq2Z8hLki+ctTwUTFbqJHmzJtwqNPJ6844ifmRIiMp3T3jLaHhPoW0E4tw5RQ T3+uenAq48+1gGHL/QewjjBHOCl/kPVsBqYrgpRChREA/Ps7uhCgBWL/lRgrDDT/ jdYIC9WSIPtKfaapnWbaplVbzFenDw== -----END CERTIFICATE-----Generated at Mon Oct 20 16:07:59 2025 by rpki-client