$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/88978730772311EBB972032EC4F9AE02.roa File: 88978730772311EBB972032EC4F9AE02.roa (raw, json) Hash identifier: HjKqHMfxVfYxTOl9WdJ4/LY87H7R42UxSxjcHgvm5bI= Subject key identifier: 8E:7C:62:3C:26:7C:60:F5:F3:B0:71:84:F3:30:62:8C:80:D8:3C:C7 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3664 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/88978730772311EBB972032EC4F9AE02.roa Signing time: Tue 30 Sep 2025 14:40:14 +0000 ROA not before: Tue 30 Sep 2025 14:40:14 +0000 ROA not after: Fri 30 Jan 2026 00:00:00 +0000 asID: 135539 IP address blocks: 61.45.254.0/24 maxlen: 24 2401:4601:254::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:18:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13924 (0x3664) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Sep 30 14:40:14 2025 GMT Not After : Jan 30 00:00:00 2026 GMT Subject: CN=68dbebcd-8e11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:aa:7f:bf:18:7e:9a:44:c6:27:54:71:1e:74: 42:c1:3a:96:fa:b0:dc:4a:e8:27:9d:dd:f7:f6:a2: 7a:b7:15:14:a8:1b:fa:5b:95:99:cb:f4:50:03:c7: 20:9f:8e:60:6c:3a:32:04:f8:79:44:5a:bb:f6:39: fa:88:e6:26:ec:99:07:0d:63:b3:64:e1:76:4c:fa: a4:61:37:66:08:7b:33:ff:05:43:8a:07:44:7d:71: 7f:67:40:cf:2a:67:20:7e:93:25:22:4d:8a:e2:5f: de:1f:11:b1:f0:c8:ec:23:f9:74:f2:54:24:2c:a4: 13:d6:23:fc:32:c7:09:79:ae:51:92:07:c2:e8:77: 3f:19:b5:e2:88:ba:69:4c:65:a1:58:b9:ba:6b:96: de:93:5d:1b:59:38:16:a4:55:2c:71:82:fa:27:c2: 7c:b6:06:62:8d:26:3e:9d:19:d4:2d:42:c5:3a:17: 95:3d:37:74:43:28:c7:ff:4e:18:a9:51:e7:72:43: 31:5e:fc:05:b9:d7:20:97:b9:bf:56:6b:2b:27:9f: d9:f6:2e:a4:db:ac:60:4c:fa:4d:aa:2e:55:3a:e5: a0:5a:37:bf:79:34:c8:26:a9:e4:49:f9:20:0b:d5: cc:09:3b:8b:aa:18:fc:0f:60:56:36:41:7c:56:ef: 23:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:7C:62:3C:26:7C:60:F5:F3:B0:71:84:F3:30:62:8C:80:D8:3C:C7 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/88978730772311EBB972032EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.254.0/24 IPv6: 2401:4601:254::/48 Signature Algorithm: sha256WithRSAEncryption 06:9c:8d:27:e0:87:59:de:fe:d4:c3:8b:f9:15:75:cd:3a:52: a0:83:05:f8:c6:1b:fb:97:70:cf:f1:63:29:4e:05:d3:e1:2a: dc:e2:95:0f:f9:75:09:a7:4d:54:22:8b:c4:b7:48:ac:2a:29: f3:e5:fe:95:86:de:34:d7:a4:65:56:1b:ab:9e:b0:2f:a7:dd: 65:7e:e4:3e:50:b5:74:6b:df:d1:a8:d1:86:13:24:12:2c:76: c8:c0:ea:28:ce:dd:7c:34:b3:41:1f:3a:72:49:c8:a7:d6:ec: 03:41:24:43:93:32:23:57:8c:db:84:89:74:8b:7d:ae:be:02: 11:aa:ff:3c:3d:22:cb:a4:68:92:f2:7c:54:7a:52:22:a6:aa: 8e:86:f8:ca:6a:d3:21:f1:55:77:5e:a0:80:fd:be:b7:0d:4f: e9:e5:02:63:31:60:74:c2:06:03:50:40:61:d2:81:1b:f7:b6: d6:da:b1:d1:33:9f:d5:c4:07:28:5c:d3:59:fc:7c:22:9c:6b: 60:f5:ca:26:c2:e6:7c:b7:20:1c:4c:60:ff:4e:f0:7d:46:13: 27:fc:58:4c:34:d3:c3:25:c0:cb:f3:6a:ec:17:f8:da:4d:a8: 66:05:72:9c:2e:ce:1e:85:10:c6:9e:6f:ef:77:1c:c0:60:05: f6:a5:86:59 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNmQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwOTMwMTQ0MDE0WhcNMjYwMTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRiZWJjZC04ZTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArKp/vxh+mkTGJ1RxHnRCwTqW+rDcSugnnd339qJ6txUUqBv6W5WZy/RQA8cg n45gbDoyBPh5RFq79jn6iOYm7JkHDWOzZOF2TPqkYTdmCHsz/wVDigdEfXF/Z0DP KmcgfpMlIk2K4l/eHxGx8MjsI/l08lQkLKQT1iP8MscJea5RkgfC6Hc/GbXiiLpp TGWhWLm6a5bek10bWTgWpFUscYL6J8J8tgZijSY+nRnULULFOheVPTd0QyjH/04Y qVHnckMxXvwFudcgl7m/VmsrJ5/Z9i6k26xgTPpNqi5VOuWgWje/eTTIJqnkSfkg C9XMCTuLqhj8D2BWNkF8Vu8jQQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFI58Yjwm fGD187BxhPMwYoyA2DzHMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvODg5Nzg3MzA3 NzIzMTFFQkI5NzIwMzJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAA9Lf4wDwQCAAIwCQMHACQBRgECVDANBgkqhkiG9w0BAQsF AAOCAQEABpyNJ+CHWd7+1MOL+RV1zTpSoIMF+MYb+5dwz/FjKU4F0+Eq3OKVD/l1 CadNVCKLxLdIrCop8+X+lYbeNNekZVYbq56wL6fdZX7kPlC1dGvf0ajRhhMkEix2 yMDqKM7dfDSzQR86cknIp9bsA0EkQ5MyI1eM24SJdIt9rr4CEar/PD0iy6RokvJ8 VHpSIqaqjob4ymrTIfFVd16ggP2+tw1P6eUCYzFgdMIGA1BAYdKBG/e21tqx0TOf 1cQHKFzTWfx8IpxrYPXKJsLmfLcgHExg/07wfUYTJ/xYTDTTwyXAy/Nq7Bf42k2o ZgVynC7OHoUQxp5v73ccwGAF9qWGWQ== -----END CERTIFICATE-----Generated at Mon Oct 20 16:07:29 2025 by rpki-client