$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/5FA1BF8802DD11EE86865A23C4F9AE02.roa File: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (raw, json) Hash identifier: b5uDJzQg7fsmYh3ElST7vyFH7ynXatbdm3FZHCbVe+4= Subject key identifier: 9D:C8:07:39:38:30:36:E8:67:D7:E4:FC:AE:6C:3D:D7:07:7D:C8:16 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 0600 Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/5FA1BF8802DD11EE86865A23C4F9AE02.roa Signing time: Mon 15 Sep 2025 14:14:07 +0000 ROA not before: Mon 15 Sep 2025 14:14:07 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 138627 IP address blocks: 113.30.129.0/24 maxlen: 24 150.195.215.0/24 maxlen: 24 150.195.216.0/24 maxlen: 24 202.75.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 00:40:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1536 (0x600) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Sep 15 14:14:07 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68c81f2e-65a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b6:5c:6b:e3:17:61:74:b1:55:d6:7a:f3:15: 1c:97:da:d3:93:a4:47:f2:66:6f:71:b5:84:a3:7f: bf:a8:31:ae:74:96:0b:f2:d0:a8:93:a5:d6:60:8f: 4d:40:80:15:72:4e:bb:6e:8a:2c:4a:24:64:e3:47: 46:c2:87:fc:76:85:87:f6:f4:a5:27:ab:1b:6f:2b: 6c:de:8e:16:0a:d9:36:b3:4e:67:97:a1:9a:e9:e4: 50:7d:ee:22:e0:82:6a:af:85:e7:a2:7d:c4:34:8c: ae:c0:0f:c3:50:db:48:80:7a:0e:b1:5b:2d:3f:23: 21:7d:35:e6:62:81:39:d9:ee:9c:b1:a9:67:9c:66: e9:6a:76:45:69:16:1b:b6:23:5b:15:53:87:38:45: 88:52:75:22:dd:07:77:17:10:2b:e0:00:ab:25:3e: 50:a7:50:17:cc:ee:55:a0:66:4a:d6:50:eb:6a:e7: 39:23:b4:a2:bf:70:81:6d:86:81:75:0a:69:5a:2e: 63:90:7f:e7:94:65:59:4c:3f:89:2e:8e:2d:bf:03: 12:3b:0e:33:25:b6:2c:47:f2:96:55:f2:34:7d:a4: 37:62:e5:05:bd:5e:78:ce:65:c3:2c:a8:71:76:bb: 40:4a:47:1a:8a:6c:e6:ba:77:eb:de:94:40:27:a2: c7:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:C8:07:39:38:30:36:E8:67:D7:E4:FC:AE:6C:3D:D7:07:7D:C8:16 X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/5FA1BF8802DD11EE86865A23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.30.129.0/24 150.195.215.0-150.195.216.255 202.75.245.0/24 Signature Algorithm: sha256WithRSAEncryption 28:12:bf:ea:e8:b9:4b:12:45:d4:f2:8a:82:7c:4d:1d:21:3e: 74:cd:57:b2:f1:52:cb:c5:3b:e7:40:f7:14:ba:8f:f2:72:8f: c1:c3:9a:b6:5f:fe:cf:a8:6b:fa:08:d2:81:6f:fc:5b:12:3c: 47:87:92:63:9e:4d:8d:33:c7:58:a5:9c:28:1e:fd:eb:d1:8b: a5:0f:66:13:e6:49:0b:d8:60:f5:d9:8d:c4:84:cb:45:64:a2: f8:79:2c:fd:cd:53:da:75:25:ac:58:fb:fc:60:86:da:79:3b: 97:76:55:7b:77:a2:8f:8a:10:ec:56:1b:75:ef:37:85:2d:80: 98:17:d9:1d:f8:3e:d8:cf:c4:6a:70:97:10:10:01:0f:0c:50: 2d:28:ec:db:d9:63:b6:d9:a7:2f:f7:93:57:2f:d9:47:ef:1d: b4:1c:7c:2c:db:c4:e0:63:a4:f1:21:bc:7c:cc:f5:2e:3f:0b: 0e:aa:c9:49:5e:4b:fe:29:ed:75:42:22:84:45:14:e1:f1:41: fb:38:d4:45:ea:65:f6:b1:5e:5b:2c:31:aa:8e:c7:4d:98:fb: fd:0e:29:e7:8e:2f:4d:06:02:af:86:2c:5c:de:6f:32:5c:f5: 66:3d:2e:e1:9b:49:b2:fc:6e:47:8a:74:5f:2f:91:71:c0:15: 71:bc:d8:0d -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICBgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjUwOTE1MTQxNDA3WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM4MWYyZS02NWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbZca+MXYXSxVdZ68xUcl9rTk6RH8mZvcbWEo3+/qDGudJYL8tCok6XWYI9N QIAVck67boosSiRk40dGwof8doWH9vSlJ6sbbyts3o4WCtk2s05nl6Ga6eRQfe4i 4IJqr4Xnon3ENIyuwA/DUNtIgHoOsVstPyMhfTXmYoE52e6csalnnGbpanZFaRYb tiNbFVOHOEWIUnUi3Qd3FxAr4ACrJT5Qp1AXzO5VoGZK1lDrauc5I7Siv3CBbYaB dQppWi5jkH/nlGVZTD+JLo4tvwMSOw4zJbYsR/KWVfI0faQ3YuUFvV54zmXDLKhx drtASkcaimzmunfr3pRAJ6LHUwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFJ3IBzk4 MDboZ9fk/K5sPdcHfcgWMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTREM0QvQjAyMDJEMzJEOEI5MTFFQkFCQzFGNDg1QzRGOUFFMDIvNUZBMUJGODgw MkREMTFFRTg2ODY1QTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBABxHoEwDAMEAJbD1wMEAJbD2AMEAMpL9TANBgkqhkiG9w0B AQsFAAOCAQEAKBK/6ui5SxJF1PKKgnxNHSE+dM1XsvFSy8U750D3FLqP8nKPwcOa tl/+z6hr+gjSgW/8WxI8R4eSY55NjTPHWKWcKB7969GLpQ9mE+ZJC9hg9dmNxITL RWSi+Hks/c1T2nUlrFj7/GCG2nk7l3ZVe3eij4oQ7FYbde83hS2AmBfZHfg+2M/E anCXEBABDwxQLSjs29ljttmnL/eTVy/ZR+8dtBx8LNvE4GOk8SG8fMz1Lj8LDqrJ SV5L/intdUIihEUU4fFB+zjURepl9rFeWywxqo7HTZj7/Q4p544vTQYCr4YsXN5v Mlz1Zj0u4ZtJsvxuR4p0Xy+RccAVcbzYDQ== -----END CERTIFICATE-----Generated at Mon Oct 20 14:00:53 2025 by rpki-client