$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/505CFB7465D211EFB4348E63C4F9AE02.roa File: 505CFB7465D211EFB4348E63C4F9AE02.roa (raw, json) Hash identifier: psfjW3LbfsqjUORRddKlOh9lmY1USdZrWQkZoOrVeIo= Subject key identifier: 29:49:17:0E:D0:5B:E8:84:7A:78:36:3F:44:49:6D:32:96:DF:2C:EA Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 078E Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/505CFB7465D211EFB4348E63C4F9AE02.roa Signing time: Wed 24 Sep 2025 03:33:28 +0000 ROA not before: Wed 24 Sep 2025 03:33:28 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4229 IP address blocks: 162.128.0.0/23 maxlen: 23 162.128.2.0/23 maxlen: 24 162.128.41.0/24 maxlen: 24 162.128.42.0/24 maxlen: 24 162.128.226.0/24 maxlen: 24 162.128.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 06:32:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1934 (0x78e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Sep 24 03:33:28 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68d36687-552a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b9:9a:58:9a:a0:13:24:fe:2e:69:20:5c:30: a8:f8:22:97:59:5b:9c:9a:7b:0e:d3:f0:8a:9f:2a: a6:ab:f0:a7:51:1f:32:48:0a:2b:93:38:8e:b4:22: d9:e3:d1:49:08:af:90:9f:f3:44:1f:ab:06:f8:98: 0a:93:6e:16:de:4a:f8:85:19:8f:18:cb:6d:2c:f6: 87:67:13:39:7b:bf:c7:48:c8:cc:82:15:04:df:47: 46:b7:a8:25:8c:b6:f1:71:ea:d2:b4:fa:ca:51:87: 9d:72:80:9e:44:8c:d8:cc:a6:68:cb:4d:35:55:4a: 34:be:be:b9:3c:6b:74:b6:4f:c6:39:d8:24:9d:2a: 54:a1:8b:61:60:6a:a7:fb:4d:27:67:d1:2d:c5:95: 77:36:96:95:a1:b8:24:cb:fd:15:89:cd:31:9e:b1: 7a:73:01:e7:e2:ce:1a:98:4a:b5:7b:a8:0d:6c:4e: 55:1f:81:ee:4e:e3:5b:ab:33:d0:fc:bf:6b:e4:06: 07:fc:20:3c:8a:90:be:2b:c6:17:bb:67:70:71:60: 1f:91:3b:b4:9e:a1:54:0d:44:e3:b0:aa:30:8a:51: 60:77:5a:4a:5b:fa:e2:04:67:55:3c:a6:e5:a2:59: b6:8f:5a:68:2d:83:3e:47:b5:6d:c5:58:82:e3:2b: d6:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:49:17:0E:D0:5B:E8:84:7A:78:36:3F:44:49:6D:32:96:DF:2C:EA X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/505CFB7465D211EFB4348E63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 162.128.0.0/22 162.128.41.0-162.128.42.255 162.128.226.0/23 Signature Algorithm: sha256WithRSAEncryption 17:b6:ab:d2:13:3e:40:3d:7f:c2:c7:0f:b2:aa:65:eb:59:89: 95:32:8b:89:e4:7a:7c:5f:7c:b2:37:fa:2c:dc:69:76:8a:3a: 82:97:42:f9:08:8e:88:12:68:9d:ca:10:24:4b:12:84:30:43: 37:51:77:e3:14:ee:e7:dd:09:de:14:5f:81:16:cf:d7:d5:52: da:98:49:d9:36:2a:0c:fc:cf:ae:a8:81:ed:48:97:31:5d:47: df:f7:b4:30:8b:97:c0:95:89:59:e5:90:47:2f:16:63:df:77: 5b:7a:b1:85:72:df:13:3a:05:ca:4e:a2:0a:c1:f7:a5:52:9a: 97:51:38:a7:8a:12:90:fc:40:c4:91:fd:d6:77:75:5c:9f:5d: af:b3:83:c6:bd:72:e6:40:8a:5b:16:a5:85:9d:88:e1:9e:9c: 0f:9a:d7:b8:d9:37:27:d8:1f:de:5e:2d:7e:e0:b6:11:42:6f: f7:26:d7:d4:08:70:e6:78:3f:fb:65:54:0a:c4:96:33:1c:e7: 8e:a2:75:69:63:1e:0f:da:b8:d5:7e:e0:07:d7:2b:c4:6a:e9: a9:de:64:08:6d:73:f2:7b:d3:20:d7:b5:4f:97:af:7d:bb:4d: ac:de:9a:20:d4:7c:33:73:37:8a:a3:f3:af:fb:5d:41:ca:5f: be:86:17:5f -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICB44wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjUwOTI0MDMzMzI4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQzNjY4Ny01NTJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvLmaWJqgEyT+LmkgXDCo+CKXWVucmnsO0/CKnyqmq/CnUR8ySAorkziOtCLZ 49FJCK+Qn/NEH6sG+JgKk24W3kr4hRmPGMttLPaHZxM5e7/HSMjMghUE30dGt6gl jLbxcerStPrKUYedcoCeRIzYzKZoy001VUo0vr65PGt0tk/GOdgknSpUoYthYGqn +00nZ9EtxZV3NpaVobgky/0Vic0xnrF6cwHn4s4amEq1e6gNbE5VH4HuTuNbqzPQ /L9r5AYH/CA8ipC+K8YXu2dwcWAfkTu0nqFUDUTjsKowilFgd1pKW/riBGdVPKbl olm2j1poLYM+R7VtxViC4yvWuQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFClJFw7Q W+iEeng2P0RJbTKW3yzqMB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvNTA1Q0ZCNzQ2 NUQyMTFFRkI0MzQ4RTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBAKigAAwDAMEAKKAKQMEAKKAKgMEAaKA4jANBgkqhkiG9w0B AQsFAAOCAQEAF7ar0hM+QD1/wscPsqpl61mJlTKLieR6fF98sjf6LNxpdoo6gpdC +QiOiBJoncoQJEsShDBDN1F34xTu590J3hRfgRbP19VS2phJ2TYqDPzPrqiB7UiX MV1H3/e0MIuXwJWJWeWQRy8WY993W3qxhXLfEzoFyk6iCsH3pVKal1E4p4oSkPxA xJH91nd1XJ9dr7ODxr1y5kCKWxalhZ2I4Z6cD5rXuNk3J9gf3l4tfuC2EUJv9ybX 1Ahw5ng/+2VUCsSWMxznjqJ1aWMeD9q41X7gB9crxGrpqd5kCG1z8nvTINe1T5ev fbtNrN6aINR8M3M3iqPzr/tdQcpfvoYXXw== -----END CERTIFICATE-----Generated at Mon Oct 20 19:28:44 2025 by rpki-client