$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa File: FD6881C4438111ECBC63AC7BC4F9AE02.roa (raw, json) Hash identifier: GSZFQ7HoM2XWvLpHSub+QDoSwUIluxTbKl03CS/A4Mg= Subject key identifier: 76:A4:2C:85:5F:84:08:42:F5:89:43:91:F7:B7:24:81:49:FA:5F:8F Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 077E Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa Signing time: Mon 08 Sep 2025 02:58:43 +0000 ROA not before: Mon 08 Sep 2025 02:58:43 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 62610 IP address blocks: 129.227.143.0/24 maxlen: 24 156.59.73.0/24 maxlen: 24 156.59.123.0/24 maxlen: 24 156.59.146.0/24 maxlen: 24 156.59.184.0/24 maxlen: 24 162.128.82.0/24 maxlen: 24 162.128.83.0/24 maxlen: 24 162.128.84.0/24 maxlen: 24 162.128.85.0/24 maxlen: 24 162.128.86.0/24 maxlen: 24 162.128.87.0/24 maxlen: 24 162.128.90.0/24 maxlen: 24 162.128.91.0/24 maxlen: 24 162.128.92.0/24 maxlen: 24 162.128.93.0/24 maxlen: 24 162.128.94.0/24 maxlen: 24 162.128.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 06:32:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1918 (0x77e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Sep 8 02:58:43 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68be4663-a2c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:34:48:cd:15:59:50:f4:65:e9:cf:cc:5e:84: ba:a3:31:19:16:96:64:42:23:02:f8:f3:cb:cf:aa: 4d:89:9a:e5:fd:17:96:cd:64:ad:59:a2:7e:76:93: af:9d:1c:6a:26:6e:0d:7a:86:c2:85:8c:a2:74:18: 68:40:ee:5b:86:e7:e6:e3:84:21:4a:35:da:ac:0c: 27:29:d6:b5:e5:c8:a9:c8:62:30:8d:4a:4d:7d:b6: 8a:5f:9e:12:97:b9:74:32:8e:70:1d:0a:11:f6:52: 70:91:b0:52:28:24:ba:5f:48:be:cc:a2:b9:61:66: 04:55:c3:15:1f:0f:81:b5:99:6e:77:00:01:2b:9b: 82:b8:33:cb:6c:67:7b:96:dc:29:45:79:73:f3:f4: 73:b7:34:cf:63:af:e6:ef:52:dc:a2:ba:92:41:01: b7:ca:ac:0c:24:b1:09:c0:54:41:5c:6b:24:1f:1d: a5:d2:6f:c4:eb:e3:aa:fe:ee:f0:49:dc:2c:96:c9: 33:bf:f8:bb:77:e7:b3:f2:f2:94:03:02:5c:80:a6: c7:97:7a:84:fa:2d:3e:0f:71:d5:37:cd:76:6c:8b: 84:94:20:01:e2:8a:1f:2b:7a:fe:34:44:cf:5c:57: 3a:98:3c:77:86:79:10:b8:51:89:fb:9b:64:df:b5: 57:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:A4:2C:85:5F:84:08:42:F5:89:43:91:F7:B7:24:81:49:FA:5F:8F X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 129.227.143.0/24 156.59.73.0/24 156.59.123.0/24 156.59.146.0/24 156.59.184.0/24 162.128.82.0-162.128.87.255 162.128.90.0-162.128.95.255 Signature Algorithm: sha256WithRSAEncryption 44:ff:4c:09:62:07:30:aa:6d:89:2b:b0:97:4e:cf:b7:50:34: a4:04:e7:35:54:cc:a9:b2:24:9e:c0:30:82:07:e9:ed:f1:3b: 07:4c:0d:34:05:bd:2e:b6:4d:9f:ae:0a:f5:f8:e4:0e:df:2c: d5:24:da:5b:8a:e7:48:d0:38:df:94:a0:cd:8f:50:5d:10:98: fd:b4:eb:70:b4:2d:b3:70:4e:cf:b1:bc:39:72:d2:d8:c5:26: e1:1c:80:e3:bf:b2:8e:28:09:59:97:00:c5:e8:d8:96:7f:3f: 86:f6:78:c7:f1:ee:35:a5:1e:19:7a:1b:61:04:da:51:fa:c1: a1:d1:4b:9d:88:c2:0c:b4:c0:f5:6e:94:a3:b4:07:99:60:3b: b0:ec:bb:a6:cb:93:3b:94:29:7c:b3:aa:44:62:48:74:81:f8: 75:fd:ff:2e:b8:35:2a:42:a5:7d:81:44:ac:9f:e5:f7:5a:2b: e8:62:e2:4c:3b:ff:b4:52:b0:f0:f9:30:9e:29:d6:a1:5c:0e: ff:ef:11:ea:27:d7:18:c7:49:23:86:b3:e9:1b:55:1b:dc:8b: fd:48:0b:a8:3a:1f:a8:a0:10:c3:33:5b:3a:b5:a2:f7:09:24: ab:3e:7e:30:ae:91:0d:ff:90:19:a4:fe:bc:52:55:54:78:fb: 1b:8f:f6:39 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgICB34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjUwOTA4MDI1ODQzWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJlNDY2My1hMmM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1zRIzRVZUPRl6c/MXoS6ozEZFpZkQiMC+PPLz6pNiZrl/ReWzWStWaJ+dpOv nRxqJm4NeobChYyidBhoQO5bhufm44QhSjXarAwnKda15cipyGIwjUpNfbaKX54S l7l0Mo5wHQoR9lJwkbBSKCS6X0i+zKK5YWYEVcMVHw+BtZludwABK5uCuDPLbGd7 ltwpRXlz8/RztzTPY6/m71LcorqSQQG3yqwMJLEJwFRBXGskHx2l0m/E6+Oq/u7w Sdwslskzv/i7d+ez8vKUAwJcgKbHl3qE+i0+D3HVN812bIuElCAB4oofK3r+NETP XFc6mDx3hnkQuFGJ+5tk37VXlwIDAQABo4ICyTCCAsUwHQYDVR0OBBYEFHakLIVf hAhC9YlDkfe3JIFJ+l+PMB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvRkQ2ODgxQzQ0 MzgxMTFFQ0JDNjNBQzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUwYIKwYBBQUHAQcBAf8E RDBCMEAEAgABMDoDBACB448DBACcO0kDBACcO3sDBACcO5IDBACcO7gwDAMEAaKA UgMEA6KAUDAMAwQBooBaAwQFooBAMA0GCSqGSIb3DQEBCwUAA4IBAQBE/0wJYgcw qm2JK7CXTs+3UDSkBOc1VMypsiSewDCCB+nt8TsHTA00Bb0utk2frgr1+OQO3yzV JNpbiudI0DjflKDNj1BdEJj9tOtwtC2zcE7Psbw5ctLYxSbhHIDjv7KOKAlZlwDF 6NiWfz+G9njH8e41pR4ZehthBNpR+sGh0UudiMIMtMD1bpSjtAeZYDuw7Lumy5M7 lCl8s6pEYkh0gfh1/f8uuDUqQqV9gUSsn+X3WivoYuJMO/+0UrDw+TCeKdahXA7/ 7xHqJ9cYx0kjhrPpG1Ub3Iv9SAuoOh+ooBDDM1s6taL3CSSrPn4wrpEN/5AZpP68 UlVUePsbj/Y5 -----END CERTIFICATE-----Generated at Mon Oct 20 19:12:55 2025 by rpki-client