$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/11DE1CDA467611EC988CDC09C4F9AE02.roa File: 11DE1CDA467611EC988CDC09C4F9AE02.roa (raw, json) Hash identifier: VRoVKZ5apQPibJfYuezBj0SVEXkfapSpmG0vCNALPFk= Subject key identifier: E5:92:33:64:79:58:F8:11:C8:87:8C:A9:38:FC:E3:2A:BD:CC:98:3F Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 2223 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/11DE1CDA467611EC988CDC09C4F9AE02.roa Signing time: Thu 02 Oct 2025 16:13:46 +0000 ROA not before: Thu 02 Oct 2025 16:13:46 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58955 IP address blocks: 43.230.27.0/24 maxlen: 24 2407:8100:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8739 (0x2223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Oct 2 16:13:46 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68dea4ba-93ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c5:c2:1b:21:d6:db:d5:9f:22:10:70:79:80: 10:94:66:c8:04:23:63:96:83:21:26:df:82:60:40: bd:2c:fc:c2:0c:e5:42:b7:c4:9e:63:cc:93:cf:c3: c4:35:dc:0e:a1:bb:03:a2:ff:94:1d:75:33:9f:6d: 5d:d8:64:aa:04:d3:06:e7:19:65:37:4c:9e:49:7a: 03:64:18:38:af:4a:55:b5:79:6d:f2:15:c6:fe:9f: 25:5c:94:af:9a:e8:f1:1f:87:52:fe:b8:0c:32:44: a3:9f:96:15:c4:95:23:39:a3:0b:38:09:f8:b7:be: ee:dc:43:88:d8:f6:d4:6d:9f:df:fe:b3:8d:a9:cf: 77:bb:5f:ff:bb:60:66:fc:8e:35:b1:cd:48:b7:9f: 59:8b:87:64:c1:91:63:9b:86:b8:16:f9:fe:c6:ac: 67:01:2a:c6:2a:7b:b6:72:b9:49:72:48:1e:bd:32: 12:67:b2:71:3e:22:5e:a7:0f:14:14:fa:46:6f:01: 45:3d:b8:f8:9b:ce:4f:81:9c:07:d3:11:ca:da:62: 37:12:04:0c:51:60:93:1f:28:b0:3f:97:b3:40:20: 5d:1a:df:7b:80:27:1d:a8:4c:37:16:c4:e9:81:e9: ec:73:39:44:17:b8:78:33:2b:6e:f6:da:a3:85:2e: ca:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:92:33:64:79:58:F8:11:C8:87:8C:A9:38:FC:E3:2A:BD:CC:98:3F X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/11DE1CDA467611EC988CDC09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.27.0/24 IPv6: 2407:8100:2::/48 Signature Algorithm: sha256WithRSAEncryption 39:00:04:4c:52:cd:a4:6d:17:68:ab:b5:49:f3:96:b6:70:76: db:a7:e3:b7:72:4c:49:0f:87:73:bd:a5:61:10:7a:63:7b:98: 58:27:b8:98:d1:37:61:de:4d:8b:ff:97:26:fe:d8:ee:1d:c2: b1:de:a2:ff:45:6c:90:31:35:88:b9:f7:c4:4d:11:65:4a:13: 42:7f:77:54:67:e4:02:8b:50:39:a5:db:97:9a:86:67:d3:45: 6b:9a:4a:fd:1b:89:ec:19:03:67:28:93:cd:76:30:6d:f7:9c: cb:95:95:b1:9a:a6:af:3f:c3:f3:ec:b7:99:ca:ab:d2:70:58: 9f:a1:e0:3b:be:91:2f:1e:d0:db:eb:6f:93:be:98:68:2a:3c: 36:dc:69:0c:6b:85:5b:64:d5:c3:a0:a5:b9:51:83:7b:25:27: 00:f2:4c:be:14:37:1f:4a:e6:18:0b:a4:9d:58:1a:57:52:46: 79:2b:71:39:61:32:30:74:70:b0:f8:81:4b:62:0d:50:52:72: 56:ea:a8:6e:73:37:39:cb:d5:18:e9:be:34:46:a3:ec:3f:aa: 94:1d:3a:c5:71:90:c3:c2:a2:45:18:2a:01:7c:e3:d9:ce:80: 58:0e:a2:e1:cb:34:2e:2a:c3:21:78:80:28:4a:6f:3f:1c:a3: c1:c6:af:85 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICIiMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjUxMDAyMTYxMzQ2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRlYTRiYS05M2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0sXCGyHW29WfIhBweYAQlGbIBCNjloMhJt+CYEC9LPzCDOVCt8SeY8yTz8PE NdwOobsDov+UHXUzn21d2GSqBNMG5xllN0yeSXoDZBg4r0pVtXlt8hXG/p8lXJSv mujxH4dS/rgMMkSjn5YVxJUjOaMLOAn4t77u3EOI2PbUbZ/f/rONqc93u1//u2Bm /I41sc1It59Zi4dkwZFjm4a4Fvn+xqxnASrGKnu2crlJckgevTISZ7JxPiJepw8U FPpGbwFFPbj4m85PgZwH0xHK2mI3EgQMUWCTHyiwP5ezQCBdGt97gCcdqEw3FsTp gensczlEF7h4Mytu9tqjhS7KaQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOWSM2R5 WPgRyIeMqTj84yq9zJg/MB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBFQkYvNUY4NEQ3RDhEQjgwMTFFNTlBQjdFRDFFQzRGOUFFMDIvMTFERTFDREE0 Njc2MTFFQzk4OENEQzA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAAr5hswDwQCAAIwCQMHACQHgQAAAjANBgkqhkiG9w0BAQsF AAOCAQEAOQAETFLNpG0XaKu1SfOWtnB226fjt3JMSQ+Hc72lYRB6Y3uYWCe4mNE3 Yd5Ni/+XJv7Y7h3Csd6i/0VskDE1iLn3xE0RZUoTQn93VGfkAotQOaXbl5qGZ9NF a5pK/RuJ7BkDZyiTzXYwbfecy5WVsZqmrz/D8+y3mcqr0nBYn6HgO76RLx7Q2+tv k76YaCo8NtxpDGuFW2TVw6CluVGDeyUnAPJMvhQ3H0rmGAuknVgaV1JGeStxOWEy MHRwsPiBS2INUFJyVuqobnM3OcvVGOm+NEaj7D+qlB06xXGQw8KiRRgqAXzj2c6A WA6i4cs0LirDIXiAKEpvPxyjwcavhQ== -----END CERTIFICATE-----Generated at Mon Oct 20 08:57:17 2025 by rpki-client