$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5F649D88F27E11EE8704D12FC4F9AE02.roa File: 5F649D88F27E11EE8704D12FC4F9AE02.roa (raw, json) Hash identifier: 9qbnU5NoZnRKr5UON4q3pztK39xd0U7HOmGKLDSw1XM= Subject key identifier: 4D:F1:29:7C:A7:C9:5A:8D:16:B0:41:23:0D:AE:3D:4A:88:28:D6:E3 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 221E Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5F649D88F27E11EE8704D12FC4F9AE02.roa Signing time: Thu 02 Oct 2025 16:13:42 +0000 ROA not before: Thu 02 Oct 2025 16:13:42 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 16509 IP address blocks: 43.230.24.0/24 maxlen: 24 43.230.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 16:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8734 (0x221e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF, serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Oct 2 16:13:42 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68dea4b6-b77e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5e:9d:da:4b:fa:90:c5:1b:59:7e:88:54:aa: 7f:a9:06:3c:54:d0:54:8d:18:16:4b:1b:e0:1d:96: e0:94:b5:66:68:4e:b2:79:f6:10:6b:1f:59:1e:34: 41:80:24:a4:73:1d:d0:75:ac:dd:69:86:0b:ce:ec: dd:ae:e0:59:9c:4a:f8:ce:3e:7a:a5:d6:3e:c9:8d: b3:bc:1d:bc:9b:85:78:e9:64:18:42:f3:1b:70:fb: 19:be:ff:83:32:8f:e3:fd:2f:79:6e:d7:34:1d:d5: 83:c3:9c:10:5a:82:b4:9a:26:3c:5b:f0:93:ea:0b: f2:35:f4:ff:df:aa:bc:55:1d:a5:06:64:75:7e:4c: c3:ad:4d:22:08:5c:08:60:d1:2c:88:29:d0:33:79: d0:06:78:95:48:b7:fa:24:84:3b:11:38:34:8c:9f: e8:61:31:3b:48:21:bb:33:c3:0b:79:b3:8b:70:94: 49:ff:bc:23:be:cb:23:a9:50:d9:4a:8f:89:27:5c: ab:05:39:d5:0e:ad:0d:04:14:09:60:54:21:b6:fd: f4:ba:45:db:52:c6:83:e8:6c:94:5b:25:f0:14:ee: 94:84:ca:f3:84:05:1a:05:13:ae:fc:6a:48:5a:e9: 77:56:57:ac:3f:66:ac:54:29:e6:ae:58:30:63:81: 42:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:F1:29:7C:A7:C9:5A:8D:16:B0:41:23:0D:AE:3D:4A:88:28:D6:E3 X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5F649D88F27E11EE8704D12FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.24.0/23 Signature Algorithm: sha256WithRSAEncryption 98:a8:03:6d:1a:c9:bf:f1:10:ef:e3:e9:17:e0:4c:4a:49:d2: 96:29:c2:ef:94:3f:e0:64:5e:5d:db:b7:b3:38:9b:1f:b0:c8: eb:f8:30:37:10:64:d4:3a:df:06:95:c2:41:33:f1:ab:4f:d7: fb:9a:e1:96:1c:27:9e:cd:65:03:5d:97:ca:f5:b9:6f:00:29: a3:7a:6f:dc:a5:31:37:5b:93:51:e7:e3:0a:1c:12:10:7a:fc: 6e:c2:6a:cb:9b:e1:55:6e:ef:a0:2b:df:0a:35:b3:69:7d:02: d9:49:53:f2:e1:c2:a6:49:e1:e4:cb:f0:36:d8:db:a0:5d:7e: ab:7b:12:f2:6c:5a:5c:fb:47:ca:f5:d7:01:08:09:84:00:9a: 7d:87:f0:f4:10:1c:6e:f3:c9:4f:ff:e3:9d:dc:c7:dd:c9:d7: 5d:f7:c9:9d:fc:43:3b:68:17:15:02:20:77:50:0b:31:72:88: b0:81:88:76:1c:9f:b4:34:8f:59:1c:85:d5:96:37:94:97:b6: 63:3d:4b:42:fb:49:c2:89:bb:72:ee:b5:28:98:f7:77:4a:fc: 28:ca:56:cf:cc:00:81:1c:03:b3:52:1e:0c:05:03:15:ea:d9: cf:4b:7d:a0:96:4c:84:25:96:d5:4d:58:d5:c2:ab:db:48:51: 96:4a:1d:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIh4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjUxMDAyMTYxMzQyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRlYTRiNi1iNzdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3V6d2kv6kMUbWX6IVKp/qQY8VNBUjRgWSxvgHZbglLVmaE6yefYQax9ZHjRB gCSkcx3QdazdaYYLzuzdruBZnEr4zj56pdY+yY2zvB28m4V46WQYQvMbcPsZvv+D Mo/j/S95btc0HdWDw5wQWoK0miY8W/CT6gvyNfT/36q8VR2lBmR1fkzDrU0iCFwI YNEsiCnQM3nQBniVSLf6JIQ7ETg0jJ/oYTE7SCG7M8MLebOLcJRJ/7wjvssjqVDZ So+JJ1yrBTnVDq0NBBQJYFQhtv30ukXbUsaD6GyUWyXwFO6UhMrzhAUaBROu/GpI Wul3VlesP2asVCnmrlgwY4FCjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE3xKXyn yVqNFrBBIw2uPUqIKNbjMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBFQkYvNUY4NEQ3RDhEQjgwMTFFNTlBQjdFRDFFQzRGOUFFMDIvNUY2NDlEODhG MjdFMTFFRTg3MDREMTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEr5hgwDQYJKoZIhvcNAQELBQADggEBAJioA20ayb/xEO/j 6RfgTEpJ0pYpwu+UP+BkXl3bt7M4mx+wyOv4MDcQZNQ63waVwkEz8atP1/ua4ZYc J57NZQNdl8r1uW8AKaN6b9ylMTdbk1Hn4wocEhB6/G7Casub4VVu76Ar3wo1s2l9 AtlJU/LhwqZJ4eTL8DbY26Bdfqt7EvJsWlz7R8r11wEICYQAmn2H8PQQHG7zyU// 453cx93J1133yZ38QztoFxUCIHdQCzFyiLCBiHYcn7Q0j1kchdWWN5SXtmM9S0L7 ScKJu3LutSiY93dK/CjKVs/MAIEcA7NSHgwFAxXq2c9LfaCWTIQlltVNWNXCq9tI UZZKHSo= -----END CERTIFICATE-----Generated at Mon Oct 20 09:30:23 2025 by rpki-client