$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1F2A/932F85BE9F8F11F0BB974B2DC4F9AE02/DE6BD6189F8F11F08976857BC4F9AE02.roa File: DE6BD6189F8F11F08976857BC4F9AE02.roa (raw, json) Hash identifier: z3P+QwqIAVJ2kDpSoqWTAoJ/rezdLH3YQLa5NxQBxaQ= Subject key identifier: 1D:3F:B4:D5:6E:1D:E3:4E:B5:1C:09:86:0E:24:88:0F:E2:02:40:97 Certificate issuer: /CN=A91F1F2A/serialNumber=6B118C158E0B8D9B984ECDDC78B244802E470547 Certificate serial: 02 Authority key identifier: 6B:11:8C:15:8E:0B:8D:9B:98:4E:CD:DC:78:B2:44:80:2E:47:05:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/axGMFY4LjZuYTs3ceLJEgC5HBUc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1F2A/932F85BE9F8F11F0BB974B2DC4F9AE02/DE6BD6189F8F11F08976857BC4F9AE02.roa Signing time: Thu 02 Oct 2025 13:01:11 +0000 ROA not before: Thu 02 Oct 2025 13:01:11 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 151335 IP address blocks: 43.225.128.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1F2A/932F85BE9F8F11F0BB974B2DC4F9AE02/axGMFY4LjZuYTs3ceLJEgC5HBUc.crl rsync://rpki.apnic.net/member_repository/A91F1F2A/932F85BE9F8F11F0BB974B2DC4F9AE02/axGMFY4LjZuYTs3ceLJEgC5HBUc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/axGMFY4LjZuYTs3ceLJEgC5HBUc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:37:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1F2A, serialNumber=6B118C158E0B8D9B984ECDDC78B244802E470547 Validity Not Before: Oct 2 13:01:11 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68de7797-da8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:46:ac:d4:16:ad:bf:42:8f:60:6f:6c:e1:ef: 56:fe:69:75:71:7a:fa:18:a7:54:ec:f7:8f:e3:a0: 45:8b:c2:e7:a1:7a:2b:0b:27:e7:b0:d6:f1:c9:8a: b3:bb:38:b6:9e:5d:5d:34:78:61:f5:28:42:09:a8: 77:d4:59:f4:4c:f7:66:0d:23:e6:c2:a5:ba:9b:e2: c2:b6:6a:e1:8c:89:b9:f8:ee:73:e3:1c:18:36:e1: 12:b1:23:1c:1d:4b:b3:05:87:50:48:26:a4:bd:ca: 78:c1:d0:2e:d4:23:80:cf:26:fb:58:e3:55:dd:c3: a7:89:43:d4:7b:ce:9c:e7:12:08:97:1f:de:0d:92: 1b:62:74:14:46:7f:87:10:eb:8f:e0:8f:3d:09:2b: 7d:56:b6:70:71:15:cf:e3:a2:c3:56:2b:dd:b3:a4: 30:14:ad:dd:60:ef:38:7e:9e:b5:90:e8:df:b5:fa: 6c:75:e4:43:93:74:fa:ef:1c:8e:11:94:e6:61:16: 6e:79:37:05:88:09:e1:d5:2b:b0:52:ca:1e:1b:ff: 41:31:be:56:c0:09:ff:62:61:d4:ad:88:b7:8a:6b: 97:b0:7f:70:ce:dd:d2:a1:50:b7:4c:af:b0:68:c8: c4:20:be:fa:91:cf:7f:4c:f0:b0:66:cf:08:6f:4f: e2:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:3F:B4:D5:6E:1D:E3:4E:B5:1C:09:86:0E:24:88:0F:E2:02:40:97 X509v3 Authority Key Identifier: keyid:6B:11:8C:15:8E:0B:8D:9B:98:4E:CD:DC:78:B2:44:80:2E:47:05:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1F2A/932F85BE9F8F11F0BB974B2DC4F9AE02/axGMFY4LjZuYTs3ceLJEgC5HBUc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/axGMFY4LjZuYTs3ceLJEgC5HBUc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1F2A/932F85BE9F8F11F0BB974B2DC4F9AE02/DE6BD6189F8F11F08976857BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.128.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:0a:5c:78:f2:17:a8:a0:bc:eb:07:a4:5a:16:44:13:a0:90: 9b:f4:cd:7a:2b:c4:63:c5:8d:cf:9c:30:63:89:7e:10:c3:c3: 22:95:5e:e2:11:d7:a2:bc:d3:ca:1f:b2:ef:df:0b:e8:e7:e7: a1:aa:f8:a4:56:bd:56:ad:59:03:67:b8:3d:ff:eb:14:e5:84: d4:de:04:c9:8f:2b:94:d7:25:b9:4a:58:b2:7a:05:cb:8c:55: 65:4e:53:3e:10:a7:fb:91:24:fe:9f:46:bc:5c:30:e4:b2:84: 70:b1:56:31:9a:5b:49:2c:d1:5b:36:57:38:9e:e8:55:94:dc: 5e:2c:f3:da:db:12:13:ec:c4:20:02:df:76:07:d9:ad:9b:e2: 93:c5:0a:f0:bd:fe:15:fc:c3:32:73:e6:72:dc:4c:1e:2f:6a: e3:0b:6b:8f:ac:23:48:11:64:67:ac:98:3e:29:d5:29:98:b4: 48:98:f7:83:92:a7:52:51:03:f9:b7:d3:80:4a:6e:a6:35:65: 87:eb:4d:6e:5d:70:2f:32:db:33:07:1d:bc:8f:52:01:e7:c4: 9e:2a:28:75:80:bf:93:c0:a8:e0:d6:02:fd:b2:10:84:a3:1a: aa:88:fe:5e:7b:04:09:34:3b:c6:ee:f3:f8:44:16:55:b9:8c: 8a:fa:67:d9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MUYyQTExMC8GA1UEBRMoNkIxMThDMTU4RTBCOEQ5Qjk4NEVDRERDNzhCMjQ0ODAy RTQ3MDU0NzAeFw0yNTEwMDIxMzAxMTFaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZGU3Nzk3LWRhOGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKRqzUFq2/Qo9gb2zh71b+aXVxevoYp1Ts94/joEWLwueheisLJ+ew1vHJirO7 OLaeXV00eGH1KEIJqHfUWfRM92YNI+bCpbqb4sK2auGMibn47nPjHBg24RKxIxwd S7MFh1BIJqS9ynjB0C7UI4DPJvtY41Xdw6eJQ9R7zpznEgiXH94NkhtidBRGf4cQ 64/gjz0JK31WtnBxFc/josNWK92zpDAUrd1g7zh+nrWQ6N+1+mx15EOTdPrvHI4R lOZhFm55NwWICeHVK7BSyh4b/0ExvlbACf9iYdStiLeKa5ewf3DO3dKhULdMr7Bo yMQgvvqRz39M8LBmzwhvT+JbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHT+01W4d 4061HAmGDiSID+ICQJcwHwYDVR0jBBgwFoAUaxGMFY4LjZuYTs3ceLJEgC5HBUcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYxRjJBLzkzMkY4NUJFOUY4 RjExRjBCQjk3NEIyREM0RjlBRTAyL2F4R01GWTRMalp1WVRzM2NlTEpFZ0M1SEJV Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYXhHTUZZNExqWnVZVHMzY2VMSkVnQzVIQlVjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MUYyQS85MzJGODVCRTlGOEYxMUYwQkI5NzRCMkRDNEY5QUUwMi9ERTZCRDYxODlG OEYxMUYwODk3Njg1N0JDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEASvhgDANBgkqhkiG9w0BAQsFAAOCAQEAmgpcePIXqKC86wek WhZEE6CQm/TNeivEY8WNz5wwY4l+EMPDIpVe4hHXorzTyh+y798L6Ofnoar4pFa9 Vq1ZA2e4Pf/rFOWE1N4EyY8rlNcluUpYsnoFy4xVZU5TPhCn+5Ek/p9GvFww5LKE cLFWMZpbSSzRWzZXOJ7oVZTcXizz2tsSE+zEIALfdgfZrZvik8UK8L3+FfzDMnPm ctxMHi9q4wtrj6wjSBFkZ6yYPinVKZi0SJj3g5KnUlED+bfTgEpupjVlh+tNbl1w LzLbMwcdvI9SAefEnioodYC/k8Co4NYC/bIQhKMaqoj+XnsECTQ7xu7z+EQWVbmM ivpn2Q== -----END CERTIFICATE-----Generated at Mon Oct 20 06:41:10 2025 by rpki-client