$ rpki-client -vvf rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/7C22B5E6ACD011F0921D9C7CC4F9AE02.roa File: 7C22B5E6ACD011F0921D9C7CC4F9AE02.roa (raw, json) Hash identifier: q8Z6X3DeoMVrth4Q8UYf9kXqa/5qh/fwxwMPWXC7Eug= Subject key identifier: 17:FF:E0:06:D3:BF:74:32:04:8D:9A:6A:85:04:35:BB:DF:8D:78:68 Certificate issuer: /CN=A91F40E0/serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Certificate serial: 25 Authority key identifier: 89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/7C22B5E6ACD011F0921D9C7CC4F9AE02.roa Signing time: Sun 19 Oct 2025 09:46:28 +0000 ROA not before: Sun 19 Oct 2025 09:46:28 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154132 IP address blocks: 49.213.32.0/24 maxlen: 24 49.213.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:18:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F40E0, serialNumber=897077B71F2C5AEDDE6C1DD49547DCC9952CDABE Validity Not Before: Oct 19 09:46:28 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68f4b374-b733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f8:bf:b1:97:53:3d:58:f7:aa:d0:5d:60:3e: 5d:21:f4:41:ee:57:0f:0e:bb:8e:94:a0:ed:67:e3: ba:1d:74:4f:e2:f0:a6:5b:59:fe:b1:2d:11:19:b8: 0e:e6:c6:c4:d5:60:56:43:b5:87:a3:89:74:01:32: 24:3e:c3:a7:75:3f:53:e3:23:1a:01:ab:14:42:ac: 09:8a:f6:8d:bd:b3:ea:c3:37:7b:15:6e:35:43:73: e9:a9:09:ed:a3:41:68:c3:88:fb:13:59:ee:d9:02: cb:9b:52:95:8e:68:0c:31:ec:08:89:6e:a3:14:0b: ad:1f:12:7e:84:e6:18:4b:a2:23:5e:34:89:97:c0: 99:a1:51:7a:ae:46:fd:7d:e7:5a:ea:dd:d7:52:ed: 5e:ba:09:d4:43:c9:6b:ee:0b:44:ff:fa:0e:59:11: a4:26:91:76:2a:ea:d7:a3:7f:8b:a9:b6:87:0e:6e: c7:86:2f:83:71:1c:d7:76:64:90:c9:9a:35:05:f5: cc:9f:50:42:1b:62:c7:c6:6f:82:79:40:db:74:d5: 9f:db:ce:c6:56:26:9c:0e:20:03:84:c8:97:0d:1f: 24:92:69:17:32:a9:48:ca:87:9d:e7:06:7f:02:0e: 61:a5:d9:df:8a:2f:22:b7:0c:61:dc:d8:ea:87:2c: 83:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:FF:E0:06:D3:BF:74:32:04:8D:9A:6A:85:04:35:BB:DF:8D:78:68 X509v3 Authority Key Identifier: keyid:89:70:77:B7:1F:2C:5A:ED:DE:6C:1D:D4:95:47:DC:C9:95:2C:DA:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/iXB3tx8sWu3ebB3UlUfcyZUs2r4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iXB3tx8sWu3ebB3UlUfcyZUs2r4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F40E0/3FBB5E047B5311F09B54845FC4F9AE02/7C22B5E6ACD011F0921D9C7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.213.32.0/23 Signature Algorithm: sha256WithRSAEncryption 20:07:69:41:84:e8:05:29:e0:45:6b:ea:2e:93:65:cf:d4:70: 24:19:2d:e7:ef:90:2b:a0:e1:63:72:9e:56:8c:af:4b:4a:4a: cf:e3:13:5a:0d:ed:51:f8:25:07:d1:55:a0:43:58:cb:9b:03: 51:9a:66:f7:21:57:df:30:a3:c2:0f:65:aa:04:df:c4:e7:a6: 42:9c:55:40:c1:bc:ec:a9:18:5f:51:1e:d8:ef:4b:91:10:75: 42:43:b1:1a:bb:73:4c:10:4a:a5:2b:75:f5:6b:78:d8:a8:32: 78:de:3f:01:2a:b9:a6:e5:c4:d0:ac:69:5e:00:51:e3:84:7e: 5b:ba:c7:e6:7b:66:d2:30:f4:ca:a7:e0:58:34:67:f2:dc:8c: a2:e0:58:e3:ed:ad:ba:c2:75:3f:53:72:dd:7c:0f:76:e2:a6: 1a:4c:c0:58:7a:c2:c1:00:9f:05:1e:cc:8d:96:9d:a9:70:23: fd:01:40:6b:57:ff:9b:48:3c:41:ad:c9:86:24:3e:f7:6d:a7: 7c:ee:5c:d2:35:d0:8d:1c:ec:a4:44:3c:6f:79:12:52:6b:da: af:e4:e0:e4:c9:01:74:9a:2c:1a:f2:24:e5:ff:75:37:6c:1d: f7:67:7b:3b:a1:eb:13:81:41:f1:62:78:dd:42:73:ae:fe:b8: c4:c3:88:bc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBJTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NDBFMDExMC8GA1UEBRMoODk3MDc3QjcxRjJDNUFFRERFNkMxREQ0OTU0N0RDQzk5 NTJDREFCRTAeFw0yNTEwMTkwOTQ2MjhaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZjRiMzc0LWI3MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCw+L+xl1M9WPeq0F1gPl0h9EHuVw8Ou46UoO1n47oddE/i8KZbWf6xLREZuA7m xsTVYFZDtYejiXQBMiQ+w6d1P1PjIxoBqxRCrAmK9o29s+rDN3sVbjVDc+mpCe2j QWjDiPsTWe7ZAsubUpWOaAwx7AiJbqMUC60fEn6E5hhLoiNeNImXwJmhUXquRv19 51rq3ddS7V66CdRDyWvuC0T/+g5ZEaQmkXYq6tejf4uptocObseGL4NxHNd2ZJDJ mjUF9cyfUEIbYsfGb4J5QNt01Z/bzsZWJpwOIAOEyJcNHySSaRcyqUjKh53nBn8C DmGl2d+KLyK3DGHc2OqHLINlAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUF//gBtO/ dDIEjZpqhQQ1u9+NeGgwHwYDVR0jBBgwFoAUiXB3tx8sWu3ebB3UlUfcyZUs2r4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY0MEUwLzNGQkI1RTA0N0I1 MzExRjA5QjU0ODQ1RkM0RjlBRTAyL2lYQjN0eDhzV3UzZWJCM1VsVWZjeVpVczJy NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaVhCM3R4OHNXdTNlYkIzVWxVZmN5WlVzMnI0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NDBFMC8zRkJCNUUwNDdCNTMxMUYwOUI1NDg0NUZDNEY5QUUwMi83QzIyQjVFNkFD RDAxMUYwOTIxRDlDN0NDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEATHVIDANBgkqhkiG9w0BAQsFAAOCAQEAIAdpQYToBSngRWvq LpNlz9RwJBkt5++QK6DhY3KeVoyvS0pKz+MTWg3tUfglB9FVoENYy5sDUZpm9yFX 3zCjwg9lqgTfxOemQpxVQMG87KkYX1Ee2O9LkRB1QkOxGrtzTBBKpSt19Wt42Kgy eN4/ASq5puXE0KxpXgBR44R+W7rH5ntm0jD0yqfgWDRn8tyMouBY4+2tusJ1P1Ny 3XwPduKmGkzAWHrCwQCfBR7MjZadqXAj/QFAa1f/m0g8Qa3JhiQ+922nfO5c0jXQ jRzspEQ8b3kSUmvar+Tg5MkBdJosGvIk5f91N2wd92d7O6HrE4FB8WJ43UJzrv64 xMOIvA== -----END CERTIFICATE-----Generated at Tue Oct 21 05:07:33 2025 by rpki-client