$ rpki-client -vvf rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/5B39EBD693B511EF8AEA6810C4F9AE02.roa File: 5B39EBD693B511EF8AEA6810C4F9AE02.roa (raw, json) Hash identifier: fbK2ihQUPhJ5r2ba5rzkEzE0phvIKmf+DwHm9D+Afg4= Subject key identifier: 1F:F0:92:EA:B9:2F:C3:D3:1F:08:5A:57:DF:00:EE:86:F3:65:4F:AD Certificate issuer: /CN=A91338F0/serialNumber=8317FC7A82B0EE86520DF18FFD57295116DA5DF2 Certificate serial: A1 Authority key identifier: 83:17:FC:7A:82:B0:EE:86:52:0D:F1:8F:FD:57:29:51:16:DA:5D:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gxf8eoKw7oZSDfGP_VcpURbaXfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/5B39EBD693B511EF8AEA6810C4F9AE02.roa Signing time: Tue 19 Aug 2025 07:14:59 +0000 ROA not before: Tue 19 Aug 2025 07:14:59 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 59241 IP address blocks: 203.56.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/gxf8eoKw7oZSDfGP_VcpURbaXfI.crl rsync://rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/gxf8eoKw7oZSDfGP_VcpURbaXfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gxf8eoKw7oZSDfGP_VcpURbaXfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:35:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91338F0, serialNumber=8317FC7A82B0EE86520DF18FFD57295116DA5DF2 Validity Not Before: Aug 19 07:14:59 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a42473-ac77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:26:0e:39:d9:cc:36:d5:33:20:1b:79:11:9f: 62:36:8c:93:2b:75:e5:d9:92:f8:1f:a6:0c:91:26: b0:29:49:59:e6:e2:e0:6c:45:b0:d8:3f:cf:37:ac: 2a:67:ec:b5:4d:c7:2d:5a:47:d3:23:d9:c0:d5:c1: a1:5a:a1:bd:90:2a:89:2f:dd:92:52:7e:5a:7c:db: f7:84:14:86:b4:c5:86:f9:10:0c:1e:9b:92:44:eb: b1:02:b4:41:8f:2c:72:96:51:2e:59:88:d9:a7:50: 97:4e:64:4f:99:9e:36:d1:6b:b2:fc:4a:94:5f:26: e3:4b:4f:cc:5d:27:b3:74:00:e1:cc:e0:24:fb:86: 6b:6e:11:13:3c:28:42:32:58:34:53:55:12:fd:d4: 04:8d:0b:ca:b5:20:c6:bd:59:06:fd:9d:3b:8b:43: 01:83:36:4d:6f:47:e0:3f:19:84:bc:12:05:7c:26: 15:4a:54:f2:cf:8a:ca:e2:64:ff:c9:86:fa:55:74: fd:b6:66:5c:26:1a:8c:b4:f7:85:25:52:f3:46:b3: 71:10:78:ff:1c:54:3b:73:b8:49:a7:d9:a4:0b:d7: 31:67:44:c9:0b:49:03:85:ca:34:5d:13:27:26:9d: 3e:ae:04:dd:8e:21:38:d0:57:4f:b3:35:0c:9e:97: 66:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F0:92:EA:B9:2F:C3:D3:1F:08:5A:57:DF:00:EE:86:F3:65:4F:AD X509v3 Authority Key Identifier: keyid:83:17:FC:7A:82:B0:EE:86:52:0D:F1:8F:FD:57:29:51:16:DA:5D:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/gxf8eoKw7oZSDfGP_VcpURbaXfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gxf8eoKw7oZSDfGP_VcpURbaXfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91338F0/0A771A3693AE11EF8F48AB43C4F9AE02/5B39EBD693B511EF8AEA6810C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.56.90.0/23 Signature Algorithm: sha256WithRSAEncryption 4b:c6:c0:0a:6c:fd:1a:a0:30:6e:b3:8f:95:d6:8b:63:c4:56: d2:cb:83:e1:da:00:ee:07:c3:01:0c:a5:60:d3:82:fe:94:f1: 7d:50:09:e2:a1:7f:30:21:43:d5:70:ab:e6:be:fe:d7:9d:e0: 6b:54:f7:5b:bb:cc:23:f8:f7:29:69:9f:7b:ae:f2:7a:8a:e3: 66:17:8d:90:61:28:b8:1d:68:16:ab:a4:6d:fc:d7:54:68:39: 2a:65:e2:68:18:f3:91:7e:ec:42:6b:f0:d3:fc:46:98:0e:5c: c2:e0:58:8b:06:43:6f:03:a1:a0:ee:49:46:e9:9f:6e:bb:6f: 91:8d:cc:29:31:96:dc:c5:52:77:fd:62:7f:a5:2e:3d:78:e4: d8:e1:6b:7e:89:ba:83:e2:d6:3f:b8:58:d8:37:b1:51:17:e5: 2c:8a:93:e9:bb:06:4b:e6:38:f4:0e:f7:31:42:ba:ab:ea:fe: cd:e6:e5:a5:67:5f:c3:a6:3b:a4:4a:cb:f8:b9:10:f1:f5:c6: 68:ea:5d:9c:f3:f9:81:e9:08:0f:56:bc:f6:f6:50:8c:b0:76: 24:8d:b8:62:e3:c2:07:59:f3:09:dd:47:9b:ef:e9:a6:7c:23: c7:18:63:52:58:bb:4a:e6:5b:05:3b:12:26:c7:36:54:57:ab: 1b:9a:cc:dd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzM4RjAxMTAvBgNVBAUTKDgzMTdGQzdBODJCMEVFODY1MjBERjE4RkZENTcyOTUx MTZEQTVERjIwHhcNMjUwODE5MDcxNDU5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE0MjQ3My1hYzc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3CYOOdnMNtUzIBt5EZ9iNoyTK3Xl2ZL4H6YMkSawKUlZ5uLgbEWw2D/PN6wq Z+y1TcctWkfTI9nA1cGhWqG9kCqJL92SUn5afNv3hBSGtMWG+RAMHpuSROuxArRB jyxyllEuWYjZp1CXTmRPmZ420Wuy/EqUXybjS0/MXSezdADhzOAk+4ZrbhETPChC Mlg0U1US/dQEjQvKtSDGvVkG/Z07i0MBgzZNb0fgPxmEvBIFfCYVSlTyz4rK4mT/ yYb6VXT9tmZcJhqMtPeFJVLzRrNxEHj/HFQ7c7hJp9mkC9cxZ0TJC0kDhco0XRMn Jp0+rgTdjiE40FdPszUMnpdmMwIDAQABo4IClTCCApEwHQYDVR0OBBYEFB/wkuq5 L8PTHwhaV98A7obzZU+tMB8GA1UdIwQYMBaAFIMX/HqCsO6GUg3xj/1XKVEW2l3y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMzhGMC8wQTc3MUEzNjkz QUUxMUVGOEY0OEFCNDNDNEY5QUUwMi9neGY4ZW9LdzdvWlNEZkdQX1ZjcFVSYmFY ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d4Zjhlb0t3N29aU0RmR1BfVmNwVVJiYVhmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzM4RjAvMEE3NzFBMzY5M0FFMTFFRjhGNDhBQjQzQzRGOUFFMDIvNUIzOUVCRDY5 M0I1MTFFRjhBRUE2ODEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLOFowDQYJKoZIhvcNAQELBQADggEBAEvGwAps/RqgMG6z j5XWi2PEVtLLg+HaAO4HwwEMpWDTgv6U8X1QCeKhfzAhQ9Vwq+a+/ted4GtU91u7 zCP49ylpn3uu8nqK42YXjZBhKLgdaBarpG3811RoOSpl4mgY85F+7EJr8NP8RpgO XMLgWIsGQ28DoaDuSUbpn267b5GNzCkxltzFUnf9Yn+lLj145Njha36JuoPi1j+4 WNg3sVEX5SyKk+m7BkvmOPQO9zFCuqvq/s3m5aVnX8OmO6RKy/i5EPH1xmjqXZzz +YHpCA9WvPb2UIywdiSNuGLjwgdZ8wndR5vv6aZ8I8cYY1JYu0rmWwU7EibHNlRX qxuazN0= -----END CERTIFICATE-----Generated at Sun Aug 24 00:46:13 2025 by rpki-client