$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7BD18B9EA69D11ED970A2E1EC4F9AE02.roa File: 7BD18B9EA69D11ED970A2E1EC4F9AE02.roa (raw, json) Hash identifier: MaAskf0TRxO3f2o7SBOUwJQzY2TsNLzK4Ofbrs+UHf4= Subject key identifier: E4:7F:27:BB:E9:F0:DA:F9:51:85:1E:6D:94:E7:93:02:C6:B0:31:29 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 06EA Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7BD18B9EA69D11ED970A2E1EC4F9AE02.roa Signing time: Wed 08 Oct 2025 22:24:17 +0000 ROA not before: Wed 08 Oct 2025 22:24:17 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 132264 IP address blocks: 131.203.8.0/21 maxlen: 24 131.203.16.0/22 maxlen: 24 131.203.20.0/22 maxlen: 24 131.203.24.0/22 maxlen: 24 131.203.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1770 (0x6ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Oct 8 22:24:17 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e6e491-793d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:c6:66:5b:57:8e:b7:a4:33:c1:c2:72:a3:ea: 1c:fa:00:f4:b1:5a:58:8a:45:3a:f0:75:82:a9:6f: 6a:e5:f7:5c:80:b7:13:3c:b7:93:37:ff:c4:e5:1e: a2:f5:ff:7f:14:32:6e:b1:d8:fe:d8:41:0e:f0:fe: a1:74:94:40:d5:a2:47:81:91:74:d8:a8:dd:63:97: 2a:d8:63:f5:e4:ca:3d:49:7f:60:c7:27:56:8f:95: f5:42:91:26:f6:9d:1a:16:f5:9f:78:a7:ea:aa:90: a7:6d:c3:fd:82:bb:66:31:4d:b5:58:d0:67:81:60: 06:e9:74:04:2f:2b:d1:c8:1c:ed:66:52:a5:5b:7f: 8d:47:4b:15:a7:4d:c6:04:6e:01:69:7c:8a:e8:bf: 33:d5:c0:96:db:35:c2:a1:7f:6b:88:91:bd:df:cc: ef:dc:89:bc:c9:cc:ec:56:b1:78:66:91:07:bb:de: 6f:37:b8:78:35:7b:f8:7d:c6:27:6a:46:39:f0:7e: be:a9:1c:99:bf:e3:2f:ec:ec:0a:0e:56:da:d7:29: d7:86:81:b7:cf:35:e5:3c:a3:4d:fc:e8:96:cc:fe: e5:da:84:45:0d:1b:ca:2f:65:3f:74:5a:d0:c5:2f: 03:c4:31:2e:7e:c4:b4:95:23:36:9f:e1:0a:fd:a5: 48:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:7F:27:BB:E9:F0:DA:F9:51:85:1E:6D:94:E7:93:02:C6:B0:31:29 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7BD18B9EA69D11ED970A2E1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 131.203.8.0-131.203.27.255 131.203.160.0/21 Signature Algorithm: sha256WithRSAEncryption b7:0f:85:af:99:02:70:44:b7:22:1f:84:5d:8f:8d:4e:06:18: 56:fb:52:7f:af:50:a8:04:39:26:ae:6c:74:c9:21:57:60:d9: 61:be:40:f1:3c:d3:bc:ef:10:5b:9b:22:ca:c3:2f:25:f8:40: 3b:fb:f4:0f:a2:4b:09:8b:b4:ec:94:a3:c2:18:f0:ab:2c:d0: 2c:21:22:a4:56:8d:7a:ee:eb:cc:be:80:74:8c:08:9f:37:ce: 76:f2:35:c7:cb:3b:c6:52:43:d6:e5:49:70:34:2a:5f:ee:6f: 6b:b7:a8:0e:4c:1c:96:1b:43:08:e9:03:82:68:2d:01:f8:9a: 90:2c:de:b0:ed:00:b7:e5:53:b3:85:be:dc:b4:d8:2a:3b:aa: b8:3b:e3:70:36:42:fb:41:25:ee:bb:6c:00:95:e1:64:b8:30: 65:be:81:4e:cc:ae:7d:b0:08:06:68:53:7c:ec:3a:78:21:3a: e6:0c:13:eb:d3:9b:a8:e2:a9:f9:67:08:2f:04:be:a7:98:52: cf:db:aa:20:2f:31:f6:85:f6:ee:30:c3:eb:12:20:37:09:71: 98:7b:c2:a2:5b:4f:a3:4d:1b:86:09:e6:f6:c3:64:60:c4:0d: d8:bf:e6:60:e9:14:34:dc:a2:32:50:94:86:2f:7f:8d:82:49: cd:d8:0f:f8 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBuowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjUxMDA4MjIyNDE3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2ZTQ5MS03OTNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA98ZmW1eOt6QzwcJyo+oc+gD0sVpYikU68HWCqW9q5fdcgLcTPLeTN//E5R6i 9f9/FDJusdj+2EEO8P6hdJRA1aJHgZF02KjdY5cq2GP15Mo9SX9gxydWj5X1QpEm 9p0aFvWfeKfqqpCnbcP9grtmMU21WNBngWAG6XQELyvRyBztZlKlW3+NR0sVp03G BG4BaXyK6L8z1cCW2zXCoX9riJG938zv3Im8yczsVrF4ZpEHu95vN7h4NXv4fcYn akY58H6+qRyZv+Mv7OwKDlba1ynXhoG3zzXlPKNN/OiWzP7l2oRFDRvKL2U/dFrQ xS8DxDEufsS0lSM2n+EK/aVI5QIDAQABo4ICozCCAp8wHQYDVR0OBBYEFOR/J7vp 8Nr5UYUebZTnkwLGsDEpMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvODY1OEU0NjY4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvN0JEMThCOUVB NjlEMTFFRDk3MEEyRTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEA4PLCAMEAoPLGAMEA4PLoDANBgkqhkiG9w0BAQsFAAOC AQEAtw+Fr5kCcES3Ih+EXY+NTgYYVvtSf69QqAQ5Jq5sdMkhV2DZYb5A8TzTvO8Q W5siysMvJfhAO/v0D6JLCYu07JSjwhjwqyzQLCEipFaNeu7rzL6AdIwInzfOdvI1 x8s7xlJD1uVJcDQqX+5va7eoDkwclhtDCOkDgmgtAfiakCzesO0At+VTs4W+3LTY KjuquDvjcDZC+0El7rtsAJXhZLgwZb6BTsyufbAIBmhTfOw6eCE65gwT69ObqOKp +WcILwS+p5hSz9uqIC8x9oX27jDD6xIgNwlxmHvColtPo00bhgnm9sNkYMQN2L/m YOkUNNyiMlCUhi9/jYJJzdgP+A== -----END CERTIFICATE-----Generated at Mon Oct 20 22:43:51 2025 by rpki-client