$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7D4AEECAA69D11ED970A2E1EC4F9AE02.roa File: 7D4AEECAA69D11ED970A2E1EC4F9AE02.roa (raw, json) Hash identifier: wn/BM8TotG6wUb8Xjf5M9ZHwY2tRk82b/jlK0HvYDSc= Subject key identifier: 2D:60:5D:31:D4:CB:19:EC:34:A2:1B:10:B3:90:2C:97:AB:BC:6E:54 Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 06EC Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7D4AEECAA69D11ED970A2E1EC4F9AE02.roa Signing time: Wed 08 Oct 2025 22:24:19 +0000 ROA not before: Wed 08 Oct 2025 22:24:19 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134359 IP address blocks: 131.203.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1772 (0x6ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Oct 8 22:24:19 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e6e493-84eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:5c:09:71:de:ca:93:68:be:b6:4c:b7:ec:ee: 04:54:26:b2:14:50:cb:34:33:3c:50:ff:5d:5e:94: 16:bb:00:96:87:c8:3c:5a:b5:91:2f:c4:49:ed:df: 53:1d:c0:fb:09:a8:e0:2a:15:04:0b:31:c5:e5:fe: bb:12:72:41:06:f0:53:c2:f4:38:02:c5:b6:f3:a4: 2d:71:37:d8:0e:15:4a:d3:af:48:e3:3a:9b:8e:1e: 0d:78:e1:6f:f9:bc:92:5a:75:af:22:4a:cd:fc:17: a5:26:a5:fd:87:61:3a:81:4d:f8:66:c6:94:1c:11: 67:59:ba:b7:37:63:04:05:cc:1e:09:6f:80:77:8d: 56:ee:9c:12:61:ae:b8:31:cb:68:7f:c1:95:57:94: a9:2b:fa:9c:13:1d:29:1c:74:92:f1:34:d1:b7:f7: 15:65:c2:c5:ab:f7:b7:d7:23:9d:8e:e3:67:58:e5: b8:95:27:0e:6e:62:76:71:b3:38:06:6b:1e:34:ab: 99:a0:76:3f:a5:06:31:2f:26:25:a4:4b:b3:d6:12: 8b:61:70:17:d5:56:15:6b:e4:b5:da:7e:31:24:e1: 20:f9:62:51:d7:0f:35:4a:83:bc:22:4d:2c:62:b3: 94:d8:a2:0b:11:62:f5:cc:7e:a6:5b:a9:c1:6c:d6: ab:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:60:5D:31:D4:CB:19:EC:34:A2:1B:10:B3:90:2C:97:AB:BC:6E:54 X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/7D4AEECAA69D11ED970A2E1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 131.203.131.0/24 Signature Algorithm: sha256WithRSAEncryption 94:3d:49:44:4e:75:2f:5a:96:80:00:c2:ff:88:97:0a:c6:bb: 0d:d6:6d:b5:2f:7d:f8:ce:5d:f1:94:54:a0:f3:91:04:38:a1: 3b:a3:ed:5a:1e:35:bf:18:38:61:2b:35:a3:82:c2:6b:34:10: 86:40:7c:87:b7:da:a5:4f:60:0c:53:ab:13:67:dc:4d:7a:cd: d6:bc:01:28:2a:4b:37:c6:33:1d:32:ae:58:64:af:70:45:ca: 7c:6a:47:2b:18:a8:64:b5:6e:c7:d2:1f:cc:07:a5:88:7a:45: 71:ef:60:6e:62:6c:63:cd:fb:18:ee:a9:bc:c8:22:f8:5f:68: 0b:c3:2c:ea:a6:bd:ae:29:15:d3:e9:ea:55:47:87:2f:b4:80: 09:b6:53:a5:71:f6:77:33:4d:e4:df:5b:5c:9b:ca:60:11:8e: a7:91:41:fc:a6:66:81:5e:35:85:90:13:fa:23:61:6a:18:e9: 6d:27:6b:27:f5:34:be:b3:d6:9d:f8:73:66:41:49:dc:8b:0a: 6c:d8:ed:15:5b:3d:7e:81:25:d9:23:2c:18:7c:2c:dc:51:77: c2:25:1a:da:4d:54:30:19:11:2e:2c:26:52:05:a9:36:98:e7: 8d:f0:c2:bd:56:83:10:5e:6c:3d:6b:80:3a:8f:cb:c9:cb:56: 1c:b3:88:b0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjUxMDA4MjIyNDE5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2ZTQ5My04NGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6FwJcd7Kk2i+tky37O4EVCayFFDLNDM8UP9dXpQWuwCWh8g8WrWRL8RJ7d9T HcD7CajgKhUECzHF5f67EnJBBvBTwvQ4AsW286QtcTfYDhVK069I4zqbjh4NeOFv +bySWnWvIkrN/BelJqX9h2E6gU34ZsaUHBFnWbq3N2MEBcweCW+Ad41W7pwSYa64 Mctof8GVV5SpK/qcEx0pHHSS8TTRt/cVZcLFq/e31yOdjuNnWOW4lScObmJ2cbM4 BmseNKuZoHY/pQYxLyYlpEuz1hKLYXAX1VYVa+S12n4xJOEg+WJR1w81SoO8Ik0s YrOU2KILEWL1zH6mW6nBbNarxQIDAQABo4IClTCCApEwHQYDVR0OBBYEFC1gXTHU yxnsNKIbELOQLJervG5UMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvODY1OEU0NjY4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvN0Q0QUVFQ0FB NjlEMTFFRDk3MEEyRTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACDy4MwDQYJKoZIhvcNAQELBQADggEBAJQ9SUROdS9aloAA wv+IlwrGuw3WbbUvffjOXfGUVKDzkQQ4oTuj7VoeNb8YOGErNaOCwms0EIZAfIe3 2qVPYAxTqxNn3E16zda8ASgqSzfGMx0yrlhkr3BFynxqRysYqGS1bsfSH8wHpYh6 RXHvYG5ibGPN+xjuqbzIIvhfaAvDLOqmva4pFdPp6lVHhy+0gAm2U6Vx9nczTeTf W1ybymARjqeRQfymZoFeNYWQE/ojYWoY6W0nayf1NL6z1p34c2ZBSdyLCmzY7RVb PX6BJdkjLBh8LNxRd8IlGtpNVDAZES4sJlIFqTaY543wwr1WgxBebD1rgDqPy8nL VhyziLA= -----END CERTIFICATE-----Generated at Mon Oct 20 23:11:10 2025 by rpki-client