$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/8D7F07D6555A11F09950400BC4F9AE02.roa File: 8D7F07D6555A11F09950400BC4F9AE02.roa (raw, json) Hash identifier: VyO/b1bsgexjcySJo88au9NbXCRt3WCXp/LF06LVXeE= Subject key identifier: 17:50:0B:EA:A5:9B:D8:F4:AC:0D:5C:08:7B:C3:E6:3B:8B:3F:5D:22 Certificate issuer: /CN=A91406AA/serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Certificate serial: 0802 Authority key identifier: 31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/8D7F07D6555A11F09950400BC4F9AE02.roa Signing time: Wed 08 Oct 2025 22:24:39 +0000 ROA not before: Wed 08 Oct 2025 22:24:39 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 9889 IP address blocks: 123.100.64.0/18 maxlen: 24 202.89.32.0/19 maxlen: 19 203.89.160.0/19 maxlen: 19 203.89.176.0/24 maxlen: 24 203.89.177.0/24 maxlen: 24 2401:5c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 23:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2050 (0x802) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA, serialNumber=315513E54AB0C99B8BCA84042E38358B60DB1B2C Validity Not Before: Oct 8 22:24:39 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e6e4a7-200c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e0:7b:b9:94:17:6d:47:53:c0:f2:63:f4:4e: 09:82:23:51:1e:84:b4:cf:2c:5a:96:73:4c:0f:d6: df:6b:e1:d1:bd:3e:d9:dc:ce:23:e2:5f:d7:8b:7b: 69:22:87:c1:9d:b6:07:6d:3f:76:ac:b9:8f:b7:1b: 14:42:fb:20:c9:1e:c0:dd:f0:6a:87:b7:69:4a:a5: 92:11:1c:73:5f:e7:37:04:66:09:84:c6:b8:b0:d5: b1:70:03:55:ab:73:9e:f8:ea:05:23:f6:9a:f0:4a: 79:8d:4d:76:f9:70:bd:37:d8:6b:49:f5:8f:cd:e1: 52:8e:1c:ad:b2:7a:57:f3:0e:8c:82:a5:91:b8:5c: ef:35:21:d1:ff:0d:72:1e:a0:6c:4c:94:3c:d1:87: e6:08:fb:cb:94:f9:0a:ad:b0:45:66:64:06:ce:04: a7:7a:ec:9d:9e:00:44:ee:fe:cc:fa:40:a2:13:1a: 90:29:7f:6a:64:6f:92:4a:14:4d:b9:2a:b1:e3:9c: 65:d9:a4:e3:97:b6:21:6b:5a:65:87:e7:3a:a3:12: 21:76:6e:a3:bc:d5:88:21:e7:b6:01:ed:b2:1a:8c: 39:b1:ce:9d:5b:5a:61:4e:f6:e3:ab:ed:74:42:a1: c3:1f:cc:32:a8:32:67:3a:f4:5e:2e:44:72:c5:86: 52:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:50:0B:EA:A5:9B:D8:F4:AC:0D:5C:08:7B:C3:E6:3B:8B:3F:5D:22 X509v3 Authority Key Identifier: keyid:31:55:13:E5:4A:B0:C9:9B:8B:CA:84:04:2E:38:35:8B:60:DB:1B:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/MVUT5UqwyZuLyoQELjg1i2DbGyw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MVUT5UqwyZuLyoQELjg1i2DbGyw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8F5BB4F886C111EBBAB3184BC4F9AE02/8D7F07D6555A11F09950400BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.100.64.0/18 202.89.32.0/19 203.89.160.0/19 IPv6: 2401:5c00::/32 Signature Algorithm: sha256WithRSAEncryption 0b:c9:18:65:52:1e:4a:b3:24:3f:a7:e8:8a:79:7d:5c:c0:c7: 9b:8c:2d:1d:c6:89:c6:72:49:26:3b:16:64:80:ae:06:7e:c7: bd:6b:8f:0c:9d:5c:15:bc:de:0c:3e:d2:53:42:5b:60:84:c4: 2e:78:29:a7:27:63:27:5f:8d:54:32:e7:92:71:d5:93:1c:2a: 01:03:04:ec:25:b1:d5:b1:5c:d2:52:37:e4:8f:17:b3:13:b3: de:51:6a:3c:49:3b:9c:4c:52:a7:62:7c:0e:1f:e2:35:25:9a: 7c:92:a1:43:7a:e2:16:b5:61:72:73:f1:e2:cb:92:c8:ab:11: 2a:0a:8d:b7:4d:94:64:54:0f:16:f3:89:89:2c:b3:97:b0:db: fb:e6:6d:8e:77:1f:2b:b9:9e:81:12:e8:4c:4d:44:31:f9:eb: 85:aa:96:7d:b5:19:e5:6e:6a:f2:cf:87:ab:18:05:ad:53:a2: 9c:fb:da:ea:c2:bd:19:73:35:03:4f:6d:7f:0a:16:dc:b7:bf: 88:77:63:aa:22:5a:d7:b7:d3:aa:5c:98:5e:76:41:0e:ac:41: 8b:28:02:31:ab:dc:3e:ea:af:d0:da:63:8f:2a:32:79:67:c7: 1a:11:bb:07:dc:7a:98:c7:12:07:c6:e3:48:7f:33:11:32:06: eb:ba:b8:85 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICCAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDMxNTUxM0U1NEFCMEM5OUI4QkNBODQwNDJFMzgzNThC NjBEQjFCMkMwHhcNMjUxMDA4MjIyNDM5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2ZTRhNy0yMDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOB7uZQXbUdTwPJj9E4JgiNRHoS0zyxalnNMD9bfa+HRvT7Z3M4j4l/Xi3tp IofBnbYHbT92rLmPtxsUQvsgyR7A3fBqh7dpSqWSERxzX+c3BGYJhMa4sNWxcANV q3Oe+OoFI/aa8Ep5jU12+XC9N9hrSfWPzeFSjhytsnpX8w6MgqWRuFzvNSHR/w1y HqBsTJQ80YfmCPvLlPkKrbBFZmQGzgSneuydngBE7v7M+kCiExqQKX9qZG+SShRN uSqx45xl2aTjl7Yha1plh+c6oxIhdm6jvNWIIee2Ae2yGow5sc6dW1phTvbjq+10 QqHDH8wyqDJnOvReLkRyxYZSSQIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFBdQC+ql m9j0rA1cCHvD5juLP10iMB8GA1UdIwQYMBaAFDFVE+VKsMmbi8qEBC44NYtg2xss MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84RjVCQjRGODg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9NVlVUNVVxd3ladUx5b1FFTGpnMWkyRGJH eXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01WVVQ1VXF3eVp1THlvUUVMamcxaTJEYkd5dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvOEY1QkI0Rjg4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvOEQ3RjA3RDY1 NTVBMTFGMDk5NTA0MDBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAZ7ZEADBAXKWSADBAXLWaAwDQQCAAIwBwMFACQBXAAwDQYJ KoZIhvcNAQELBQADggEBAAvJGGVSHkqzJD+n6Ip5fVzAx5uMLR3GicZySSY7FmSA rgZ+x71rjwydXBW83gw+0lNCW2CExC54KacnYydfjVQy55Jx1ZMcKgEDBOwlsdWx XNJSN+SPF7MTs95RajxJO5xMUqdifA4f4jUlmnySoUN64ha1YXJz8eLLksirESoK jbdNlGRUDxbziYkss5ew2/vmbY53Hyu5noES6ExNRDH564Wqln21GeVuavLPh6sY Ba1Topz72urCvRlzNQNPbX8KFty3v4h3Y6oiWte306pcmF52QQ6sQYsoAjGr3D7q r9DaY48qMnlnxxoRuwfcepjHEgfG40h/MxEyBuu6uIU= -----END CERTIFICATE-----Generated at Mon Oct 20 19:27:09 2025 by rpki-client