$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/626A9CD08E4011F0BA941258C4F9AE02.roa File: 626A9CD08E4011F0BA941258C4F9AE02.roa (raw, json) Hash identifier: ua9fDry1CfmumyeQR/958bTqILDuqhNHkvMLIPFdwSI= Subject key identifier: 3F:50:8A:26:F2:1B:05:6B:55:A5:45:F8:5A:1B:18:4F:14:F7:F2:EE Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Certificate serial: 36CA Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/626A9CD08E4011F0BA941258C4F9AE02.roa Signing time: Wed 08 Oct 2025 14:40:55 +0000 ROA not before: Wed 08 Oct 2025 14:40:55 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 6079 IP address blocks: 203.76.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:15:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14026 (0x36ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91510AD, serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Validity Not Before: Oct 8 14:40:55 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e677f7-a0e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:48:59:06:25:e6:48:70:01:d2:16:ff:8b:eb: e5:db:3c:3a:e8:e8:b0:25:b6:32:b3:2b:58:50:41: 6a:5e:f7:18:29:ff:81:ab:c0:31:80:2a:ad:ec:fb: 84:70:91:22:0b:19:8c:3f:c1:95:62:8b:87:06:fd: c5:48:59:71:e2:d8:b6:3f:31:04:99:9f:27:90:7e: e1:f6:d9:9a:2f:f7:4d:48:af:19:65:15:42:ac:1a: 60:25:ef:37:32:20:f9:17:e8:39:94:b9:14:19:6e: 63:2d:7a:9d:0d:b5:a8:fd:23:94:37:20:85:c6:75: 85:6e:4e:5e:72:53:e3:cb:c3:ff:29:66:7b:ed:35: e9:1b:61:11:01:72:89:65:3b:db:72:a5:d1:b0:a9: ab:1d:ab:76:93:47:42:80:80:5a:3f:bf:94:93:2b: e8:54:f1:8c:a6:b2:c6:90:9a:83:e9:9c:ae:22:c3: 95:8f:d6:29:d7:df:32:34:ae:47:75:98:79:55:da: 40:35:a1:0f:d1:16:61:9c:8a:1f:eb:53:22:b7:03: 06:e6:ba:ca:34:2b:35:41:1d:05:52:f5:08:28:11: bc:e6:5d:e6:13:e5:97:91:f2:e6:fc:a7:c7:b8:48: e2:1a:2e:1b:d2:82:11:8c:67:67:5b:69:22:90:cc: 75:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:50:8A:26:F2:1B:05:6B:55:A5:45:F8:5A:1B:18:4F:14:F7:F2:EE X509v3 Authority Key Identifier: keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/626A9CD08E4011F0BA941258C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.76.152.0/21 Signature Algorithm: sha256WithRSAEncryption 8d:54:19:b1:9f:25:a4:a2:8e:74:cb:ec:1d:d9:d9:20:86:20: d6:f2:8b:aa:4d:12:bc:8f:08:33:f9:4c:d3:8c:2f:80:fb:3d: 6f:22:d7:de:bf:05:e6:e4:83:3f:94:92:2b:64:77:78:41:7e: 23:4f:b6:39:d4:d1:8d:d7:07:ae:f4:da:0e:d6:9e:8b:e9:62: 05:f8:04:b1:63:68:3a:72:25:b7:3a:9e:69:82:6d:e3:24:61: 19:a9:1e:f0:87:2f:56:f9:36:b9:aa:76:84:86:1b:39:34:c7: 14:bc:05:50:b2:fb:23:f4:eb:21:fb:a9:b6:c7:fd:da:2d:4f: 4b:b0:7b:f2:1f:70:33:51:d0:2d:75:40:3a:db:03:00:4b:6f: 79:ff:37:c6:42:41:32:e3:41:9d:12:f8:9f:3c:e9:0e:d9:0a: c5:e7:c8:a2:03:2b:3d:5c:9a:8e:bf:65:b2:e4:fc:de:a3:57: ed:b3:88:12:6e:0f:72:79:5f:d2:38:c7:11:98:ac:41:d6:f7: dc:b3:3d:e2:12:f0:f9:0d:53:7e:d3:ef:4a:f3:4f:e0:11:f7: f3:56:80:ef:61:9d:e1:88:84:7f:58:da:40:16:8e:66:94:6e: 81:3c:90:8b:39:9f:2f:15:0f:c7:92:9e:5e:24:11:63:62:9d: 6b:e0:23:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNsowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEwQUQxMTAvBgNVBAUTKEUxRTY5MDhBMTZFQzgxM0RBQTBCRDY0Nzk3QUU5REJE RUIwOTIyNTcwHhcNMjUxMDA4MTQ0MDU1WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU2NzdmNy1hMGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0khZBiXmSHAB0hb/i+vl2zw66OiwJbYysytYUEFqXvcYKf+Bq8AxgCqt7PuE cJEiCxmMP8GVYouHBv3FSFlx4ti2PzEEmZ8nkH7h9tmaL/dNSK8ZZRVCrBpgJe83 MiD5F+g5lLkUGW5jLXqdDbWo/SOUNyCFxnWFbk5eclPjy8P/KWZ77TXpG2ERAXKJ ZTvbcqXRsKmrHat2k0dCgIBaP7+UkyvoVPGMprLGkJqD6ZyuIsOVj9Yp198yNK5H dZh5VdpANaEP0RZhnIof61MitwMG5rrKNCs1QR0FUvUIKBG85l3mE+WXkfLm/KfH uEjiGi4b0oIRjGdnW2kikMx13wIDAQABo4IClTCCApEwHQYDVR0OBBYEFD9Qiiby GwVrVaVF+FobGE8U9/LuMB8GA1UdIwQYMBaAFOHmkIoW7IE9qgvWR5eunb3rCSJX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTBBRC84QjVFNzVGRTFE ODcxMUUyODRCMzgzREYwOEIwMkNEMi80ZWFRaWhic2dUMnFDOVpIbDY2ZHZlc0pJ bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRlYVFpaGJzZ1QycUM5WkhsNjZkdmVzSklsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEwQUQvOEI1RTc1RkUxRDg3MTFFMjg0QjM4M0RGMDhCMDJDRDIvNjI2QTlDRDA4 RTQwMTFGMEJBOTQxMjU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPLTJgwDQYJKoZIhvcNAQELBQADggEBAI1UGbGfJaSijnTL 7B3Z2SCGINbyi6pNEryPCDP5TNOML4D7PW8i196/Bebkgz+Ukitkd3hBfiNPtjnU 0Y3XB6702g7WnovpYgX4BLFjaDpyJbc6nmmCbeMkYRmpHvCHL1b5NrmqdoSGGzk0 xxS8BVCy+yP06yH7qbbH/dotT0uwe/IfcDNR0C11QDrbAwBLb3n/N8ZCQTLjQZ0S +J886Q7ZCsXnyKIDKz1cmo6/ZbLk/N6jV+2ziBJuD3J5X9I4xxGYrEHW99yzPeIS 8PkNU37T70rzT+AR9/NWgO9hneGIhH9Y2kAWjmaUboE8kIs5ny8VD8eSnl4kEWNi nWvgIwA= -----END CERTIFICATE-----Generated at Mon Oct 20 06:50:34 2025 by rpki-client