$ rpki-client -vvf rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/067CE6C895C811F09500A713C4F9AE02.roa File: 067CE6C895C811F09500A713C4F9AE02.roa (raw, json) Hash identifier: F7sXmHSOKEMQAl2AShUlUBMJsajhaZjMOMLbEcGXNOo= Subject key identifier: C2:0B:A8:42:80:0A:EE:9A:5D:D5:8F:1E:20:E2:20:41:96:F6:BB:3C Certificate issuer: /CN=A91578DF/serialNumber=20FC73827274002EB4E4AEE89E20FD0D173FB285 Certificate serial: 05 Authority key identifier: 20:FC:73:82:72:74:00:2E:B4:E4:AE:E8:9E:20:FD:0D:17:3F:B2:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPxzgnJ0AC605K7oniD9DRc_soU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/067CE6C895C811F09500A713C4F9AE02.roa Signing time: Sat 20 Sep 2025 02:19:15 +0000 ROA not before: Sat 20 Sep 2025 02:19:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153765 IP address blocks: 163.227.8.0/23 maxlen: 23 2401:fbe0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.crl rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPxzgnJ0AC605K7oniD9DRc_soU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:31:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91578DF, serialNumber=20FC73827274002EB4E4AEE89E20FD0D173FB285 Validity Not Before: Sep 20 02:19:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68ce0f23-99b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e2:bb:5e:a1:d6:cf:12:22:00:be:5d:54:41: db:a6:3e:0a:87:e0:4b:ad:f0:bb:52:f6:34:e6:05: c9:de:3a:18:87:77:3e:e6:96:a1:f3:98:18:44:6d: 8a:7a:10:1e:f7:db:65:de:74:5a:59:7d:52:1a:56: 2a:9e:47:70:53:10:43:37:07:97:4b:1e:6c:73:5e: 26:02:a6:11:da:f1:1d:28:05:22:fc:b8:ac:18:a0: 75:d7:cb:51:6e:0c:fe:92:fa:25:64:08:e6:76:b1: 58:7e:c4:a5:a4:9b:27:03:76:24:63:12:ab:fc:31: ea:78:ba:c5:cc:8e:6f:6f:1a:40:a0:5a:15:01:72: c1:00:22:0b:c9:dc:43:a7:8f:e7:52:fa:d9:d5:98: ff:ec:92:db:ac:0a:30:6c:2d:e9:0c:a7:64:b0:06: 54:dd:51:98:24:5a:01:4c:53:de:16:e0:2c:4b:47: 82:8b:cb:a7:0f:97:6b:dc:f4:b7:af:54:21:b1:0c: ea:e7:09:1b:a9:d2:bc:9e:a2:bd:ca:9d:60:e5:b8: e2:0c:f2:a9:8f:5b:d2:cd:a6:0d:6e:7c:b6:2a:20: 2c:95:bf:cd:89:c6:83:59:cf:89:87:48:94:df:7d: 25:a0:f6:4c:a8:26:89:18:1f:d5:50:db:f7:ac:db: 53:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:0B:A8:42:80:0A:EE:9A:5D:D5:8F:1E:20:E2:20:41:96:F6:BB:3C X509v3 Authority Key Identifier: keyid:20:FC:73:82:72:74:00:2E:B4:E4:AE:E8:9E:20:FD:0D:17:3F:B2:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/IPxzgnJ0AC605K7oniD9DRc_soU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPxzgnJ0AC605K7oniD9DRc_soU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91578DF/051CF1D495C711F0ABE2FD5FC4F9AE02/067CE6C895C811F09500A713C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.8.0/23 IPv6: 2401:fbe0::/32 Signature Algorithm: sha256WithRSAEncryption 24:1b:b1:4a:b0:8b:f7:b2:56:67:a6:0c:28:e5:7f:83:9a:cf: 20:5e:94:34:d9:db:4d:d8:ef:00:01:28:49:da:9f:46:6d:65: 87:b0:bf:91:dd:ff:3d:77:23:18:e7:6b:fd:66:8a:1a:e2:bb: d7:29:a4:52:a7:20:04:ad:b3:e4:d3:5b:fb:b9:31:40:63:af: db:73:4f:69:b8:bd:3a:13:6f:ad:67:27:f5:48:8d:06:4e:aa: 04:d6:e0:d0:d1:da:b6:a9:9c:34:f0:76:6b:03:c8:b3:fe:ae: de:17:30:a7:56:56:b6:c7:70:a8:23:77:55:32:4f:f8:17:c9: 2b:10:67:cd:80:b8:a2:7e:cf:ff:23:c3:fb:57:30:62:57:09: 30:5f:b4:39:87:0d:cc:f0:29:46:f5:39:b1:99:94:7a:e5:fb: 18:36:79:c2:d0:57:3c:8a:94:6a:15:64:f6:0a:8b:30:59:df: 45:69:7c:d8:9d:bf:fd:e4:2c:4e:69:0a:16:6e:8c:09:30:80: 4a:e9:18:ab:ce:43:12:83:cd:df:65:8e:fa:ec:88:40:6b:c6: 93:75:5a:89:57:5f:4c:db:9b:26:ce:cf:14:8b:b9:c2:8c:e4: 93:42:43:59:48:1f:75:cc:15:df:fa:02:9f:b2:a0:74:00:a8: 1c:e1:cd:38 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NzhERjExMC8GA1UEBRMoMjBGQzczODI3Mjc0MDAyRUI0RTRBRUU4OUUyMEZEMEQx NzNGQjI4NTAeFw0yNTA5MjAwMjE5MTVaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Y2UwZjIzLTk5YjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDN4rteodbPEiIAvl1UQdumPgqH4Eut8LtS9jTmBcneOhiHdz7mlqHzmBhEbYp6 EB7322XedFpZfVIaViqeR3BTEEM3B5dLHmxzXiYCphHa8R0oBSL8uKwYoHXXy1Fu DP6S+iVkCOZ2sVh+xKWkmycDdiRjEqv8Mep4usXMjm9vGkCgWhUBcsEAIgvJ3EOn j+dS+tnVmP/sktusCjBsLekMp2SwBlTdUZgkWgFMU94W4CxLR4KLy6cPl2vc9Lev VCGxDOrnCRup0ryeor3KnWDluOIM8qmPW9LNpg1ufLYqICyVv82JxoNZz4mHSJTf fSWg9kyoJokYH9VQ2/es21M5AgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUwguoQoAK 7ppd1Y8eIOIgQZb2uzwwHwYDVR0jBBgwFoAUIPxzgnJ0AC605K7oniD9DRc/soUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU3OERGLzA1MUNGMUQ0OTVD NzExRjBBQkUyRkQ1RkM0RjlBRTAyL0lQeHpnbkowQUM2MDVLN29uaUQ5RFJjX3Nv VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSVB4emduSjBBQzYwNUs3b25pRDlEUmNfc29VLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NzhERi8wNTFDRjFENDk1QzcxMUYwQUJFMkZENUZDNEY5QUUwMi8wNjdDRTZDODk1 QzgxMUYwOTUwMEE3MTNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAaPjCDANBAIAAjAHAwUAJAH74DANBgkqhkiG9w0BAQsFAAOC AQEAJBuxSrCL97JWZ6YMKOV/g5rPIF6UNNnbTdjvAAEoSdqfRm1lh7C/kd3/PXcj GOdr/WaKGuK71ymkUqcgBK2z5NNb+7kxQGOv23NPabi9OhNvrWcn9UiNBk6qBNbg 0NHatqmcNPB2awPIs/6u3hcwp1ZWtsdwqCN3VTJP+BfJKxBnzYC4on7P/yPD+1cw YlcJMF+0OYcNzPApRvU5sZmUeuX7GDZ5wtBXPIqUahVk9gqLMFnfRWl82J2//eQs TmkKFm6MCTCASukYq85DEoPN32WO+uyIQGvGk3VaiVdfTNubJs7PFIu5wozkk0JD WUgfdcwV3/oCn7KgdACoHOHNOA== -----END CERTIFICATE-----Generated at Mon Oct 20 09:08:57 2025 by rpki-client