$ rpki-client -vvf rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/02272F2E896711F0B42EC968C4F9AE02.roa File: 02272F2E896711F0B42EC968C4F9AE02.roa (raw, json) Hash identifier: rm/ey7rx0cPi5GCGr0/kJPWz5Y07ETlHSyUfOYZc1xo= Subject key identifier: 9D:8F:80:91:4A:B6:FF:29:B8:2A:66:2A:99:6E:12:49:43:C4:4E:F3 Certificate issuer: /CN=A91599B5/serialNumber=B52AE1836C61193DEA8BA5BE9D71B8CBB3430398 Certificate serial: 1F Authority key identifier: B5:2A:E1:83:6C:61:19:3D:EA:8B:A5:BE:9D:71:B8:CB:B3:43:03:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSrhg2xhGT3qi6W-nXG4y7NDA5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/02272F2E896711F0B42EC968C4F9AE02.roa Signing time: Thu 04 Sep 2025 08:13:16 +0000 ROA not before: Thu 04 Sep 2025 08:13:16 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 154103 IP address blocks: 202.1.28.0/24 maxlen: 24 2402:1e20::/32 maxlen: 36 2402:1e20:1000::/44 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/tSrhg2xhGT3qi6W-nXG4y7NDA5g.crl rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/tSrhg2xhGT3qi6W-nXG4y7NDA5g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSrhg2xhGT3qi6W-nXG4y7NDA5g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:13:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31 (0x1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91599B5, serialNumber=B52AE1836C61193DEA8BA5BE9D71B8CBB3430398 Validity Not Before: Sep 4 08:13:16 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68b94a1c-2c27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:48:e8:2d:8d:99:79:f4:14:39:1d:e7:f2:62: c1:f2:4d:bb:2f:2c:17:54:fd:56:92:b5:bb:46:7b: b7:13:a6:35:fd:da:00:c1:b2:f3:65:64:b4:48:e8: e1:40:79:c7:51:d6:37:1d:96:27:67:ac:12:6e:ba: 60:ae:2d:bb:d4:00:0f:75:92:d9:f0:0f:61:1b:12: fa:34:a1:40:44:2e:49:2a:57:bd:86:0d:9a:d8:0d: f6:f1:17:b0:fd:a3:25:f2:e4:96:8c:b3:f4:aa:b0: 3c:73:b9:fb:10:9a:1e:52:f8:9c:f8:ac:c7:b3:60: 59:bf:23:a0:5b:f7:93:17:64:78:08:31:3c:0c:d1: 56:a7:49:3e:3c:02:b7:44:6e:0f:28:19:a0:b9:9d: ee:0b:be:73:02:d9:54:80:fb:b0:91:f5:50:c9:40: f6:3a:0b:40:e0:e3:9a:8f:a6:02:09:2a:03:1f:4b: 60:47:63:3d:b4:89:0e:07:da:be:27:79:89:29:13: cb:a0:7e:7b:1c:e2:12:0f:a8:b4:ff:be:d5:25:61: 37:85:b6:1e:1e:49:a4:c7:e1:78:db:99:bb:6d:d0: 0c:87:87:9c:37:b4:28:4f:bf:02:80:fb:cc:79:41: 00:51:fd:74:25:a2:55:8f:3a:89:0e:6f:da:0d:37: e1:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:8F:80:91:4A:B6:FF:29:B8:2A:66:2A:99:6E:12:49:43:C4:4E:F3 X509v3 Authority Key Identifier: keyid:B5:2A:E1:83:6C:61:19:3D:EA:8B:A5:BE:9D:71:B8:CB:B3:43:03:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/tSrhg2xhGT3qi6W-nXG4y7NDA5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSrhg2xhGT3qi6W-nXG4y7NDA5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/02272F2E896711F0B42EC968C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.1.28.0/24 IPv6: 2402:1e20::/32 Signature Algorithm: sha256WithRSAEncryption 1d:bb:4d:f4:16:1d:75:19:c6:46:eb:8c:d8:8b:86:9e:be:88: 6f:62:1e:bd:41:71:1d:78:08:3f:a5:fe:85:a7:70:0e:00:09: 2c:cd:33:40:2a:a8:b6:18:ea:4f:8f:6c:c5:3a:2c:46:51:76: b2:de:46:87:66:9d:9a:ca:b5:7c:8f:18:cd:ee:d2:6c:59:d6: 96:39:c9:4f:a9:3b:72:73:ef:8c:32:6c:85:08:c1:12:cf:f2: a1:2e:79:92:15:45:22:55:4b:00:a9:48:07:94:87:85:52:e5: 61:be:59:ed:39:e6:58:58:b7:0a:e9:37:3b:7b:59:6f:bf:55: 61:65:05:c8:3c:c5:f0:d5:79:45:83:d2:b2:83:79:43:3d:c5: 48:fe:db:8a:2e:0e:19:fb:fc:6a:16:4e:49:dc:e9:b7:5c:8b: d3:ed:b0:2b:73:89:97:3b:a2:ee:8c:d9:b0:eb:a7:16:fd:c6: 3f:dd:ca:0b:a7:e4:78:8f:04:6f:29:6c:e1:a0:21:73:6d:ce: a3:3e:b9:58:16:0f:58:a9:4c:37:d6:24:19:62:f2:b4:a7:58: f8:c2:5d:3b:d5:5a:33:79:05:11:f6:3c:5d:52:89:37:f6:2c: 4c:44:9a:76:5c:87:f3:6d:74:d7:39:2d:6e:b7:26:a1:a9:1a: e9:cb:cd:32 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBHzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 OTlCNTExMC8GA1UEBRMoQjUyQUUxODM2QzYxMTkzREVBOEJBNUJFOUQ3MUI4Q0JC MzQzMDM5ODAeFw0yNTA5MDQwODEzMTZaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Yjk0YTFjLTJjMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCiSOgtjZl59BQ5HefyYsHyTbsvLBdU/VaStbtGe7cTpjX92gDBsvNlZLRI6OFA ecdR1jcdlidnrBJuumCuLbvUAA91ktnwD2EbEvo0oUBELkkqV72GDZrYDfbxF7D9 oyXy5JaMs/SqsDxzufsQmh5S+Jz4rMezYFm/I6Bb95MXZHgIMTwM0VanST48ArdE bg8oGaC5ne4LvnMC2VSA+7CR9VDJQPY6C0Dg45qPpgIJKgMfS2BHYz20iQ4H2r4n eYkpE8ugfnsc4hIPqLT/vtUlYTeFth4eSaTH4Xjbmbtt0AyHh5w3tChPvwKA+8x5 QQBR/XQlolWPOokOb9oNN+EpAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUnY+AkUq2 /ym4KmYqmW4SSUPETvMwHwYDVR0jBBgwFoAUtSrhg2xhGT3qi6W+nXG4y7NDA5gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU5OUI1L0IyMjY2RkQyNkRF NDExRjBCRTAyRjk2MUM0RjlBRTAyL3RTcmhnMnhoR1QzcWk2Vy1uWEc0eTdOREE1 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdFNyaGcyeGhHVDNxaTZXLW5YRzR5N05EQTVnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTlCNS9CMjI2NkZEMjZERTQxMUYwQkUwMkY5NjFDNEY5QUUwMi8wMjI3MkYyRTg5 NjcxMUYwQjQyRUM5NjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAMoBHDANBAIAAjAHAwUAJAIeIDANBgkqhkiG9w0BAQsFAAOC AQEAHbtN9BYddRnGRuuM2IuGnr6Ib2IevUFxHXgIP6X+hadwDgAJLM0zQCqothjq T49sxTosRlF2st5Gh2admsq1fI8Yze7SbFnWljnJT6k7cnPvjDJshQjBEs/yoS55 khVFIlVLAKlIB5SHhVLlYb5Z7TnmWFi3Cuk3O3tZb79VYWUFyDzF8NV5RYPSsoN5 Qz3FSP7bii4OGfv8ahZOSdzpt1yL0+2wK3OJlzui7ozZsOunFv3GP93KC6fkeI8E byls4aAhc23Ooz65WBYPWKlMN9YkGWLytKdY+MJdO9VaM3kFEfY8XVKJN/YsTESa dlyH82101zktbrcmoaka6cvNMg== -----END CERTIFICATE-----Generated at Tue Oct 21 08:04:36 2025 by rpki-client