$ rpki-client -vvf rpki.apnic.net/member_repository/A91678AA/37C817FC974411F0804A5918C4F9AE02/ACA405589E7011F083978F1AC4F9AE02.roa File: ACA405589E7011F083978F1AC4F9AE02.roa (raw, json) Hash identifier: YmblmfroJEPUhmWz7o6a8qxz0P00eBgbcYH8HDNSw40= Subject key identifier: D5:76:97:78:A8:AF:15:FE:47:F9:90:3B:06:A4:A4:77:A0:2C:7D:90 Certificate issuer: /CN=A91678AA/serialNumber=9850EAFFED3DA2845D51F095AC11245088D5623F Certificate serial: 0A Authority key identifier: 98:50:EA:FF:ED:3D:A2:84:5D:51:F0:95:AC:11:24:50:88:D5:62:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFDq_-09ooRdUfCVrBEkUIjVYj8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91678AA/37C817FC974411F0804A5918C4F9AE02/ACA405589E7011F083978F1AC4F9AE02.roa Signing time: Wed 01 Oct 2025 02:45:22 +0000 ROA not before: Wed 01 Oct 2025 02:45:22 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136914 IP address blocks: 202.133.64.0/23 maxlen: 24 2402:26a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91678AA/37C817FC974411F0804A5918C4F9AE02/mFDq_-09ooRdUfCVrBEkUIjVYj8.crl rsync://rpki.apnic.net/member_repository/A91678AA/37C817FC974411F0804A5918C4F9AE02/mFDq_-09ooRdUfCVrBEkUIjVYj8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFDq_-09ooRdUfCVrBEkUIjVYj8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:31:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91678AA, serialNumber=9850EAFFED3DA2845D51F095AC11245088D5623F Validity Not Before: Oct 1 02:45:22 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68dc95c2-2514 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:1d:73:6b:d0:64:63:07:e6:7b:e5:4a:e3:20: 83:0a:16:24:2c:64:14:42:09:c9:90:ee:29:f2:33: 55:f9:93:b5:18:ef:4d:f5:94:21:7b:5e:3e:2d:cc: 8d:bd:56:2b:76:6c:10:d5:4d:5b:94:e8:ac:b0:a6: eb:bf:d9:b1:30:b5:78:c8:44:d8:a7:0c:14:70:c2: b0:ea:3d:c6:bf:50:7a:e2:59:49:f8:55:e6:4f:ad: 15:df:90:45:16:be:45:98:51:ff:91:90:55:0c:18: 33:0a:d7:a4:0d:98:c2:13:5e:ff:00:b7:dc:25:a9: e1:a2:a9:95:3e:06:06:40:2e:95:13:84:ca:01:ea: 0a:0d:f6:49:27:5d:2d:48:30:87:3d:e3:01:98:b9: 9e:99:e7:56:d0:b1:8f:98:a5:e9:b9:89:b5:89:0f: 1f:ab:ed:d9:c2:16:5e:a3:ce:68:18:9b:f8:10:46: 06:70:3f:5e:4f:98:00:c1:24:53:04:f5:56:d8:fc: 01:3a:f1:bb:8f:33:1c:c3:36:0e:1c:2e:0f:12:d0: 1d:25:9c:bd:d3:17:27:f8:6c:8d:53:45:c5:bf:29: e3:3a:da:9a:84:f4:fa:03:cd:e7:e5:24:22:01:ca: 79:9a:16:e4:68:21:f9:1b:24:8c:21:23:ab:24:e5: 8d:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:76:97:78:A8:AF:15:FE:47:F9:90:3B:06:A4:A4:77:A0:2C:7D:90 X509v3 Authority Key Identifier: keyid:98:50:EA:FF:ED:3D:A2:84:5D:51:F0:95:AC:11:24:50:88:D5:62:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91678AA/37C817FC974411F0804A5918C4F9AE02/mFDq_-09ooRdUfCVrBEkUIjVYj8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFDq_-09ooRdUfCVrBEkUIjVYj8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91678AA/37C817FC974411F0804A5918C4F9AE02/ACA405589E7011F083978F1AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.133.64.0/23 IPv6: 2402:26a0::/32 Signature Algorithm: sha256WithRSAEncryption a1:dc:6e:11:bf:49:d2:68:58:99:52:5b:68:a4:74:16:57:be: f4:37:88:1e:7d:c8:a0:b6:af:b5:00:1a:9a:83:46:23:0c:87: 95:85:00:b0:ad:7a:63:0f:d6:8c:f0:25:92:a3:65:aa:22:37: 75:f7:84:ec:71:6c:f1:ea:30:7c:0b:66:74:39:92:cf:69:0a: 5f:16:b2:0f:79:82:9f:0b:d5:cb:dc:38:8e:91:5d:ea:03:14: 39:d0:fe:20:90:d3:57:89:45:e3:5b:54:b8:9f:86:9d:fb:40: 14:7f:89:31:da:5b:de:ec:3c:38:31:84:f7:0f:c8:bf:e8:13: cb:fb:0b:77:58:1d:18:e8:a6:57:f9:46:fe:09:c8:e9:d3:66: f3:08:d5:06:0a:2a:3c:84:57:e1:4c:24:82:15:62:2d:fe:8e: 12:ee:a4:2c:0a:1a:d0:1b:a3:80:cb:e0:f0:47:24:c8:16:8b: fc:83:8c:60:29:72:4b:3b:cb:e7:8f:74:e2:4e:f3:d1:aa:97: 0c:4f:2c:86:ea:01:d4:f1:cf:79:39:73:ac:77:79:93:48:9e: 82:71:d2:e8:06:fe:41:d5:16:0c:27:70:23:a8:42:2c:13:37: 4e:19:97:ee:1c:a9:b5:a3:7b:71:6b:30:20:3f:51:92:e7:a7: 0d:71:09:79 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NzhBQTExMC8GA1UEBRMoOTg1MEVBRkZFRDNEQTI4NDVENTFGMDk1QUMxMTI0NTA4 OEQ1NjIzRjAeFw0yNTEwMDEwMjQ1MjJaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZGM5NWMyLTI1MTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAHXNr0GRjB+Z75UrjIIMKFiQsZBRCCcmQ7inyM1X5k7UY7031lCF7Xj4tzI29 Vit2bBDVTVuU6Kywpuu/2bEwtXjIRNinDBRwwrDqPca/UHriWUn4VeZPrRXfkEUW vkWYUf+RkFUMGDMK16QNmMITXv8At9wlqeGiqZU+BgZALpUThMoB6goN9kknXS1I MIc94wGYuZ6Z51bQsY+Ypem5ibWJDx+r7dnCFl6jzmgYm/gQRgZwP15PmADBJFME 9VbY/AE68buPMxzDNg4cLg8S0B0lnL3TFyf4bI1TRcW/KeM62pqE9PoDzeflJCIB ynmaFuRoIfkbJIwhI6sk5Y3hAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQU1XaXeKiv Ff5H+ZA7BqSkd6AsfZAwHwYDVR0jBBgwFoAUmFDq/+09ooRdUfCVrBEkUIjVYj8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY3OEFBLzM3QzgxN0ZDOTc0 NDExRjA4MDRBNTkxOEM0RjlBRTAyL21GRHFfLTA5b29SZFVmQ1ZyQkVrVUlqVllq OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbUZEcV8tMDlvb1JkVWZDVnJCRWtVSWpWWWo4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 NzhBQS8zN0M4MTdGQzk3NDQxMUYwODA0QTU5MThDNEY5QUUwMi9BQ0E0MDU1ODlF NzAxMUYwODM5NzhGMUFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAcqFQDANBAIAAjAHAwUAJAImoDANBgkqhkiG9w0BAQsFAAOC AQEAodxuEb9J0mhYmVJbaKR0Fle+9DeIHn3IoLavtQAamoNGIwyHlYUAsK16Yw/W jPAlkqNlqiI3dfeE7HFs8eowfAtmdDmSz2kKXxayD3mCnwvVy9w4jpFd6gMUOdD+ IJDTV4lF41tUuJ+GnftAFH+JMdpb3uw8ODGE9w/Iv+gTy/sLd1gdGOimV/lG/gnI 6dNm8wjVBgoqPIRX4UwkghViLf6OEu6kLAoa0BujgMvg8EckyBaL/IOMYClySzvL 54904k7z0aqXDE8shuoB1PHPeTlzrHd5k0iegnHS6Ab+QdUWDCdwI6hCLBM3ThmX 7hyptaN7cWswID9RkuenDXEJeQ== -----END CERTIFICATE-----Generated at Mon Oct 20 11:23:39 2025 by rpki-client