$ rpki-client -vvf rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/2D58477CEC7A11EEBAE5E319C4F9AE02.roa File: 2D58477CEC7A11EEBAE5E319C4F9AE02.roa (raw, json) Hash identifier: APLkO/9VQDMo8Mg1BILGpzlcs8IiIyqCJfnR8QGrWEA= Subject key identifier: 01:F1:69:A2:5D:3E:49:CB:F5:1B:EF:A4:A4:34:77:B0:55:D4:C8:AB Certificate issuer: /CN=A91683D2/serialNumber=B1ACFB85149B86A11015D601810E314F6948C1CF Certificate serial: 34DF Authority key identifier: B1:AC:FB:85:14:9B:86:A1:10:15:D6:01:81:0E:31:4F:69:48:C1:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/2D58477CEC7A11EEBAE5E319C4F9AE02.roa Signing time: Sat 18 Oct 2025 14:50:43 +0000 ROA not before: Sat 18 Oct 2025 14:50:43 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 209242 IP address blocks: 202.37.197.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.crl rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 14:50:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13535 (0x34df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91683D2, serialNumber=B1ACFB85149B86A11015D601810E314F6948C1CF Validity Not Before: Oct 18 14:50:43 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68f3a943-3721 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bd:24:05:ed:b6:5a:e0:1f:46:16:67:7b:ab: 22:68:0b:f0:45:fe:e9:a7:d7:ab:7a:4c:15:47:22: 19:59:ef:5f:b2:2e:49:b1:09:62:ab:e9:8c:71:49: bb:b3:43:50:4f:b7:f9:df:89:8b:d4:73:54:c3:a7: 92:a1:32:cd:b2:b9:60:b4:99:2a:62:fe:58:d9:e2: 2f:f0:27:c3:07:98:72:36:ac:95:43:38:b2:5a:dd: d7:12:5e:0e:c9:b0:72:92:70:98:bc:dc:c9:70:37: 26:07:12:ec:af:7a:5d:0a:94:ad:d2:71:92:98:01: a9:cb:f3:60:35:13:7f:4b:05:7f:e2:39:94:4f:47: 57:0d:06:9c:f1:08:8a:87:84:e1:fc:29:c7:66:73: b7:9f:d3:94:89:1c:c9:91:95:37:30:b2:b4:f2:61: c6:c2:ff:a4:f4:cd:fc:ce:6f:e1:98:96:f4:2a:29: e4:f4:8a:a0:e3:67:18:01:5f:68:1b:6b:c0:52:1f: 8f:4a:1f:42:83:99:46:4c:d0:63:a3:91:6b:01:43: 19:b3:ce:b5:48:fe:d3:f4:1c:df:d1:a3:c9:48:db: b4:e1:f8:a5:7d:03:6c:11:65:cf:c1:c7:cc:0b:2e: e8:91:38:16:3e:87:c5:fb:67:7f:69:2f:e3:48:4f: e9:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:F1:69:A2:5D:3E:49:CB:F5:1B:EF:A4:A4:34:77:B0:55:D4:C8:AB X509v3 Authority Key Identifier: keyid:B1:AC:FB:85:14:9B:86:A1:10:15:D6:01:81:0E:31:4F:69:48:C1:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/saz7hRSbhqEQFdYBgQ4xT2lIwc8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91683D2/19C55F6C1D8B11E290C578E508B02CD2/2D58477CEC7A11EEBAE5E319C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.197.0/24 Signature Algorithm: sha256WithRSAEncryption 81:e8:ff:5d:55:b6:c5:01:34:fd:53:d0:12:c9:83:22:68:3b: a8:f4:7d:65:53:06:c8:1a:68:e3:9c:f3:73:01:89:c5:19:e6: 41:a2:86:37:05:17:2e:3a:7d:1b:e3:e8:86:41:ab:7f:3b:80: 62:bd:c7:b6:1b:42:b1:4d:bb:54:b1:cd:f2:79:b6:9b:a5:bb: 32:8f:f2:51:26:8c:11:d5:9f:99:82:4e:e8:a1:54:16:2b:49: 2a:3b:e2:64:e3:aa:dd:db:97:79:75:70:26:ad:d4:74:1f:00: 22:a2:81:10:0d:c6:be:8d:41:4c:e0:db:e1:e0:da:d4:a8:a6: 0c:14:ce:76:20:e6:ff:43:6b:1e:12:ed:98:36:6b:60:87:78: 34:31:3b:2d:87:f3:e2:8d:b2:bd:69:8f:1b:e7:94:5f:a2:ac: 05:c2:2c:aa:88:7c:cb:a9:f7:a3:37:e3:28:91:81:fa:41:9d: 9c:ff:2c:16:0f:bb:8b:6b:d5:13:d2:c6:59:49:be:ee:91:8c: c6:c8:82:1c:76:78:f5:bd:f0:8e:1d:1f:a2:20:cf:b2:b4:44: 09:c8:0f:46:de:15:6b:47:70:ac:ca:74:c1:7a:73:80:fd:5b: b0:3d:93:5f:5d:32:3e:7a:07:ba:f5:bc:96:c1:48:60:d4:05: 71:7a:6c:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgzRDIxMTAvBgNVBAUTKEIxQUNGQjg1MTQ5Qjg2QTExMDE1RDYwMTgxMEUzMTRG Njk0OEMxQ0YwHhcNMjUxMDE4MTQ1MDQzWhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYzYTk0My0zNzIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxr0kBe22WuAfRhZne6siaAvwRf7pp9erekwVRyIZWe9fsi5JsQliq+mMcUm7 s0NQT7f534mL1HNUw6eSoTLNsrlgtJkqYv5Y2eIv8CfDB5hyNqyVQziyWt3XEl4O ybByknCYvNzJcDcmBxLsr3pdCpSt0nGSmAGpy/NgNRN/SwV/4jmUT0dXDQac8QiK h4Th/CnHZnO3n9OUiRzJkZU3MLK08mHGwv+k9M38zm/hmJb0Kink9Iqg42cYAV9o G2vAUh+PSh9Cg5lGTNBjo5FrAUMZs861SP7T9Bzf0aPJSNu04filfQNsEWXPwcfM Cy7okTgWPofF+2d/aS/jSE/powIDAQABo4IClTCCApEwHQYDVR0OBBYEFAHxaaJd PknL9RvvpKQ0d7BV1MirMB8GA1UdIwQYMBaAFLGs+4UUm4ahEBXWAYEOMU9pSMHP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODNEMi8xOUM1NUY2QzFE OEIxMUUyOTBDNTc4RTUwOEIwMkNEMi9zYXo3aFJTYmhxRVFGZFlCZ1E0eFQybEl3 YzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NhejdoUlNiaHFFUUZkWUJnUTR4VDJsSXdjOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjgzRDIvMTlDNTVGNkMxRDhCMTFFMjkwQzU3OEU1MDhCMDJDRDIvMkQ1ODQ3N0NF QzdBMTFFRUJBRTVFMzE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJcUwDQYJKoZIhvcNAQELBQADggEBAIHo/11VtsUBNP1T 0BLJgyJoO6j0fWVTBsgaaOOc83MBicUZ5kGihjcFFy46fRvj6IZBq387gGK9x7Yb QrFNu1SxzfJ5tpuluzKP8lEmjBHVn5mCTuihVBYrSSo74mTjqt3bl3l1cCat1HQf ACKigRANxr6NQUzg2+Hg2tSopgwUznYg5v9Dax4S7Zg2a2CHeDQxOy2H8+KNsr1p jxvnlF+irAXCLKqIfMup96M34yiRgfpBnZz/LBYPu4tr1RPSxllJvu6RjMbIghx2 ePW98I4dH6Igz7K0RAnID0beFWtHcKzKdMF6c4D9W7A9k19dMj56B7r1vJbBSGDU BXF6bKg= -----END CERTIFICATE-----Generated at Sun Oct 19 23:55:33 2025 by rpki-client