$ rpki-client -vvf rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/096864742F4C11EDB0375D6CC4F9AE02.roa File: 096864742F4C11EDB0375D6CC4F9AE02.roa (raw, json) Hash identifier: Qm2aLJkxdL/ExAF+KC+FyvUngFAR4g1LlNO2Ye9aSlg= Subject key identifier: C7:DC:05:46:20:23:F6:01:FE:A8:78:67:16:68:BB:30:34:2C:06:85 Certificate issuer: /CN=A91813F1/serialNumber=9EFEAA724D708CFE82C6B6BF270CBB5DD4306F20 Certificate serial: 0907 Authority key identifier: 9E:FE:AA:72:4D:70:8C:FE:82:C6:B6:BF:27:0C:BB:5D:D4:30:6F:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/096864742F4C11EDB0375D6CC4F9AE02.roa Signing time: Fri 22 Aug 2025 21:00:40 +0000 ROA not before: Fri 22 Aug 2025 21:00:40 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38001 IP address blocks: 111.221.44.0/22 maxlen: 22 111.221.44.0/24 maxlen: 24 111.221.45.0/24 maxlen: 24 111.221.46.0/24 maxlen: 24 111.221.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.crl rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2311 (0x907) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91813F1, serialNumber=9EFEAA724D708CFE82C6B6BF270CBB5DD4306F20 Validity Not Before: Aug 22 21:00:40 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a8da78-08c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3a:b6:b9:2f:95:3c:09:1b:2e:69:f5:a0:87: 76:7c:70:10:a4:39:91:eb:27:8d:2f:d4:98:33:a7: 3e:0a:5e:c9:9b:5c:c9:d5:d1:14:8f:f5:a4:75:37: b3:e0:92:bc:3d:a7:cd:19:21:6f:3f:22:ce:8e:96: 6c:09:0b:6c:d0:26:7e:29:c9:aa:a6:91:f1:74:1d: f9:51:99:f1:ba:11:3a:35:48:df:5e:6b:8d:91:ab: ea:f9:47:70:68:51:f4:8a:73:09:fe:4a:a8:e8:66: 18:35:bc:51:55:30:bc:0e:ec:89:ee:cd:1f:d2:ba: ba:7b:60:29:82:db:3d:79:10:4e:44:d9:27:bf:ed: 6a:5b:0f:0d:c7:fa:00:4b:57:fd:19:f7:d9:73:71: 87:be:18:8f:c5:10:4c:c0:d7:97:8e:9d:d7:1e:c3: 76:a1:1e:5a:86:bd:e8:df:4d:dc:86:8e:08:74:f2: 91:42:de:da:de:20:ff:86:e6:6e:75:97:5b:5a:c6: 99:aa:30:bf:d8:f2:93:1b:e2:6f:f9:80:5a:78:47: 74:fa:dc:82:d1:5a:85:1d:e5:6e:90:ff:39:74:ba: 52:15:93:a9:cc:62:27:b2:db:93:9e:b6:76:4e:40: 95:bb:2d:0f:fa:d2:e4:36:b2:bc:5d:dc:28:e7:c4: 92:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:DC:05:46:20:23:F6:01:FE:A8:78:67:16:68:BB:30:34:2C:06:85 X509v3 Authority Key Identifier: keyid:9E:FE:AA:72:4D:70:8C:FE:82:C6:B6:BF:27:0C:BB:5D:D4:30:6F:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/nv6qck1wjP6Cxra_Jwy7XdQwbyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nv6qck1wjP6Cxra_Jwy7XdQwbyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91813F1/D0CAF384BA5911EA904FF91DC4F9AE02/096864742F4C11EDB0375D6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.221.44.0/22 Signature Algorithm: sha256WithRSAEncryption b7:68:26:ae:7e:0a:1f:6b:38:87:bc:9a:9c:f6:2b:bd:2c:73: e5:66:63:0b:a3:26:93:99:fe:5a:40:f4:44:6c:b3:fa:97:c9: 04:5a:e1:f7:85:23:5c:20:41:be:37:c2:8c:a7:14:7d:46:05: 23:b2:35:8a:36:b0:c1:9b:09:63:0b:4e:08:05:2c:25:1b:6d: 42:f2:9e:f4:24:1b:5c:93:13:4f:34:6b:29:38:33:20:9d:db: b7:54:ab:a2:5a:71:e2:74:29:13:fd:c5:34:ef:8f:8a:e3:bc: b5:36:42:b6:af:77:33:80:56:da:ee:8d:6d:ae:44:90:ae:a9: 5a:f3:11:45:0d:a1:da:4b:45:3a:fe:10:27:30:5e:b5:ba:de: cf:09:c0:3a:5f:7e:36:7c:f4:fb:c8:ef:ac:02:4b:42:43:c6: 23:24:85:d1:43:73:d6:84:2c:db:e9:cd:bd:f5:a3:b5:af:7e: 59:98:33:4b:6b:62:88:75:95:fb:bc:b2:22:c5:50:f8:b2:5d: 44:85:96:f9:80:ba:30:3c:1d:da:c1:cf:48:79:87:12:65:12: d6:e5:8e:8d:95:40:bc:79:5d:7c:34:3a:85:ad:52:ad:8f:4f: b3:81:72:d9:97:bc:46:d4:24:76:96:c0:5b:51:2a:bd:5b:06: f4:37:0c:af -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCQcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODEzRjExMTAvBgNVBAUTKDlFRkVBQTcyNEQ3MDhDRkU4MkM2QjZCRjI3MENCQjVE RDQzMDZGMjAwHhcNMjUwODIyMjEwMDQwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE4ZGE3OC0wOGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtDq2uS+VPAkbLmn1oId2fHAQpDmR6yeNL9SYM6c+Cl7Jm1zJ1dEUj/WkdTez 4JK8PafNGSFvPyLOjpZsCQts0CZ+KcmqppHxdB35UZnxuhE6NUjfXmuNkavq+Udw aFH0inMJ/kqo6GYYNbxRVTC8DuyJ7s0f0rq6e2Apgts9eRBORNknv+1qWw8Nx/oA S1f9GffZc3GHvhiPxRBMwNeXjp3XHsN2oR5ahr3o303cho4IdPKRQt7a3iD/huZu dZdbWsaZqjC/2PKTG+Jv+YBaeEd0+tyC0VqFHeVukP85dLpSFZOpzGInstuTnrZ2 TkCVuy0P+tLkNrK8Xdwo58SSbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMfcBUYg I/YB/qh4ZxZouzA0LAaFMB8GA1UdIwQYMBaAFJ7+qnJNcIz+gsa2vycMu13UMG8g MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MTNGMS9EMENBRjM4NEJB NTkxMUVBOTA0RkY5MURDNEY5QUUwMi9udjZxY2sxd2pQNkN4cmFfSnd5N1hkUXdi eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL252NnFjazF3alA2Q3hyYV9Kd3k3WGRRd2J5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODEzRjEvRDBDQUYzODRCQTU5MTFFQTkwNEZGOTFEQzRGOUFFMDIvMDk2ODY0NzQy RjRDMTFFREIwMzc1RDZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJv3SwwDQYJKoZIhvcNAQELBQADggEBALdoJq5+Ch9rOIe8 mpz2K70sc+VmYwujJpOZ/lpA9ERss/qXyQRa4feFI1wgQb43woynFH1GBSOyNYo2 sMGbCWMLTggFLCUbbULynvQkG1yTE080ayk4MyCd27dUq6JaceJ0KRP9xTTvj4rj vLU2QravdzOAVtrujW2uRJCuqVrzEUUNodpLRTr+ECcwXrW63s8JwDpffjZ89PvI 76wCS0JDxiMkhdFDc9aELNvpzb31o7WvflmYM0trYoh1lfu8siLFUPiyXUSFlvmA ujA8HdrBz0h5hxJlEtbljo2VQLx5XXw0OoWtUq2PT7OBctmXvEbUJHaWwFtRKr1b BvQ3DK8= -----END CERTIFICATE-----Generated at Sun Aug 24 09:01:50 2025 by rpki-client