$ rpki-client -vvf rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/8F64B3240C4B11EFACEF2C6FC4F9AE02.roa File: 8F64B3240C4B11EFACEF2C6FC4F9AE02.roa (raw, json) Hash identifier: 2CtFG7HWVSfrrJnKmf+0gUAHRHN8PeRmFCcQjXhYXBE= Subject key identifier: CA:EA:E8:BB:A1:12:F6:9F:37:49:93:D6:41:B6:CD:F4:02:30:AF:D3 Certificate issuer: /CN=A91993A0/serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Certificate serial: 0134 Authority key identifier: BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/8F64B3240C4B11EFACEF2C6FC4F9AE02.roa Signing time: Wed 01 Oct 2025 06:01:14 +0000 ROA not before: Wed 01 Oct 2025 06:01:14 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 55649 IP address blocks: 202.70.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:47:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91993A0, serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Validity Not Before: Oct 1 06:01:14 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68dcc3aa-fb09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:7f:77:d9:4c:80:af:b2:93:e5:68:91:06:ba: 72:cf:ef:5b:bf:dc:9b:d2:40:b6:71:84:22:2a:b6: 0f:12:b4:c7:e4:7d:db:39:c5:a2:68:c8:35:c6:71: f0:77:0c:e7:33:3c:0e:57:24:5a:e5:d0:8d:c9:0f: d0:62:dc:64:38:3e:90:45:b0:95:08:62:e5:7b:ae: 7c:c2:12:71:bf:fb:45:fb:92:d6:76:1f:09:d4:e5: f7:72:25:d8:df:73:6f:83:80:93:95:2e:27:08:2b: bd:47:e2:6c:01:59:f3:d1:c8:3c:ab:6a:95:18:70: b2:4d:8d:43:e5:4a:dd:0f:85:ef:e0:4b:8b:39:7c: d6:91:e4:9a:5d:36:8d:43:17:6b:4a:9a:c9:b9:cc: 85:05:66:7d:4c:eb:d5:f6:3b:08:a5:91:60:18:32: 0a:30:3d:03:23:90:aa:4c:4c:9d:9b:ee:22:74:2a: 1d:29:34:81:d0:31:7f:2a:4a:2c:22:57:c1:66:8d: 5e:58:d4:86:4a:87:f7:56:b0:a4:90:88:0f:10:33: a6:ea:73:75:94:3d:de:b6:39:a3:36:ae:d1:07:59: b0:6d:13:d8:19:6d:13:6e:62:92:27:98:d8:98:73: 13:e8:4a:07:fb:9c:da:fc:34:21:59:c0:1f:26:fe: 12:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:EA:E8:BB:A1:12:F6:9F:37:49:93:D6:41:B6:CD:F4:02:30:AF:D3 X509v3 Authority Key Identifier: keyid:BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/8F64B3240C4B11EFACEF2C6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.70.160.0/20 Signature Algorithm: sha256WithRSAEncryption 46:f2:1f:2f:b0:d2:6e:75:49:d8:16:ed:85:b5:19:b4:a9:39: d6:f4:75:7f:f8:83:df:64:e5:d1:e4:6f:44:95:2f:0c:ca:4d: a0:a4:f5:95:ff:20:10:99:d4:64:29:2e:c5:74:6b:e3:ab:34: a2:41:e4:24:48:02:21:79:7d:c3:09:b4:6a:85:71:a5:9a:3a: 55:5d:fa:ba:fc:05:4f:d4:5c:e8:1b:2d:6a:d0:d1:67:57:db: cb:f3:c9:76:68:85:8e:be:8c:f2:0e:a8:97:63:5a:f3:31:eb: 95:5a:66:c3:06:60:a8:76:84:d2:f9:28:36:ea:da:dd:e1:51: 1c:14:da:8b:58:40:0e:f3:37:f2:a1:cd:d4:50:13:38:1d:b7: c2:65:ae:8d:d9:92:1d:23:4e:85:f5:71:a0:bb:0c:44:84:74: 42:3e:02:94:e4:3c:ee:b4:79:d0:83:26:69:6e:cc:a2:61:13: 3d:89:61:e7:a7:9c:d6:bb:a3:70:fd:d6:51:aa:c9:ec:18:61: af:0b:0f:88:bb:4d:a7:8f:fe:5b:97:03:90:6d:c5:ac:00:c7: cc:39:67:5c:e0:bd:b7:62:bb:85:85:f1:4e:e0:b1:6b:f6:4d: aa:53:7f:7a:a1:a2:2b:9d:96:38:23:9d:a2:c4:ec:9f:56:c3: 8a:a9:3a:b6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkzQTAxMTAvBgNVBAUTKEJDQjdDRjQ0MzBCQjk4RUEwNDg1MUMzNDA3MjZFNTg4 MTUwRTEzOUQwHhcNMjUxMDAxMDYwMTE0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjYzNhYS1mYjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5X932UyAr7KT5WiRBrpyz+9bv9yb0kC2cYQiKrYPErTH5H3bOcWiaMg1xnHw dwznMzwOVyRa5dCNyQ/QYtxkOD6QRbCVCGLle658whJxv/tF+5LWdh8J1OX3ciXY 33Nvg4CTlS4nCCu9R+JsAVnz0cg8q2qVGHCyTY1D5UrdD4Xv4EuLOXzWkeSaXTaN QxdrSprJucyFBWZ9TOvV9jsIpZFgGDIKMD0DI5CqTEydm+4idCodKTSB0DF/Kkos IlfBZo1eWNSGSof3VrCkkIgPEDOm6nN1lD3etjmjNq7RB1mwbRPYGW0TbmKSJ5jY mHMT6EoH+5za/DQhWcAfJv4SewIDAQABo4IClTCCApEwHQYDVR0OBBYEFMrq6Luh EvafN0mT1kG2zfQCMK/TMB8GA1UdIwQYMBaAFLy3z0Qwu5jqBIUcNAcm5YgVDhOd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTNBMC9BNTk1NUU1NjBD NDUxMUVGOUU3RTA1MURDNEY5QUUwMi92TGZQUkRDN21Pb0VoUncwQnlibGlCVU9F NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZMZlBSREM3bU9vRWhSdzBCeWJsaUJVT0U1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkzQTAvQTU5NTVFNTYwQzQ1MTFFRjlFN0UwNTFEQzRGOUFFMDIvOEY2NEIzMjQw QzRCMTFFRkFDRUYyQzZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATKRqAwDQYJKoZIhvcNAQELBQADggEBAEbyHy+w0m51SdgW 7YW1GbSpOdb0dX/4g99k5dHkb0SVLwzKTaCk9ZX/IBCZ1GQpLsV0a+OrNKJB5CRI AiF5fcMJtGqFcaWaOlVd+rr8BU/UXOgbLWrQ0WdX28vzyXZohY6+jPIOqJdjWvMx 65VaZsMGYKh2hNL5KDbq2t3hURwU2otYQA7zN/KhzdRQEzgdt8Jlro3Zkh0jToX1 caC7DESEdEI+ApTkPO60edCDJmluzKJhEz2JYeennNa7o3D91lGqyewYYa8LD4i7 TaeP/luXA5BtxawAx8w5Z1zgvbdiu4WF8U7gsWv2TapTf3qhoiudljgjnaLE7J9W w4qpOrY= -----END CERTIFICATE-----Generated at Mon Oct 20 13:41:03 2025 by rpki-client