$ rpki-client -vvf rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/D6871FC40C5711EFBD14BD5AC4F9AE02.roa File: D6871FC40C5711EFBD14BD5AC4F9AE02.roa (raw, json) Hash identifier: ct7HNnoVMRTu9GGbvMdnAsr99cdgOMQ5g1ojGQzID0Y= Subject key identifier: 50:06:18:F6:23:B9:08:46:2E:C2:F0:53:BA:92:A7:9C:90:C3:14:85 Certificate issuer: /CN=A91993A0/serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Certificate serial: 0130 Authority key identifier: BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/D6871FC40C5711EFBD14BD5AC4F9AE02.roa Signing time: Wed 01 Oct 2025 06:01:11 +0000 ROA not before: Wed 01 Oct 2025 06:01:11 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 10103 IP address blocks: 202.70.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 07:47:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 304 (0x130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91993A0, serialNumber=BCB7CF4430BB98EA04851C340726E588150E139D Validity Not Before: Oct 1 06:01:11 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68dcc3a6-05eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:fc:f0:9d:b0:f6:88:da:ad:58:86:0d:57:69: df:ed:69:7e:f3:48:d8:24:5f:bf:9c:d2:f9:9b:23: 37:46:44:46:e6:05:e7:77:9e:15:ed:1f:18:73:90: 66:79:0e:a0:83:5a:2a:18:32:f6:c7:91:6a:09:c9: 92:df:b5:36:4d:d4:c9:aa:98:13:70:72:0c:c9:cb: d2:e4:4f:3c:3c:7f:80:bc:61:3e:19:2e:66:2e:52: b3:6e:7c:66:69:12:20:30:89:0a:c9:f4:a2:34:d6: 17:c2:01:6c:92:0b:ff:f3:f4:6c:88:de:4e:0a:23: 7f:bb:76:ac:85:09:07:99:2c:e9:91:00:c0:9c:51: 66:f4:39:20:a0:ba:e9:c3:93:fa:fc:96:34:64:37: b2:f6:50:06:fe:9a:62:76:54:ac:97:35:38:23:b7: 66:c4:b6:26:7a:28:d0:61:98:1c:53:3e:c9:73:8f: d5:4f:49:8d:2d:4e:d9:c8:5d:bd:a4:e5:23:7f:5a: 52:48:9e:79:02:8f:d0:46:f3:18:d7:b9:64:34:7f: 21:16:06:04:93:40:4d:e7:cc:66:dc:56:d8:52:60: c6:28:1c:7e:e0:5e:f7:35:77:e2:68:b4:1b:a7:2c: de:25:70:68:19:02:1d:35:4a:e3:34:f8:e9:76:88: a0:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:06:18:F6:23:B9:08:46:2E:C2:F0:53:BA:92:A7:9C:90:C3:14:85 X509v3 Authority Key Identifier: keyid:BC:B7:CF:44:30:BB:98:EA:04:85:1C:34:07:26:E5:88:15:0E:13:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/vLfPRDC7mOoEhRw0BybliBUOE50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vLfPRDC7mOoEhRw0BybliBUOE50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91993A0/A5955E560C4511EF9E7E051DC4F9AE02/D6871FC40C5711EFBD14BD5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.70.160.0/20 Signature Algorithm: sha256WithRSAEncryption 31:8c:d8:b9:da:e5:bf:18:44:3d:ce:95:eb:ba:7d:38:0c:c7: 9d:9f:21:8f:92:3f:10:f0:37:7b:8c:b7:cd:68:8f:c9:48:d2: c1:70:75:b4:90:5b:63:2e:5e:fe:07:da:0e:77:b5:ba:c8:84: ec:72:f4:d2:e5:e3:2b:4d:32:14:c0:9f:8d:9e:0e:2a:c7:d8: 20:37:1b:6c:85:bf:37:6e:93:20:61:7d:c6:b7:85:b5:7e:84: 80:d8:53:28:77:62:a3:35:4c:d6:86:e2:4c:ae:87:87:cf:85: e2:89:99:81:a2:6a:29:55:91:19:1f:6f:ac:96:e3:9d:f2:86: a9:08:1b:2b:44:82:b8:f7:dd:db:b2:83:14:51:9f:3b:f7:71: c7:59:68:a0:fb:b0:34:96:7c:d1:bf:72:ae:ee:70:1d:20:89: 0c:81:27:e6:df:59:cd:53:f5:fa:fc:f7:03:6c:78:fa:12:75: 1e:b5:0c:63:15:5d:89:d6:35:28:7a:08:5f:9a:74:43:95:32: 39:6f:fb:39:0e:6c:3c:59:5a:d8:e9:c1:84:30:15:ab:1e:fb: 08:84:9d:ee:29:bc:82:3b:c2:e7:27:e0:26:e4:cc:b9:c9:f1: 97:87:2d:c8:76:b6:f8:95:65:7e:58:a1:c4:6e:05:fe:a6:57: e3:63:9c:9d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTkzQTAxMTAvBgNVBAUTKEJDQjdDRjQ0MzBCQjk4RUEwNDg1MUMzNDA3MjZFNTg4 MTUwRTEzOUQwHhcNMjUxMDAxMDYwMTExWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGRjYzNhNi0wNWViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0PzwnbD2iNqtWIYNV2nf7Wl+80jYJF+/nNL5myM3RkRG5gXnd54V7R8Yc5Bm eQ6gg1oqGDL2x5FqCcmS37U2TdTJqpgTcHIMycvS5E88PH+AvGE+GS5mLlKzbnxm aRIgMIkKyfSiNNYXwgFskgv/8/RsiN5OCiN/u3ashQkHmSzpkQDAnFFm9DkgoLrp w5P6/JY0ZDey9lAG/ppidlSslzU4I7dmxLYmeijQYZgcUz7Jc4/VT0mNLU7ZyF29 pOUjf1pSSJ55Ao/QRvMY17lkNH8hFgYEk0BN58xm3FbYUmDGKBx+4F73NXfiaLQb pyzeJXBoGQIdNUrjNPjpdoigvwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFAGGPYj uQhGLsLwU7qSp5yQwxSFMB8GA1UdIwQYMBaAFLy3z0Qwu5jqBIUcNAcm5YgVDhOd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5OTNBMC9BNTk1NUU1NjBD NDUxMUVGOUU3RTA1MURDNEY5QUUwMi92TGZQUkRDN21Pb0VoUncwQnlibGlCVU9F NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZMZlBSREM3bU9vRWhSdzBCeWJsaUJVT0U1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTkzQTAvQTU5NTVFNTYwQzQ1MTFFRjlFN0UwNTFEQzRGOUFFMDIvRDY4NzFGQzQw QzU3MTFFRkJEMTRCRDVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATKRqAwDQYJKoZIhvcNAQELBQADggEBADGM2Lna5b8YRD3O leu6fTgMx52fIY+SPxDwN3uMt81oj8lI0sFwdbSQW2MuXv4H2g53tbrIhOxy9NLl 4ytNMhTAn42eDirH2CA3G2yFvzdukyBhfca3hbV+hIDYUyh3YqM1TNaG4kyuh4fP heKJmYGiailVkRkfb6yW453yhqkIGytEgrj33duygxRRnzv3ccdZaKD7sDSWfNG/ cq7ucB0giQyBJ+bfWc1T9fr89wNsePoSdR61DGMVXYnWNSh6CF+adEOVMjlv+zkO bDxZWtjpwYQwFase+wiEne4pvII7wucn4CbkzLnJ8ZeHLch2tviVZX5YocRuBf6m V+NjnJ0= -----END CERTIFICATE-----Generated at Mon Oct 20 12:17:27 2025 by rpki-client