$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0847/33B23F7E8C8E11EFA2DC5360C4F9AE02/9A36771A8C8E11EF86852961C4F9AE02.roa File: 9A36771A8C8E11EF86852961C4F9AE02.roa (raw, json) Hash identifier: T/QIbCFoEGLW9QUPRttlrCJQfmXnVEJQPws4YkvFJs4= Subject key identifier: 5D:F9:FE:62:8C:AB:BF:F2:B2:4A:60:B4:D0:D2:56:1B:8D:63:7F:C9 Certificate issuer: /CN=A91A0847/serialNumber=E86140023F0CA05F1714B8A70DC9955FF797BDB1 Certificate serial: AD Authority key identifier: E8:61:40:02:3F:0C:A0:5F:17:14:B8:A7:0D:C9:95:5F:F7:97:BD:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6GFAAj8MoF8XFLinDcmVX_eXvbE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0847/33B23F7E8C8E11EFA2DC5360C4F9AE02/9A36771A8C8E11EF86852961C4F9AE02.roa Signing time: Fri 05 Sep 2025 06:42:56 +0000 ROA not before: Fri 05 Sep 2025 06:42:55 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 151617 IP address blocks: 203.20.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0847/33B23F7E8C8E11EFA2DC5360C4F9AE02/6GFAAj8MoF8XFLinDcmVX_eXvbE.crl rsync://rpki.apnic.net/member_repository/A91A0847/33B23F7E8C8E11EFA2DC5360C4F9AE02/6GFAAj8MoF8XFLinDcmVX_eXvbE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6GFAAj8MoF8XFLinDcmVX_eXvbE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 09:04:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0847, serialNumber=E86140023F0CA05F1714B8A70DC9955FF797BDB1 Validity Not Before: Sep 5 06:42:55 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ba866f-f53e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:8f:f1:6e:56:48:56:7a:a5:3a:7c:67:15:6e: d5:a0:0e:7d:89:f8:cc:90:f9:fc:72:da:cd:16:bc: 0a:b2:ec:92:b7:d3:73:b9:9f:6b:ae:2e:d4:9a:53: db:b8:61:ab:e1:8b:68:ed:be:d6:27:31:65:f0:f5: 08:6a:a8:4e:27:c8:72:83:c1:bb:58:36:36:ad:e8: 6d:b1:8a:ab:aa:65:d0:a8:b1:a6:ca:47:5b:e1:a9: bf:a7:6b:d5:49:66:34:38:20:2e:ef:a2:e3:d9:5c: d8:0c:dc:83:80:fb:a0:2c:1b:b1:e8:69:32:18:08: 87:12:1e:8d:39:68:ce:3d:d8:c8:9f:1e:39:89:1f: c3:0e:e3:40:0c:3e:1c:96:b0:ff:ce:ad:2c:02:e9: 7c:ec:f1:7b:b4:d1:02:11:04:ce:74:1d:9f:9e:4a: 32:48:22:d2:3e:4e:6c:f1:13:9d:60:3e:0f:ca:f4: 9c:3a:87:a6:78:4a:66:06:5c:e6:ab:0e:55:aa:6c: 6f:24:af:6a:95:96:46:dd:90:6f:3d:dc:79:9f:be: e0:15:3b:7b:fc:ba:78:18:a6:29:ce:f1:62:0f:c8: 5c:f8:8b:07:a8:b2:67:f0:cf:f5:8c:66:48:29:93: 7d:b8:ea:e4:ac:0c:ba:1b:e9:89:df:bf:d2:02:25: 1d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:F9:FE:62:8C:AB:BF:F2:B2:4A:60:B4:D0:D2:56:1B:8D:63:7F:C9 X509v3 Authority Key Identifier: keyid:E8:61:40:02:3F:0C:A0:5F:17:14:B8:A7:0D:C9:95:5F:F7:97:BD:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0847/33B23F7E8C8E11EFA2DC5360C4F9AE02/6GFAAj8MoF8XFLinDcmVX_eXvbE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6GFAAj8MoF8XFLinDcmVX_eXvbE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0847/33B23F7E8C8E11EFA2DC5360C4F9AE02/9A36771A8C8E11EF86852961C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.116.0/24 Signature Algorithm: sha256WithRSAEncryption bc:b0:25:c0:b3:c1:8a:60:b3:8c:26:f5:27:dc:80:46:c7:c3: db:d4:c5:61:75:92:01:52:8b:d0:c1:1e:b8:44:db:5a:d9:34: 8b:e2:2f:95:88:81:5f:95:e0:cd:d0:2b:e2:8f:5d:74:10:62: 82:5b:9a:ea:6f:2a:d6:de:f5:0f:81:db:de:bd:de:49:c2:5d: 6c:a1:6c:88:3b:7b:eb:5a:1b:ee:ab:67:67:b6:2c:38:b2:de: 82:a1:5e:c2:58:63:0d:50:6f:bd:24:c2:98:fc:53:79:4d:40: 1d:74:e2:2c:2a:52:b7:91:3f:af:9f:0a:47:29:01:7b:e1:05: cc:6c:1b:8f:44:45:bd:cf:64:e9:92:73:81:4f:46:ca:a2:66: 89:a3:79:0f:7c:06:3b:34:62:cf:a0:f9:83:49:59:b7:b8:39: cb:b4:88:91:b4:da:0f:d6:1a:f7:5f:88:c1:4b:5c:ca:c7:ab: f6:ce:99:83:40:1a:d7:29:fc:ef:89:1f:8b:43:28:1a:a0:c0: a4:00:89:c8:05:3e:af:76:30:3d:02:50:d7:92:cf:c0:88:2d: ce:45:c8:5f:41:d9:ec:06:1b:b5:91:19:1e:97:95:f9:2a:d4: 8a:23:b8:36:88:b6:3c:af:4b:5f:3a:ab:45:b8:4b:3f:f3:0d: d2:e4:96:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4NDcxMTAvBgNVBAUTKEU4NjE0MDAyM0YwQ0EwNUYxNzE0QjhBNzBEQzk5NTVG Rjc5N0JEQjEwHhcNMjUwOTA1MDY0MjU1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJhODY2Zi1mNTNlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Y/xblZIVnqlOnxnFW7VoA59ifjMkPn8ctrNFrwKsuySt9NzuZ9rri7UmlPb uGGr4Yto7b7WJzFl8PUIaqhOJ8hyg8G7WDY2rehtsYqrqmXQqLGmykdb4am/p2vV SWY0OCAu76Lj2VzYDNyDgPugLBux6GkyGAiHEh6NOWjOPdjInx45iR/DDuNADD4c lrD/zq0sAul87PF7tNECEQTOdB2fnkoySCLSPk5s8ROdYD4PyvScOoemeEpmBlzm qw5VqmxvJK9qlZZG3ZBvPdx5n77gFTt7/Lp4GKYpzvFiD8hc+IsHqLJn8M/1jGZI KZN9uOrkrAy6G+mJ37/SAiUdCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFF35/mKM q7/yskpgtNDSVhuNY3/JMB8GA1UdIwQYMBaAFOhhQAI/DKBfFxS4pw3JlV/3l72x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDg0Ny8zM0IyM0Y3RThD OEUxMUVGQTJEQzUzNjBDNEY5QUUwMi82R0ZBQWo4TW9GOFhGTGluRGNtVlhfZVh2 YkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZHRkFBajhNb0Y4WEZMaW5EY21WWF9lWHZiRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4NDcvMzNCMjNGN0U4QzhFMTFFRkEyREM1MzYwQzRGOUFFMDIvOUEzNjc3MUE4 QzhFMTFFRjg2ODUyOTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLFHQwDQYJKoZIhvcNAQELBQADggEBALywJcCzwYpgs4wm 9SfcgEbHw9vUxWF1kgFSi9DBHrhE21rZNIviL5WIgV+V4M3QK+KPXXQQYoJbmupv Ktbe9Q+B29693knCXWyhbIg7e+taG+6rZ2e2LDiy3oKhXsJYYw1Qb70kwpj8U3lN QB104iwqUreRP6+fCkcpAXvhBcxsG49ERb3PZOmSc4FPRsqiZomjeQ98Bjs0Ys+g +YNJWbe4Ocu0iJG02g/WGvdfiMFLXMrHq/bOmYNAGtcp/O+JH4tDKBqgwKQAicgF Pq92MD0CUNeSz8CILc5FyF9B2ewGG7WRGR6Xlfkq1IojuDaItjyvS186q0W4Sz/z DdLkluM= -----END CERTIFICATE-----Generated at Mon Oct 20 11:28:30 2025 by rpki-client