$ rpki-client -vvf rpki.apnic.net/member_repository/A91A381A/28E86E4479FF11EEB32C2379C4F9AE02/EBB7A41AB4DA11EEBD650259C4F9AE02.roa File: EBB7A41AB4DA11EEBD650259C4F9AE02.roa (raw, json) Hash identifier: S6QQQa5Sp7ukB1rfGQxAaqwrRf0T3shgxPjmjI4d6zQ= Subject key identifier: 38:B5:25:A9:10:6D:0B:A5:0E:85:5A:82:5C:8F:FF:5C:DD:A8:43:A9 Certificate issuer: /CN=A91A381A/serialNumber=B3EC1FF6AD552AA16EE1019564BAD9F761FDB5D8 Certificate serial: 0160 Authority key identifier: B3:EC:1F:F6:AD:55:2A:A1:6E:E1:01:95:64:BA:D9:F7:61:FD:B5:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-wf9q1VKqFu4QGVZLrZ92H9tdg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A381A/28E86E4479FF11EEB32C2379C4F9AE02/EBB7A41AB4DA11EEBD650259C4F9AE02.roa Signing time: Wed 03 Sep 2025 04:52:39 +0000 ROA not before: Wed 03 Sep 2025 04:52:39 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 131323 IP address blocks: 202.37.93.0/24 maxlen: 24 2001:df0:22d::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A381A/28E86E4479FF11EEB32C2379C4F9AE02/s-wf9q1VKqFu4QGVZLrZ92H9tdg.crl rsync://rpki.apnic.net/member_repository/A91A381A/28E86E4479FF11EEB32C2379C4F9AE02/s-wf9q1VKqFu4QGVZLrZ92H9tdg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-wf9q1VKqFu4QGVZLrZ92H9tdg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 06:31:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A381A, serialNumber=B3EC1FF6AD552AA16EE1019564BAD9F761FDB5D8 Validity Not Before: Sep 3 04:52:39 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68b7c996-1c19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8f:e6:1c:36:08:56:17:60:1e:77:55:13:54: 1a:ad:4a:bc:b0:37:9a:10:6b:24:6f:ed:e3:b7:ec: 00:d3:37:4b:8a:94:1a:d8:42:02:9b:1d:84:0c:e1: 60:48:8f:9d:23:b6:40:c0:41:16:ba:35:ea:3e:c3: 94:9f:c9:8c:ca:ec:48:cf:64:14:68:45:9e:5a:2c: 63:77:95:4b:d5:33:82:5f:47:1e:d5:74:57:cb:e3: 17:72:c3:08:34:ca:3b:4e:6b:9a:f0:47:92:ad:c1: 15:9a:ce:6e:6e:d2:45:9b:51:b7:b1:88:ed:52:b8: 50:bc:fa:d9:02:fa:b9:93:6b:4b:df:4d:2f:e8:16: 52:b9:bb:f4:97:24:a2:41:70:e2:ef:29:14:72:b1: 14:c4:8e:6a:00:ac:48:c2:a5:24:0d:14:a3:d2:d0: 90:b6:4d:7f:f1:9f:c8:97:04:50:2e:bc:d8:2d:a6: 81:78:2f:de:ed:4f:fc:b2:67:8f:61:5a:98:7f:c6: 5e:05:13:d0:8d:eb:42:32:14:39:2e:b0:a3:7f:cd: 2e:4d:86:42:e1:0f:45:7e:75:79:3a:df:82:64:79: 3b:58:72:e3:df:44:73:08:e4:43:b3:c6:00:c0:e1: 40:7e:1c:87:41:6a:37:34:00:5a:d1:7a:a9:f3:e2: e9:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:B5:25:A9:10:6D:0B:A5:0E:85:5A:82:5C:8F:FF:5C:DD:A8:43:A9 X509v3 Authority Key Identifier: keyid:B3:EC:1F:F6:AD:55:2A:A1:6E:E1:01:95:64:BA:D9:F7:61:FD:B5:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A381A/28E86E4479FF11EEB32C2379C4F9AE02/s-wf9q1VKqFu4QGVZLrZ92H9tdg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s-wf9q1VKqFu4QGVZLrZ92H9tdg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A381A/28E86E4479FF11EEB32C2379C4F9AE02/EBB7A41AB4DA11EEBD650259C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.93.0/24 IPv6: 2001:df0:22d::/48 Signature Algorithm: sha256WithRSAEncryption 4b:8f:87:8b:af:ea:ed:2e:1d:d2:a4:74:0a:72:c7:63:42:f9: 7e:30:df:5d:af:e5:63:4d:b4:70:ab:4d:60:c6:26:9d:38:1b: 40:02:02:3d:19:b0:e9:ea:ef:24:62:f6:23:b5:2a:7e:e2:65: c9:93:29:d4:cb:39:46:b4:69:ed:cc:f4:0a:03:c2:4d:92:e5: 02:cb:67:20:72:e8:54:2a:5e:43:99:3e:2d:9f:52:94:d3:92: 8a:48:09:9b:20:9a:18:5a:c5:55:38:82:b3:f1:d2:03:1d:d7: 62:2c:e7:68:32:27:6b:f2:ae:69:c8:35:d5:9d:0a:36:28:a9: ac:25:8d:8a:ae:a5:9c:fb:17:d0:fa:31:d2:62:16:d1:6b:56: ef:07:c7:a6:57:af:ff:49:e4:23:bc:ac:72:54:f2:2a:35:03: 54:07:c1:84:df:ce:77:51:ac:81:93:5d:97:ce:d4:ee:7d:d6: 12:87:1a:65:48:18:e5:17:3a:c7:12:8a:32:f2:55:65:b9:03: ab:02:75:b7:2d:b4:62:24:18:e3:68:01:2b:59:01:37:41:25: c0:7e:39:fb:46:2f:ce:2b:3a:f9:22:d3:da:00:c2:b8:a5:8f: bd:4a:fc:a7:9b:5f:7d:3f:9b:8f:5a:e6:df:b6:44:8d:ad:30: df:67:97:1c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM4MUExMTAvBgNVBAUTKEIzRUMxRkY2QUQ1NTJBQTE2RUUxMDE5NTY0QkFEOUY3 NjFGREI1RDgwHhcNMjUwOTAzMDQ1MjM5WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3Yzk5Ni0xYzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1I/mHDYIVhdgHndVE1QarUq8sDeaEGskb+3jt+wA0zdLipQa2EICmx2EDOFg SI+dI7ZAwEEWujXqPsOUn8mMyuxIz2QUaEWeWixjd5VL1TOCX0ce1XRXy+MXcsMI NMo7Tmua8EeSrcEVms5ubtJFm1G3sYjtUrhQvPrZAvq5k2tL300v6BZSubv0lySi QXDi7ykUcrEUxI5qAKxIwqUkDRSj0tCQtk1/8Z/IlwRQLrzYLaaBeC/e7U/8smeP YVqYf8ZeBRPQjetCMhQ5LrCjf80uTYZC4Q9FfnV5Ot+CZHk7WHLj30RzCORDs8YA wOFAfhyHQWo3NABa0Xqp8+Lp3QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDi1JakQ bQulDoVaglyP/1zdqEOpMB8GA1UdIwQYMBaAFLPsH/atVSqhbuEBlWS62fdh/bXY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzgxQS8yOEU4NkU0NDc5 RkYxMUVFQjMyQzIzNzlDNEY5QUUwMi9zLXdmOXExVktxRnU0UUdWWkxyWjkySDl0 ZGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Mtd2Y5cTFWS3FGdTRRR1ZaTHJaOTJIOXRkZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTM4MUEvMjhFODZFNDQ3OUZGMTFFRUIzMkMyMzc5QzRGOUFFMDIvRUJCN0E0MUFC NERBMTFFRUJENjUwMjU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKJV0wDwQCAAIwCQMHACABDfACLTANBgkqhkiG9w0BAQsF AAOCAQEAS4+Hi6/q7S4d0qR0CnLHY0L5fjDfXa/lY020cKtNYMYmnTgbQAICPRmw 6ervJGL2I7UqfuJlyZMp1Ms5RrRp7cz0CgPCTZLlAstnIHLoVCpeQ5k+LZ9SlNOS ikgJmyCaGFrFVTiCs/HSAx3XYiznaDIna/Kuacg11Z0KNiiprCWNiq6lnPsX0Pox 0mIW0WtW7wfHplev/0nkI7ysclTyKjUDVAfBhN/Od1GsgZNdl87U7n3WEocaZUgY 5Rc6xxKKMvJVZbkDqwJ1ty20YiQY42gBK1kBN0ElwH45+0Yvzis6+SLT2gDCuKWP vUr8p5tffT+bj1rm37ZEja0w32eXHA== -----END CERTIFICATE-----Generated at Mon Oct 20 12:15:34 2025 by rpki-client