$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/CF2E99C88C0911EAAFF6CD27C4F9AE02.roa File: CF2E99C88C0911EAAFF6CD27C4F9AE02.roa (raw, json) Hash identifier: WlJN5u1oi9WPrD229vbsWsLGL/hLS+xCYNJ5+hmxu8E= Subject key identifier: 50:E5:C6:EC:F9:2C:B1:64:E0:4E:F4:72:5A:5B:07:2C:E5:8C:C0:AA Certificate issuer: /CN=A91A8666/serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Certificate serial: 0A12 Authority key identifier: 32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/CF2E99C88C0911EAAFF6CD27C4F9AE02.roa Signing time: Fri 10 Oct 2025 21:20:34 +0000 ROA not before: Fri 10 Oct 2025 21:20:34 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 16509 IP address blocks: 203.210.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:53:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2578 (0xa12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8666, serialNumber=32843384FAE6AF6C3176E1DF74E90881D6D97592 Validity Not Before: Oct 10 21:20:34 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68e978a1-a9aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:55:2a:11:b0:b2:1d:7a:87:ae:c1:5e:3a:dc: 60:16:33:9e:9d:55:28:f4:5a:29:5f:51:ea:4f:78: 4f:6b:38:4a:dc:56:3a:08:1c:7c:ba:98:57:34:56: c8:a1:a8:f5:f1:75:72:e0:54:e4:4a:13:a8:b7:70: 0f:7e:ab:8d:30:1c:a8:0e:09:1a:b8:5a:fe:da:97: 68:5d:43:8c:12:53:4c:aa:67:3d:c7:22:66:90:27: af:bc:98:dc:6f:8d:a3:75:1e:69:67:22:89:bd:8e: 05:c6:d6:99:3f:01:db:a9:07:18:cd:b4:e0:25:94: 7b:f2:48:b2:7f:bb:e6:56:55:4a:c4:da:47:c3:b2: 00:74:e7:b0:1c:82:fe:74:e6:ce:85:b7:02:9a:24: b0:7c:89:3c:0e:60:6b:e7:4a:74:c1:bc:26:0e:02: 51:ee:88:4a:81:23:12:cc:bd:b6:d2:9f:05:e2:f3: 05:3c:a7:5f:63:13:e9:af:ab:f2:ad:cd:cb:3f:b3: da:36:aa:85:49:d6:56:87:59:60:d0:51:cc:c2:91: 09:08:27:ad:44:bc:97:69:d1:00:00:10:35:d2:59: 6c:b1:4e:2a:01:85:2e:b0:cb:2a:23:99:e7:19:db: bc:3f:76:00:c6:02:e2:c6:1d:10:e4:e5:a8:56:a3: 3c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:E5:C6:EC:F9:2C:B1:64:E0:4E:F4:72:5A:5B:07:2C:E5:8C:C0:AA X509v3 Authority Key Identifier: keyid:32:84:33:84:FA:E6:AF:6C:31:76:E1:DF:74:E9:08:81:D6:D9:75:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/MoQzhPrmr2wxduHfdOkIgdbZdZI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MoQzhPrmr2wxduHfdOkIgdbZdZI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8666/623CD6E484F311EAB1FBBB18C4F9AE02/CF2E99C88C0911EAAFF6CD27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.210.75.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:26:e4:fa:36:28:f4:70:2c:e9:b6:e9:90:b9:82:30:04:c7: 13:2f:6b:e5:da:86:76:61:a3:9b:9e:0b:3c:e0:c7:71:31:77: fa:7a:ae:58:fe:82:46:59:a7:0e:09:51:ff:c7:59:7c:14:de: 5a:5d:62:f2:3e:d2:a3:42:2e:f3:9d:15:f7:74:a1:56:0b:b2: 62:e1:ba:4c:be:bc:09:3e:3c:ca:7d:1e:b4:01:7f:88:4a:8e: 79:30:3c:83:1d:d9:ea:44:f2:db:b5:13:01:a6:eb:b6:88:54: 90:64:6f:75:e0:46:c8:a4:aa:bd:fd:bc:6a:dc:f1:3c:9a:98: 8d:a0:7a:88:24:34:b4:33:81:a5:42:ee:8e:ab:9b:9c:82:e3: 0c:3b:6d:b3:7b:02:a2:ba:b4:59:b1:7e:b3:6a:68:b5:2f:4f: 45:cc:90:b8:e2:e8:7e:8f:d0:a1:30:84:6a:02:69:2a:f6:b1: 01:64:89:8d:8c:c3:2c:27:59:cd:87:6e:72:f9:47:e0:55:c8: 96:ba:2a:b7:e7:f6:81:ee:97:fc:22:a4:8e:8e:8c:7a:12:ff: 73:bb:b5:15:e2:cb:52:20:2f:fe:ed:ea:23:e6:c2:9e:fa:18: 75:19:53:db:c1:40:b8:6f:51:ac:b7:c9:50:86:11:55:55:36: a3:52:05:c4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICChIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NjYxMTAvBgNVBAUTKDMyODQzMzg0RkFFNkFGNkMzMTc2RTFERjc0RTkwODgx RDZEOTc1OTIwHhcNMjUxMDEwMjEyMDM0WhcNMjYxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGU5NzhhMS1hOWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFUqEbCyHXqHrsFeOtxgFjOenVUo9FopX1HqT3hPazhK3FY6CBx8uphXNFbI oaj18XVy4FTkShOot3APfquNMByoDgkauFr+2pdoXUOMElNMqmc9xyJmkCevvJjc b42jdR5pZyKJvY4FxtaZPwHbqQcYzbTgJZR78kiyf7vmVlVKxNpHw7IAdOewHIL+ dObOhbcCmiSwfIk8DmBr50p0wbwmDgJR7ohKgSMSzL220p8F4vMFPKdfYxPpr6vy rc3LP7PaNqqFSdZWh1lg0FHMwpEJCCetRLyXadEAABA10llssU4qAYUusMsqI5nn Gdu8P3YAxgLixh0Q5OWoVqM84wIDAQABo4IClTCCApEwHQYDVR0OBBYEFFDlxuz5 LLFk4E70clpbByzljMCqMB8GA1UdIwQYMBaAFDKEM4T65q9sMXbh33TpCIHW2XWS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY2Ni82MjNDRDZFNDg0 RjMxMUVBQjFGQkJCMThDNEY5QUUwMi9Nb1F6aFBybXIyd3hkdUhmZE9rSWdkYlpk WkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01vUXpoUHJtcjJ3eGR1SGZkT2tJZ2RiWmRaSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg2NjYvNjIzQ0Q2RTQ4NEYzMTFFQUIxRkJCQjE4QzRGOUFFMDIvQ0YyRTk5Qzg4 QzA5MTFFQUFGRjZDRDI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADL0kswDQYJKoZIhvcNAQELBQADggEBAI8m5Po2KPRwLOm2 6ZC5gjAExxMva+XahnZho5ueCzzgx3Exd/p6rlj+gkZZpw4JUf/HWXwU3lpdYvI+ 0qNCLvOdFfd0oVYLsmLhuky+vAk+PMp9HrQBf4hKjnkwPIMd2epE8tu1EwGm67aI VJBkb3XgRsikqr39vGrc8TyamI2geogkNLQzgaVC7o6rm5yC4ww7bbN7AqK6tFmx frNqaLUvT0XMkLji6H6P0KEwhGoCaSr2sQFkiY2MwywnWc2HbnL5R+BVyJa6Krfn 9oHul/wipI6OjHoS/3O7tRXiy1IgL/7t6iPmwp76GHUZU9vBQLhvUay3yVCGEVVV NqNSBcQ= -----END CERTIFICATE-----Generated at Mon Oct 20 08:49:41 2025 by rpki-client