$ rpki-client -vvf rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/AC2F8D9691FE11F08175A865C4F9AE02.roa File: AC2F8D9691FE11F08175A865C4F9AE02.roa (raw, json) Hash identifier: X3GCvpm+LqSIBcNVoX1kDutylfC9FZUiE/dbXMSPreM= Subject key identifier: 05:3D:32:5B:AF:95:22:28:24:28:C6:DB:90:F4:3C:6D:2B:7B:71:82 Certificate issuer: /CN=A91AAEB2/serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Certificate serial: 0165 Authority key identifier: 9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/AC2F8D9691FE11F08175A865C4F9AE02.roa Signing time: Mon 15 Sep 2025 06:40:32 +0000 ROA not before: Mon 15 Sep 2025 06:40:32 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 137261 IP address blocks: 202.28.60.0/24 maxlen: 24 202.28.62.0/24 maxlen: 24 2001:3c8:1408::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 08:45:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 357 (0x165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AAEB2, serialNumber=9B98FB7D468983A2C14772733248EFFA3462E126 Validity Not Before: Sep 15 06:40:32 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68c7b4e0-7336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fc:1a:d2:09:bb:04:1b:08:a5:73:ad:b6:01: fb:98:20:04:14:c8:fb:45:4f:72:3b:65:32:88:f4: 44:4f:f6:d8:41:fd:7f:09:42:cb:9f:e1:61:32:4b: 1b:f8:70:67:b3:8e:cc:71:d8:6d:1d:06:c0:20:6e: a9:e3:e5:ac:04:47:e3:c2:7f:4c:50:04:2e:10:43: 95:42:b5:06:88:5d:7c:1f:68:07:58:84:18:28:b6: be:52:c5:51:4e:e5:fb:b2:63:ac:4e:fc:80:e6:be: f1:bd:98:f8:88:b0:76:39:a4:29:cb:a7:b0:f9:df: 44:f5:be:44:77:78:3f:75:55:3b:f9:34:08:a8:01: 0d:80:b1:37:27:f2:e8:87:8f:0f:7f:a9:4f:72:76: 42:06:0e:36:02:89:64:22:34:c4:c8:a5:f1:61:5b: 95:c8:b8:ce:2b:2c:d9:f0:55:1b:bc:87:9d:a7:fc: 5f:1b:46:1a:9a:10:be:ce:c4:05:66:19:f4:99:ea: 1f:dd:a9:62:d0:28:9b:18:8b:da:88:01:a7:a4:c6: d4:de:7a:6e:ab:f1:70:e7:e4:86:8a:67:3e:40:09: 0b:4c:73:43:f7:d9:fa:2a:d9:a9:f8:cf:4b:a9:6c: 16:9f:af:20:d3:5c:3a:ff:aa:74:94:b2:e8:6d:c1: 83:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:3D:32:5B:AF:95:22:28:24:28:C6:DB:90:F4:3C:6D:2B:7B:71:82 X509v3 Authority Key Identifier: keyid:9B:98:FB:7D:46:89:83:A2:C1:47:72:73:32:48:EF:FA:34:62:E1:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/m5j7fUaJg6LBR3JzMkjv-jRi4SY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5j7fUaJg6LBR3JzMkjv-jRi4SY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AAEB2/3952100E6E8311EFAB726180C4F9AE02/AC2F8D9691FE11F08175A865C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.28.60.0/24 202.28.62.0/24 IPv6: 2001:3c8:1408::/48 Signature Algorithm: sha256WithRSAEncryption 34:26:49:e7:64:ac:df:e3:61:c3:45:e7:6f:d0:cd:c0:91:a8: ad:ce:32:0b:b6:46:e1:0e:a3:e5:d9:bc:d0:05:42:f3:b3:05: 4c:a6:9b:42:78:42:ba:83:9c:03:7a:86:c6:08:3c:a7:a4:f2: 2a:f4:81:39:aa:32:2d:af:de:bc:70:34:71:4a:fe:8a:c4:93: 18:0d:5e:ad:eb:07:2e:f1:c7:1a:9f:d4:fd:63:cd:c6:81:16: e1:fc:60:d3:81:89:6d:7e:e1:a1:2d:07:a3:0f:35:ce:77:36: fc:93:e0:1b:f8:0d:1d:aa:c5:e7:a5:a6:58:75:b2:e5:12:ff: ed:2c:a3:4d:3f:54:24:fe:8e:15:26:78:c9:c3:67:c4:49:26: be:58:10:1c:e9:59:cc:22:6f:9c:81:a5:a8:76:45:45:43:53: 8b:f7:4e:c8:b1:46:97:68:93:07:b0:5f:af:3d:6e:e8:5d:24: a2:cc:8a:46:ce:c3:b7:71:dd:f8:bf:65:b2:4d:e8:a6:00:4f: 0a:6e:bb:3a:20:20:9f:0d:11:8f:af:98:e3:6a:0d:fa:5d:f4: e4:ee:42:9d:de:3b:85:99:fd:9f:6f:6f:c8:61:86:64:32:1f: 6d:a0:fd:78:95:cf:c9:c9:92:81:92:5c:65:6d:96:98:08:34: 74:51:fb:7a -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFFQjIxMTAvBgNVBAUTKDlCOThGQjdENDY4OTgzQTJDMTQ3NzI3MzMyNDhFRkZB MzQ2MkUxMjYwHhcNMjUwOTE1MDY0MDMyWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM3YjRlMC03MzM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPwa0gm7BBsIpXOttgH7mCAEFMj7RU9yO2UyiPRET/bYQf1/CULLn+FhMksb +HBns47McdhtHQbAIG6p4+WsBEfjwn9MUAQuEEOVQrUGiF18H2gHWIQYKLa+UsVR TuX7smOsTvyA5r7xvZj4iLB2OaQpy6ew+d9E9b5Ed3g/dVU7+TQIqAENgLE3J/Lo h48Pf6lPcnZCBg42AolkIjTEyKXxYVuVyLjOKyzZ8FUbvIedp/xfG0YamhC+zsQF Zhn0meof3ali0CibGIvaiAGnpMbU3npuq/Fw5+SGimc+QAkLTHND99n6Ktmp+M9L qWwWn68g01w6/6p0lLLobcGDdQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFAU9Mluv lSIoJCjG25D0PG0re3GCMB8GA1UdIwQYMBaAFJuY+31GiYOiwUdyczJI7/o0YuEm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUVCMi8zOTUyMTAwRTZF ODMxMUVGQUI3MjYxODBDNEY5QUUwMi9tNWo3ZlVhSmc2TEJSM0p6TWtqdi1qUmk0 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL201ajdmVWFKZzZMQlIzSnpNa2p2LWpSaTRTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFFQjIvMzk1MjEwMEU2RTgzMTFFRkFCNzI2MTgwQzRGOUFFMDIvQUMyRjhEOTY5 MUZFMTFGMDgxNzVBODY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBADKHDwDBADKHD4wDwQCAAIwCQMHACABA8gUCDANBgkqhkiG 9w0BAQsFAAOCAQEANCZJ52Ss3+Nhw0Xnb9DNwJGorc4yC7ZG4Q6j5dm80AVC87MF TKabQnhCuoOcA3qGxgg8p6TyKvSBOaoyLa/evHA0cUr+isSTGA1eresHLvHHGp/U /WPNxoEW4fxg04GJbX7hoS0How81znc2/JPgG/gNHarF56WmWHWy5RL/7SyjTT9U JP6OFSZ4ycNnxEkmvlgQHOlZzCJvnIGlqHZFRUNTi/dOyLFGl2iTB7Bfrz1u6F0k osyKRs7Dt3Hd+L9lsk3opgBPCm67OiAgnw0Rj6+Y42oN+l305O5Cnd47hZn9n29v yGGGZDIfbaD9eJXPycmSgZJcZW2WmAg0dFH7eg== -----END CERTIFICATE-----Generated at Mon Oct 20 19:21:22 2025 by rpki-client