$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/CF85B73C74F011F0847A5D0DC4F9AE02.roa File: CF85B73C74F011F0847A5D0DC4F9AE02.roa (raw, json) Hash identifier: ROJkHjEex+krTnEbfnPSXsQUMEVZuDVq8C6r5b58NiQ= Subject key identifier: D5:02:A8:55:A0:CD:AD:02:0E:13:73:7D:03:57:E2:77:A7:60:FA:E3 Certificate issuer: /CN=A91AF2CD/serialNumber=5874520DA781F780DBD710D42C841C13A7AD1757 Certificate serial: 01E1 Authority key identifier: 58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/CF85B73C74F011F0847A5D0DC4F9AE02.roa Signing time: Sat 09 Aug 2025 07:16:47 +0000 ROA not before: Sat 09 Aug 2025 07:16:47 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 18450 IP address blocks: 116.204.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:08:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF2CD, serialNumber=5874520DA781F780DBD710D42C841C13A7AD1757 Validity Not Before: Aug 9 07:16:47 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6896f5df-8589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2e:b3:14:4c:ac:c0:5a:02:f9:73:05:c4:62: da:95:72:e3:c5:9f:27:42:ce:16:35:c2:b8:29:47: a0:a4:36:aa:36:f5:54:f0:27:5e:44:2b:e0:a5:8e: 45:e5:b7:25:e3:87:67:36:59:1a:25:b9:ed:d8:e0: b3:45:4a:c1:69:b3:2d:b1:41:e3:5d:0f:3c:0c:9a: fb:1a:28:e0:e3:7c:99:94:ea:ec:1a:e0:10:44:f8: 36:07:1a:e2:43:89:69:c6:58:8a:40:32:42:38:55: 11:fd:d7:73:0d:ad:5c:aa:7a:d8:9a:51:76:f7:ff: 79:d6:78:ac:9e:b0:92:e3:95:4e:e6:25:1a:28:83: 9f:e9:92:09:6f:5b:e8:bf:b7:89:b1:a2:09:be:c7: c0:5b:41:a2:c4:f5:af:f4:70:1d:18:e0:cf:ef:2b: 14:8b:bc:7d:e4:09:1a:af:44:79:8c:92:86:fa:35: 1d:34:4b:da:09:1d:af:65:aa:54:0d:72:26:82:57: 9c:be:bb:97:94:39:02:01:64:dc:6a:32:f2:68:43: 77:c0:26:06:f6:04:3f:e9:08:82:08:40:d3:ef:17: b8:30:3e:3c:e8:b1:c6:a0:60:4b:c6:89:35:a0:14: db:f9:da:7e:4e:a0:d1:d2:85:ae:83:53:d7:9a:8a: cf:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:02:A8:55:A0:CD:AD:02:0E:13:73:7D:03:57:E2:77:A7:60:FA:E3 X509v3 Authority Key Identifier: keyid:58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/CF85B73C74F011F0847A5D0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.204.239.0/24 Signature Algorithm: sha256WithRSAEncryption 38:4e:0b:72:b4:f6:d0:70:cf:33:63:09:81:44:77:b3:e7:55: fa:e9:7b:ba:b1:55:d9:07:6c:95:1c:99:43:72:40:a6:d4:57: 0e:28:2e:32:b2:c8:e3:e5:bc:e0:a0:17:ef:35:e5:e6:ab:b1: 7e:8a:2c:e1:5b:8a:67:44:1b:c1:1b:bf:8d:15:be:83:95:58: e6:78:87:98:81:e7:c8:e2:20:4a:27:37:37:c8:3f:bd:5f:8f: 1b:d0:3a:26:7e:db:0f:e0:27:b1:97:41:2e:a4:b9:a3:df:2a: b4:04:f7:22:5e:91:8e:cb:f5:43:54:42:a8:af:4f:3f:c6:58: bf:56:62:f0:4a:ea:99:4d:df:e2:39:29:07:07:42:6d:14:4d: ea:ea:c1:be:73:a4:9a:89:3f:b1:9e:74:82:bd:01:99:53:29: a6:db:72:29:01:08:e8:d9:83:6d:6d:94:2e:c5:5e:d3:e8:ca: 24:3a:cf:3e:19:9d:86:6b:87:b6:48:68:4c:ae:db:0f:0f:d3: 9d:51:24:c1:09:fd:dd:a6:0c:34:27:24:06:48:81:62:71:ed: bc:63:a1:94:80:8c:64:07:0e:ab:e0:0b:08:7f:6e:46:40:c3: 2f:06:5a:de:43:4c:50:1f:85:90:e1:b0:81:ca:e0:41:2e:f7: 17:c2:97:bc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYyQ0QxMTAvBgNVBAUTKDU4NzQ1MjBEQTc4MUY3ODBEQkQ3MTBENDJDODQxQzEz QTdBRDE3NTcwHhcNMjUwODA5MDcxNjQ3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2ZjVkZi04NTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1y6zFEyswFoC+XMFxGLalXLjxZ8nQs4WNcK4KUegpDaqNvVU8CdeRCvgpY5F 5bcl44dnNlkaJbnt2OCzRUrBabMtsUHjXQ88DJr7Gijg43yZlOrsGuAQRPg2Bxri Q4lpxliKQDJCOFUR/ddzDa1cqnrYmlF29/951nisnrCS45VO5iUaKIOf6ZIJb1vo v7eJsaIJvsfAW0GixPWv9HAdGODP7ysUi7x95Akar0R5jJKG+jUdNEvaCR2vZapU DXImglecvruXlDkCAWTcajLyaEN3wCYG9gQ/6QiCCEDT7xe4MD486LHGoGBLxok1 oBTb+dp+TqDR0oWug1PXmorPIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNUCqFWg za0CDhNzfQNX4nenYPrjMB8GA1UdIwQYMBaAFFh0Ug2ngfeA29cQ1CyEHBOnrRdX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjJDRC80RkNCQUMwMEQ0 NEMxMUVEODYyNzE1ODJDNEY5QUUwMi9XSFJTRGFlQjk0RGIxeERVTElRY0U2ZXRG MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dIUlNEYWVCOTREYjF4RFVMSVFjRTZldEYxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYyQ0QvNEZDQkFDMDBENDRDMTFFRDg2MjcxNTgyQzRGOUFFMDIvQ0Y4NUI3M0M3 NEYwMTFGMDg0N0E1RDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0zO8wDQYJKoZIhvcNAQELBQADggEBADhOC3K09tBwzzNj CYFEd7PnVfrpe7qxVdkHbJUcmUNyQKbUVw4oLjKyyOPlvOCgF+815earsX6KLOFb imdEG8Ebv40VvoOVWOZ4h5iB58jiIEonNzfIP71fjxvQOiZ+2w/gJ7GXQS6kuaPf KrQE9yJekY7L9UNUQqivTz/GWL9WYvBK6plN3+I5KQcHQm0UTerqwb5zpJqJP7Ge dIK9AZlTKabbcikBCOjZg21tlC7FXtPoyiQ6zz4ZnYZrh7ZIaEyu2w8P051RJMEJ /d2mDDQnJAZIgWJx7bxjoZSAjGQHDqvgCwh/bkZAwy8GWt5DTFAfhZDhsIHK4EEu 9xfCl7w= -----END CERTIFICATE-----Generated at Sat Aug 23 20:10:47 2025 by rpki-client