$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/4DFF14DE71F211F08D45AC42C4F9AE02.roa File: 4DFF14DE71F211F08D45AC42C4F9AE02.roa (raw, json) Hash identifier: gBF3Jk34am1InKRIBH9CrloJz67l7rFKCD8FkbkPjyM= Subject key identifier: 36:93:D5:5E:A7:00:2F:62:D1:D5:5B:1E:C0:E0:C2:7E:FF:68:B1:10 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 3644 Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/4DFF14DE71F211F08D45AC42C4F9AE02.roa Signing time: Tue 05 Aug 2025 11:49:55 +0000 ROA not before: Tue 05 Aug 2025 11:49:55 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 205220 IP address blocks: 116.90.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:29:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13892 (0x3644) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Aug 5 11:49:55 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6891efe3-0e25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:bc:a7:cf:8f:c2:56:13:63:ae:32:3a:b8:41: a2:6c:cd:39:6e:f5:d7:b8:9c:8d:79:e4:33:d7:cb: fa:98:2c:2e:a2:e6:47:52:92:0e:ba:b3:b6:28:c1: 39:c2:37:17:c8:28:16:66:73:eb:30:c3:22:2b:15: 21:c0:3c:3f:02:18:0a:ad:49:3d:11:f7:de:ee:9b: 93:df:af:57:39:59:0e:2d:c2:21:ce:47:05:51:6e: 1f:7b:41:3b:a4:e4:ed:21:df:02:da:ff:e0:fc:1e: 8a:a8:51:34:25:a7:73:b8:6c:85:7f:cf:42:23:18: 0d:69:69:51:a4:57:cd:a6:26:87:28:56:7d:15:e1: a9:c1:f5:c5:8f:ec:b3:ce:7b:26:f4:d9:23:9c:e2: d9:2f:c4:ed:38:48:9d:2f:60:63:3f:ca:eb:c4:be: b8:3a:76:60:65:2a:c7:81:d1:66:88:6e:7e:48:d0: 44:d8:c8:a7:ab:f0:09:98:a4:8d:1c:2b:10:08:1e: 5c:59:73:fd:21:ef:23:7c:c5:ae:a9:b9:0d:c0:66: 5a:43:65:b1:cb:88:a4:16:14:85:6c:09:75:c2:9b: 76:e9:de:96:f4:2d:06:40:35:bd:da:0c:74:59:ca: a8:c3:51:f0:32:dd:9a:03:fe:5c:c8:67:1c:66:a8: 77:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:93:D5:5E:A7:00:2F:62:D1:D5:5B:1E:C0:E0:C2:7E:FF:68:B1:10 X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/4DFF14DE71F211F08D45AC42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.90.115.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:27:87:c5:d6:da:1b:bb:3d:35:13:b2:a8:51:05:35:21:aa: 3c:4e:0e:55:e8:cb:e5:11:31:6b:cd:c9:23:55:75:67:b1:7f: 67:13:bb:98:b2:82:60:3c:3e:80:c5:97:25:f3:53:5a:b2:fc: c5:48:e9:4d:fa:d0:8d:a4:f4:a9:9e:f6:a5:11:88:fd:08:be: 11:b8:5a:a4:49:df:5f:f3:40:c8:77:45:cd:27:5a:52:b4:cf: 56:6c:47:ed:86:87:27:f4:45:22:f8:f3:af:fa:e3:af:60:71: 1d:21:3e:39:6f:49:cf:42:06:f2:e6:07:66:88:5f:1c:84:55: b2:9e:81:02:4e:c8:99:d0:43:ed:26:b9:ca:1d:c0:ed:9f:30: 62:b2:14:70:08:6e:e3:ec:12:e3:22:9d:1b:0d:cf:45:8e:de: 59:a0:07:22:5f:d0:f3:85:37:5d:0a:6b:58:59:1f:04:a9:ac: 15:d5:9f:e0:34:47:0b:bc:35:51:38:93:82:55:17:3a:87:79: 53:4e:cd:13:c8:1b:40:3d:4d:08:70:16:70:68:d8:a9:dc:2a: ad:32:01:08:0c:8f:76:a9:fb:fc:3b:a8:cb:c8:17:a6:71:53: c9:2b:03:e2:91:ee:85:58:f5:cf:f3:4a:38:4e:8a:4f:96:30: 84:05:47:44 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjUwODA1MTE0OTU1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxZWZlMy0wZTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwLynz4/CVhNjrjI6uEGibM05bvXXuJyNeeQz18v6mCwuouZHUpIOurO2KME5 wjcXyCgWZnPrMMMiKxUhwDw/AhgKrUk9Effe7puT369XOVkOLcIhzkcFUW4fe0E7 pOTtId8C2v/g/B6KqFE0JadzuGyFf89CIxgNaWlRpFfNpiaHKFZ9FeGpwfXFj+yz znsm9NkjnOLZL8TtOEidL2BjP8rrxL64OnZgZSrHgdFmiG5+SNBE2Minq/AJmKSN HCsQCB5cWXP9Ie8jfMWuqbkNwGZaQ2Wxy4ikFhSFbAl1wpt26d6W9C0GQDW92gx0 Wcqow1HwMt2aA/5cyGccZqh3cwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDaT1V6n AC9i0dVbHsDgwn7/aLEQMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVEN0UvRUNBNjgyMzQxRDg3MTFFMjk4MzIyREUwMDhCMDJDRDIvNERGRjE0REU3 MUYyMTFGMDhENDVBQzQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0WnMwDQYJKoZIhvcNAQELBQADggEBAE8nh8XW2hu7PTUT sqhRBTUhqjxODlXoy+URMWvNySNVdWexf2cTu5iygmA8PoDFlyXzU1qy/MVI6U36 0I2k9Kme9qURiP0IvhG4WqRJ31/zQMh3Rc0nWlK0z1ZsR+2Ghyf0RSL486/6469g cR0hPjlvSc9CBvLmB2aIXxyEVbKegQJOyJnQQ+0mucodwO2fMGKyFHAIbuPsEuMi nRsNz0WO3lmgByJf0POFN10Ka1hZHwSprBXVn+A0Rwu8NVE4k4JVFzqHeVNOzRPI G0A9TQhwFnBo2KncKq0yAQgMj3ap+/w7qMvIF6ZxU8krA+KR7oVY9c/zSjhOik+W MIQFR0Q= -----END CERTIFICATE-----Generated at Sun Aug 24 05:40:21 2025 by rpki-client