$ rpki-client -vvf rpki.apnic.net/member_repository/A91C5E1C/6475893A879311F0B5786346C4F9AE02/2A3F7C6A879F11F09F9FAD48C4F9AE02.roa File: 2A3F7C6A879F11F09F9FAD48C4F9AE02.roa (raw, json) Hash identifier: Axxx6+J8twN5fIfKmfOOFMg3aNjqRhz53eFIdguiEt0= Subject key identifier: 6C:66:73:4C:C8:B5:22:0E:0F:ED:50:8E:51:CA:F8:72:0A:FF:84:CD Certificate issuer: /CN=A91C5E1C/serialNumber=76078D3619B7C2AFBDDA33AB5363EE5FED7A860D Certificate serial: 02 Authority key identifier: 76:07:8D:36:19:B7:C2:AF:BD:DA:33:AB:53:63:EE:5F:ED:7A:86:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dgeNNhm3wq-92jOrU2PuX-16hg0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C5E1C/6475893A879311F0B5786346C4F9AE02/2A3F7C6A879F11F09F9FAD48C4F9AE02.roa Signing time: Tue 02 Sep 2025 01:50:13 +0000 ROA not before: Tue 02 Sep 2025 01:50:13 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 136408 IP address blocks: 203.12.86.0/24 maxlen: 24 2001:df5:ff40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C5E1C/6475893A879311F0B5786346C4F9AE02/dgeNNhm3wq-92jOrU2PuX-16hg0.crl rsync://rpki.apnic.net/member_repository/A91C5E1C/6475893A879311F0B5786346C4F9AE02/dgeNNhm3wq-92jOrU2PuX-16hg0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dgeNNhm3wq-92jOrU2PuX-16hg0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:24:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C5E1C, serialNumber=76078D3619B7C2AFBDDA33AB5363EE5FED7A860D Validity Not Before: Sep 2 01:50:13 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b64d54-26ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d7:62:04:23:3b:41:66:a7:45:9a:e5:65:86: ae:e0:e5:76:bb:d2:ec:0b:17:32:32:79:54:e2:53: aa:a2:5c:2f:15:b1:7a:06:e1:fc:09:06:61:2a:9d: ac:e2:88:d4:f5:ea:14:a7:4c:93:b3:a2:33:40:f0: ad:8d:b4:cf:bb:23:b5:66:ff:3f:8e:37:60:2e:cb: 35:bd:6b:34:3f:01:84:d7:ac:65:f1:98:41:40:9f: d1:b4:44:d2:a9:17:72:f2:61:3e:08:31:c3:f8:23: e6:36:77:e6:6d:06:70:77:51:94:cb:ab:0f:11:23: b7:37:43:c9:b9:32:58:1b:bf:51:53:13:f1:3a:00: a6:ec:cf:59:5b:a0:ea:a1:c4:f6:5f:59:a1:1b:a9: 19:4c:6e:25:11:24:25:cd:f7:bc:f9:3f:df:68:a5: 9b:03:c5:9b:5c:82:95:ac:4e:81:b4:a6:96:a4:fa: b6:f4:fd:87:e7:fd:d0:e8:9d:ff:7f:2e:3f:00:1a: 12:d8:98:04:56:57:f7:e1:6b:fe:d7:10:40:a6:4f: c8:8e:27:55:d4:79:a1:f5:e0:92:94:8d:84:da:a7: 6d:d5:63:e7:00:4d:1a:7b:5e:51:d3:42:58:08:db: 75:eb:ff:8d:0b:93:98:0c:71:da:b3:cb:57:ad:94: 6e:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:66:73:4C:C8:B5:22:0E:0F:ED:50:8E:51:CA:F8:72:0A:FF:84:CD X509v3 Authority Key Identifier: keyid:76:07:8D:36:19:B7:C2:AF:BD:DA:33:AB:53:63:EE:5F:ED:7A:86:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C5E1C/6475893A879311F0B5786346C4F9AE02/dgeNNhm3wq-92jOrU2PuX-16hg0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dgeNNhm3wq-92jOrU2PuX-16hg0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C5E1C/6475893A879311F0B5786346C4F9AE02/2A3F7C6A879F11F09F9FAD48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.12.86.0/24 IPv6: 2001:df5:ff40::/48 Signature Algorithm: sha256WithRSAEncryption 19:26:8b:5e:8f:dd:39:1f:79:be:16:61:72:cb:4b:28:36:07: 5f:e6:de:fc:a6:44:97:8f:8f:6f:93:75:5a:e4:36:17:ce:86: a1:3a:6e:b0:04:b9:07:39:90:e8:1d:e3:2b:23:93:2c:94:dc: e7:79:26:04:47:cb:8e:ce:a1:b4:b0:94:fc:0c:81:0e:e2:9c: 29:87:c5:c9:d0:d4:b1:ac:dd:69:ec:0c:e9:88:23:28:dc:5e: e7:f9:66:e7:fe:5b:3f:23:b0:2e:81:35:be:34:37:f3:1e:02: 53:11:79:bd:2b:22:f8:bd:58:49:1d:99:7b:63:5f:87:d8:c4: 4e:c8:f0:37:32:2d:b9:be:13:bf:11:3d:5c:3c:3d:95:44:e9: 5d:8a:5f:87:88:d6:77:57:ad:1a:31:fd:a2:7b:4e:be:c7:b7: b2:71:31:f7:f1:2a:d1:9c:39:ee:38:c0:e9:2a:bc:60:1a:3c: fb:03:98:fd:c2:13:51:51:c8:51:df:9c:26:02:3c:64:e6:71: 40:ea:c8:31:1c:f4:bd:9a:55:b0:1f:01:8b:15:db:c9:ed:78: 0d:42:28:86:e9:1c:9f:28:9a:94:e3:47:9c:90:fa:e7:e0:8b: e8:ee:df:62:a5:75:8f:92:5d:bf:9b:2b:61:b6:73:c8:84:05: 57:50:97:74 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NUUxQzExMC8GA1UEBRMoNzYwNzhEMzYxOUI3QzJBRkJEREEzM0FCNTM2M0VFNUZF RDdBODYwRDAeFw0yNTA5MDIwMTUwMTNaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YjY0ZDU0LTI2Y2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC412IEIztBZqdFmuVlhq7g5Xa70uwLFzIyeVTiU6qiXC8VsXoG4fwJBmEqnazi iNT16hSnTJOzojNA8K2NtM+7I7Vm/z+ON2AuyzW9azQ/AYTXrGXxmEFAn9G0RNKp F3LyYT4IMcP4I+Y2d+ZtBnB3UZTLqw8RI7c3Q8m5Mlgbv1FTE/E6AKbsz1lboOqh xPZfWaEbqRlMbiURJCXN97z5P99opZsDxZtcgpWsToG0ppak+rb0/Yfn/dDonf9/ Lj8AGhLYmARWV/fha/7XEECmT8iOJ1XUeaH14JKUjYTap23VY+cATRp7XlHTQlgI 23Xr/40Lk5gMcdqzy1etlG4FAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUbGZzTMi1 Ig4P7VCOUcr4cgr/hM0wHwYDVR0jBBgwFoAUdgeNNhm3wq+92jOrU2PuX+16hg0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM1RTFDLzY0NzU4OTNBODc5 MzExRjBCNTc4NjM0NkM0RjlBRTAyL2RnZU5OaG0zd3EtOTJqT3JVMlB1WC0xNmhn MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZGdlTk5obTN3cS05MmpPclUyUHVYLTE2aGcwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NUUxQy82NDc1ODkzQTg3OTMxMUYwQjU3ODYzNDZDNEY5QUUwMi8yQTNGN0M2QTg3 OUYxMUYwOUY5RkFENDhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAMsMVjAPBAIAAjAJAwcAIAEN9f9AMA0GCSqGSIb3DQEBCwUA A4IBAQAZJotej905H3m+FmFyy0soNgdf5t78pkSXj49vk3Va5DYXzoahOm6wBLkH OZDoHeMrI5MslNzneSYER8uOzqG0sJT8DIEO4pwph8XJ0NSxrN1p7AzpiCMo3F7n +Wbn/ls/I7AugTW+NDfzHgJTEXm9KyL4vVhJHZl7Y1+H2MROyPA3Mi25vhO/ET1c PD2VROldil+HiNZ3V60aMf2ie06+x7eycTH38SrRnDnuOMDpKrxgGjz7A5j9whNR UchR35wmAjxk5nFA6sgxHPS9mlWwHwGLFdvJ7XgNQiiG6RyfKJqU40eckPrn4Ivo 7t9ipXWPkl2/mythtnPIhAVXUJd0 -----END CERTIFICATE-----Generated at Mon Oct 20 09:59:11 2025 by rpki-client