$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/9D86A1047D6211F0888C2E65C4F9AE02.roa File: 9D86A1047D6211F0888C2E65C4F9AE02.roa (raw, json) Hash identifier: rWvp1lxk0ctUZw3/kQW3cE/9bG6JfhLj2nU0jXnes1E= Subject key identifier: 69:BC:FB:07:B3:7F:78:20:24:41:45:2C:7E:E5:BE:97:14:B0:A2:AB Certificate issuer: /CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Certificate serial: 0291 Authority key identifier: 45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/9D86A1047D6211F0888C2E65C4F9AE02.roa Signing time: Wed 20 Aug 2025 01:11:35 +0000 ROA not before: Wed 20 Aug 2025 01:11:35 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 834 IP address blocks: 202.134.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:06:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 657 (0x291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6550, serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Validity Not Before: Aug 20 01:11:35 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68a520c7-d327 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:8a:73:6c:34:36:e6:83:07:b8:22:9c:a3:a3: 22:78:78:25:2e:b8:13:9a:7c:31:6c:5e:fc:6b:b2: 6e:ff:ed:4e:fd:a4:43:fd:04:bd:bc:99:90:11:48: f7:b9:b0:af:60:c1:a7:bb:98:31:04:79:3d:b2:57: d0:a0:96:1c:7a:a2:f7:67:df:35:01:65:2b:bd:df: 40:dd:8c:2c:98:03:3b:5d:a5:6f:a6:bd:d3:0e:52: ea:60:0f:c1:a5:c6:1a:a8:5c:dd:33:17:52:43:6c: 1e:4a:c0:0f:80:7c:39:19:ba:14:29:22:90:b3:db: ff:2a:86:02:ad:57:a8:4a:48:7f:4f:eb:7b:6d:54: 01:cf:f0:3e:99:2c:7b:53:55:31:99:b3:b7:9d:4e: 62:da:21:5f:bd:0e:19:32:a3:62:40:91:d4:8f:a1: af:27:fa:5e:8f:df:7e:c9:8f:1e:56:fe:47:9c:6b: 29:19:46:bb:39:37:a1:3c:f2:e9:50:50:35:de:c1: 09:2c:07:16:97:76:7d:62:f6:b3:9c:1b:1a:99:52: d0:6f:db:36:d6:12:67:93:10:4b:de:6d:aa:77:4e: 8c:d0:f8:0f:19:ef:c2:83:98:c8:0f:ae:98:42:bc: 78:77:75:69:71:98:b5:da:ab:90:36:2d:a2:56:1c: 42:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:BC:FB:07:B3:7F:78:20:24:41:45:2C:7E:E5:BE:97:14:B0:A2:AB X509v3 Authority Key Identifier: keyid:45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/9D86A1047D6211F0888C2E65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.134.242.0/24 Signature Algorithm: sha256WithRSAEncryption 66:09:24:0c:77:ab:c5:f0:f7:cc:5f:fa:79:a5:56:b6:db:03: 26:01:54:2a:a0:a2:95:d1:41:82:d4:c9:29:27:f5:49:d7:81: 1e:79:cc:74:f3:19:20:54:a5:c3:c8:d0:ea:d0:86:03:4d:55: 2e:29:29:7e:64:a8:1f:29:32:1d:a3:a5:a9:92:b6:3b:99:71: 96:4c:bc:81:56:4d:5d:35:fc:72:ce:24:26:18:9a:f3:fd:4f: 62:56:bb:58:f3:8c:40:2f:5b:20:19:5f:b5:96:16:dc:bd:bd: f1:73:ed:20:db:bb:33:11:c8:ab:f0:bd:c3:f5:8f:ce:b5:48: d7:12:62:f0:31:f9:c1:9b:b2:e1:3a:39:a2:20:70:98:79:5d: e9:c4:70:3d:9c:7b:46:d8:2d:c6:3c:d5:07:6e:4d:c6:be:63: e6:57:d3:e2:35:61:bd:c8:f6:e0:f9:e8:f4:d0:c7:7f:99:83: 48:ef:12:1f:cf:a7:14:61:c9:55:98:c6:0b:51:ee:35:59:4d: ef:c3:1d:70:04:4c:70:d9:92:77:29:8b:04:a4:8c:23:11:45: 91:3d:7a:67:26:b0:6b:71:4f:a5:bb:d9:78:7e:d3:84:b0:f7: 95:f3:d1:92:ff:0d:1e:22:57:82:02:9c:23:58:8b:44:e8:5a: dc:6b:9c:d9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICApEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NTAxMTAvBgNVBAUTKDQ1NkVFQTA2OTJDNkE0RjI2RjUzRDJEMjM3RDFDQjRE Q0Q3ODMzMDUwHhcNMjUwODIwMDExMTM1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE1MjBjNy1kMzI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA54pzbDQ25oMHuCKco6MieHglLrgTmnwxbF78a7Ju/+1O/aRD/QS9vJmQEUj3 ubCvYMGnu5gxBHk9slfQoJYceqL3Z981AWUrvd9A3YwsmAM7XaVvpr3TDlLqYA/B pcYaqFzdMxdSQ2weSsAPgHw5GboUKSKQs9v/KoYCrVeoSkh/T+t7bVQBz/A+mSx7 U1UxmbO3nU5i2iFfvQ4ZMqNiQJHUj6GvJ/pej99+yY8eVv5HnGspGUa7OTehPPLp UFA13sEJLAcWl3Z9YvaznBsamVLQb9s21hJnkxBL3m2qd06M0PgPGe/Cg5jID66Y Qrx4d3VpcZi12quQNi2iVhxCqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGm8+wez f3ggJEFFLH7lvpcUsKKrMB8GA1UdIwQYMBaAFEVu6gaSxqTyb1PS0jfRy03NeDMF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU1MC84NDAwOTU0QUNF QzQxMUVEOEE4M0ZCMTFDNEY5QUUwMi9SVzdxQnBMR3BQSnZVOUxTTjlITFRjMTRN d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXN3FCcExHcFBKdlU5TFNOOUhMVGMxNE13VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY1NTAvODQwMDk1NEFDRUM0MTFFRDhBODNGQjExQzRGOUFFMDIvOUQ4NkExMDQ3 RDYyMTFGMDg4OEMyRTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKhvIwDQYJKoZIhvcNAQELBQADggEBAGYJJAx3q8Xw98xf +nmlVrbbAyYBVCqgopXRQYLUySkn9UnXgR55zHTzGSBUpcPI0OrQhgNNVS4pKX5k qB8pMh2jpamStjuZcZZMvIFWTV01/HLOJCYYmvP9T2JWu1jzjEAvWyAZX7WWFty9 vfFz7SDbuzMRyKvwvcP1j861SNcSYvAx+cGbsuE6OaIgcJh5XenEcD2ce0bYLcY8 1QduTca+Y+ZX0+I1Yb3I9uD56PTQx3+Zg0jvEh/PpxRhyVWYxgtR7jVZTe/DHXAE THDZkncpiwSkjCMRRZE9emcmsGtxT6W72Xh+04Sw95Xz0ZL/DR4iV4ICnCNYi0To WtxrnNk= -----END CERTIFICATE-----Generated at Sat Aug 23 07:06:23 2025 by rpki-client