$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/99341DD6663D11EE8CBBAE7CC4F9AE02.roa File: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (raw, json) Hash identifier: NzwtW94OGR5LBUfhUFwuihytDl5251IuikJ6D/DeFPA= Subject key identifier: 6A:B8:B2:2D:88:41:8F:93:48:0A:77:F3:A4:68:84:3B:46:F9:6C:F7 Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 019E Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/99341DD6663D11EE8CBBAE7CC4F9AE02.roa Signing time: Wed 13 Aug 2025 04:42:14 +0000 ROA not before: Wed 13 Aug 2025 04:42:14 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 9466 IP address blocks: 203.5.217.0/24 maxlen: 24 203.6.31.0/24 maxlen: 24 203.6.32.0/24 maxlen: 24 203.6.33.0/24 maxlen: 24 203.6.36.0/22 maxlen: 22 203.6.64.0/21 maxlen: 21 203.6.72.0/21 maxlen: 21 203.6.118.0/24 maxlen: 24 203.6.119.0/24 maxlen: 24 203.6.120.0/24 maxlen: 24 203.10.217.0/24 maxlen: 24 203.11.0.0/24 maxlen: 24 2401:6bff::/40 maxlen: 40 2401:6bff:8000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 04:07:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 414 (0x19e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Aug 13 04:42:14 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689c17a6-63aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:f9:1a:46:05:52:05:98:aa:22:01:09:c5:0a: f9:2f:2f:d9:2c:c8:a9:5c:b6:dd:ea:80:0d:62:e4: 68:95:33:6b:06:10:ba:79:fb:2b:69:9e:c7:2e:8a: f0:8e:3f:1b:08:76:e7:b6:8b:36:16:95:d3:3d:a2: 6e:ee:94:52:21:b7:5d:24:14:e8:19:91:6e:57:97: b2:6c:26:f9:80:fe:a0:5d:9b:a0:23:d0:fc:20:90: 18:f1:6f:1f:3a:b8:aa:ad:ea:aa:d8:93:66:27:52: 44:ce:eb:64:7b:6f:f1:6b:17:c7:35:20:eb:98:23: 0b:c0:94:86:1c:29:1f:bc:6f:04:cd:3f:50:b9:16: 95:09:ec:d5:09:73:6e:85:3f:f0:f3:d5:cd:27:b4: 42:55:06:90:2c:84:4b:c5:fa:e1:47:0b:5c:8c:91: 13:7b:ee:ab:1d:60:d8:09:24:61:0b:a4:15:3d:51: 39:02:33:11:2a:8f:ce:7c:8a:28:32:ac:c6:20:0f: 08:ec:1a:a2:45:e6:c4:fb:9e:94:fc:b0:30:71:1a: 10:cd:41:1a:6a:91:e4:1f:94:22:72:34:32:16:a4: 74:14:44:2a:13:13:b7:27:a7:33:6f:21:be:d6:ca: a7:87:74:34:8e:17:5b:96:39:31:a3:b1:2d:86:fc: d4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:B8:B2:2D:88:41:8F:93:48:0A:77:F3:A4:68:84:3B:46:F9:6C:F7 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/99341DD6663D11EE8CBBAE7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.5.217.0/24 203.6.31.0-203.6.33.255 203.6.36.0/22 203.6.64.0/20 203.6.118.0-203.6.120.255 203.10.217.0/24 203.11.0.0/24 IPv6: 2401:6bff::/40 2401:6bff:8000::/40 Signature Algorithm: sha256WithRSAEncryption 98:e5:aa:42:8c:90:2d:a3:38:44:11:63:c8:15:84:a0:3d:9a: d0:c1:bb:2e:60:05:ee:09:21:db:f9:e9:43:07:75:cf:8f:8b: a4:06:ee:b1:74:38:f1:9f:47:ab:70:42:2a:53:27:6c:93:56: cb:74:c4:be:1d:55:38:c1:98:0b:72:b2:14:8e:e6:53:23:7a: 93:d6:13:42:cd:57:36:b5:c5:5b:7c:eb:a8:a4:89:55:d6:d6: 1f:13:c3:c4:c2:76:d2:1e:5e:4d:06:e6:b5:4f:ba:15:2e:ad: 15:40:db:8b:18:07:30:1d:a2:08:0c:a4:55:8f:39:fb:45:87: cd:4a:b4:6a:ee:d0:5b:8b:de:4e:de:34:ca:b3:33:11:55:c3: 7b:38:c1:fb:1c:b8:78:39:d0:85:5d:8c:0b:e0:69:96:7e:04: ef:b4:1e:9a:34:72:d9:49:6f:9a:41:60:77:d3:0c:6b:7f:f3: cf:e3:52:5a:3b:ba:61:2e:e1:b2:42:dc:1f:b6:a6:bf:44:6c: 4c:21:3d:f5:ac:38:4d:c7:7e:03:3f:71:9f:ae:db:36:69:21: df:7b:96:03:a4:c4:ed:75:bc:82:7a:a8:21:45:ac:16:a9:2a: 69:00:69:f9:51:fc:b5:60:86:1c:5e:77:92:4a:40:9c:5e:a8: 55:96:d8:da -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgICAZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjUwODEzMDQ0MjE0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODljMTdhNi02M2FhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn/kaRgVSBZiqIgEJxQr5Ly/ZLMipXLbd6oANYuRolTNrBhC6efsraZ7HLorw jj8bCHbntos2FpXTPaJu7pRSIbddJBToGZFuV5eybCb5gP6gXZugI9D8IJAY8W8f Oriqreqq2JNmJ1JEzutke2/xaxfHNSDrmCMLwJSGHCkfvG8EzT9QuRaVCezVCXNu hT/w89XNJ7RCVQaQLIRLxfrhRwtcjJETe+6rHWDYCSRhC6QVPVE5AjMRKo/OfIoo MqzGIA8I7BqiRebE+56U/LAwcRoQzUEaapHkH5QicjQyFqR0FEQqExO3J6czbyG+ 1sqnh3Q0jhdbljkxo7EthvzU6wIDAQABo4IC4TCCAt0wHQYDVR0OBBYEFGq4si2I QY+TSAp386RohDtG+Wz3MB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzlFODIvRUE3RTVGQTY2MzZGMTFFRTk3Qzc0QjVDQzRGOUFFMDIvOTkzNDFERDY2 NjNEMTFFRThDQkJBRTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwawYIKwYBBQUHAQcBAf8E XDBaMEAEAgABMDoDBADLBdkwDAMEAMsGHwMEAcsGIAMEAssGJAMEBMsGQDAMAwQB ywZ2AwQAywZ4AwQAywrZAwQAywsAMBYEAgACMBADBgAkAWv/AAMGACQBa/+AMA0G CSqGSIb3DQEBCwUAA4IBAQCY5apCjJAtozhEEWPIFYSgPZrQwbsuYAXuCSHb+elD B3XPj4ukBu6xdDjxn0ercEIqUydsk1bLdMS+HVU4wZgLcrIUjuZTI3qT1hNCzVc2 tcVbfOuopIlV1tYfE8PEwnbSHl5NBua1T7oVLq0VQNuLGAcwHaIIDKRVjzn7RYfN SrRq7tBbi95O3jTKszMRVcN7OMH7HLh4OdCFXYwL4GmWfgTvtB6aNHLZSW+aQWB3 0wxrf/PP41JaO7phLuGyQtwftqa/RGxMIT31rDhNx34DP3Gfrts2aSHfe5YDpMTt dbyCeqghRawWqSppAGn5Ufy1YIYcXneSSkCcXqhVltja -----END CERTIFICATE-----Generated at Sat Aug 23 22:14:33 2025 by rpki-client