$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA294/C7AFA6A29DAA11F096420B63C4F9AE02/44D1A4E69DAB11F0A7401064C4F9AE02.roa File: 44D1A4E69DAB11F0A7401064C4F9AE02.roa (raw, json) Hash identifier: rrG273YrKP30bIP6LI9pQgElPTdMGXNtxru1G29zetU= Subject key identifier: 69:F8:26:17:69:70:5D:84:00:49:C4:5E:D0:D4:46:70:CE:A0:21:E3 Certificate issuer: /CN=A91CA294/serialNumber=AF30895DCE3C65C23BEC54CB089858EBA16189CE Certificate serial: 03 Authority key identifier: AF:30:89:5D:CE:3C:65:C2:3B:EC:54:CB:08:98:58:EB:A1:61:89:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rzCJXc48ZcI77FTLCJhY66Fhic4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA294/C7AFA6A29DAA11F096420B63C4F9AE02/44D1A4E69DAB11F0A7401064C4F9AE02.roa Signing time: Tue 30 Sep 2025 03:12:17 +0000 ROA not before: Tue 30 Sep 2025 03:12:17 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 4648 IP address blocks: 202.37.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA294/C7AFA6A29DAA11F096420B63C4F9AE02/rzCJXc48ZcI77FTLCJhY66Fhic4.crl rsync://rpki.apnic.net/member_repository/A91CA294/C7AFA6A29DAA11F096420B63C4F9AE02/rzCJXc48ZcI77FTLCJhY66Fhic4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rzCJXc48ZcI77FTLCJhY66Fhic4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:35:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA294, serialNumber=AF30895DCE3C65C23BEC54CB089858EBA16189CE Validity Not Before: Sep 30 03:12:17 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68db4a91-a65f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:8e:bb:a1:a7:7a:4c:53:31:3d:7d:b7:42:78: 32:f9:42:ed:c0:5a:09:46:5d:eb:c8:1c:0c:f0:17: ce:16:40:c7:e3:13:ee:8d:a6:24:f5:3a:0a:a6:77: 41:d7:ef:e1:b7:42:d6:69:41:3d:35:4d:74:37:d5: f9:a3:34:c0:7c:e3:0e:0b:4f:e6:53:8c:dc:85:08: 4a:3e:f8:1d:24:cf:2f:af:af:0b:92:b8:89:6e:41: 3b:27:70:a0:65:88:d1:cf:8d:f6:88:1b:90:0a:89: 84:77:e1:5c:a9:5e:1b:06:d4:d9:e3:2c:7d:3f:a2: b2:3e:da:8e:43:45:ba:5d:ce:82:be:5c:f7:a1:3f: df:23:6f:23:6f:81:28:69:56:42:01:47:96:a0:a3: f6:2b:39:05:b8:49:94:2b:3d:2e:0f:8f:96:5f:f2: aa:12:ca:5b:42:99:44:9a:99:6f:9e:e5:de:5e:c8: 58:74:00:27:b3:fc:ca:93:ba:c0:da:8b:21:57:48: 9c:68:75:8c:c2:cf:bc:da:cf:5f:a6:0a:36:7f:99: 75:69:8d:98:3f:6c:97:92:3e:2a:27:b5:cd:a8:1c: fd:45:a2:01:5e:18:cf:e5:13:70:23:6a:4b:9e:ce: 1e:c0:a3:57:76:e2:0b:1a:85:12:b1:57:ee:6d:04: 05:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:F8:26:17:69:70:5D:84:00:49:C4:5E:D0:D4:46:70:CE:A0:21:E3 X509v3 Authority Key Identifier: keyid:AF:30:89:5D:CE:3C:65:C2:3B:EC:54:CB:08:98:58:EB:A1:61:89:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA294/C7AFA6A29DAA11F096420B63C4F9AE02/rzCJXc48ZcI77FTLCJhY66Fhic4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rzCJXc48ZcI77FTLCJhY66Fhic4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA294/C7AFA6A29DAA11F096420B63C4F9AE02/44D1A4E69DAB11F0A7401064C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.26.0/24 Signature Algorithm: sha256WithRSAEncryption 48:fb:ab:37:86:9a:97:04:4d:12:89:16:10:0a:4b:32:df:66: 32:5b:ce:a4:ea:59:16:ff:df:1a:c1:c3:15:1e:93:1b:f9:67: 08:32:66:7a:57:5a:35:4f:51:41:5a:47:ef:80:a2:f5:5c:c5: 25:a9:07:e8:7c:52:8c:c1:d8:71:6c:b9:86:79:31:10:f7:cd: c4:e0:c4:89:17:50:ea:6b:96:1d:35:15:8c:63:23:da:2d:b1: d2:e7:ed:5f:d3:46:4c:63:6e:ef:c8:60:71:8b:69:f0:5f:d2: f8:aa:5b:a8:11:69:10:d5:a7:2a:92:c4:2f:90:e2:31:6f:d7: d8:0e:18:5a:d6:1b:75:81:e5:3b:dd:62:69:df:eb:93:e2:30: 6a:a3:6a:ed:27:aa:74:50:15:38:5d:ee:9f:e5:49:d7:6f:78: 33:69:06:76:44:ec:39:d3:7d:32:a9:a6:db:c0:ba:76:ba:e3: 70:7d:0e:12:bc:e5:d5:aa:6d:24:55:a0:0a:b9:a6:35:5a:8a: da:e0:81:f2:c0:e5:96:8e:72:7d:d8:13:ea:e3:1a:83:5a:89: 43:2a:01:27:d8:81:d7:80:b1:54:b9:f9:3a:61:e7:83:15:17: ce:56:9c:06:fb:29:3e:8f:1e:00:f5:49:90:59:98:14:6b:28: 7f:93:38:8c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QTI5NDExMC8GA1UEBRMoQUYzMDg5NURDRTNDNjVDMjNCRUM1NENCMDg5ODU4RUJB MTYxODlDRTAeFw0yNTA5MzAwMzEyMTdaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZGI0YTkxLWE2NWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDojruhp3pMUzE9fbdCeDL5Qu3AWglGXevIHAzwF84WQMfjE+6NpiT1Ogqmd0HX 7+G3QtZpQT01TXQ31fmjNMB84w4LT+ZTjNyFCEo++B0kzy+vrwuSuIluQTsncKBl iNHPjfaIG5AKiYR34VypXhsG1NnjLH0/orI+2o5DRbpdzoK+XPehP98jbyNvgShp VkIBR5ago/YrOQW4SZQrPS4Pj5Zf8qoSyltCmUSamW+e5d5eyFh0ACez/MqTusDa iyFXSJxodYzCz7zaz1+mCjZ/mXVpjZg/bJeSPiontc2oHP1FogFeGM/lE3Ajakue zh7Ao1d24gsahRKxV+5tBAXVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUafgmF2lw XYQAScRe0NRGcM6gIeMwHwYDVR0jBBgwFoAUrzCJXc48ZcI77FTLCJhY66Fhic4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNBMjk0L0M3QUZBNkEyOURB QTExRjA5NjQyMEI2M0M0RjlBRTAyL3J6Q0pYYzQ4WmNJNzdGVExDSmhZNjZGaGlj NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcnpDSlhjNDhaY0k3N0ZUTENKaFk2NkZoaWM0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTI5NC9DN0FGQTZBMjlEQUExMUYwOTY0MjBCNjNDNEY5QUUwMi80NEQxQTRFNjlE QUIxMUYwQTc0MDEwNjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMolGjANBgkqhkiG9w0BAQsFAAOCAQEASPurN4aalwRNEokW EApLMt9mMlvOpOpZFv/fGsHDFR6TG/lnCDJmeldaNU9RQVpH74Ci9VzFJakH6HxS jMHYcWy5hnkxEPfNxODEiRdQ6muWHTUVjGMj2i2x0uftX9NGTGNu78hgcYtp8F/S +KpbqBFpENWnKpLEL5DiMW/X2A4YWtYbdYHlO91iad/rk+IwaqNq7SeqdFAVOF3u n+VJ1294M2kGdkTsOdN9Mqmm28C6drrjcH0OErzl1aptJFWgCrmmNVqK2uCB8sDl lo5yfdgT6uMag1qJQyoBJ9iB14CxVLn5OmHngxUXzlacBvspPo8eAPVJkFmYFGso f5M4jA== -----END CERTIFICATE-----Generated at Mon Oct 20 17:58:28 2025 by rpki-client