$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA294/C7AFA6A29DAA11F096420B63C4F9AE02/7CCBF066A2F811F09235B919C4F9AE02.roa File: 7CCBF066A2F811F09235B919C4F9AE02.roa (raw, json) Hash identifier: zhniOmksUDRXONnEcT5JY0KumHd8uj/NZx0Y0gByQxQ= Subject key identifier: C4:C9:42:A4:71:94:C5:1B:1C:36:F8:1A:08:E6:D5:D9:D3:0F:D2:2B Certificate issuer: /CN=A91CA294/serialNumber=AF30895DCE3C65C23BEC54CB089858EBA16189CE Certificate serial: 0E Authority key identifier: AF:30:89:5D:CE:3C:65:C2:3B:EC:54:CB:08:98:58:EB:A1:61:89:CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rzCJXc48ZcI77FTLCJhY66Fhic4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA294/C7AFA6A29DAA11F096420B63C4F9AE02/7CCBF066A2F811F09235B919C4F9AE02.roa Signing time: Mon 06 Oct 2025 21:07:38 +0000 ROA not before: Mon 06 Oct 2025 21:07:38 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 4049 IP address blocks: 202.0.124.0/24 maxlen: 24 202.20.63.0/24 maxlen: 24 202.37.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA294/C7AFA6A29DAA11F096420B63C4F9AE02/rzCJXc48ZcI77FTLCJhY66Fhic4.crl rsync://rpki.apnic.net/member_repository/A91CA294/C7AFA6A29DAA11F096420B63C4F9AE02/rzCJXc48ZcI77FTLCJhY66Fhic4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rzCJXc48ZcI77FTLCJhY66Fhic4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:35:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA294, serialNumber=AF30895DCE3C65C23BEC54CB089858EBA16189CE Validity Not Before: Oct 6 21:07:38 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68e42f9a-3243 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:52:ec:8d:9d:a2:c8:68:17:f9:fb:85:f0:74: 6d:28:ab:54:6a:2b:1c:f6:ff:41:ce:4b:c7:a4:74: 26:17:54:4f:59:92:69:6f:47:fd:cc:89:b2:b9:d0: b9:87:ef:0f:b4:36:b3:cf:f1:d4:be:5a:8e:08:d5: e1:2d:68:33:4f:a6:6f:a5:95:49:39:e2:46:0d:a1: 63:bd:10:15:46:bb:cd:fa:43:ad:2c:ce:0d:4d:ee: 31:bc:5b:d7:af:dd:91:56:71:ae:1e:cb:52:ae:48: 81:b4:24:ad:a8:a9:51:21:0b:5c:84:75:bd:ee:da: 43:26:6e:de:7a:ca:b3:b8:15:7b:b6:67:c6:86:b9: 4e:6e:00:7f:cf:66:4e:00:a5:31:85:1c:63:aa:0e: 7c:6a:c1:d1:7e:fa:e4:3b:b2:73:67:6d:07:56:e8: e4:90:5d:66:b2:54:fb:7b:3d:05:06:e9:a7:77:6e: 7a:b8:fb:e6:a3:bb:ee:c4:1b:92:ce:12:b9:65:90: a8:ed:7f:3b:f8:1e:07:a0:cb:01:4e:25:80:2d:1e: 51:4f:c6:aa:e6:c3:9c:c8:27:fd:52:cd:50:2b:e5: a0:ee:55:69:8a:1c:f9:28:65:62:4f:f1:4c:93:68: 88:26:5e:47:0a:26:cf:57:3b:8b:54:66:a8:bb:16: fd:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:C9:42:A4:71:94:C5:1B:1C:36:F8:1A:08:E6:D5:D9:D3:0F:D2:2B X509v3 Authority Key Identifier: keyid:AF:30:89:5D:CE:3C:65:C2:3B:EC:54:CB:08:98:58:EB:A1:61:89:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA294/C7AFA6A29DAA11F096420B63C4F9AE02/rzCJXc48ZcI77FTLCJhY66Fhic4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rzCJXc48ZcI77FTLCJhY66Fhic4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA294/C7AFA6A29DAA11F096420B63C4F9AE02/7CCBF066A2F811F09235B919C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.0.124.0/24 202.20.63.0/24 202.37.26.0/24 Signature Algorithm: sha256WithRSAEncryption 51:a5:56:a7:ee:06:26:35:89:90:3c:29:61:5b:a7:bf:c4:a0: a5:67:9b:8c:6f:22:80:7e:a5:77:c1:09:2e:fe:2c:c5:83:62: 9d:3e:cb:ad:35:9b:79:73:fd:7a:2a:1e:04:4a:c3:ca:32:37: b8:fa:64:f1:d6:c4:ba:8d:8c:d3:53:2b:9a:9c:49:89:d2:14: 76:85:40:69:e1:f4:0b:c4:43:80:9d:aa:bf:b4:e2:b2:52:64: 66:31:ca:4c:81:0c:58:a0:1b:46:02:13:35:a2:4d:7d:18:17: 6e:cf:49:aa:ec:3d:01:2e:56:cc:ed:5b:74:c6:9c:85:69:88: d7:7c:c9:d5:0d:9f:5f:60:77:d8:e5:c7:e1:09:a4:ec:a3:1f: bf:27:d3:11:95:00:f1:0c:75:49:93:8e:7f:9e:33:26:dc:46: f3:b4:c9:fd:a7:9d:78:ff:4f:6c:cd:6c:86:03:57:32:c9:d1: fb:ae:25:40:17:4f:7c:a2:64:86:bb:ca:9f:f5:74:a7:6e:11: b3:06:b9:1d:c0:12:af:73:eb:ee:d6:46:a3:ab:87:f9:23:80: e8:41:47:88:be:56:0a:93:25:43:71:34:3d:92:f2:7a:71:5a: 05:48:c3:24:6f:d2:57:50:e5:90:59:09:ac:fa:49:2d:c5:a8: 29:39:c0:82 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QTI5NDExMC8GA1UEBRMoQUYzMDg5NURDRTNDNjVDMjNCRUM1NENCMDg5ODU4RUJB MTYxODlDRTAeFw0yNTEwMDYyMTA3MzhaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZTQyZjlhLTMyNDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCYUuyNnaLIaBf5+4XwdG0oq1RqKxz2/0HOS8ekdCYXVE9ZkmlvR/3MibK50LmH 7w+0NrPP8dS+Wo4I1eEtaDNPpm+llUk54kYNoWO9EBVGu836Q60szg1N7jG8W9ev 3ZFWca4ey1KuSIG0JK2oqVEhC1yEdb3u2kMmbt56yrO4FXu2Z8aGuU5uAH/PZk4A pTGFHGOqDnxqwdF++uQ7snNnbQdW6OSQXWayVPt7PQUG6ad3bnq4++aju+7EG5LO ErllkKjtfzv4HgegywFOJYAtHlFPxqrmw5zIJ/1SzVAr5aDuVWmKHPkoZWJP8UyT aIgmXkcKJs9XO4tUZqi7Fv1FAgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUxMlCpHGU xRscNvgaCObV2dMP0iswHwYDVR0jBBgwFoAUrzCJXc48ZcI77FTLCJhY66Fhic4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNBMjk0L0M3QUZBNkEyOURB QTExRjA5NjQyMEI2M0M0RjlBRTAyL3J6Q0pYYzQ4WmNJNzdGVExDSmhZNjZGaGlj NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcnpDSlhjNDhaY0k3N0ZUTENKaFk2NkZoaWM0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTI5NC9DN0FGQTZBMjlEQUExMUYwOTY0MjBCNjNDNEY5QUUwMi83Q0NCRjA2NkEy RjgxMUYwOTIzNUI5MTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAMoAfAMEAMoUPwMEAMolGjANBgkqhkiG9w0BAQsFAAOCAQEA UaVWp+4GJjWJkDwpYVunv8SgpWebjG8igH6ld8EJLv4sxYNinT7LrTWbeXP9eioe BErDyjI3uPpk8dbEuo2M01MrmpxJidIUdoVAaeH0C8RDgJ2qv7TislJkZjHKTIEM WKAbRgITNaJNfRgXbs9Jquw9AS5WzO1bdMachWmI13zJ1Q2fX2B32OXH4Qmk7KMf vyfTEZUA8Qx1SZOOf54zJtxG87TJ/aedeP9PbM1shgNXMsnR+64lQBdPfKJkhrvK n/V0p24Rswa5HcASr3Pr7tZGo6uH+SOA6EFHiL5WCpMlQ3E0PZLyenFaBUjDJG/S V1DlkFkJrPpJLcWoKTnAgg== -----END CERTIFICATE-----Generated at Mon Oct 20 13:00:21 2025 by rpki-client