$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/0DEF13D4FC1711EC919B6757C4F9AE02.roa File: 0DEF13D4FC1711EC919B6757C4F9AE02.roa (raw, json) Hash identifier: xQvW4YZqb4bpCHiKIuihyp10lyfUE3gYXiSNZp52O44= Subject key identifier: 04:D9:A8:01:7B:E6:B4:08:7F:4A:EF:D7:F2:98:D2:21:AC:F0:A1:78 Certificate issuer: /CN=A91CEAA2/serialNumber=FF495293CB5F15E5D14BACC2DB1052B2E2C825C8 Certificate serial: 34E2 Authority key identifier: FF:49:52:93:CB:5F:15:E5:D1:4B:AC:C2:DB:10:52:B2:E2:C8:25:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/0DEF13D4FC1711EC919B6757C4F9AE02.roa Signing time: Fri 08 Aug 2025 15:21:05 +0000 ROA not before: Fri 08 Aug 2025 15:21:05 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 9304 IP address blocks: 116.214.110.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.crl rsync://rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:56:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13538 (0x34e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAA2, serialNumber=FF495293CB5F15E5D14BACC2DB1052B2E2C825C8 Validity Not Before: Aug 8 15:21:05 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689615e1-10d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:24:83:c8:f5:7b:3d:ce:cb:07:cf:0d:76:de: f2:3e:14:56:8b:d4:2d:4a:cc:a5:f6:6c:24:fa:5f: 31:d2:c8:f1:6e:a4:8c:49:d0:1b:5e:1b:ab:d5:a7: f1:69:4b:8b:e7:07:7a:41:ad:6d:88:ef:0f:bc:87: 6b:46:91:ab:2e:45:cc:0a:d2:79:47:79:54:8b:d5: e0:a9:01:32:56:fa:16:80:fb:56:72:02:7d:f3:1a: 03:4b:08:58:1e:73:51:62:69:87:04:54:74:08:a1: f9:2c:33:c3:70:57:7d:6e:88:20:5d:65:77:24:0e: eb:7e:79:cb:17:88:3b:36:01:ff:49:90:d5:2a:5c: 67:11:2b:1d:c3:70:75:1b:7a:d6:a3:64:d1:d5:6c: 7c:4c:ce:9c:b7:53:08:34:1a:c3:13:86:56:df:b0: 22:be:a2:f7:1f:c0:85:08:1c:c5:f9:51:47:4a:11: 2e:e2:b8:82:43:28:e4:02:c0:1a:0d:cc:b6:68:38: 49:e3:1a:aa:60:f2:26:b6:e8:bc:09:4a:3d:e8:1e: 89:f0:ee:95:85:80:52:b4:9d:a7:b9:da:eb:46:3e: 9a:0d:12:34:22:5b:c2:dc:e5:df:19:55:56:74:bd: b9:d6:4d:2a:a8:fb:c0:ed:9d:1f:a0:45:ec:8a:ae: d5:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:D9:A8:01:7B:E6:B4:08:7F:4A:EF:D7:F2:98:D2:21:AC:F0:A1:78 X509v3 Authority Key Identifier: keyid:FF:49:52:93:CB:5F:15:E5:D1:4B:AC:C2:DB:10:52:B2:E2:C8:25:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/0DEF13D4FC1711EC919B6757C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.214.110.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:36:ef:42:46:76:e4:63:38:0b:d1:36:4f:a5:b1:92:69:94: 3d:87:c2:5d:e2:14:e2:c8:2e:39:e2:2d:77:8e:2f:c0:e2:03: 8c:1d:1d:d8:d9:59:1b:b3:fb:7f:3e:26:ca:d2:d1:c8:c9:0d: 70:9f:eb:94:4f:c9:a3:23:7a:27:93:5b:29:74:7b:e0:6f:d7: 79:6d:05:6f:b3:30:1a:aa:db:f5:04:88:8e:e7:73:8a:36:30: 03:d3:72:cd:be:11:57:9e:3c:dc:cf:a7:2f:79:bd:f9:55:66: 4b:11:54:28:e6:50:57:9a:9b:19:85:0a:95:c3:56:b9:d3:5c: 5b:3a:a1:1f:af:47:f2:fa:69:ae:6a:70:33:b2:49:a0:2f:7a: 38:d3:74:c9:aa:15:48:47:f7:4b:7a:3b:03:6d:c2:a0:85:18: f3:7c:24:95:44:91:92:19:0f:8a:84:d4:3b:0a:2c:d4:c9:c7: 34:29:51:f7:89:4d:55:c2:69:1e:8c:f1:a7:42:d8:82:3f:34: 08:0f:e9:b5:a0:68:67:db:86:11:26:04:bf:1b:36:21:d7:7c: 77:ab:8c:52:77:77:99:5a:75:3a:46:a6:93:ee:51:cf:c0:0a: 26:83:08:7b:24:94:50:e6:3a:cb:64:68:fc:44:fd:6b:bd:73: 27:14:79:ee -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBQTIxMTAvBgNVBAUTKEZGNDk1MjkzQ0I1RjE1RTVEMTRCQUNDMkRCMTA1MkIy RTJDODI1QzgwHhcNMjUwODA4MTUyMTA1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2MTVlMS0xMGQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqiSDyPV7Pc7LB88Ndt7yPhRWi9QtSsyl9mwk+l8x0sjxbqSMSdAbXhur1afx aUuL5wd6Qa1tiO8PvIdrRpGrLkXMCtJ5R3lUi9XgqQEyVvoWgPtWcgJ98xoDSwhY HnNRYmmHBFR0CKH5LDPDcFd9boggXWV3JA7rfnnLF4g7NgH/SZDVKlxnESsdw3B1 G3rWo2TR1Wx8TM6ct1MINBrDE4ZW37AivqL3H8CFCBzF+VFHShEu4riCQyjkAsAa Dcy2aDhJ4xqqYPImtui8CUo96B6J8O6VhYBStJ2nudrrRj6aDRI0IlvC3OXfGVVW dL251k0qqPvA7Z0foEXsiq7VDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFATZqAF7 5rQIf0rv1/KY0iGs8KF4MB8GA1UdIwQYMBaAFP9JUpPLXxXl0UuswtsQUrLiyCXI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFBMi9EMkFCMjkyQzFE OTkxMUUyQkE1MjlBODYwOEIwMkNEMi9fMGxTazh0ZkZlWFJTNnpDMnhCU3N1TElK Y2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wbFNrOHRmRmVYUlM2ekMyeEJTc3VMSUpjZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VBQTIvRDJBQjI5MkMxRDk5MTFFMkJBNTI5QTg2MDhCMDJDRDIvMERFRjEzRDRG QzE3MTFFQzkxOUI2NzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF01m4wDQYJKoZIhvcNAQELBQADggEBAE8270JGduRjOAvR Nk+lsZJplD2Hwl3iFOLILjniLXeOL8DiA4wdHdjZWRuz+38+JsrS0cjJDXCf65RP yaMjeieTWyl0e+Bv13ltBW+zMBqq2/UEiI7nc4o2MAPTcs2+EVeePNzPpy95vflV ZksRVCjmUFeamxmFCpXDVrnTXFs6oR+vR/L6aa5qcDOySaAvejjTdMmqFUhH90t6 OwNtwqCFGPN8JJVEkZIZD4qE1DsKLNTJxzQpUfeJTVXCaR6M8adC2II/NAgP6bWg aGfbhhEmBL8bNiHXfHerjFJ3d5ladTpGppPuUc/ACiaDCHsklFDmOstkaPxE/Wu9 cycUee4= -----END CERTIFICATE-----Generated at Sat Aug 23 15:50:26 2025 by rpki-client