$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/767E7B3CA60211EFBFCDB65FC4F9AE02.roa File: 767E7B3CA60211EFBFCDB65FC4F9AE02.roa (raw, json) Hash identifier: mYoYyr1o64AZsjx2x5gA3CLCgmfiA6pfIdBA+yYc62o= Subject key identifier: 92:5B:5E:7A:8E:C4:F7:A9:2D:7B:4E:F0:A9:20:25:83:AE:8C:3B:AC Certificate issuer: /CN=A91CEAA2/serialNumber=FF495293CB5F15E5D14BACC2DB1052B2E2C825C8 Certificate serial: 34E0 Authority key identifier: FF:49:52:93:CB:5F:15:E5:D1:4B:AC:C2:DB:10:52:B2:E2:C8:25:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/767E7B3CA60211EFBFCDB65FC4F9AE02.roa Signing time: Fri 08 Aug 2025 15:21:01 +0000 ROA not before: Fri 08 Aug 2025 15:21:01 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 16509 IP address blocks: 116.214.100.0/24 maxlen: 24 116.214.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.crl rsync://rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 14:56:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13536 (0x34e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEAA2, serialNumber=FF495293CB5F15E5D14BACC2DB1052B2E2C825C8 Validity Not Before: Aug 8 15:21:01 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689615dd-5b6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:43:d2:d0:4c:09:66:48:55:68:11:7a:62:c6: e9:1a:e4:19:95:2a:70:05:cb:53:1d:d0:07:64:da: b5:fe:ec:98:d0:4d:2d:95:37:f3:e0:f6:ae:2d:7f: 40:d0:3d:49:2b:cd:cd:bd:c0:c8:83:b2:88:65:4e: 21:59:80:2c:20:67:b5:b0:5b:86:b2:41:63:2b:44: 09:2d:b5:db:2b:73:86:45:a3:c8:d3:1c:c3:97:95: 76:93:33:af:99:aa:4a:28:33:90:ed:5d:5e:11:fa: 20:b7:ac:87:60:e0:dd:57:1d:85:0b:5b:4f:3c:a6: fa:b3:80:f4:04:8a:11:5f:48:cd:b4:eb:55:b9:ad: 06:32:c1:09:e5:2b:b2:21:70:e2:7a:3e:bc:ab:b9: 5f:c9:43:49:54:86:a7:a3:9e:9f:8e:ba:de:82:eb: 88:0f:88:93:05:7f:32:3c:79:7f:f7:52:d5:07:03: fa:dc:40:a2:50:e6:15:c6:37:4d:f6:3b:93:cd:f1: 11:06:ea:11:67:ab:3e:3a:e0:be:fa:23:c9:60:86: 2d:3e:ab:78:78:d8:89:10:da:9e:64:d5:75:f3:f9: ba:2a:38:65:cf:f5:91:51:80:44:7c:58:ac:16:82: 8a:78:44:f1:07:d0:7a:b5:d0:c8:77:f0:58:a4:18: 3a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:5B:5E:7A:8E:C4:F7:A9:2D:7B:4E:F0:A9:20:25:83:AE:8C:3B:AC X509v3 Authority Key Identifier: keyid:FF:49:52:93:CB:5F:15:E5:D1:4B:AC:C2:DB:10:52:B2:E2:C8:25:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_0lSk8tfFeXRS6zC2xBSsuLIJcg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEAA2/D2AB292C1D9911E2BA529A8608B02CD2/767E7B3CA60211EFBFCDB65FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.214.100.0/23 Signature Algorithm: sha256WithRSAEncryption bc:5e:81:cc:2b:7c:56:39:65:4f:98:1b:16:d5:5b:85:80:99: e8:c7:af:c8:5f:ea:78:d6:dc:25:57:22:e0:7b:7d:25:69:5f: 8c:9b:12:3f:da:d4:61:27:a8:35:98:95:e5:dd:94:79:3c:e1: c4:7d:ff:d1:24:3d:27:c0:bf:3a:69:8d:0d:1e:9b:64:5c:74: 75:aa:c1:84:6d:4d:43:d3:5c:7e:e3:68:4a:46:02:31:8b:86: 07:42:3e:d6:2e:ad:03:2c:83:1d:9d:1b:58:92:c6:fc:c6:13: 91:29:e4:04:68:d6:01:60:3d:bb:f5:e4:bb:c3:cf:50:ce:fd: 71:60:36:39:39:02:cd:c5:99:8e:57:c0:40:9e:bc:3b:c1:1b: e8:2e:b2:17:50:e2:58:04:cb:2b:e8:2a:1a:de:d7:4f:86:5e: d7:31:de:ca:69:0d:69:e1:f5:12:2d:9e:cf:b7:2e:54:70:3a: e3:1e:b7:f3:3b:7e:1c:74:03:e7:f4:23:3e:f4:51:60:a3:02: 70:0d:bf:3f:20:1b:42:63:21:5b:5a:db:4c:c8:11:a5:72:6e: e4:cc:cc:ff:82:f0:37:d7:fa:f8:41:77:49:e2:a5:4f:97:a0: 23:e7:c3:29:47:37:11:aa:f7:e7:49:cd:1f:f2:70:22:1b:f7: 41:7b:59:a5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBQTIxMTAvBgNVBAUTKEZGNDk1MjkzQ0I1RjE1RTVEMTRCQUNDMkRCMTA1MkIy RTJDODI1QzgwHhcNMjUwODA4MTUyMTAxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2MTVkZC01YjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUPS0EwJZkhVaBF6YsbpGuQZlSpwBctTHdAHZNq1/uyY0E0tlTfz4PauLX9A 0D1JK83NvcDIg7KIZU4hWYAsIGe1sFuGskFjK0QJLbXbK3OGRaPI0xzDl5V2kzOv mapKKDOQ7V1eEfogt6yHYODdVx2FC1tPPKb6s4D0BIoRX0jNtOtVua0GMsEJ5Suy IXDiej68q7lfyUNJVIano56fjrreguuID4iTBX8yPHl/91LVBwP63ECiUOYVxjdN 9juTzfERBuoRZ6s+OuC++iPJYIYtPqt4eNiJENqeZNV18/m6Kjhlz/WRUYBEfFis FoKKeETxB9B6tdDId/BYpBg6RQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJJbXnqO xPepLXtO8KkgJYOujDusMB8GA1UdIwQYMBaAFP9JUpPLXxXl0UuswtsQUrLiyCXI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUFBMi9EMkFCMjkyQzFE OTkxMUUyQkE1MjlBODYwOEIwMkNEMi9fMGxTazh0ZkZlWFJTNnpDMnhCU3N1TElK Y2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18wbFNrOHRmRmVYUlM2ekMyeEJTc3VMSUpjZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VBQTIvRDJBQjI5MkMxRDk5MTFFMkJBNTI5QTg2MDhCMDJDRDIvNzY3RTdCM0NB NjAyMTFFRkJGQ0RCNjVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF01mQwDQYJKoZIhvcNAQELBQADggEBALxegcwrfFY5ZU+Y GxbVW4WAmejHr8hf6njW3CVXIuB7fSVpX4ybEj/a1GEnqDWYleXdlHk84cR9/9Ek PSfAvzppjQ0em2RcdHWqwYRtTUPTXH7jaEpGAjGLhgdCPtYurQMsgx2dG1iSxvzG E5Ep5ARo1gFgPbv15LvDz1DO/XFgNjk5As3FmY5XwECevDvBG+gushdQ4lgEyyvo Khre10+GXtcx3sppDWnh9RItns+3LlRwOuMet/M7fhx0A+f0Iz70UWCjAnANvz8g G0JjIVta20zIEaVybuTMzP+C8DfX+vhBd0nipU+XoCPnwylHNxGq9+dJzR/ycCIb 90F7WaU= -----END CERTIFICATE-----Generated at Sat Aug 23 09:01:09 2025 by rpki-client