$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/939530627B6311F0BF7B4936C4F9AE02.roa File: 939530627B6311F0BF7B4936C4F9AE02.roa (raw, json) Hash identifier: 3WTSm0ARO6OxYTvyrfdEmxZEWxigI2p51l76SgzYhn8= Subject key identifier: 27:2E:97:F7:89:46:F6:A5:49:32:90:B7:34:84:E0:A4:63:3E:7B:E1 Certificate issuer: /CN=A91D1623/serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Certificate serial: 01A2 Authority key identifier: A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/939530627B6311F0BF7B4936C4F9AE02.roa Signing time: Sun 17 Aug 2025 12:13:26 +0000 ROA not before: Sun 17 Aug 2025 12:13:26 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 17828 IP address blocks: 202.1.32.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 03:31:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1623, serialNumber=A6150780E0BA11EA0ADC434AED383C8B82A8961D Validity Not Before: Aug 17 12:13:26 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a1c765-cc86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:26:8f:71:4a:17:5d:b7:cf:f4:46:3e:40:4b: 94:8c:20:a8:33:5d:89:d2:38:0f:71:11:1b:07:92: 48:9c:1f:a1:8a:e5:12:14:3f:a8:9d:a4:0d:99:a1: ef:40:1c:93:95:e6:d4:52:e1:a8:62:38:0d:49:f6: d4:9d:2c:f6:87:ad:4c:e0:87:c8:d7:2c:9a:da:c7: fd:47:f7:4a:cf:01:73:44:a3:65:e3:a3:5d:c7:8a: e7:dd:d2:ea:65:55:20:ee:d8:dd:6b:3c:e2:0d:9b: 96:f7:26:63:6e:a2:2a:a7:39:89:08:75:f2:20:c6: 2f:5d:dd:a6:85:b9:b3:e8:2f:e5:8a:cc:32:2d:97: 3c:65:c2:1e:b1:4c:e4:60:a4:ca:53:42:8d:57:19: a5:a8:8f:54:dd:a6:96:6e:96:ad:46:bb:b7:cd:27: 9a:ed:77:1b:14:c5:14:3b:e0:e9:45:71:b2:d0:d5: fd:ee:03:31:a9:fd:fc:4f:83:f4:94:a4:b5:bb:5d: 7b:91:e5:e4:a7:9b:a1:90:88:9f:0e:ad:36:83:49: 89:c3:94:96:f9:8e:c2:93:b5:66:b9:bd:6a:ca:d4: 45:86:13:7e:e2:e0:29:9b:72:35:82:a9:07:4a:48: c1:1c:bf:83:f4:70:92:08:ab:34:16:72:be:e3:d0: 50:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:2E:97:F7:89:46:F6:A5:49:32:90:B7:34:84:E0:A4:63:3E:7B:E1 X509v3 Authority Key Identifier: keyid:A6:15:07:80:E0:BA:11:EA:0A:DC:43:4A:ED:38:3C:8B:82:A8:96:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/phUHgOC6EeoK3ENK7Tg8i4Kolh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phUHgOC6EeoK3ENK7Tg8i4Kolh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1623/410735CA149A11EEADF1C610C4F9AE02/939530627B6311F0BF7B4936C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.1.32.0/20 Signature Algorithm: sha256WithRSAEncryption 9e:e2:49:ec:ef:93:df:14:68:9f:a0:e9:71:f4:49:43:8d:15: 01:9d:39:1e:cf:64:eb:02:ae:6f:df:41:fb:a9:67:de:1b:12: 77:d3:68:16:28:e8:21:68:7a:38:fd:45:34:80:11:bd:be:43: e6:58:7c:f6:f6:6d:ed:fe:3a:db:ad:8d:8b:62:27:ba:e0:78: 68:97:1c:48:a5:7a:70:07:46:7e:99:a6:53:2f:24:ae:a3:91: 4c:d6:f3:72:eb:78:dd:10:58:38:1f:02:43:0e:87:e3:de:01: 63:4c:bb:84:13:92:07:f0:54:84:9e:63:7d:4a:6d:15:e2:2c: 84:12:17:3e:74:a5:de:ca:f7:39:2b:e3:c5:7f:f6:d2:4d:63: 8e:8f:a4:32:fc:cf:1b:0e:98:6e:a8:37:63:87:d1:8d:c8:66: 7b:4a:11:85:d6:ac:a9:1f:d5:9b:a9:bb:13:86:01:24:65:09: e7:24:7f:f3:5f:e8:4b:c4:47:cd:7e:6e:24:00:b5:10:3b:62: a6:77:6b:05:df:0a:4e:51:cb:aa:50:21:6a:29:88:5e:ed:b3: e1:8b:9e:1f:50:91:51:96:dd:f6:75:1f:fa:c7:8c:6c:f7:4b: 4f:06:30:cd:ca:10:bc:7c:a9:5d:0e:fa:b2:71:b9:0e:cd:45: 84:86:f2:33 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2MjMxMTAvBgNVBAUTKEE2MTUwNzgwRTBCQTExRUEwQURDNDM0QUVEMzgzQzhC ODJBODk2MUQwHhcNMjUwODE3MTIxMzI2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGExYzc2NS1jYzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySaPcUoXXbfP9EY+QEuUjCCoM12J0jgPcREbB5JInB+hiuUSFD+onaQNmaHv QByTlebUUuGoYjgNSfbUnSz2h61M4IfI1yya2sf9R/dKzwFzRKNl46Ndx4rn3dLq ZVUg7tjdazziDZuW9yZjbqIqpzmJCHXyIMYvXd2mhbmz6C/liswyLZc8ZcIesUzk YKTKU0KNVxmlqI9U3aaWbpatRru3zSea7XcbFMUUO+DpRXGy0NX97gMxqf38T4P0 lKS1u117keXkp5uhkIifDq02g0mJw5SW+Y7Ck7Vmub1qytRFhhN+4uApm3I1gqkH SkjBHL+D9HCSCKs0FnK+49BQ9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFCcul/eJ RvalSTKQtzSE4KRjPnvhMB8GA1UdIwQYMBaAFKYVB4DguhHqCtxDSu04PIuCqJYd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTYyMy80MTA3MzVDQTE0 OUExMUVFQURGMUM2MTBDNEY5QUUwMi9waFVIZ09DNkVlb0szRU5LN1RnOGk0S29s aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BoVUhnT0M2RWVvSzNFTks3VGc4aTRLb2xoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE2MjMvNDEwNzM1Q0ExNDlBMTFFRUFERjFDNjEwQzRGOUFFMDIvOTM5NTMwNjI3 QjYzMTFGMEJGN0I0OTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATKASAwDQYJKoZIhvcNAQELBQADggEBAJ7iSezvk98UaJ+g 6XH0SUONFQGdOR7PZOsCrm/fQfupZ94bEnfTaBYo6CFoejj9RTSAEb2+Q+ZYfPb2 be3+OtutjYtiJ7rgeGiXHEilenAHRn6ZplMvJK6jkUzW83LreN0QWDgfAkMOh+Pe AWNMu4QTkgfwVISeY31KbRXiLIQSFz50pd7K9zkr48V/9tJNY46PpDL8zxsOmG6o N2OH0Y3IZntKEYXWrKkf1ZupuxOGASRlCeckf/Nf6EvER81+biQAtRA7YqZ3awXf Ck5Ry6pQIWopiF7ts+GLnh9QkVGW3fZ1H/rHjGz3S08GMM3KELx8qV0O+rJxuQ7N RYSG8jM= -----END CERTIFICATE-----Generated at Sun Aug 24 00:42:49 2025 by rpki-client