$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/F78605D8778A11F08EDAFE28C4F9AE02.roa File: F78605D8778A11F08EDAFE28C4F9AE02.roa (raw, json) Hash identifier: NMP/9h7Q+kMraIM38Dl6bwkPc4zc3AHpMdJgqonRBcg= Subject key identifier: 40:AD:64:21:C9:6C:85:FD:AA:36:02:43:C9:C1:DB:95:EE:5A:08:01 Certificate issuer: /CN=A91D5ECA/serialNumber=FB805D5379CB07D52A411EFFFD0491CA39B7BF27 Certificate serial: 060A Authority key identifier: FB:80:5D:53:79:CB:07:D5:2A:41:1E:FF:FD:04:91:CA:39:B7:BF:27 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-4BdU3nLB9UqQR7__QSRyjm3vyc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/F78605D8778A11F08EDAFE28C4F9AE02.roa Signing time: Tue 12 Aug 2025 14:45:19 +0000 ROA not before: Tue 12 Aug 2025 14:45:19 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 153736 IP address blocks: 163.223.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.crl rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-4BdU3nLB9UqQR7__QSRyjm3vyc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:02:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1546 (0x60a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5ECA, serialNumber=FB805D5379CB07D52A411EFFFD0491CA39B7BF27 Validity Not Before: Aug 12 14:45:19 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=689b537f-261f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:74:8d:64:fd:0f:6b:ed:0c:bb:a4:8d:cd:e2: d9:3c:12:bf:7b:db:c6:f1:0f:c9:64:5d:76:91:c6: 30:7f:11:35:16:8a:82:fb:b3:92:7c:e8:6d:24:c8: 8d:f4:5b:92:f2:12:42:06:4c:76:91:08:f6:f7:2a: 7c:13:09:bd:f1:e1:dc:d8:97:03:8b:9f:ee:39:93: 82:94:08:08:44:b9:f4:4e:64:98:4c:64:9a:b9:df: 40:26:17:35:03:01:bf:50:0f:79:1d:3f:48:f6:96: 47:78:10:3c:03:57:64:2e:75:42:e7:48:29:66:16: 3a:dc:0a:38:9f:f2:cc:2f:78:50:ca:9b:90:68:bd: 6f:77:01:d0:9f:65:5b:1a:be:97:8a:a9:74:55:55: 0d:30:ba:4e:31:a5:c8:12:da:75:ed:b4:64:73:dd: bd:59:b9:30:e3:ea:d0:da:8f:f2:fc:f7:be:b2:ee: fe:43:a4:97:92:4e:b4:5b:18:9d:c9:d7:6f:2f:57: 9b:e3:c8:5f:56:18:47:3f:51:ae:8e:f6:33:85:96: 35:af:4b:3b:aa:a1:4a:bd:61:71:88:62:73:55:16: fe:40:30:29:d2:34:18:98:6e:f4:0c:cd:71:2f:40: 84:13:da:af:a0:18:90:9a:55:63:a7:18:f3:24:89: 7d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:AD:64:21:C9:6C:85:FD:AA:36:02:43:C9:C1:DB:95:EE:5A:08:01 X509v3 Authority Key Identifier: keyid:FB:80:5D:53:79:CB:07:D5:2A:41:1E:FF:FD:04:91:CA:39:B7:BF:27 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/-4BdU3nLB9UqQR7__QSRyjm3vyc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-4BdU3nLB9UqQR7__QSRyjm3vyc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5ECA/BFD23206B92511EBB0E2CB82C4F9AE02/F78605D8778A11F08EDAFE28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.201.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:8a:04:89:04:8d:93:57:a7:a0:a4:d5:42:a8:26:91:94:c5: e7:92:ff:c4:5e:c1:53:02:7d:d0:32:6e:20:3b:3e:e0:52:44: 2f:ec:f4:26:0d:cd:65:53:0b:16:7f:de:29:b6:fb:a7:f3:d9: ec:a6:7d:92:96:da:76:e1:82:49:22:53:4c:20:37:1c:c4:3f: 26:1d:17:40:e2:47:19:07:f2:f6:9e:06:82:ce:61:30:a6:3c: 38:cf:9d:83:20:39:e4:f0:97:aa:c6:88:1f:a6:71:4b:0c:29: 0b:9b:df:d4:1b:c3:ef:ed:7c:8b:68:2d:ea:d7:b2:88:dd:95: 00:4c:bf:a6:2f:34:b4:6d:f8:b8:8f:14:60:1c:6b:32:01:6c: 71:3f:d5:e0:43:24:e7:3e:dd:98:7c:38:bd:b0:04:48:ae:52: 02:3e:c0:96:c2:4e:61:4c:68:a1:e5:9b:21:6c:40:bb:84:c7: 9f:6e:a1:fb:c8:ad:d7:5c:b7:90:ff:fa:38:6a:09:39:49:5b: 9c:1b:1b:46:01:46:67:1c:b0:6f:7e:4d:e9:2a:5c:c0:fc:3b: 9e:d2:60:73:ff:85:70:e1:c2:03:a9:0d:e9:98:da:0d:1f:fa: a5:75:54:a7:dc:67:13:e4:cd:97:d4:9a:2d:ab:c5:b1:17:27: 40:e4:e5:0d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBgowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDVFQ0ExMTAvBgNVBAUTKEZCODA1RDUzNzlDQjA3RDUyQTQxMUVGRkZEMDQ5MUNB MzlCN0JGMjcwHhcNMjUwODEyMTQ0NTE5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODliNTM3Zi0yNjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3SNZP0Pa+0Mu6SNzeLZPBK/e9vG8Q/JZF12kcYwfxE1FoqC+7OSfOhtJMiN 9FuS8hJCBkx2kQj29yp8Ewm98eHc2JcDi5/uOZOClAgIRLn0TmSYTGSaud9AJhc1 AwG/UA95HT9I9pZHeBA8A1dkLnVC50gpZhY63Ao4n/LML3hQypuQaL1vdwHQn2Vb Gr6Xiql0VVUNMLpOMaXIEtp17bRkc929Wbkw4+rQ2o/y/Pe+su7+Q6SXkk60Wxid yddvL1eb48hfVhhHP1GujvYzhZY1r0s7qqFKvWFxiGJzVRb+QDAp0jQYmG70DM1x L0CEE9qvoBiQmlVjpxjzJIl98QIDAQABo4IClTCCApEwHQYDVR0OBBYEFECtZCHJ bIX9qjYCQ8nB25XuWggBMB8GA1UdIwQYMBaAFPuAXVN5ywfVKkEe//0Ekco5t78n MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENUVDQS9CRkQyMzIwNkI5 MjUxMUVCQjBFMkNCODJDNEY5QUUwMi8tNEJkVTNuTEI5VXFRUjdfX1FTUnlqbTN2 eWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy00QmRVM25MQjlVcVFSN19fUVNSeWptM3Z5Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDVFQ0EvQkZEMjMyMDZCOTI1MTFFQkIwRTJDQjgyQzRGOUFFMDIvRjc4NjA1RDg3 NzhBMTFGMDhFREFGRTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACj38kwDQYJKoZIhvcNAQELBQADggEBAB2KBIkEjZNXp6Ck 1UKoJpGUxeeS/8RewVMCfdAybiA7PuBSRC/s9CYNzWVTCxZ/3im2+6fz2eymfZKW 2nbhgkkiU0wgNxzEPyYdF0DiRxkH8vaeBoLOYTCmPDjPnYMgOeTwl6rGiB+mcUsM KQub39Qbw+/tfItoLerXsojdlQBMv6YvNLRt+LiPFGAcazIBbHE/1eBDJOc+3Zh8 OL2wBEiuUgI+wJbCTmFMaKHlmyFsQLuEx59uofvIrddct5D/+jhqCTlJW5wbG0YB RmccsG9+TekqXMD8O57SYHP/hXDhwgOpDemY2g0f+qV1VKfcZxPkzZfUmi2rxbEX J0Dk5Q0= -----END CERTIFICATE-----Generated at Sat Aug 23 23:59:38 2025 by rpki-client