$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA736/5A6D8B5C732711F0B152646FC4F9AE02/065E09BC732F11F09E8D4450C4F9AE02.roa File: 065E09BC732F11F09E8D4450C4F9AE02.roa (raw, json) Hash identifier: fRjTeZ6sOZhL7w9XnHnzng0sCHnh1L73Q9iqK1QuMso= Subject key identifier: 9C:EA:AE:70:A9:36:10:FB:78:BF:B3:6B:17:0D:1C:BC:81:3A:87:D1 Certificate issuer: /CN=A91DA736/serialNumber=A5AFA90890BF929181C031F0B8EDB194E3E169E3 Certificate serial: 02 Authority key identifier: A5:AF:A9:08:90:BF:92:91:81:C0:31:F0:B8:ED:B1:94:E3:E1:69:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pa-pCJC_kpGBwDHwuO2xlOPhaeM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA736/5A6D8B5C732711F0B152646FC4F9AE02/065E09BC732F11F09E8D4450C4F9AE02.roa Signing time: Thu 07 Aug 2025 01:37:06 +0000 ROA not before: Thu 07 Aug 2025 01:37:06 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 154121 IP address blocks: 192.190.181.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA736/5A6D8B5C732711F0B152646FC4F9AE02/pa-pCJC_kpGBwDHwuO2xlOPhaeM.crl rsync://rpki.apnic.net/member_repository/A91DA736/5A6D8B5C732711F0B152646FC4F9AE02/pa-pCJC_kpGBwDHwuO2xlOPhaeM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pa-pCJC_kpGBwDHwuO2xlOPhaeM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 08:21:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA736, serialNumber=A5AFA90890BF929181C031F0B8EDB194E3E169E3 Validity Not Before: Aug 7 01:37:06 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68940341-5dfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:99:2d:1a:2f:61:45:cc:b7:5c:4b:b3:36:6c: f7:6e:51:20:72:84:0d:4e:46:0c:6f:87:18:b2:e8: 39:44:fd:b1:e4:49:60:7d:c3:11:4b:52:3e:b4:b1: eb:75:d2:ba:8a:01:34:b9:40:38:cd:d7:bd:a6:d5: 40:91:41:ac:cc:ec:36:19:81:0d:5a:2b:d6:b3:56: 5a:95:15:27:ee:d6:bf:0b:16:17:c6:6c:e8:2c:c1: d7:59:d5:23:68:ba:69:f5:20:39:3d:6a:64:4d:78: ce:0e:b5:62:1a:68:ff:59:72:26:44:89:09:2d:a0: fd:d3:4c:ea:14:29:39:1f:4c:2d:72:5b:a1:a8:55: 9d:9a:b0:0c:76:8a:6d:4c:ad:e6:22:8f:0a:c9:14: c8:ea:93:47:c9:7e:d3:3e:81:81:6c:3f:d5:e6:93: 26:b8:93:74:7e:dc:1d:7b:d1:eb:55:0a:b9:1b:f8: aa:33:64:f6:51:1b:c5:de:79:8a:6e:3c:f9:ec:5b: 39:d0:72:d9:e2:be:66:2c:14:c2:de:24:76:cc:d8: 68:e7:55:6a:87:2f:e0:0a:2f:ab:2a:7b:17:d5:32: 0a:78:6f:26:dc:d4:63:a8:6e:b7:27:6b:63:17:ac: 6b:bd:3e:55:d3:71:19:58:57:5f:a0:36:84:4f:90: 46:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:EA:AE:70:A9:36:10:FB:78:BF:B3:6B:17:0D:1C:BC:81:3A:87:D1 X509v3 Authority Key Identifier: keyid:A5:AF:A9:08:90:BF:92:91:81:C0:31:F0:B8:ED:B1:94:E3:E1:69:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA736/5A6D8B5C732711F0B152646FC4F9AE02/pa-pCJC_kpGBwDHwuO2xlOPhaeM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/pa-pCJC_kpGBwDHwuO2xlOPhaeM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA736/5A6D8B5C732711F0B152646FC4F9AE02/065E09BC732F11F09E8D4450C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.190.181.0/24 Signature Algorithm: sha256WithRSAEncryption a7:e3:7a:dd:49:6d:d2:b3:b6:99:2e:9f:c8:56:95:b8:b7:98: 46:01:ed:90:f7:36:5f:c7:6d:25:8d:70:a5:80:0c:5c:37:4d: 57:fe:11:11:c2:02:4d:d0:73:88:b6:d5:d0:5a:d2:e1:9c:d2: 75:4a:f1:5a:9d:ef:da:87:3c:20:95:0c:33:53:a9:5f:cb:34: 65:27:75:50:04:92:25:8d:fb:fc:e7:7b:7b:99:f8:2a:ee:d6: 12:ba:41:67:68:ff:26:eb:37:f8:97:cf:31:1c:a3:e7:ac:0f: 3d:4d:ad:7a:39:65:9a:cb:58:09:73:a2:b7:8b:45:93:f7:fc: 71:31:de:70:60:3f:7e:22:ab:ee:72:8d:be:3d:c7:d3:35:e1: 7f:90:e5:4e:b0:b9:b6:5a:b6:a6:73:21:55:a7:50:90:bc:ea: 39:76:f6:7a:6b:ac:26:9d:7c:da:43:61:91:99:6b:a2:0a:55: 54:2e:a6:b1:8a:9d:49:0d:07:95:99:d5:09:e6:17:7e:6b:7c: 0c:2a:48:e8:36:28:c0:90:1d:2d:18:8e:fb:84:c8:02:99:58: db:78:59:94:e9:f7:03:10:ef:f9:66:08:71:8e:91:a1:c2:50: c5:71:aa:02:f4:3e:13:d8:6f:0a:7b:2c:23:eb:51:54:2a:0c: 1e:87:d7:f9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QTczNjExMC8GA1UEBRMoQTVBRkE5MDg5MEJGOTI5MTgxQzAzMUYwQjhFREIxOTRF M0UxNjlFMzAeFw0yNTA4MDcwMTM3MDZaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OTQwMzQxLTVkZmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfmS0aL2FFzLdcS7M2bPduUSByhA1ORgxvhxiy6DlE/bHkSWB9wxFLUj60set1 0rqKATS5QDjN172m1UCRQazM7DYZgQ1aK9azVlqVFSfu1r8LFhfGbOgswddZ1SNo umn1IDk9amRNeM4OtWIaaP9ZciZEiQktoP3TTOoUKTkfTC1yW6GoVZ2asAx2im1M reYijwrJFMjqk0fJftM+gYFsP9Xmkya4k3R+3B170etVCrkb+KozZPZRG8XeeYpu PPnsWznQctnivmYsFMLeJHbM2GjnVWqHL+AKL6sqexfVMgp4bybc1GOobrcna2MX rGu9PlXTcRlYV1+gNoRPkEY1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUnOqucKk2 EPt4v7NrFw0cvIE6h9EwHwYDVR0jBBgwFoAUpa+pCJC/kpGBwDHwuO2xlOPhaeMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURBNzM2LzVBNkQ4QjVDNzMy NzExRjBCMTUyNjQ2RkM0RjlBRTAyL3BhLXBDSkNfa3BHQndESHd1TzJ4bE9QaGFl TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcGEtcENKQ19rcEdCd0RId3VPMnhsT1BoYWVNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTczNi81QTZEOEI1QzczMjcxMUYwQjE1MjY0NkZDNEY5QUUwMi8wNjVFMDlCQzcz MkYxMUYwOUU4RDQ0NTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMC+tTANBgkqhkiG9w0BAQsFAAOCAQEAp+N63Ult0rO2mS6f yFaVuLeYRgHtkPc2X8dtJY1wpYAMXDdNV/4REcICTdBziLbV0FrS4ZzSdUrxWp3v 2oc8IJUMM1OpX8s0ZSd1UASSJY37/Od7e5n4Ku7WErpBZ2j/Jus3+JfPMRyj56wP PU2tejllmstYCXOit4tFk/f8cTHecGA/fiKr7nKNvj3H0zXhf5DlTrC5tlq2pnMh VadQkLzqOXb2emusJp182kNhkZlrogpVVC6msYqdSQ0HlZnVCeYXfmt8DCpI6DYo wJAdLRiO+4TIAplY23hZlOn3AxDv+WYIcY6RocJQxXGqAvQ+E9hvCnssI+tRVCoM HofX+Q== -----END CERTIFICATE-----Generated at Sun Aug 24 03:05:49 2025 by rpki-client