$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/006CE5442FBA11ECA05BB46EC4F9AE02.roa File: 006CE5442FBA11ECA05BB46EC4F9AE02.roa (raw, json) Hash identifier: IJhdmy/yaxT+3c7CLBVZdDHqC15tF8wOYJzJ42dHOw4= Subject key identifier: EC:B9:BC:EC:02:C8:29:0B:55:41:6D:B4:67:AF:14:5D:3A:15:F9:4F Certificate issuer: /CN=A91DCAE8/serialNumber=AAB0E2B62F6343895730C05488E7FC4E26C51A6C Certificate serial: 3514 Authority key identifier: AA:B0:E2:B6:2F:63:43:89:57:30:C0:54:88:E7:FC:4E:26:C5:1A:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrDiti9jQ4lXMMBUiOf8TibFGmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/006CE5442FBA11ECA05BB46EC4F9AE02.roa Signing time: Sat 20 Sep 2025 15:01:00 +0000 ROA not before: Sat 20 Sep 2025 15:01:00 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 139797 IP address blocks: 202.57.208.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/qrDiti9jQ4lXMMBUiOf8TibFGmw.crl rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/qrDiti9jQ4lXMMBUiOf8TibFGmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrDiti9jQ4lXMMBUiOf8TibFGmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 14:49:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13588 (0x3514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCAE8, serialNumber=AAB0E2B62F6343895730C05488E7FC4E26C51A6C Validity Not Before: Sep 20 15:01:00 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68cec1ac-af90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:56:b0:18:12:56:41:59:94:8c:bb:2e:62:36: 30:9e:d1:af:72:2f:3b:97:39:b6:35:76:95:97:a5: db:06:8a:b6:43:1e:84:d5:d3:06:c8:fa:da:bf:79: 60:aa:05:c3:ea:0a:1a:14:46:e4:50:01:c2:97:8b: 1b:3e:dd:bf:cb:15:6a:89:88:d3:46:30:b0:50:b6: 5d:86:28:8f:d4:59:81:04:d4:6c:a9:5f:e2:b4:b5: 96:d3:04:68:ee:4e:dd:a4:b4:01:9e:ef:f5:56:52: 81:cb:06:8d:c5:26:dc:f2:ef:b7:f7:65:aa:23:d0: 20:1f:59:68:c9:65:1e:53:b2:23:1a:02:79:1d:c3: 20:df:8d:ea:22:d1:da:45:4e:58:00:da:80:06:61: 93:a8:24:84:99:f9:cb:65:aa:fc:39:d1:c2:a1:a2: 36:ae:0e:de:a7:1b:55:6f:15:28:34:02:9f:ce:35: 71:ac:81:16:41:ad:a1:1c:d8:f0:68:88:44:bd:1c: cc:6e:45:c7:16:65:1d:6e:52:ce:6e:81:d9:ca:0e: 53:36:4c:5d:fe:4c:8d:80:69:de:6c:6c:b1:06:cd: 88:f3:e9:a1:6e:35:94:24:9c:b6:9b:11:00:4f:4e: b7:00:68:98:bb:97:21:d1:b9:e4:53:69:74:3e:48: 24:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:B9:BC:EC:02:C8:29:0B:55:41:6D:B4:67:AF:14:5D:3A:15:F9:4F X509v3 Authority Key Identifier: keyid:AA:B0:E2:B6:2F:63:43:89:57:30:C0:54:88:E7:FC:4E:26:C5:1A:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/qrDiti9jQ4lXMMBUiOf8TibFGmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qrDiti9jQ4lXMMBUiOf8TibFGmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCAE8/8B6ADE141D9311E292CB23F708B02CD2/006CE5442FBA11ECA05BB46EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.57.208.0/24 Signature Algorithm: sha256WithRSAEncryption 80:5f:88:c6:1d:48:7c:d5:89:51:a4:53:e3:b9:ca:3e:0a:68: cf:25:70:dd:16:5c:10:77:cf:0d:7c:a3:98:05:07:ee:9b:73: c0:f5:b4:fc:eb:79:16:ea:f8:f6:9f:c4:ef:6c:c8:e5:8c:41: 7d:8b:59:8d:ea:44:bd:f6:33:2b:91:c2:b1:74:d4:e6:16:9f: 34:2c:17:d2:8e:54:c1:22:ef:08:63:39:7f:d1:40:69:c4:41: 4d:28:d4:2e:a1:c3:a1:22:d0:86:a0:2a:62:ee:ea:0a:e6:d1: 18:ec:45:59:5d:99:2e:69:b5:4f:21:9c:8a:b8:c3:34:fb:df: e2:4f:b7:7d:17:83:5f:67:ff:f7:65:2d:cb:89:20:ed:f5:33: d8:12:55:41:db:fa:27:bc:4c:f2:84:31:6b:fe:c9:17:d5:e1: b3:ab:11:63:e6:03:69:25:46:9c:df:12:6d:b4:46:d3:b1:5c: 6f:9f:7b:d6:be:e2:ed:72:93:cd:ab:ef:48:6a:5e:38:e5:95: bb:95:6f:d0:86:e2:5d:b9:21:b3:28:50:df:18:22:09:cc:10: 52:59:7f:7e:81:3e:7b:5b:7c:3f:14:ba:ea:c2:8d:22:f0:43: 7d:3c:e2:59:22:fc:3f:82:be:40:53:ee:e2:26:1f:bd:43:f7: 2c:1f:a1:51 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENBRTgxMTAvBgNVBAUTKEFBQjBFMkI2MkY2MzQzODk1NzMwQzA1NDg4RTdGQzRF MjZDNTFBNkMwHhcNMjUwOTIwMTUwMTAwWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGNlYzFhYy1hZjkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFawGBJWQVmUjLsuYjYwntGvci87lzm2NXaVl6XbBoq2Qx6E1dMGyPrav3lg qgXD6goaFEbkUAHCl4sbPt2/yxVqiYjTRjCwULZdhiiP1FmBBNRsqV/itLWW0wRo 7k7dpLQBnu/1VlKBywaNxSbc8u+392WqI9AgH1loyWUeU7IjGgJ5HcMg343qItHa RU5YANqABmGTqCSEmfnLZar8OdHCoaI2rg7epxtVbxUoNAKfzjVxrIEWQa2hHNjw aIhEvRzMbkXHFmUdblLOboHZyg5TNkxd/kyNgGnebGyxBs2I8+mhbjWUJJy2mxEA T063AGiYu5ch0bnkU2l0PkgkQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOy5vOwC yCkLVUFttGevFF06FflPMB8GA1UdIwQYMBaAFKqw4rYvY0OJVzDAVIjn/E4mxRps MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0FFOC84QjZBREUxNDFE OTMxMUUyOTJDQjIzRjcwOEIwMkNEMi9xckRpdGk5alE0bFhNTUJVaU9mOFRpYkZH bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FyRGl0aTlqUTRsWE1NQlVpT2Y4VGliRkdtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENBRTgvOEI2QURFMTQxRDkzMTFFMjkyQ0IyM0Y3MDhCMDJDRDIvMDA2Q0U1NDQy RkJBMTFFQ0EwNUJCNDZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKOdAwDQYJKoZIhvcNAQELBQADggEBAIBfiMYdSHzViVGk U+O5yj4KaM8lcN0WXBB3zw18o5gFB+6bc8D1tPzreRbq+PafxO9syOWMQX2LWY3q RL32MyuRwrF01OYWnzQsF9KOVMEi7whjOX/RQGnEQU0o1C6hw6Ei0IagKmLu6grm 0RjsRVldmS5ptU8hnIq4wzT73+JPt30Xg19n//dlLcuJIO31M9gSVUHb+ie8TPKE MWv+yRfV4bOrEWPmA2klRpzfEm20RtOxXG+fe9a+4u1yk82r70hqXjjllbuVb9CG 4l25IbMoUN8YIgnMEFJZf36BPntbfD8UuurCjSLwQ3084lki/D+CvkBT7uImH71D 9ywfoVE= -----END CERTIFICATE-----Generated at Mon Oct 20 18:26:55 2025 by rpki-client