$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/5B5CBC68751B11EB9065A822C4F9AE02.roa File: 5B5CBC68751B11EB9065A822C4F9AE02.roa (raw, json) Hash identifier: PfplpurYpM5Nlhs4wMvQOWeVvjM0XGHzdK7n61JNfpc= Subject key identifier: D6:30:B6:FF:59:F9:66:EC:24:F1:19:CA:A2:E2:C0:5C:D5:C3:20:53 Certificate issuer: /CN=A91DF93A/serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260 Certificate serial: 08C0 Authority key identifier: 07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/5B5CBC68751B11EB9065A822C4F9AE02.roa Signing time: Wed 18 Jun 2025 21:08:00 +0000 ROA not before: Wed 18 Jun 2025 21:08:00 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 58682 IP address blocks: 202.168.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.crl rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 21:07:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2240 (0x8c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A, serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260 Validity Not Before: Jun 18 21:08:00 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68532aaf-4bd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:79:97:a0:0c:34:f4:79:4e:21:fb:ee:9a:96: 11:ad:bc:27:8b:90:f9:97:20:a7:b1:76:ba:30:c0: 70:b9:49:a3:74:91:d6:21:ce:eb:f5:5f:fe:f4:2a: 24:67:61:26:ba:a5:0c:19:8e:6d:1e:e5:7d:4a:25: 31:2f:05:59:3d:53:e3:b3:56:b5:70:42:dc:8a:05: 6e:33:80:ff:2e:40:d0:10:84:e5:ac:ba:fa:40:87: 05:bf:f2:bb:77:3f:a3:70:ff:9a:e7:f7:4d:ff:97: 37:1f:40:f5:82:4e:d3:d5:08:a3:a1:2e:82:21:c0: c2:27:5b:28:7c:f6:c9:3f:77:a2:2a:49:91:4e:33: 2f:11:e2:c9:e9:fd:3a:a8:c2:46:ec:10:b9:a7:8e: b2:f8:b8:44:cb:d9:b9:82:4d:29:6a:1d:12:9a:15: 49:dd:62:39:76:76:41:97:f5:c2:56:ae:f2:56:97: 37:3f:58:08:70:e3:03:de:b3:a2:0b:c8:e5:c5:15: a3:c0:cc:8b:88:e2:96:4c:90:17:63:be:ab:2b:0e: 58:96:e9:ae:3e:e3:6b:ae:89:ba:c8:a0:6f:d8:30: 80:04:b5:f9:8a:51:a0:d8:fc:7b:48:2e:42:3a:2f: 77:0b:31:c9:db:8c:22:44:cb:fb:a9:63:cf:88:90: d9:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:30:B6:FF:59:F9:66:EC:24:F1:19:CA:A2:E2:C0:5C:D5:C3:20:53 X509v3 Authority Key Identifier: keyid:07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/5B5CBC68751B11EB9065A822C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.168.127.0/24 Signature Algorithm: sha256WithRSAEncryption bf:08:54:b3:8e:02:85:c4:55:f4:48:e7:c5:cd:e5:fa:bc:42: 95:77:52:68:64:ea:22:71:55:2d:33:e2:20:22:d7:ca:40:6f: e5:54:47:f1:9d:0e:f5:23:ee:b5:36:6c:a1:b0:1d:04:58:39: d1:5c:bd:f0:d2:bb:5a:3a:7f:bf:26:0a:a5:4a:5b:70:6d:a8: e1:76:ba:b8:8d:dd:82:a9:e9:89:5b:e8:69:00:30:03:91:6f: c7:9f:b9:54:bd:a7:b7:9e:c7:a3:24:12:7d:e3:94:49:e4:d4: 0c:3e:bc:54:73:de:17:17:87:1e:2b:9c:39:95:9b:b9:ab:34: 9a:97:ab:05:4e:80:31:bf:14:56:5b:52:25:74:53:31:97:ed: 4c:0e:34:bd:da:d4:92:e0:e7:89:94:1c:1e:cc:52:09:50:12: 2b:8f:76:31:91:79:be:d4:d8:38:10:00:37:8b:26:fa:d2:0c: cd:8c:84:75:c8:bb:07:dc:42:a7:ad:bb:2c:d3:19:f5:bd:54: 69:8c:45:89:b9:15:55:ec:6a:e7:bd:ac:fd:f1:85:15:0a:d1: c5:44:cc:2d:30:0d:08:60:98:48:80:a6:86:6d:da:7b:58:67: ee:ba:f3:b0:3e:11:6c:bc:05:de:3b:84:99:79:da:05:ea:dc: e3:be:ea:4e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDA3QTFDMDg1NDVDQUNDNjVFMDg4MkQ0OUU5RjJGOENG RDJCRTgyNjAwHhcNMjUwNjE4MjEwODAwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUzMmFhZi00YmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyHmXoAw09HlOIfvumpYRrbwni5D5lyCnsXa6MMBwuUmjdJHWIc7r9V/+9Cok Z2EmuqUMGY5tHuV9SiUxLwVZPVPjs1a1cELcigVuM4D/LkDQEITlrLr6QIcFv/K7 dz+jcP+a5/dN/5c3H0D1gk7T1QijoS6CIcDCJ1sofPbJP3eiKkmRTjMvEeLJ6f06 qMJG7BC5p46y+LhEy9m5gk0pah0SmhVJ3WI5dnZBl/XCVq7yVpc3P1gIcOMD3rOi C8jlxRWjwMyLiOKWTJAXY76rKw5YlumuPuNrrom6yKBv2DCABLX5ilGg2Px7SC5C Oi93CzHJ24wiRMv7qWPPiJDZIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNYwtv9Z +WbsJPEZyqLiwFzVwyBTMB8GA1UdIwQYMBaAFAehwIVFysxl4IgtSeny+M/SvoJg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GRjUxRTU5RUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9CNkhBaFVYS3pHWGdpQzFKNmZMNHo5Sy1n bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I2SEFoVVhLekdYZ2lDMUo2Zkw0ejlLLWdtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRkY1MUU1OUVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvNUI1Q0JDNjg3 NTFCMTFFQjkwNjVBODIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKqH8wDQYJKoZIhvcNAQELBQADggEBAL8IVLOOAoXEVfRI 58XN5fq8QpV3Umhk6iJxVS0z4iAi18pAb+VUR/GdDvUj7rU2bKGwHQRYOdFcvfDS u1o6f78mCqVKW3BtqOF2uriN3YKp6Ylb6GkAMAORb8efuVS9p7eex6MkEn3jlEnk 1Aw+vFRz3hcXhx4rnDmVm7mrNJqXqwVOgDG/FFZbUiV0UzGX7UwONL3a1JLg54mU HB7MUglQEiuPdjGReb7U2DgQADeLJvrSDM2MhHXIuwfcQqetuyzTGfW9VGmMRYm5 FVXsaue9rP3xhRUK0cVEzC0wDQhgmEiApoZt2ntYZ+6687A+EWy8Bd47hJl52gXq 3OO+6k4= -----END CERTIFICATE-----Generated at Tue Jul 1 14:05:24 2025 by rpki-client