$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/29B9D5B8524111EABEF0A119C4F9AE02.roa File: 29B9D5B8524111EABEF0A119C4F9AE02.roa (raw, json) Hash identifier: XgnhviRQUKAkeu4itRmlPhHlV4kxqNIZcBKK2pdxl3k= Subject key identifier: 7C:DF:29:D4:01:F1:1D:D4:9B:21:7D:F0:CA:A1:E1:18:F7:91:A2:B8 Certificate issuer: /CN=A91E0CA1/serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Certificate serial: 0AAA Authority key identifier: E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/29B9D5B8524111EABEF0A119C4F9AE02.roa Signing time: Tue 22 Apr 2025 19:49:27 +0000 ROA not before: Tue 22 Apr 2025 19:49:27 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45495 IP address blocks: 202.4.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 20:16:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2730 (0xaaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0CA1, serialNumber=E1D95A3CBDD92029AEBE1E1308099E6249CD3624 Validity Not Before: Apr 22 19:49:27 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6807f2c7-0892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5d:62:a0:69:85:60:ee:d7:f2:d4:e9:ca:94: c1:ab:b1:f6:30:55:04:22:ce:cb:51:74:e1:23:69: 94:80:d3:4e:f1:38:95:87:41:69:5d:b1:68:16:de: 27:dc:15:5b:b5:88:98:12:00:fd:a9:11:ba:5b:5b: 4d:33:68:c3:5a:1f:35:1c:2b:70:2b:f6:86:a0:24: 64:f7:99:b5:36:45:fc:d6:d4:3b:3a:bb:0d:4c:da: f4:7e:07:90:be:ab:05:a5:d5:d0:d2:64:80:72:9e: e8:24:42:45:6a:14:93:9c:2f:5d:53:eb:9e:f0:ef: ea:a0:c7:fe:05:93:58:fe:cd:56:60:19:60:e2:13: 49:f7:45:8c:54:f6:c9:d4:a2:c7:42:f2:82:02:4e: 11:5a:30:28:46:72:46:0b:7e:92:d7:7f:e6:5c:35: 1e:cd:0b:8f:b1:14:c5:5d:31:e2:91:90:94:0b:2b: fe:51:6a:35:7d:5f:03:b8:a1:85:72:d4:80:e9:d3: 5c:d6:32:76:15:d6:4e:72:34:1e:12:fc:43:2f:51: 93:c9:ac:be:2c:8d:71:7a:51:9b:c6:e7:b3:aa:8b: 66:43:15:8b:66:96:44:96:9b:cb:5a:86:93:ab:bf: d3:20:95:1e:95:64:8b:8d:f8:59:fb:3c:8f:c0:f6: f3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:DF:29:D4:01:F1:1D:D4:9B:21:7D:F0:CA:A1:E1:18:F7:91:A2:B8 X509v3 Authority Key Identifier: keyid:E1:D9:5A:3C:BD:D9:20:29:AE:BE:1E:13:08:09:9E:62:49:CD:36:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/4dlaPL3ZICmuvh4TCAmeYknNNiQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4dlaPL3ZICmuvh4TCAmeYknNNiQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0CA1/7063E424523F11EA8C9CF016C4F9AE02/29B9D5B8524111EABEF0A119C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.4.251.0/24 Signature Algorithm: sha256WithRSAEncryption 26:5f:21:e3:63:7c:84:1d:1a:22:4b:95:32:45:b5:4a:41:20: e3:a1:f1:9c:b2:e0:55:bb:dc:3c:84:1d:09:03:64:f3:7a:fb: a0:01:65:8b:24:c6:8b:52:ea:fc:86:36:4a:18:0a:b9:8b:2d: e5:5f:a3:78:3e:7e:f5:e8:b7:8a:3f:f7:cc:e0:86:38:2f:12: 94:93:d3:8f:19:70:07:cc:4d:f5:ee:a4:bd:fb:b1:ae:a2:52: ef:19:35:ae:7f:f5:98:c8:1d:1a:e3:4c:be:0d:dd:ad:97:c7: 56:93:64:e9:a0:82:ca:b8:6d:f3:62:62:81:56:91:93:9b:cd: 0a:a4:3c:ee:32:11:ef:cd:cf:75:4e:02:91:b9:73:c4:bc:27: 2f:24:2f:41:ac:4a:33:f6:48:f5:cb:4d:64:a9:90:71:36:b1: 76:60:07:0a:48:7c:db:5b:59:2d:44:3f:1c:58:13:58:66:65: b3:b8:af:05:3e:e4:32:56:86:9a:0d:ee:a1:0b:db:57:52:f1: f0:f7:bf:db:2b:d1:0e:dc:db:dd:50:19:a5:22:16:af:9f:2d: 3a:e8:eb:2d:bc:9a:cf:b9:bf:5e:76:ec:8c:86:7c:24:71:5b: 0f:83:67:e0:d9:76:13:59:41:2a:35:ac:78:e9:2e:ed:01:20: 57:5e:7b:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCqowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDQTExMTAvBgNVBAUTKEUxRDk1QTNDQkREOTIwMjlBRUJFMUUxMzA4MDk5RTYy NDlDRDM2MjQwHhcNMjUwNDIyMTk0OTI3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA3ZjJjNy0wODkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw11ioGmFYO7X8tTpypTBq7H2MFUEIs7LUXThI2mUgNNO8TiVh0FpXbFoFt4n 3BVbtYiYEgD9qRG6W1tNM2jDWh81HCtwK/aGoCRk95m1NkX81tQ7OrsNTNr0fgeQ vqsFpdXQ0mSAcp7oJEJFahSTnC9dU+ue8O/qoMf+BZNY/s1WYBlg4hNJ90WMVPbJ 1KLHQvKCAk4RWjAoRnJGC36S13/mXDUezQuPsRTFXTHikZCUCyv+UWo1fV8DuKGF ctSA6dNc1jJ2FdZOcjQeEvxDL1GTyay+LI1xelGbxuezqotmQxWLZpZElpvLWoaT q7/TIJUelWSLjfhZ+zyPwPbzGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHzfKdQB 8R3UmyF98Mqh4Rj3kaK4MB8GA1UdIwQYMBaAFOHZWjy92SAprr4eEwgJnmJJzTYk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMENBMS83MDYzRTQyNDUy M0YxMUVBOEM5Q0YwMTZDNEY5QUUwMi80ZGxhUEwzWklDbXV2aDRUQ0FtZVlrbk5O aVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRkbGFQTDNaSUNtdXZoNFRDQW1lWWtuTk5pUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBDQTEvNzA2M0U0MjQ1MjNGMTFFQThDOUNGMDE2QzRGOUFFMDIvMjlCOUQ1Qjg1 MjQxMTFFQUJFRjBBMTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKBPswDQYJKoZIhvcNAQELBQADggEBACZfIeNjfIQdGiJL lTJFtUpBIOOh8Zyy4FW73DyEHQkDZPN6+6ABZYskxotS6vyGNkoYCrmLLeVfo3g+ fvXot4o/98zghjgvEpST048ZcAfMTfXupL37sa6iUu8ZNa5/9ZjIHRrjTL4N3a2X x1aTZOmggsq4bfNiYoFWkZObzQqkPO4yEe/Nz3VOApG5c8S8Jy8kL0GsSjP2SPXL TWSpkHE2sXZgBwpIfNtbWS1EPxxYE1hmZbO4rwU+5DJWhpoN7qEL21dS8fD3v9sr 0Q7c291QGaUiFq+fLTro6y28ms+5v1527IyGfCRxWw+DZ+DZdhNZQSo1rHjpLu0B IFdee34= -----END CERTIFICATE-----Generated at Mon Oct 20 21:42:41 2025 by rpki-client