$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/3602E1AAA51711F0804A3D3EC4F9AE02.roa File: 3602E1AAA51711F0804A3D3EC4F9AE02.roa (raw, json) Hash identifier: cZ+xVdpY0zejlKYgeF8M/tGat05eAxdQWKOHmwymWu8= Subject key identifier: 7D:88:47:59:84:E4:5D:57:BB:10:51:40:FF:7B:AA:68:96:8A:E1:65 Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 118A Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/3602E1AAA51711F0804A3D3EC4F9AE02.roa Signing time: Thu 09 Oct 2025 13:52:36 +0000 ROA not before: Thu 09 Oct 2025 13:52:36 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 137048 IP address blocks: 220.152.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Oct 2025 17:43:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4490 (0x118a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC, serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: Oct 9 13:52:36 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68e7be24-8801 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:68:0e:54:2d:2a:e9:27:66:94:81:0a:a3:2f: 95:3c:e9:7e:94:53:a2:b2:00:06:75:f8:34:4a:69: 8a:09:c6:90:6f:49:df:19:aa:6b:f2:42:b7:ae:57: 4c:4b:d5:48:1b:80:7b:de:dc:e2:fc:3b:a8:b8:30: 54:b1:57:a1:80:e8:33:35:92:78:de:22:6d:4b:f2: 2a:38:7d:1e:80:1d:24:c2:74:1e:87:16:8d:33:ce: 70:1d:9f:2f:69:10:5a:62:82:0e:d5:50:0a:df:f2: 4c:e8:6c:1e:2a:d0:9a:46:d2:49:3d:4a:6f:fa:16: 80:18:86:99:ba:76:36:a6:a9:62:07:7f:b2:8a:e5: c1:60:53:a3:df:6f:2f:15:ac:3c:6a:70:4b:56:8f: 3f:12:19:71:ec:a8:15:18:af:c9:bc:09:f0:25:c4: 90:28:96:ba:4a:72:05:d3:9a:79:f1:f5:35:8c:93: a8:aa:54:7a:67:2a:49:a1:60:3b:23:57:a1:e7:28: dd:be:60:ee:e1:1b:7a:d4:b4:e6:7a:39:4d:54:fa: 21:1e:93:9d:89:44:8b:eb:c9:d2:9e:69:28:33:34: 0e:87:e5:0f:db:e5:f2:4a:01:9b:a5:4b:42:39:82: 80:59:b3:c4:96:20:9f:ca:b4:fd:76:c9:37:d5:8a: cd:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:88:47:59:84:E4:5D:57:BB:10:51:40:FF:7B:AA:68:96:8A:E1:65 X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/3602E1AAA51711F0804A3D3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.152.113.0/24 Signature Algorithm: sha256WithRSAEncryption 01:b8:12:08:08:f2:5e:68:98:1d:90:8b:a5:18:1e:cc:8c:01: 52:53:8c:48:69:4c:b0:88:a6:a7:64:0e:dc:64:58:f8:9f:35: b9:ab:a6:1c:1b:81:46:bf:4c:8b:1e:51:b3:b0:c8:fb:0e:bb: 59:ba:1e:5a:1e:38:09:4f:e5:b6:3a:02:f4:4d:d3:fe:a8:17: 6d:30:f1:a7:fb:4e:f0:2e:f5:69:be:d4:b4:8f:24:b9:f7:b6: a6:7b:8c:01:5a:a1:ed:51:c0:26:04:40:49:65:25:c1:10:a0: f1:a0:88:e3:7e:dd:81:07:f0:62:a2:16:6b:65:67:3a:aa:fd: 1d:e8:5d:40:4a:0e:12:c7:49:67:d8:d4:3b:d8:a5:87:bb:c6: 29:3e:5b:37:a4:ff:37:8f:97:63:63:e5:1d:b5:25:4f:44:79: 43:7f:f0:8a:c5:64:22:72:26:46:41:f2:5f:9b:89:ba:67:79: c9:b4:cd:fc:db:f1:c5:cb:31:8b:56:bb:4f:8f:e4:1b:1f:04: 38:62:93:65:a5:04:b4:48:37:13:3b:a5:e2:ab:bc:f1:04:0c: 5b:8a:19:5a:3e:a3:cd:07:8e:ce:86:d8:80:47:d7:e2:43:95: ac:89:4a:52:bc:a4:c9:67:12:63:45:83:c8:5a:4f:eb:55:a0: c6:46:05:61 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEYowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjUxMDA5MTM1MjM2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGU3YmUyNC04ODAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0mgOVC0q6SdmlIEKoy+VPOl+lFOisgAGdfg0SmmKCcaQb0nfGapr8kK3rldM S9VIG4B73tzi/DuouDBUsVehgOgzNZJ43iJtS/IqOH0egB0kwnQehxaNM85wHZ8v aRBaYoIO1VAK3/JM6GweKtCaRtJJPUpv+haAGIaZunY2pqliB3+yiuXBYFOj328v Faw8anBLVo8/Ehlx7KgVGK/JvAnwJcSQKJa6SnIF05p58fU1jJOoqlR6ZypJoWA7 I1eh5yjdvmDu4Rt61LTmejlNVPohHpOdiUSL68nSnmkoMzQOh+UP2+XySgGbpUtC OYKAWbPEliCfyrT9dsk31YrN/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFH2IR1mE 5F1XuxBRQP97qmiWiuFlMB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3REMvMzVGNzk4NjYxRjAxMTFFOUIxQUE5NDM2QzRGOUFFMDIvMzYwMkUxQUFB NTE3MTFGMDgwNEEzRDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADcmHEwDQYJKoZIhvcNAQELBQADggEBAAG4EggI8l5omB2Q i6UYHsyMAVJTjEhpTLCIpqdkDtxkWPifNbmrphwbgUa/TIseUbOwyPsOu1m6Hloe OAlP5bY6AvRN0/6oF20w8af7TvAu9Wm+1LSPJLn3tqZ7jAFaoe1RwCYEQEllJcEQ oPGgiON+3YEH8GKiFmtlZzqq/R3oXUBKDhLHSWfY1DvYpYe7xik+Wzek/zePl2Nj 5R21JU9EeUN/8IrFZCJyJkZB8l+bibpnecm0zfzb8cXLMYtWu0+P5BsfBDhik2Wl BLRINxM7peKrvPEEDFuKGVo+o80Hjs6G2IBH1+JDlayJSlK8pMlnEmNFg8haT+tV oMZGBWE= -----END CERTIFICATE-----Generated at Mon Oct 20 23:26:26 2025 by rpki-client