$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/A3F69D08606D11F0AFBFBA71C4F9AE02.roa File: A3F69D08606D11F0AFBFBA71C4F9AE02.roa (raw, json) Hash identifier: v9JCkvRzeajZ1RwyQG30bF7FCS9w5H8Yxl4BEtdgQHw= Subject key identifier: 95:17:E3:15:EC:17:01:2E:3B:16:A1:A7:85:90:8F:F5:FA:B7:65:DB Certificate issuer: /CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Certificate serial: 0636 Authority key identifier: 25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/A3F69D08606D11F0AFBFBA71C4F9AE02.roa Signing time: Thu 14 Aug 2025 06:56:07 +0000 ROA not before: Thu 14 Aug 2025 06:56:07 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45458 IP address blocks: 14.207.7.0/24 maxlen: 24 14.207.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 23:40:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1590 (0x636) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7561, serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Validity Not Before: Aug 14 06:56:07 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=689d8887-96fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:2b:17:2e:5c:4f:a7:70:c3:76:62:c5:f1:07: 6d:8a:55:74:85:23:95:dc:7e:92:6e:e2:7f:24:4b: d4:3d:bb:d0:c2:5d:ef:fd:d2:75:31:ea:eb:0f:21: 49:ce:3a:c0:90:73:64:bb:39:40:2c:34:59:db:22: c5:fa:16:d0:9f:d3:45:cd:cd:5c:1f:24:77:fc:a6: 1e:8a:48:83:3a:eb:b2:e1:71:6a:3b:a6:cf:fb:e4: 8e:57:52:f6:cf:9e:a0:89:e1:20:28:6b:f0:3b:18: 24:70:6b:01:05:13:28:03:8d:a6:d2:8b:88:71:34: 57:b2:98:e3:d3:4e:d2:aa:c1:8d:7f:5a:60:a5:94: 89:cc:0f:1f:5e:b4:f0:96:59:c4:6c:64:0a:99:9b: 46:a3:97:a8:55:7c:b5:f1:f8:8e:fe:25:01:8a:1e: 74:4b:81:af:44:41:a3:de:e9:9f:e2:50:dd:f8:f2: 55:da:f4:ec:c4:9d:a1:93:d9:23:03:48:f4:ec:81: 32:87:e8:2f:19:d4:c0:c2:4c:15:dd:98:1d:78:aa: 7a:41:c3:c1:b0:c8:c7:6a:bf:d3:b0:0b:c0:02:de: c9:f2:65:f0:b2:ad:a9:bc:39:e8:7b:8f:67:d8:ac: 1b:fb:0e:54:e8:f0:61:1f:cd:c7:5b:7e:ea:fd:c9: 96:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:17:E3:15:EC:17:01:2E:3B:16:A1:A7:85:90:8F:F5:FA:B7:65:DB X509v3 Authority Key Identifier: keyid:25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/A3F69D08606D11F0AFBFBA71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.207.7.0/24 14.207.128.0/17 Signature Algorithm: sha256WithRSAEncryption 1d:3e:fa:3b:e4:8c:83:83:a6:7f:19:10:f5:19:8f:3d:17:22: 8e:87:60:42:b2:89:45:a6:e9:37:80:7b:1b:7a:bf:3d:63:28: 21:44:9b:67:51:50:d3:b4:e8:c5:4d:e4:44:1a:e0:90:9b:52: 55:8f:af:e5:82:57:49:62:e7:c2:59:04:50:9b:f3:e3:ef:cf: 47:d3:66:8c:75:22:fd:85:5d:ef:db:7f:63:65:1e:ce:a7:df: e3:8b:df:17:e3:15:f6:20:87:34:73:1a:04:1d:53:e2:31:8e: cf:32:df:06:e3:f6:33:5f:03:08:2d:a4:e8:fd:51:82:84:1a: 5f:44:13:79:79:26:1a:dd:25:26:f9:cc:d9:3f:17:7d:50:ca: 23:a8:b4:6b:2e:e3:32:10:9d:5d:b5:a0:da:34:e0:8f:91:69: db:b0:31:ba:c5:b7:e3:2e:4e:9a:a3:bf:ba:36:04:87:a1:50: d9:2d:ea:da:31:fd:19:8d:b6:7e:04:17:67:99:2a:79:8f:14: e0:11:81:76:aa:ea:31:04:c9:16:57:9c:45:04:a2:3f:bb:c5: 43:12:31:68:aa:88:77:44:33:c8:6d:61:62:af:ff:7d:98:b4: 83:eb:9c:56:4f:35:de:93:90:5c:dd:2f:a7:d1:be:cc:b6:47: 22:ae:99:b9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBjYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NjExMTAvBgNVBAUTKDI1QkM3RDRERTc3QkQwMUIzRDE5MTU4NzY5NkU1QUZE RDhDRUNEMDQwHhcNMjUwODE0MDY1NjA3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODlkODg4Ny05NmZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAySsXLlxPp3DDdmLF8QdtilV0hSOV3H6SbuJ/JEvUPbvQwl3v/dJ1MerrDyFJ zjrAkHNkuzlALDRZ2yLF+hbQn9NFzc1cHyR3/KYeikiDOuuy4XFqO6bP++SOV1L2 z56gieEgKGvwOxgkcGsBBRMoA42m0ouIcTRXspjj007SqsGNf1pgpZSJzA8fXrTw llnEbGQKmZtGo5eoVXy18fiO/iUBih50S4GvREGj3umf4lDd+PJV2vTsxJ2hk9kj A0j07IEyh+gvGdTAwkwV3ZgdeKp6QcPBsMjHar/TsAvAAt7J8mXwsq2pvDnoe49n 2Kwb+w5U6PBhH83HW37q/cmWYwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJUX4xXs FwEuOxahp4WQj/X6t2XbMB8GA1UdIwQYMBaAFCW8fU3ne9AbPRkVh2luWv3Yzs0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU2MS9BMjZFMDZFMDA1 NEMxMUVDQkRCNEZFNDZDNEY5QUUwMi9KYng5VGVkNzBCczlHUldIYVc1YV9kak96 UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pieDlUZWQ3MEJzOUdSV0hhVzVhX2RqT3pRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc1NjEvQTI2RTA2RTAwNTRDMTFFQ0JEQjRGRTQ2QzRGOUFFMDIvQTNGNjlEMDg2 MDZEMTFGMEFGQkZCQTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAOzwcDBAcOz4AwDQYJKoZIhvcNAQELBQADggEBAB0++jvk jIODpn8ZEPUZjz0XIo6HYEKyiUWm6TeAext6vz1jKCFEm2dRUNO06MVN5EQa4JCb UlWPr+WCV0li58JZBFCb8+Pvz0fTZox1Iv2FXe/bf2NlHs6n3+OL3xfjFfYghzRz GgQdU+Ixjs8y3wbj9jNfAwgtpOj9UYKEGl9EE3l5JhrdJSb5zNk/F31QyiOotGsu 4zIQnV21oNo04I+RaduwMbrFt+MuTpqjv7o2BIehUNkt6tox/RmNtn4EF2eZKnmP FOARgXaq6jEEyRZXnEUEoj+7xUMSMWiqiHdEM8htYWKv/32YtIPrnFZPNd6TkFzd L6fRvsy2RyKumbk= -----END CERTIFICATE-----Generated at Sun Aug 24 03:12:59 2025 by rpki-client