$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/AF73E1423D2011F0ACC34F2BC4F9AE02.roa File: AF73E1423D2011F0ACC34F2BC4F9AE02.roa (raw, json) Hash identifier: 6z4IvdKelJy7fw7SK3RJpHNkKU/zaX8zdMWrochmqvY= Subject key identifier: E5:A0:B9:16:52:CC:3C:12:82:D4:47:A6:F5:61:DF:DC:6C:CE:3F:89 Certificate issuer: /CN=A91E7656/serialNumber=A20C57F52CE98C8848F636250E4A4670811B5076 Certificate serial: 0C10 Authority key identifier: A2:0C:57:F5:2C:E9:8C:88:48:F6:36:25:0E:4A:46:70:81:1B:50:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/AF73E1423D2011F0ACC34F2BC4F9AE02.roa Signing time: Fri 30 May 2025 06:38:24 +0000 ROA not before: Fri 30 May 2025 06:38:24 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 4859 IP address blocks: 203.207.96.0/21 maxlen: 21 203.207.104.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.crl rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 19:19:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3088 (0xc10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7656, serialNumber=A20C57F52CE98C8848F636250E4A4670811B5076 Validity Not Before: May 30 06:38:24 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68395260-c02e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:01:b1:31:de:0b:0b:76:f0:c9:c5:a3:53:17: 4c:92:9a:fe:d9:55:a0:5f:8e:52:50:b5:8a:f7:5b: f2:04:e3:e3:2b:de:06:6e:87:70:0d:2c:7c:a2:9c: e8:dc:38:0d:7c:87:73:b4:f7:7d:09:dc:a1:d1:05: 08:b8:90:5b:3c:e5:d3:2c:4b:6c:0a:a1:e6:16:39: 45:3d:d0:7a:4d:91:89:0f:2e:08:cf:3d:fc:87:d0: 30:03:ae:61:ef:b3:c9:d5:a4:0d:f9:9a:56:19:6a: 1f:a1:0c:00:45:f3:77:ad:98:1a:c8:ed:58:dd:1d: 65:2a:40:87:bc:e1:8a:6d:03:df:61:0e:18:cc:ec: 5f:67:9e:37:13:fa:18:7b:ac:a7:17:37:44:2e:56: 43:73:f1:a5:aa:fc:54:67:ea:9f:35:e0:a3:2f:8d: 44:89:ca:85:8e:a6:a6:43:d9:65:07:fd:b0:6d:75: d8:6a:17:91:98:90:de:64:ae:81:c0:12:96:2f:1b: bc:e9:00:1b:54:04:eb:89:d3:65:75:56:c1:a0:63: 07:09:d4:5b:ed:63:f6:d2:1d:79:2f:4c:48:e5:e6: a1:f1:32:dc:86:8e:91:ec:fb:a1:84:c1:13:0b:94: 24:24:c3:cb:3c:f0:70:cd:f5:96:da:25:98:33:29: 84:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:A0:B9:16:52:CC:3C:12:82:D4:47:A6:F5:61:DF:DC:6C:CE:3F:89 X509v3 Authority Key Identifier: keyid:A2:0C:57:F5:2C:E9:8C:88:48:F6:36:25:0E:4A:46:70:81:1B:50:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/ogxX9SzpjIhI9jYlDkpGcIEbUHY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ogxX9SzpjIhI9jYlDkpGcIEbUHY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7656/0EE3A5BC0CD611EABF562553C4F9AE02/AF73E1423D2011F0ACC34F2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.207.96.0-203.207.107.255 Signature Algorithm: sha256WithRSAEncryption 59:b2:69:b4:f0:0d:98:40:b3:8b:41:9e:03:f6:8a:7b:b6:b9: ca:84:1a:ae:43:b3:8b:6c:5f:42:ff:5f:1d:0b:5e:41:1b:e2: 9d:57:e3:6b:80:58:bb:c9:ea:25:1d:4b:cf:6f:2f:62:09:c1: 01:10:4f:03:63:14:dc:4a:ed:e5:ef:4f:0a:5f:bb:69:8b:37: b9:da:cc:ca:60:3c:e5:82:1f:54:44:60:21:e3:9e:fa:f9:64: a8:3e:6a:98:54:84:8f:96:86:d9:c0:3a:c0:32:fa:44:ba:c7: 44:d7:06:f9:8a:f0:b5:e2:91:06:fa:2a:91:b1:f3:e0:b9:33: ea:ee:e0:6f:a1:36:c9:54:f6:79:9e:1e:41:48:05:11:fe:df: 62:65:34:c9:b1:61:7e:e7:72:64:6d:72:32:ab:72:b9:cc:56: a7:b1:5b:07:62:16:27:9b:19:f5:47:bf:1b:78:37:cc:60:42: 97:2b:62:15:ba:60:94:58:c2:6e:8f:52:3d:2e:07:f8:14:24: 06:b4:95:a6:6d:06:c7:be:77:fb:10:84:48:03:37:ba:98:85: 68:eb:d3:2c:f6:a9:e7:fb:32:c1:ff:57:f2:ff:19:7e:16:d0: b7:af:5f:e3:cc:27:74:c2:97:74:92:d5:ef:6b:27:b1:ad:7b: c9:12:89:23 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICDBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc2NTYxMTAvBgNVBAUTKEEyMEM1N0Y1MkNFOThDODg0OEY2MzYyNTBFNEE0Njcw ODExQjUwNzYwHhcNMjUwNTMwMDYzODI0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM5NTI2MC1jMDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoAGxMd4LC3bwycWjUxdMkpr+2VWgX45SULWK91vyBOPjK94GbodwDSx8opzo 3DgNfIdztPd9Cdyh0QUIuJBbPOXTLEtsCqHmFjlFPdB6TZGJDy4Izz38h9AwA65h 77PJ1aQN+ZpWGWofoQwARfN3rZgayO1Y3R1lKkCHvOGKbQPfYQ4YzOxfZ543E/oY e6ynFzdELlZDc/GlqvxUZ+qfNeCjL41EicqFjqamQ9llB/2wbXXYaheRmJDeZK6B wBKWLxu86QAbVATridNldVbBoGMHCdRb7WP20h15L0xI5eah8TLcho6R7PuhhMET C5QkJMPLPPBwzfWW2iWYMymEZQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFOWguRZS zDwSgtRHpvVh39xszj+JMB8GA1UdIwQYMBaAFKIMV/Us6YyISPY2JQ5KRnCBG1B2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzY1Ni8wRUUzQTVCQzBD RDYxMUVBQkY1NjI1NTNDNEY5QUUwMi9vZ3hYOVN6cGpJaEk5allsRGtwR2NJRWJV SFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29neFg5U3pwakloSTlqWWxEa3BHY0lFYlVIWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc2NTYvMEVFM0E1QkMwQ0Q2MTFFQUJGNTYyNTUzQzRGOUFFMDIvQUY3M0UxNDIz RDIwMTFGMEFDQzM0RjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBcvPYAMEAsvPaDANBgkqhkiG9w0BAQsFAAOCAQEAWbJp tPANmECzi0GeA/aKe7a5yoQarkOzi2xfQv9fHQteQRvinVfja4BYu8nqJR1Lz28v YgnBARBPA2MU3Ert5e9PCl+7aYs3udrMymA85YIfVERgIeOe+vlkqD5qmFSEj5aG 2cA6wDL6RLrHRNcG+YrwteKRBvoqkbHz4Lkz6u7gb6E2yVT2eZ4eQUgFEf7fYmU0 ybFhfudyZG1yMqtyucxWp7FbB2IWJ5sZ9Ue/G3g3zGBClytiFbpglFjCbo9SPS4H +BQkBrSVpm0Gx753+xCESAM3upiFaOvTLPap5/sywf9X8v8ZfhbQt69f48wndMKX dJLV72snsa17yRKJIw== -----END CERTIFICATE-----Generated at Mon Oct 20 19:44:54 2025 by rpki-client