$ rpki-client -vvf rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/68EBA63A48B911EFB80D9535C4F9AE02.roa File: 68EBA63A48B911EFB80D9535C4F9AE02.roa (raw, json) Hash identifier: SDdYRvXnG416X1QTBXKH/HiVb0zTXNC7wcw8Ko4jVbs= Subject key identifier: 64:66:78:35:31:B0:02:79:61:5B:F0:D1:38:70:BD:78:A4:25:60:C1 Certificate issuer: /CN=A91E782F/serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Certificate serial: DC Authority key identifier: C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/68EBA63A48B911EFB80D9535C4F9AE02.roa Signing time: Tue 19 Aug 2025 06:15:10 +0000 ROA not before: Tue 19 Aug 2025 06:15:10 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 6453 IP address blocks: 192.8.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 05:48:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 220 (0xdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E782F, serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Validity Not Before: Aug 19 06:15:10 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a4166e-655e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7c:04:67:7a:5a:03:68:4b:38:0b:32:4e:f0: b1:e2:12:53:69:d6:26:5b:53:a4:c2:56:09:c2:16: 87:fc:8d:d8:76:74:49:84:7d:c9:9e:05:2c:fa:67: 60:fc:ff:74:fd:1e:d5:90:21:a8:8c:d4:ed:87:dd: a0:77:02:b8:ae:da:05:ae:ab:c6:35:23:a7:1e:77: 82:8c:d3:90:2e:d1:d4:25:85:c7:48:ea:9f:bf:11: f8:82:c8:fc:6f:8a:eb:d3:a9:23:ec:78:c5:49:9c: 98:9b:64:15:0a:4d:cd:ad:3f:e4:5a:6f:57:9c:73: 82:7e:c5:89:e4:9e:01:1d:d0:72:54:71:98:50:60: b8:3a:3c:e5:f8:df:bb:40:ad:f3:19:73:77:9f:82: 8a:ab:98:8e:bb:45:2a:45:f9:6d:df:b5:8b:91:62: 3f:e0:35:45:a4:f7:08:7a:3d:50:58:dd:7c:62:80: 4e:a1:93:55:7e:16:ef:0a:a8:bc:7f:f7:67:c5:a6: 13:64:b0:48:30:17:7e:1f:73:ca:7e:84:ff:26:8d: 56:e2:a5:cb:f3:e0:0e:11:f1:98:25:0a:da:44:65: bc:a6:7c:b4:39:fc:94:a5:3f:d3:43:fa:2e:95:a5: 3c:b3:e6:4f:b9:1a:fa:73:49:9d:1e:de:1d:c4:d2: 1d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:66:78:35:31:B0:02:79:61:5B:F0:D1:38:70:BD:78:A4:25:60:C1 X509v3 Authority Key Identifier: keyid:C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/68EBA63A48B911EFB80D9535C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.8.238.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:b6:4c:aa:5e:95:61:b9:d9:12:9e:62:f7:ec:49:21:39:ab: 8a:92:ec:3f:db:38:60:8c:98:85:70:7a:28:d7:71:7a:b6:af: 51:c2:06:48:12:f9:eb:b5:32:7e:75:cc:8c:d9:e3:98:31:28: ed:88:c6:47:85:37:51:80:09:ad:5d:9a:4a:c9:0f:9c:dc:5b: cc:09:e4:dd:04:5e:64:0d:a9:9c:a9:6e:bb:a4:9f:8e:9d:cb: 6b:ce:95:d5:7c:76:71:9b:24:c7:7e:18:96:df:c4:a3:e6:20: 29:97:5d:32:1b:4d:3b:24:c9:a0:fb:24:85:bf:55:e1:f9:fe: aa:20:0e:de:c3:03:3d:11:06:3f:ea:98:15:0b:93:a8:8c:c9: 04:50:6d:eb:ac:ff:39:37:99:a2:03:0b:5b:4a:d7:18:04:7a: 39:df:27:6f:dc:9a:04:13:c0:ec:48:91:a0:85:e0:5b:65:e2: 3f:09:31:e0:01:21:e3:93:8d:b4:74:ee:58:8c:61:ea:6a:df: 93:fc:bb:46:a9:d4:e2:22:5e:cd:2e:55:18:22:7f:4c:79:e0: ac:fd:f3:42:bd:8f:1c:ca:dc:82:c8:d5:af:09:6a:ef:c1:e8: ef:e8:a9:3e:55:30:5d:d3:25:86:44:4e:ce:9b:28:c9:cf:15: 75:bc:46:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc4MkYxMTAvBgNVBAUTKEM4NjAzNjU3NTUyNDQ4RUQ1QkJBRUQ3MTcyNEQyMjIw RjAzQkY3QzYwHhcNMjUwODE5MDYxNTEwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE0MTY2ZS02NTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3wEZ3paA2hLOAsyTvCx4hJTadYmW1OkwlYJwhaH/I3YdnRJhH3JngUs+mdg /P90/R7VkCGojNTth92gdwK4rtoFrqvGNSOnHneCjNOQLtHUJYXHSOqfvxH4gsj8 b4rr06kj7HjFSZyYm2QVCk3NrT/kWm9XnHOCfsWJ5J4BHdByVHGYUGC4Ojzl+N+7 QK3zGXN3n4KKq5iOu0UqRflt37WLkWI/4DVFpPcIej1QWN18YoBOoZNVfhbvCqi8 f/dnxaYTZLBIMBd+H3PKfoT/Jo1W4qXL8+AOEfGYJQraRGW8pny0OfyUpT/TQ/ou laU8s+ZPuRr6c0mdHt4dxNIdeQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGRmeDUx sAJ5YVvw0ThwvXikJWDBMB8GA1UdIwQYMBaAFMhgNldVJEjtW7rtcXJNIiDwO/fG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzgyRi82RDIwNzVGNjQw NzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi95R0EyVjFVa1NPMWJ1dTF4Y2swaUlQQTc5 OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lHQTJWMVVrU08xYnV1MXhjazBpSVBBNzk4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc4MkYvNkQyMDc1RjY0MDcwMTFFRkJEQTlENjZGQzRGOUFFMDIvNjhFQkE2M0E0 OEI5MTFFRkI4MEQ5NTM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADACO4wDQYJKoZIhvcNAQELBQADggEBABu2TKpelWG52RKe YvfsSSE5q4qS7D/bOGCMmIVweijXcXq2r1HCBkgS+eu1Mn51zIzZ45gxKO2IxkeF N1GACa1dmkrJD5zcW8wJ5N0EXmQNqZypbrukn46dy2vOldV8dnGbJMd+GJbfxKPm ICmXXTIbTTskyaD7JIW/VeH5/qogDt7DAz0RBj/qmBULk6iMyQRQbeus/zk3maID C1tK1xgEejnfJ2/cmgQTwOxIkaCF4Ftl4j8JMeABIeOTjbR07liMYepq35P8u0ap 1OIiXs0uVRgif0x54Kz980K9jxzK3ILI1a8Jau/B6O/oqT5VMF3TJYZETs6bKMnP FXW8Rvk= -----END CERTIFICATE-----Generated at Sat Aug 23 20:29:23 2025 by rpki-client