$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA0F7/0D8CC9D6766C11F09FCA192DC4F9AE02/1AC13072812711F09FEB4B0DC4F9AE02.roa File: 1AC13072812711F09FEB4B0DC4F9AE02.roa (raw, json) Hash identifier: CYzXEZyiB/ROBhIde3nqI3ND4sCXYFrSEjCLxGEiOik= Subject key identifier: 64:69:BF:6A:B4:42:30:69:7A:0F:3B:AF:66:7F:FE:4C:4B:D5:C5:89 Certificate issuer: /CN=A91EA0F7/serialNumber=82CA104DC5F2AFF533FBF68CF298F40FBD481F04 Certificate serial: 2D Authority key identifier: 82:CA:10:4D:C5:F2:AF:F5:33:FB:F6:8C:F2:98:F4:0F:BD:48:1F:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gsoQTcXyr_Uz-_aM8pj0D71IHwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA0F7/0D8CC9D6766C11F09FCA192DC4F9AE02/1AC13072812711F09FEB4B0DC4F9AE02.roa Signing time: Sun 24 Aug 2025 20:16:09 +0000 ROA not before: Sun 24 Aug 2025 20:16:09 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 154131 IP address blocks: 202.12.123.0/24 maxlen: 24 2001:df5:f640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA0F7/0D8CC9D6766C11F09FCA192DC4F9AE02/gsoQTcXyr_Uz-_aM8pj0D71IHwQ.crl rsync://rpki.apnic.net/member_repository/A91EA0F7/0D8CC9D6766C11F09FCA192DC4F9AE02/gsoQTcXyr_Uz-_aM8pj0D71IHwQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gsoQTcXyr_Uz-_aM8pj0D71IHwQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 11:17:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA0F7, serialNumber=82CA104DC5F2AFF533FBF68CF298F40FBD481F04 Validity Not Before: Aug 24 20:16:09 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ab7309-82b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fa:77:06:a1:31:d1:2c:03:14:6d:7e:55:64: 5b:87:d6:84:14:20:49:c0:73:f9:94:90:5b:bd:45: 5a:42:a6:a6:39:85:92:e2:11:83:4c:91:4c:2f:2a: 1a:a3:e9:29:9c:98:bd:e4:c6:ab:46:4b:6a:f9:93: 8d:5d:d4:31:14:7f:55:0e:4f:dd:2f:af:da:c8:9c: f9:6f:e2:39:5f:2e:a6:6a:97:a9:4e:b3:8d:3d:a2: b1:de:d8:ce:ad:f1:ab:2a:d4:a2:ca:ff:1d:34:5a: 13:87:44:a7:25:e8:60:b3:0b:e5:72:8f:4b:5d:d0: 02:21:5c:f8:16:9e:cc:5d:e8:fc:26:a3:bb:0c:17: fc:97:48:f9:80:24:1c:e4:ea:76:be:2e:4d:d5:c9: 9e:ab:1d:04:01:5c:c4:31:c3:20:45:71:41:69:a3: af:0f:0d:e2:00:2c:09:d2:f2:fa:75:20:da:a8:26: a6:73:48:76:b2:76:ab:8d:d6:13:54:91:52:4c:55: fa:b9:e2:7d:f5:36:fe:bf:df:84:9d:d3:fe:7e:bb: b6:d9:9f:5c:31:7a:2a:f4:6c:2e:45:9b:a3:b9:27: 8f:3e:78:d3:b9:02:ea:33:30:0f:69:cd:14:47:32: c0:81:78:6c:6c:2b:60:11:3d:e5:d6:09:49:92:97: a7:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:69:BF:6A:B4:42:30:69:7A:0F:3B:AF:66:7F:FE:4C:4B:D5:C5:89 X509v3 Authority Key Identifier: keyid:82:CA:10:4D:C5:F2:AF:F5:33:FB:F6:8C:F2:98:F4:0F:BD:48:1F:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA0F7/0D8CC9D6766C11F09FCA192DC4F9AE02/gsoQTcXyr_Uz-_aM8pj0D71IHwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gsoQTcXyr_Uz-_aM8pj0D71IHwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA0F7/0D8CC9D6766C11F09FCA192DC4F9AE02/1AC13072812711F09FEB4B0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.12.123.0/24 IPv6: 2001:df5:f640::/48 Signature Algorithm: sha256WithRSAEncryption 65:20:ba:0a:c6:9f:54:10:a4:19:a1:d5:cf:1f:cc:a1:26:71: 7e:fb:41:7d:9c:dc:73:ae:cc:b4:ce:05:81:3b:59:7b:74:6d: 2a:86:2c:c2:25:3e:db:78:9c:38:f4:03:7e:e0:4b:a2:cd:3d: b0:73:c5:d2:d2:25:fe:db:33:19:dd:9b:ee:17:f5:06:41:70: f8:b5:df:73:ba:aa:4f:20:4e:19:0f:fb:10:c0:09:c5:55:f2: a3:f6:a3:62:90:57:83:71:25:38:39:ee:be:21:e5:6d:b5:e0: 76:b7:ae:e7:6a:5e:e0:b5:2c:79:4a:a6:21:3e:d0:cc:61:32: 74:28:71:32:fe:15:24:33:65:a0:38:44:48:db:c4:ee:e4:e4: c6:25:d3:7d:c9:ae:73:1d:35:18:6b:55:28:df:e8:43:43:f3: cb:2e:85:e9:fd:f3:43:b0:40:ea:bf:2a:0d:78:75:57:51:d3: d7:24:18:e9:39:6c:06:cd:05:b0:93:7f:17:ea:1e:65:35:76: 38:e0:ed:b0:07:6d:42:17:0a:e0:04:3c:fb:b7:fa:23:cb:c9: e3:91:24:31:d1:b2:f1:bc:e6:24:88:60:c2:9e:60:de:72:a6: a3:73:34:98:29:fd:43:d5:2e:5d:5c:0f:46:84:bd:87:25:ac: 1e:2d:1a:85 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTBGNzExMC8GA1UEBRMoODJDQTEwNERDNUYyQUZGNTMzRkJGNjhDRjI5OEY0MEZC RDQ4MUYwNDAeFw0yNTA4MjQyMDE2MDlaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YWI3MzA5LTgyYjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6+ncGoTHRLAMUbX5VZFuH1oQUIEnAc/mUkFu9RVpCpqY5hZLiEYNMkUwvKhqj 6SmcmL3kxqtGS2r5k41d1DEUf1UOT90vr9rInPlv4jlfLqZql6lOs409orHe2M6t 8asq1KLK/x00WhOHRKcl6GCzC+Vyj0td0AIhXPgWnsxd6Pwmo7sMF/yXSPmAJBzk 6na+Lk3VyZ6rHQQBXMQxwyBFcUFpo68PDeIALAnS8vp1INqoJqZzSHaydquN1hNU kVJMVfq54n31Nv6/34Sd0/5+u7bZn1wxeir0bC5Fm6O5J48+eNO5AuozMA9pzRRH MsCBeGxsK2ARPeXWCUmSl6fhAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUZGm/arRC MGl6DzuvZn/+TEvVxYkwHwYDVR0jBBgwFoAUgsoQTcXyr/Uz+/aM8pj0D71IHwQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBMEY3LzBEOENDOUQ2NzY2 QzExRjA5RkNBMTkyREM0RjlBRTAyL2dzb1FUY1h5cl9Vei1fYU04cGowRDcxSUh3 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ3NvUVRjWHlyX1V6LV9hTThwajBENzFJSHdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTBGNy8wRDhDQzlENjc2NkMxMUYwOUZDQTE5MkRDNEY5QUUwMi8xQUMxMzA3Mjgx MjcxMUYwOUZFQjRCMERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAMoMezAPBAIAAjAJAwcAIAEN9fZAMA0GCSqGSIb3DQEBCwUA A4IBAQBlILoKxp9UEKQZodXPH8yhJnF++0F9nNxzrsy0zgWBO1l7dG0qhizCJT7b eJw49AN+4EuizT2wc8XS0iX+2zMZ3ZvuF/UGQXD4td9zuqpPIE4ZD/sQwAnFVfKj 9qNikFeDcSU4Oe6+IeVtteB2t67nal7gtSx5SqYhPtDMYTJ0KHEy/hUkM2WgOERI 28Tu5OTGJdN9ya5zHTUYa1Uo3+hDQ/PLLoXp/fNDsEDqvyoNeHVXUdPXJBjpOWwG zQWwk38X6h5lNXY44O2wB21CFwrgBDz7t/ojy8njkSQx0bLxvOYkiGDCnmDecqaj czSYKf1D1S5dXA9GhL2HJaweLRqF -----END CERTIFICATE-----Generated at Mon Oct 20 16:57:34 2025 by rpki-client