$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/8D52A23871A611EF8F5B9755C4F9AE02.roa File: 8D52A23871A611EF8F5B9755C4F9AE02.roa (raw, json) Hash identifier: qE9tjMsEAm5+y32itfsH2PJPM2TbnYvfRnIFB/pK9/U= Subject key identifier: 22:1B:29:79:B6:99:25:1C:90:BF:03:E2:FC:27:32:25:0A:88:9F:77 Certificate issuer: /CN=A91EA54A/serialNumber=F401571F4E0FE8F80D57CD027CD9EE15D7388F24 Certificate serial: AA Authority key identifier: F4:01:57:1F:4E:0F:E8:F8:0D:57:CD:02:7C:D9:EE:15:D7:38:8F:24 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9AFXH04P6PgNV80CfNnuFdc4jyQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/8D52A23871A611EF8F5B9755C4F9AE02.roa Signing time: Tue 05 Aug 2025 06:44:58 +0000 ROA not before: Tue 05 Aug 2025 06:44:58 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 7310 IP address blocks: 203.5.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/9AFXH04P6PgNV80CfNnuFdc4jyQ.crl rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/9AFXH04P6PgNV80CfNnuFdc4jyQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9AFXH04P6PgNV80CfNnuFdc4jyQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 06:16:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 170 (0xaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA54A, serialNumber=F401571F4E0FE8F80D57CD027CD9EE15D7388F24 Validity Not Before: Aug 5 06:44:58 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6891a86a-fef2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:47:3e:4d:ff:11:3d:91:8a:ce:f9:4a:f6:cb: b4:cb:44:5a:d5:3a:4a:67:6a:48:ba:f6:75:61:83: a5:ca:24:df:83:b5:93:36:16:db:ed:5a:d7:32:6d: ec:1f:45:b6:56:f9:02:50:af:5d:1d:f9:0b:ec:f8: 1c:6d:d0:f6:12:04:0d:31:11:a5:7d:0a:a4:38:cd: b4:05:1c:18:51:8c:87:65:b8:e2:0b:b0:24:44:bd: e7:a9:26:0a:48:90:ca:bd:79:d9:1a:a2:ac:8c:0a: 44:eb:ad:6d:8f:53:49:c7:84:0d:65:8b:3a:fa:75: 7c:05:2a:d0:7f:fc:1a:49:fd:a0:ff:1f:0f:6c:a8: c2:7d:59:f7:ed:32:2d:c9:2f:23:55:ae:c2:9e:1d: 9b:09:01:6c:11:f0:d0:98:69:79:ca:49:7c:63:d9: bb:30:81:d8:0d:56:52:0f:ec:ca:3c:ad:fa:3f:81: b0:0f:d6:06:ae:18:93:46:f8:e4:39:0b:1a:cb:d9: d7:80:51:d6:b0:e0:f5:0d:89:54:ff:7e:67:60:56: 24:44:0a:f2:1b:c1:d1:f1:ae:c8:98:69:a4:25:9e: d4:06:4d:b8:90:eb:83:5f:21:93:44:9c:26:60:b2: 68:d8:d7:22:91:40:66:78:77:eb:7f:9d:2d:54:94: ef:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:1B:29:79:B6:99:25:1C:90:BF:03:E2:FC:27:32:25:0A:88:9F:77 X509v3 Authority Key Identifier: keyid:F4:01:57:1F:4E:0F:E8:F8:0D:57:CD:02:7C:D9:EE:15:D7:38:8F:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/9AFXH04P6PgNV80CfNnuFdc4jyQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9AFXH04P6PgNV80CfNnuFdc4jyQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA54A/BE84A82071A511EF8D805C78C4F9AE02/8D52A23871A611EF8F5B9755C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.5.212.0/24 Signature Algorithm: sha256WithRSAEncryption 41:1b:f9:2c:c9:53:fa:e7:93:03:4b:f5:20:1b:94:99:37:50: be:8b:b2:ec:16:b5:e4:4a:a8:b5:e9:c0:dc:8d:70:17:06:8e: 5e:45:60:5d:43:34:4d:d9:51:3f:9d:9f:13:62:64:8c:03:99: 93:a1:69:80:f7:c1:f7:c5:7d:bd:d0:11:f2:40:a0:01:91:e5: 8e:97:6b:e9:5f:74:1c:f2:fd:e9:d2:ac:2c:1d:43:7a:12:05: a2:1b:93:4d:e5:42:3f:02:cc:19:ba:11:cf:ef:b2:13:58:b9: 62:97:4a:c6:6e:14:86:7b:3f:21:2a:a8:c6:ac:a7:48:26:5b: f7:31:11:26:2a:67:b1:12:3c:5f:60:96:ac:6d:7f:a5:39:b8: 24:62:25:bd:6d:f8:db:2b:49:28:99:99:c5:3e:68:33:3c:60: de:c7:3e:ab:1b:bb:d0:8c:63:ee:52:48:8e:42:5a:d4:9b:aa: 31:4c:9d:54:2b:67:5b:30:77:b8:43:2a:2f:a4:43:df:34:a1: 32:79:64:eb:6a:88:10:f8:89:27:c4:16:d2:d8:11:12:5f:b3: 7c:67:ff:98:92:29:4e:39:f8:11:a7:01:0c:f9:ad:5e:2b:61: 3f:76:a3:95:e7:11:1e:fa:fe:1f:df:89:b4:14:9e:5f:ee:b6: df:64:9d:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE1NEExMTAvBgNVBAUTKEY0MDE1NzFGNEUwRkU4RjgwRDU3Q0QwMjdDRDlFRTE1 RDczODhGMjQwHhcNMjUwODA1MDY0NDU4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxYTg2YS1mZWYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyEc+Tf8RPZGKzvlK9su0y0Ra1TpKZ2pIuvZ1YYOlyiTfg7WTNhbb7VrXMm3s H0W2VvkCUK9dHfkL7PgcbdD2EgQNMRGlfQqkOM20BRwYUYyHZbjiC7AkRL3nqSYK SJDKvXnZGqKsjApE661tj1NJx4QNZYs6+nV8BSrQf/waSf2g/x8PbKjCfVn37TIt yS8jVa7Cnh2bCQFsEfDQmGl5ykl8Y9m7MIHYDVZSD+zKPK36P4GwD9YGrhiTRvjk OQsay9nXgFHWsOD1DYlU/35nYFYkRAryG8HR8a7ImGmkJZ7UBk24kOuDXyGTRJwm YLJo2NcikUBmeHfrf50tVJTvmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCIbKXm2 mSUckL8D4vwnMiUKiJ93MB8GA1UdIwQYMBaAFPQBVx9OD+j4DVfNAnzZ7hXXOI8k MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTU0QS9CRTg0QTgyMDcx QTUxMUVGOEQ4MDVDNzhDNEY5QUUwMi85QUZYSDA0UDZQZ05WODBDZk5udUZkYzRq eVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlBRlhIMDRQNlBnTlY4MENmTm51RmRjNGp5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE1NEEvQkU4NEE4MjA3MUE1MTFFRjhEODA1Qzc4QzRGOUFFMDIvOEQ1MkEyMzg3 MUE2MTFFRjhGNUI5NzU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLBdQwDQYJKoZIhvcNAQELBQADggEBAEEb+SzJU/rnkwNL 9SAblJk3UL6LsuwWteRKqLXpwNyNcBcGjl5FYF1DNE3ZUT+dnxNiZIwDmZOhaYD3 wffFfb3QEfJAoAGR5Y6Xa+lfdBzy/enSrCwdQ3oSBaIbk03lQj8CzBm6Ec/vshNY uWKXSsZuFIZ7PyEqqMasp0gmW/cxESYqZ7ESPF9glqxtf6U5uCRiJb1t+NsrSSiZ mcU+aDM8YN7HPqsbu9CMY+5SSI5CWtSbqjFMnVQrZ1swd7hDKi+kQ980oTJ5ZOtq iBD4iSfEFtLYERJfs3xn/5iSKU45+BGnAQz5rV4rYT92o5XnER76/h/fibQUnl/u tt9knfk= -----END CERTIFICATE-----Generated at Sun Aug 24 00:44:22 2025 by rpki-client