$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/436F1AE2ECF411EA822E8D28C4F9AE02.roa File: 436F1AE2ECF411EA822E8D28C4F9AE02.roa (raw, json) Hash identifier: akcNDk8y+ODsfpu3oKFQYxPcSwPpaVaD8Gu1z5j+dkI= Subject key identifier: 9D:B3:29:A9:A4:9C:7A:51:EA:04:1A:5C:46:36:E7:DE:EA:1B:08:18 Certificate issuer: /CN=A91EA786/serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E Certificate serial: 0B67 Authority key identifier: 91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/436F1AE2ECF411EA822E8D28C4F9AE02.roa Signing time: Tue 10 Jun 2025 19:23:43 +0000 ROA not before: Tue 10 Jun 2025 19:23:43 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 10081 IP address blocks: 116.197.0.0/17 maxlen: 17 203.92.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:19:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2919 (0xb67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA786, serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E Validity Not Before: Jun 10 19:23:43 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6848863f-31ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:f6:7a:32:a4:2e:df:51:8c:95:42:4d:dc:0d: 0e:6a:ee:e1:95:54:2a:ed:35:b0:d8:eb:cb:f1:42: 1b:fd:e6:1d:81:84:c3:e8:d9:74:f0:33:c6:d1:b8: de:95:68:e0:0c:42:c8:6c:e7:73:2c:b0:c6:12:fa: bf:7f:d7:13:98:98:5f:c2:9b:62:68:a6:1e:e5:ae: 08:a9:17:29:52:08:b3:51:21:ac:5b:ed:0e:98:55: f9:17:94:4a:17:fd:bb:32:3a:a8:58:68:37:c5:d2: da:5c:97:08:2b:37:2c:3f:ef:e6:33:fa:a5:91:33: 57:66:27:76:4b:02:b4:3e:7c:a4:23:ef:b8:54:d2: ce:44:79:99:4f:85:94:ee:27:7d:95:01:03:74:3c: a0:cc:d7:b1:49:2b:3c:17:9f:45:20:5d:b0:bc:3f: 0f:95:c0:c1:f1:8b:f4:61:ad:5d:5f:57:19:11:08: dc:f6:5c:fb:d5:e9:c8:c2:a0:54:4d:7e:94:a0:05: e3:33:f3:07:9d:9e:81:80:10:58:04:ed:d4:eb:59: 72:db:ab:e0:fd:07:48:22:3f:d4:9f:3e:ab:3b:7e: 84:b4:8c:38:bd:5e:71:fc:6e:87:de:5c:89:5c:1b: 4c:68:85:4d:49:5e:3c:e9:5e:75:24:37:48:5c:fd: da:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:B3:29:A9:A4:9C:7A:51:EA:04:1A:5C:46:36:E7:DE:EA:1B:08:18 X509v3 Authority Key Identifier: keyid:91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/436F1AE2ECF411EA822E8D28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.197.0.0/17 203.92.128.0/19 Signature Algorithm: sha256WithRSAEncryption 7a:11:e2:8e:3f:97:0d:1d:d3:c4:0e:5d:0d:e4:b1:ed:d0:fa: 21:ce:72:a3:1f:d2:ab:7c:b3:1d:08:71:ce:06:50:76:1a:89: 0d:e5:ca:6d:68:57:f6:41:07:7b:28:1c:2a:04:85:a4:3b:4c: 8b:52:76:03:f5:92:a3:29:ce:21:52:3a:98:50:d3:8b:a8:84: 66:27:b2:1e:2a:bb:b0:5e:14:df:21:8b:71:7c:00:f7:b3:d7: 1d:24:03:e3:dd:c9:10:bd:ca:bb:5c:6a:ee:00:4a:cc:69:9d: 99:8b:4a:be:ac:bf:78:9e:ed:b9:c5:8c:20:04:cb:a8:92:c4: 4b:47:84:44:4e:1b:e9:64:9b:1b:80:ed:63:8e:2d:bf:75:b9: 18:2c:aa:a8:dd:f3:d7:17:c7:68:e2:49:d5:0a:0b:bf:31:a6: 27:8e:ea:6a:83:b8:dc:7c:5a:5e:a9:93:8d:0c:b5:57:fd:38: 68:c0:ca:dd:ef:31:73:c5:62:de:be:f9:e5:24:9e:6b:a1:a3: d9:13:f9:48:67:a9:6c:b0:c6:de:40:bc:bb:2a:f6:77:e0:7b: 8b:d1:2a:c4:f0:f5:c3:d2:9c:33:11:02:31:6f:1e:10:62:18: 0b:3e:b9:f7:34:d6:b5:f4:3e:3b:c5:8d:04:88:86:fb:5d:43: 86:ec:6b:0f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC2cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3ODYxMTAvBgNVBAUTKDkxQzNDOTY2Nzc2RjAxMUZDNTM1MDIxRDg1RjVBRTdC RkJBREE1N0UwHhcNMjUwNjEwMTkyMzQzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ4ODYzZi0zMWFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm/Z6MqQu31GMlUJN3A0Oau7hlVQq7TWw2OvL8UIb/eYdgYTD6Nl08DPG0bje lWjgDELIbOdzLLDGEvq/f9cTmJhfwptiaKYe5a4IqRcpUgizUSGsW+0OmFX5F5RK F/27MjqoWGg3xdLaXJcIKzcsP+/mM/qlkTNXZid2SwK0PnykI++4VNLORHmZT4WU 7id9lQEDdDygzNexSSs8F59FIF2wvD8PlcDB8Yv0Ya1dX1cZEQjc9lz71enIwqBU TX6UoAXjM/MHnZ6BgBBYBO3U61ly26vg/QdIIj/Unz6rO36EtIw4vV5x/G6H3lyJ XBtMaIVNSV486V51JDdIXP3aEQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJ2zKamk nHpR6gQaXEY2597qGwgYMB8GA1UdIwQYMBaAFJHDyWZ3bwEfxTUCHYX1rnv7raV+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTc4Ni9CMEQ3MjNFRTM1 REExMUVBQUI4ODQ4NEFDNEY5QUUwMi9rY1BKWm5kdkFSX0ZOUUlkaGZXdWVfdXRw WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tjUEpabmR2QVJfRk5RSWRoZld1ZV91dHBYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE3ODYvQjBENzIzRUUzNURBMTFFQUFCODg0ODRBQzRGOUFFMDIvNDM2RjFBRTJF Q0Y0MTFFQTgyMkU4RDI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAd0xQADBAXLXIAwDQYJKoZIhvcNAQELBQADggEBAHoR4o4/ lw0d08QOXQ3kse3Q+iHOcqMf0qt8sx0Icc4GUHYaiQ3lym1oV/ZBB3soHCoEhaQ7 TItSdgP1kqMpziFSOphQ04uohGYnsh4qu7BeFN8hi3F8APez1x0kA+PdyRC9yrtc au4ASsxpnZmLSr6sv3ie7bnFjCAEy6iSxEtHhEROG+lkmxuA7WOOLb91uRgsqqjd 89cXx2jiSdUKC78xpieO6mqDuNx8Wl6pk40MtVf9OGjAyt3vMXPFYt6++eUknmuh o9kT+UhnqWywxt5AvLsq9nfge4vRKsTw9cPSnDMRAjFvHhBiGAs+ufc01rX0PjvF jQSIhvtdQ4bsaw8= -----END CERTIFICATE-----Generated at Fri Jul 4 18:37:00 2025 by rpki-client