$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/AEFB1B262FB111EB89A04D37C4F9AE02.roa File: AEFB1B262FB111EB89A04D37C4F9AE02.roa (raw, json) Hash identifier: C9YBNy3SJzx+k9ZBQHZtbIXi++eZ8FDncm2ByZsrMrw= Subject key identifier: C6:05:2D:1C:0D:E1:6E:D5:A7:A1:65:20:DB:27:01:C4:76:9C:96:20 Certificate issuer: /CN=A91EE1C4/serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Certificate serial: 0747 Authority key identifier: 70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/AEFB1B262FB111EB89A04D37C4F9AE02.roa Signing time: Mon 26 May 2025 22:10:52 +0000 ROA not before: Mon 26 May 2025 22:10:52 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55489 IP address blocks: 202.128.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 22:54:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1863 (0x747) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1C4, serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Validity Not Before: May 26 22:10:52 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6834e6eb-6475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:23:e9:93:92:a5:99:0b:6d:0f:c3:5a:eb:0f: ee:04:e2:6b:02:a9:79:c4:d0:b0:e7:50:ff:76:9d: 5e:db:3f:bc:9a:73:5e:d1:df:d2:f0:5b:62:20:b5: 4d:c6:31:1b:24:89:6d:7a:34:85:63:5e:69:b1:8f: 7c:4f:f3:ce:31:08:5b:f4:dd:c5:62:d4:1b:6c:0b: 0e:d1:1a:8a:d1:9a:d6:92:72:84:da:7a:61:62:19: a0:e8:17:e1:3e:8e:5a:03:d3:e0:10:4d:f3:b1:7f: 58:54:26:c4:73:c9:b9:ec:02:c2:4d:66:41:c8:1f: 52:3c:30:14:a3:4e:49:7a:86:e8:b8:72:5d:e4:60: aa:3d:24:2f:10:f9:c7:f8:42:f2:27:87:7d:d7:41: f9:dc:b1:75:e4:c7:5b:3d:20:77:5d:b8:cb:5e:5f: d0:c3:79:66:f9:1a:4f:21:9a:82:49:7e:c0:7a:0b: 34:66:47:2e:75:7c:16:26:99:96:fa:c1:2b:8c:a2: 0e:d4:5a:bb:cd:c6:fe:8a:b4:33:52:2d:99:ec:8d: bb:7f:5b:ab:5b:6e:9d:98:f2:46:6c:68:42:17:0a: 98:6b:6a:b7:64:41:90:e1:aa:9a:2e:73:20:cf:cd: e5:3d:92:dd:eb:e7:f3:ac:26:6b:d1:65:a5:82:e4: 28:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:05:2D:1C:0D:E1:6E:D5:A7:A1:65:20:DB:27:01:C4:76:9C:96:20 X509v3 Authority Key Identifier: keyid:70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/AEFB1B262FB111EB89A04D37C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.128.99.0/24 Signature Algorithm: sha256WithRSAEncryption 20:8f:28:0b:ec:0d:83:ed:81:8c:28:2a:95:9f:6f:84:3b:79: ce:cc:cc:54:bd:d0:6a:e0:5c:4b:3f:92:f3:98:52:b6:9c:f9: 0c:4e:db:7f:a5:8a:b2:22:15:bf:70:d6:9c:26:08:31:2a:be: b5:2f:e9:73:ac:8b:27:06:3c:6c:57:12:b8:89:05:77:94:0b: 1d:81:0d:7a:82:b4:fd:65:70:2f:93:03:50:7e:16:2b:50:a1: 7f:08:59:fc:7e:fc:81:88:62:da:af:87:8f:61:ac:eb:06:ff: 18:c0:2e:17:b0:30:e6:a6:98:a3:50:9b:d4:d8:79:b6:04:00: 0b:3e:d1:ef:dc:ad:ab:ac:61:cf:87:26:91:00:e1:26:ee:91: 42:bf:8e:c9:70:1e:2d:d4:46:cc:4e:1b:6d:5f:d1:97:8b:47: 38:70:af:44:60:18:e3:bd:02:9b:75:30:fb:a5:44:9a:9e:ac: 4d:75:58:14:3d:09:76:f6:97:86:29:e1:75:0a:ba:e3:06:bc: af:03:67:f5:6d:1e:78:8f:76:77:32:27:ba:63:04:5a:66:9e: 1f:78:b4:c1:cb:cf:d3:f4:f5:fc:25:f4:a0:00:ef:ee:cc:d7: d7:30:6d:48:6c:f4:b0:df:a3:9b:18:83:69:2d:b3:63:75:65: 79:25:dd:a3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxQzQxMTAvBgNVBAUTKDcwQkQxRTQ5NUUyNTBCMjJFMjc5ODI5Njk2OTc4NUEy RDc3RDczN0YwHhcNMjUwNTI2MjIxMDUyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0ZTZlYi02NDc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3iPpk5KlmQttD8Na6w/uBOJrAql5xNCw51D/dp1e2z+8mnNe0d/S8FtiILVN xjEbJIltejSFY15psY98T/POMQhb9N3FYtQbbAsO0RqK0ZrWknKE2nphYhmg6Bfh Po5aA9PgEE3zsX9YVCbEc8m57ALCTWZByB9SPDAUo05JeobouHJd5GCqPSQvEPnH +ELyJ4d910H53LF15MdbPSB3XbjLXl/Qw3lm+RpPIZqCSX7Aegs0ZkcudXwWJpmW +sErjKIO1Fq7zcb+irQzUi2Z7I27f1urW26dmPJGbGhCFwqYa2q3ZEGQ4aqaLnMg z83lPZLd6+fzrCZr0WWlguQoRwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMYFLRwN 4W7Vp6FlINsnAcR2nJYgMB8GA1UdIwQYMBaAFHC9HkleJQsi4nmClpaXhaLXfXN/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFDNC9GQzY3MkI3MjJG QUYxMUVCOTQxNTVGMzNDNEY5QUUwMi9jTDBlU1Y0bEN5TGllWUtXbHBlRm90ZDlj MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGVTVjRsQ3lMaWVZS1dscGVGb3RkOWMzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUxQzQvRkM2NzJCNzIyRkFGMTFFQjk0MTU1RjMzQzRGOUFFMDIvQUVGQjFCMjYy RkIxMTFFQjg5QTA0RDM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKgGMwDQYJKoZIhvcNAQELBQADggEBACCPKAvsDYPtgYwo KpWfb4Q7ec7MzFS90GrgXEs/kvOYUrac+QxO23+lirIiFb9w1pwmCDEqvrUv6XOs iycGPGxXEriJBXeUCx2BDXqCtP1lcC+TA1B+FitQoX8IWfx+/IGIYtqvh49hrOsG /xjALhewMOammKNQm9TYebYEAAs+0e/crausYc+HJpEA4SbukUK/jslwHi3URsxO G21f0ZeLRzhwr0RgGOO9Apt1MPulRJqerE11WBQ9CXb2l4Yp4XUKuuMGvK8DZ/Vt HniPdncyJ7pjBFpmnh94tMHLz9P09fwl9KAA7+7M19cwbUhs9LDfo5sYg2kts2N1 ZXkl3aM= -----END CERTIFICATE-----Generated at Mon Oct 20 21:24:44 2025 by rpki-client