$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/7AEEA290829E11F0975FC440C4F9AE02.roa File: 7AEEA290829E11F0975FC440C4F9AE02.roa (raw, json) Hash identifier: ylXeGQVKEpyBpdJm+bvsrD7tk3lV9xXY1bBsN7fiPY0= Subject key identifier: 11:43:CD:56:43:B4:CA:0B:99:8E:73:DA:3B:DE:09:35:7F:07:AC:4D Certificate issuer: /CN=A91EE735/serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Certificate serial: 09AA Authority key identifier: AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/7AEEA290829E11F0975FC440C4F9AE02.roa Signing time: Fri 29 Aug 2025 09:22:24 +0000 ROA not before: Fri 29 Aug 2025 09:22:24 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 24541 IP address blocks: 203.26.6.0/24 maxlen: 24 203.29.96.0/24 maxlen: 24 2001:df1:be00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 Oct 2025 21:04:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2474 (0x9aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE735, serialNumber=AD73ADB914213862ED8E14D77069F474D83CC8F5 Validity Not Before: Aug 29 09:22:24 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68b17150-294d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:18:b0:13:17:f5:fc:87:67:92:4c:98:11:88: 70:20:81:51:5a:33:07:b6:07:e0:d1:58:ac:ef:d1: 3b:8f:fa:21:20:05:e4:a2:9d:d7:50:fc:be:e5:03: 1d:ac:9e:97:82:51:1b:fc:51:45:23:24:a4:3d:47: fb:7a:93:13:17:04:e5:c3:1e:c3:00:08:2c:78:1c: 98:1e:58:3b:e6:9b:60:77:58:3a:9c:3e:1b:81:a6: ab:13:6b:cb:ce:44:3a:82:e5:a4:2d:e9:70:37:f4: 11:b9:0a:26:19:a6:e8:2a:56:f1:ab:57:8f:4a:5e: b2:f2:9f:f2:a3:b9:cc:38:64:ea:3e:f4:66:26:03: 5f:d3:76:11:74:da:3a:3c:6e:fe:28:08:a7:df:8f: 6f:d9:17:03:08:2d:a7:35:eb:6e:5d:f1:d7:d0:74: da:b8:b0:0d:57:7c:96:c4:82:bb:3a:87:e8:da:94: 9b:91:12:41:a1:39:4d:12:a3:a4:2f:29:e6:6b:4d: 4c:f4:a6:49:8c:d0:43:45:5e:92:61:0b:b9:bb:6b: d1:3e:ae:56:16:41:61:8c:e3:e5:60:29:4f:77:a2: 97:ae:4a:35:3a:e0:36:f7:31:23:39:74:a4:af:cb: 41:9c:fe:e5:47:13:4f:80:de:b1:5b:47:71:c3:5b: 20:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:43:CD:56:43:B4:CA:0B:99:8E:73:DA:3B:DE:09:35:7F:07:AC:4D X509v3 Authority Key Identifier: keyid:AD:73:AD:B9:14:21:38:62:ED:8E:14:D7:70:69:F4:74:D8:3C:C8:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/rXOtuRQhOGLtjhTXcGn0dNg8yPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXOtuRQhOGLtjhTXcGn0dNg8yPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE735/E8E667CA94BE11EA984FAD58C4F9AE02/7AEEA290829E11F0975FC440C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.26.6.0/24 203.29.96.0/24 IPv6: 2001:df1:be00::/48 Signature Algorithm: sha256WithRSAEncryption a8:7d:f4:a4:ac:96:fa:e2:3b:32:35:1e:8f:e5:fe:37:37:b2: 77:47:89:07:cc:63:02:f8:35:8d:a4:1f:44:63:2a:58:de:e3: 14:4c:e3:a6:f5:b1:10:57:85:45:02:d2:03:b4:75:0c:8f:fb: ff:1f:ac:e6:0e:e0:82:27:76:97:ee:fc:f0:c3:fd:9d:b6:bb: 4c:ac:8a:de:de:c5:07:44:00:9b:eb:17:0c:43:ea:3e:df:24: 2e:1c:45:95:ae:12:8b:4a:cc:16:15:3b:ff:f0:1b:11:bd:ca: ab:7f:f2:85:60:92:5f:93:3b:ba:47:da:4e:ee:c6:23:43:ce: d7:1b:cc:ec:f2:a8:1b:30:aa:59:9a:fb:3a:e5:1f:de:80:63: 15:de:06:ef:81:17:c2:8d:09:70:21:95:ab:56:7e:be:bc:c9: 45:e0:03:13:f3:6f:36:c6:5f:d4:0c:61:1b:03:2e:ee:2f:27: 92:de:ef:c3:05:7a:36:53:cb:5c:33:82:28:a3:c3:cb:18:48: 1c:8f:08:18:b4:1c:66:2c:5e:69:8b:02:33:2c:b3:10:53:52: c4:d5:60:a6:73:b5:81:16:aa:9b:f6:35:e9:19:07:d9:c6:a8: e3:aa:22:0a:bc:bc:ae:2f:87:f1:b5:87:37:d4:34:8f:dc:0f: cb:ef:e4:74 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUU3MzUxMTAvBgNVBAUTKEFENzNBREI5MTQyMTM4NjJFRDhFMTRENzcwNjlGNDc0 RDgzQ0M4RjUwHhcNMjUwODI5MDkyMjI0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxNzE1MC0yOTRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5hiwExf1/IdnkkyYEYhwIIFRWjMHtgfg0Vis79E7j/ohIAXkop3XUPy+5QMd rJ6XglEb/FFFIySkPUf7epMTFwTlwx7DAAgseByYHlg75ptgd1g6nD4bgaarE2vL zkQ6guWkLelwN/QRuQomGaboKlbxq1ePSl6y8p/yo7nMOGTqPvRmJgNf03YRdNo6 PG7+KAin349v2RcDCC2nNetuXfHX0HTauLANV3yWxIK7Oofo2pSbkRJBoTlNEqOk Lynma01M9KZJjNBDRV6SYQu5u2vRPq5WFkFhjOPlYClPd6KXrko1OuA29zEjOXSk r8tBnP7lRxNPgN6xW0dxw1sg5QIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFBFDzVZD tMoLmY5z2jveCTV/B6xNMB8GA1UdIwQYMBaAFK1zrbkUIThi7Y4U13Bp9HTYPMj1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTczNS9FOEU2NjdDQTk0 QkUxMUVBOTg0RkFENThDNEY5QUUwMi9yWE90dVJRaE9HTHRqaFRYY0duMGROZzh5 UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JYT3R1UlFoT0dMdGpoVFhjR24wZE5nOHlQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUU3MzUvRThFNjY3Q0E5NEJFMTFFQTk4NEZBRDU4QzRGOUFFMDIvN0FFRUEyOTA4 MjlFMTFGMDk3NUZDNDQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBADLGgYDBADLHWAwDwQCAAIwCQMHACABDfG+ADANBgkqhkiG 9w0BAQsFAAOCAQEAqH30pKyW+uI7MjUej+X+Nzeyd0eJB8xjAvg1jaQfRGMqWN7j FEzjpvWxEFeFRQLSA7R1DI/7/x+s5g7ggid2l+788MP9nba7TKyK3t7FB0QAm+sX DEPqPt8kLhxFla4Si0rMFhU7//AbEb3Kq3/yhWCSX5M7ukfaTu7GI0PO1xvM7PKo GzCqWZr7OuUf3oBjFd4G74EXwo0JcCGVq1Z+vrzJReADE/NvNsZf1AxhGwMu7i8n kt7vwwV6NlPLXDOCKKPDyxhIHI8IGLQcZixeaYsCMyyzEFNSxNVgpnO1gRaqm/Y1 6RkH2cao46oiCry8ri+H8bWHN9Q0j9wPy+/kdA== -----END CERTIFICATE-----Generated at Mon Oct 20 21:49:05 2025 by rpki-client