$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/F9F81E3480FA11ED9B35954DC4F9AE02.roa File: F9F81E3480FA11ED9B35954DC4F9AE02.roa (raw, json) Hash identifier: ZALG6qqy4VUNzS8JmJufwht3vQHiEFKz2LACrRimhuM= Subject key identifier: 33:AC:4A:AF:3C:0A:9C:3D:DC:F6:BC:E8:72:E0:24:2A:2A:3F:EE:E7 Certificate issuer: /CN=A91F81AD/serialNumber=A4CD3E67D1B224F325047E9F5E484ACDC4F663EC Certificate serial: 026C Authority key identifier: A4:CD:3E:67:D1:B2:24:F3:25:04:7E:9F:5E:48:4A:CD:C4:F6:63:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/F9F81E3480FA11ED9B35954DC4F9AE02.roa Signing time: Sat 27 Sep 2025 02:30:36 +0000 ROA not before: Sat 27 Sep 2025 02:30:36 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 58611 IP address blocks: 203.28.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.crl rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 620 (0x26c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81AD, serialNumber=A4CD3E67D1B224F325047E9F5E484ACDC4F663EC Validity Not Before: Sep 27 02:30:36 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68d74c4b-4edb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:83:ac:b7:4e:29:7c:01:c7:1e:90:e9:40:94: db:48:97:51:b1:82:fc:29:83:65:5d:31:66:0b:aa: 25:4b:e9:71:ea:4f:2c:61:28:21:83:96:09:1c:60: 82:2f:11:79:b3:0c:a9:e3:21:a9:25:4d:af:bb:6e: 1f:de:2a:e1:7a:40:f8:87:f7:74:c5:90:f1:75:57: 3e:b5:61:d4:5a:87:ba:bc:79:0e:3d:b9:7f:6f:f7: 6f:65:1d:94:b5:cf:b2:c9:0b:f5:34:a2:e7:19:6f: 9c:09:95:27:86:e4:e7:f7:59:0a:bb:56:45:f0:08: 9e:8a:33:70:44:02:c9:9d:64:eb:c5:f5:6e:20:5b: a3:85:1d:1f:fe:72:f5:aa:e8:03:aa:2d:27:83:cb: 63:f9:49:a7:fa:0d:cd:80:80:18:ae:14:07:2f:e8: 03:7b:1e:2c:06:bb:2e:20:90:95:eb:e6:46:61:0d: e3:e5:40:ca:9a:84:c1:ff:59:07:ac:e5:78:dd:db: a9:70:f0:55:e0:e4:43:81:9c:00:4d:cf:70:d8:98: 8b:48:12:7f:0d:f1:98:9d:51:ae:36:0b:19:23:ad: f3:d1:9c:bf:b6:bf:ef:a0:0c:24:83:92:b6:61:bd: c0:80:49:c7:81:a8:8e:ec:26:7c:6e:ef:01:0a:0b: 7b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:AC:4A:AF:3C:0A:9C:3D:DC:F6:BC:E8:72:E0:24:2A:2A:3F:EE:E7 X509v3 Authority Key Identifier: keyid:A4:CD:3E:67:D1:B2:24:F3:25:04:7E:9F:5E:48:4A:CD:C4:F6:63:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pM0-Z9GyJPMlBH6fXkhKzcT2Y-w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81AD/4CCB00902CBE11ED99824B4CC4F9AE02/F9F81E3480FA11ED9B35954DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.28.79.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:9f:98:82:28:2f:67:da:16:42:d8:32:a2:89:f7:af:c0:6b: 2a:6f:83:84:fd:06:c5:b9:1a:79:d4:fd:b5:22:e1:30:a3:08: f0:ab:38:ab:ab:ad:dd:4f:4f:12:5a:96:a6:23:aa:af:4e:ff: dc:d4:b5:9a:35:1e:87:ac:ac:79:ce:d4:dd:5a:4b:b1:49:cf: 44:f2:33:fd:28:0b:c5:62:52:0d:cd:c7:17:a1:db:52:be:61: 02:f6:c5:ad:0f:78:da:f6:6d:f7:0a:ef:21:b3:f2:14:6a:fa: 65:f8:1d:b3:60:cb:99:cc:a4:6f:3f:ac:2e:38:c0:b2:d8:52: 44:f3:c7:c4:72:fe:0e:cd:7c:65:a8:e9:d7:f5:d2:d0:fe:ae: da:a8:e5:75:27:0c:e2:d5:46:ae:1e:f2:be:7a:e7:a3:9b:4b: 64:9c:cf:5c:47:e4:8a:05:00:18:9d:ef:a2:f1:07:4a:fb:2d: 22:95:e0:79:7e:1d:80:f8:20:e8:10:a8:6a:57:96:68:53:46: 2d:5a:cc:11:6b:48:17:2b:fb:a3:be:f6:c3:94:65:b4:e5:15: 43:52:32:69:45:28:7a:3f:cf:ac:57:99:d5:ee:9c:60:92:02: d0:94:3b:2b:79:39:c5:39:cd:08:b7:89:75:02:08:48:b0:66: ee:50:a5:a7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxQUQxMTAvBgNVBAUTKEE0Q0QzRTY3RDFCMjI0RjMyNTA0N0U5RjVFNDg0QUNE QzRGNjYzRUMwHhcNMjUwOTI3MDIzMDM2WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGQ3NGM0Yi00ZWRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz4Ost04pfAHHHpDpQJTbSJdRsYL8KYNlXTFmC6olS+lx6k8sYSghg5YJHGCC LxF5swyp4yGpJU2vu24f3irhekD4h/d0xZDxdVc+tWHUWoe6vHkOPbl/b/dvZR2U tc+yyQv1NKLnGW+cCZUnhuTn91kKu1ZF8AieijNwRALJnWTrxfVuIFujhR0f/nL1 qugDqi0ng8tj+Umn+g3NgIAYrhQHL+gDex4sBrsuIJCV6+ZGYQ3j5UDKmoTB/1kH rOV43dupcPBV4ORDgZwATc9w2JiLSBJ/DfGYnVGuNgsZI63z0Zy/tr/voAwkg5K2 Yb3AgEnHgaiO7CZ8bu8BCgt7RQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDOsSq88 Cpw93Pa86HLgJCoqP+7nMB8GA1UdIwQYMBaAFKTNPmfRsiTzJQR+n15ISs3E9mPs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFBRC80Q0NCMDA5MDJD QkUxMUVEOTk4MjRCNENDNEY5QUUwMi9wTTAtWjlHeUpQTWxCSDZmWGtoS3pjVDJZ LXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BNMC1aOUd5SlBNbEJINmZYa2hLemNUMlktdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjgxQUQvNENDQjAwOTAyQ0JFMTFFRDk5ODI0QjRDQzRGOUFFMDIvRjlGODFFMzQ4 MEZBMTFFRDlCMzU5NTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLHE8wDQYJKoZIhvcNAQELBQADggEBAGyfmIIoL2faFkLY MqKJ96/Aaypvg4T9BsW5GnnU/bUi4TCjCPCrOKurrd1PTxJalqYjqq9O/9zUtZo1 HoesrHnO1N1aS7FJz0TyM/0oC8ViUg3Nxxeh21K+YQL2xa0PeNr2bfcK7yGz8hRq +mX4HbNgy5nMpG8/rC44wLLYUkTzx8Ry/g7NfGWo6df10tD+rtqo5XUnDOLVRq4e 8r5656ObS2Scz1xH5IoFABid76LxB0r7LSKV4Hl+HYD4IOgQqGpXlmhTRi1azBFr SBcr+6O+9sOUZbTlFUNSMmlFKHo/z6xXmdXunGCSAtCUOyt5OcU5zQi3iXUCCEiw Zu5Qpac= -----END CERTIFICATE-----Generated at Mon Oct 20 04:47:18 2025 by rpki-client