$ rpki-client -vvf rpki.apnic.net/member_repository/A91174ED/143581625D9211F090DF3836C4F9AE02/FE892768620711F0BE75F534C4F9AE02.roa File: FE892768620711F0BE75F534C4F9AE02.roa (raw, json) Hash identifier: lIvntJbQ3iLGqhEBLcowTkqSPPrJfP4D0bbkG1Wfg+g= Subject key identifier: 79:75:AC:86:CE:B4:1E:72:F5:98:53:76:2D:2B:97:65:6A:FD:C9:1B Certificate issuer: /CN=A91174ED/serialNumber=D5BC790AB037B87DDF6393D74136BF077A1D299D Certificate serial: 0A Authority key identifier: D5:BC:79:0A:B0:37:B8:7D:DF:63:93:D7:41:36:BF:07:7A:1D:29:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bx5CrA3uH3fY5PXQTa_B3odKZ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91174ED/143581625D9211F090DF3836C4F9AE02/FE892768620711F0BE75F534C4F9AE02.roa Signing time: Wed 16 Jul 2025 05:44:52 +0000 ROA not before: Wed 16 Jul 2025 05:44:52 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 38835 IP address blocks: 203.16.232.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91174ED/143581625D9211F090DF3836C4F9AE02/1bx5CrA3uH3fY5PXQTa_B3odKZ0.crl rsync://rpki.apnic.net/member_repository/A91174ED/143581625D9211F090DF3836C4F9AE02/1bx5CrA3uH3fY5PXQTa_B3odKZ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bx5CrA3uH3fY5PXQTa_B3odKZ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 30 Jul 2025 08:30:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91174ED, serialNumber=D5BC790AB037B87DDF6393D74136BF077A1D299D Validity Not Before: Jul 16 05:44:52 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68773c54-0cb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:87:1e:77:dc:9b:d4:95:c3:73:ea:7b:92:df: f1:86:44:46:69:07:31:dd:b5:42:1f:25:5b:1f:1a: ac:c4:89:7c:5f:11:c7:f4:f6:e5:5a:84:b1:f0:ab: 88:3a:6f:ba:1b:e9:a8:63:c6:65:c0:85:14:4b:16: 28:b0:50:73:bb:c5:df:4c:9e:8d:44:7e:e9:0f:4c: 05:bc:2e:01:67:81:3b:75:b8:8f:10:81:cf:c5:c4: dc:6e:68:cd:75:f6:de:e2:b0:87:5a:7f:d1:4e:3b: 9d:36:4c:55:bb:0b:1e:90:c9:3f:04:dc:75:be:9a: 47:3e:c9:c1:b2:60:51:71:fc:7f:83:62:9d:8f:ae: 8e:8f:f7:7f:ee:68:94:23:1a:94:33:a4:0e:6d:69: f5:8f:90:ca:15:3e:10:e3:11:c4:ce:cb:60:90:5f: 0e:50:ae:ca:d3:57:6e:ca:04:68:ff:5a:79:64:55: d4:aa:6e:ac:16:78:04:ae:cf:2e:a3:4c:6e:99:de: 78:dc:aa:9a:25:4b:b5:56:a1:7c:12:34:db:7c:81: 3f:d5:0b:5e:33:02:a3:50:95:1f:e1:d2:72:fc:0f: 5c:1d:65:40:8c:ad:c7:57:d8:30:15:2c:61:f2:c0: c3:0b:b6:b2:18:fd:ea:c1:e2:b4:e4:d8:64:20:e7: a0:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:75:AC:86:CE:B4:1E:72:F5:98:53:76:2D:2B:97:65:6A:FD:C9:1B X509v3 Authority Key Identifier: keyid:D5:BC:79:0A:B0:37:B8:7D:DF:63:93:D7:41:36:BF:07:7A:1D:29:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91174ED/143581625D9211F090DF3836C4F9AE02/1bx5CrA3uH3fY5PXQTa_B3odKZ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1bx5CrA3uH3fY5PXQTa_B3odKZ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91174ED/143581625D9211F090DF3836C4F9AE02/FE892768620711F0BE75F534C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.16.232.0/23 Signature Algorithm: sha256WithRSAEncryption 03:af:44:d9:ee:85:d0:23:29:03:db:f5:8b:b9:98:75:ca:a0: a4:8a:09:a6:3b:13:2d:60:b4:1f:4e:e6:49:e0:8c:1f:fd:18: 62:59:46:cd:1c:39:46:49:b4:0b:44:80:d4:e8:0d:57:3d:1c: b1:03:7d:39:ce:3c:81:50:75:15:4e:59:14:79:85:d5:ea:34: 79:05:57:bd:d8:cc:8e:4c:e7:0a:3d:52:b0:48:10:ad:87:2f: 01:58:a2:9e:67:26:b1:ec:f9:91:3a:b1:ae:70:a8:da:c7:0b: bb:ba:50:c8:bd:82:9a:7a:28:33:05:e0:45:07:ea:d7:2c:10: d4:82:b5:fc:31:9f:43:f1:23:51:26:a8:a1:c1:b8:66:e4:a1: 3d:1d:0b:83:bf:b4:43:99:a8:11:61:a8:41:2c:ca:5c:c3:e4: 06:ce:9e:45:71:15:91:54:98:3b:50:98:90:01:ba:53:be:79: 5a:99:07:5a:a1:5e:44:ca:ec:78:ef:1c:81:fb:a1:6e:33:f6: 62:27:47:36:fd:89:0c:e3:7d:54:4d:78:83:b6:ec:83:cf:d8: e3:f5:5c:24:d7:1a:f1:97:04:ab:e9:6b:2a:ec:6a:2d:e2:80: 86:98:f4:de:cc:0a:69:18:2a:e4:24:1e:82:b1:1b:b3:de:13: f8:5c:ab:c3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzRFRDExMC8GA1UEBRMoRDVCQzc5MEFCMDM3Qjg3RERGNjM5M0Q3NDEzNkJGMDc3 QTFEMjk5RDAeFw0yNTA3MTYwNTQ0NTJaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NzczYzU0LTBjYjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUhx533JvUlcNz6nuS3/GGREZpBzHdtUIfJVsfGqzEiXxfEcf09uVahLHwq4g6 b7ob6ahjxmXAhRRLFiiwUHO7xd9Mno1EfukPTAW8LgFngTt1uI8Qgc/FxNxuaM11 9t7isIdaf9FOO502TFW7Cx6QyT8E3HW+mkc+ycGyYFFx/H+DYp2Pro6P93/uaJQj GpQzpA5tafWPkMoVPhDjEcTOy2CQXw5QrsrTV27KBGj/WnlkVdSqbqwWeASuzy6j TG6Z3njcqpolS7VWoXwSNNt8gT/VC14zAqNQlR/h0nL8D1wdZUCMrcdX2DAVLGHy wMMLtrIY/erB4rTk2GQg56ApAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUeXWshs60 HnL1mFN2LSuXZWr9yRswHwYDVR0jBBgwFoAU1bx5CrA3uH3fY5PXQTa/B3odKZ0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3NEVELzE0MzU4MTYyNUQ5 MjExRjA5MERGMzgzNkM0RjlBRTAyLzFieDVDckEzdUgzZlk1UFhRVGFfQjNvZEta MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMWJ4NUNyQTN1SDNmWTVQWFFUYV9CM29kS1owLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzRFRC8xNDM1ODE2MjVEOTIxMUYwOTBERjM4MzZDNEY5QUUwMi9GRTg5Mjc2ODYy MDcxMUYwQkU3NUY1MzRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcsQ6DANBgkqhkiG9w0BAQsFAAOCAQEAA69E2e6F0CMpA9v1 i7mYdcqgpIoJpjsTLWC0H07mSeCMH/0YYllGzRw5Rkm0C0SA1OgNVz0csQN9Oc48 gVB1FU5ZFHmF1eo0eQVXvdjMjkznCj1SsEgQrYcvAViinmcmsez5kTqxrnCo2scL u7pQyL2CmnooMwXgRQfq1ywQ1IK1/DGfQ/EjUSaoocG4ZuShPR0Lg7+0Q5moEWGo QSzKXMPkBs6eRXEVkVSYO1CYkAG6U755WpkHWqFeRMrseO8cgfuhbjP2YidHNv2J DON9VE14g7bsg8/Y4/VcJNca8ZcEq+lrKuxqLeKAhpj03swKaRgq5CQegrEbs94T +Fyrww== -----END CERTIFICATE-----Generated at Wed Jul 23 12:20:28 2025 by rpki-client