$ rpki-client -vvf rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/02F57BD252E711EC931DB95CC4F9AE02.roa File: 02F57BD252E711EC931DB95CC4F9AE02.roa (raw, json) Hash identifier: TGHGZPpqAj2jmtX8lTQMi8kBaI8ojiWWIFj1IWycEgs= Subject key identifier: FA:72:39:1E:42:B9:76:4E:F9:78:DA:92:A4:43:2F:1F:2E:D7:D6:6A Certificate issuer: /CN=A916CCFF/serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Certificate serial: 04B1 Authority key identifier: 08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/02F57BD252E711EC931DB95CC4F9AE02.roa Signing time: Sat 19 Jul 2025 00:37:26 +0000 ROA not before: Sat 19 Jul 2025 00:37:26 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 36776 IP address blocks: 202.92.192.0/24 maxlen: 24 202.92.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 00:37:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1201 (0x4b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916CCFF, serialNumber=0803662C571325728F24FAAD8CB1A5F1900715ED Validity Not Before: Jul 19 00:37:26 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687ae8c5-78ae Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c1:8a:71:09:47:da:fa:d6:6d:01:c3:2a:0d: 2a:8b:01:f9:23:c9:08:14:1b:42:1e:15:51:d2:89: ce:4a:4b:08:43:03:34:0d:ad:e3:20:7c:e4:1a:22: f9:6d:f1:70:26:b9:e4:c8:68:b1:6c:88:75:d5:53: d2:16:63:65:94:a5:be:30:69:13:d7:21:07:32:0e: 0a:ed:05:bf:ab:5a:6a:02:01:95:1b:09:da:f5:69: 26:f4:94:ca:37:a2:f7:b7:95:95:b4:ee:3c:1d:11: 62:c5:3d:5c:61:29:50:46:38:42:9a:5d:4d:21:b6: 22:77:1f:1e:42:b3:b7:ba:01:f5:9b:c6:11:7d:c3: c6:70:cb:f7:67:2f:ab:48:99:76:4f:61:45:87:75: f5:f3:5a:af:80:8b:4f:91:f6:a0:4a:fe:60:ea:22: 4b:70:df:d2:bb:c2:5d:65:f8:11:d4:07:62:88:59: 91:95:3a:ae:e1:27:cb:86:44:9a:da:6d:e7:c4:c7: 3d:47:a1:c1:7b:27:41:cd:2c:6a:5c:8d:18:59:90: d4:1a:67:07:80:f0:d6:a6:b0:3d:3f:e0:33:7d:23: c4:f6:80:81:5a:46:5e:22:76:0a:39:66:f7:e6:c5: 75:b2:b6:81:09:3f:05:e8:1e:27:2b:1b:25:98:b1: 37:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:72:39:1E:42:B9:76:4E:F9:78:DA:92:A4:43:2F:1F:2E:D7:D6:6A X509v3 Authority Key Identifier: keyid:08:03:66:2C:57:13:25:72:8F:24:FA:AD:8C:B1:A5:F1:90:07:15:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/CANmLFcTJXKPJPqtjLGl8ZAHFe0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CANmLFcTJXKPJPqtjLGl8ZAHFe0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916CCFF/9A5EC16C46FE11EC94E3D24AC4F9AE02/02F57BD252E711EC931DB95CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.92.192.0/23 Signature Algorithm: sha256WithRSAEncryption 95:91:9b:d2:3b:ca:1a:ff:40:97:80:dc:7f:ee:bf:5b:16:86: 25:a2:60:c7:e4:6e:95:8b:61:19:83:4f:19:f3:ac:2e:03:14: f2:5f:07:64:90:7d:b2:73:df:ae:a3:17:74:a6:a2:dd:d9:db: cb:52:ea:78:59:21:ad:22:23:2e:c4:06:92:61:74:a8:67:54: c2:73:cc:73:68:a0:a4:94:7b:03:ae:1c:62:a1:aa:46:ae:1f: ba:b6:8f:96:e8:25:77:86:2b:a6:df:64:c0:52:99:e4:80:b7: ad:db:af:89:6c:17:28:bb:45:0a:57:16:b6:4c:09:14:ba:02: 70:60:1a:89:03:aa:4a:72:2e:ff:ac:c2:32:0e:85:40:dc:03: 60:61:56:2b:39:47:19:c6:7c:c9:96:43:34:3d:bb:de:7f:06: 57:2b:ea:3b:8d:dd:62:ed:32:7f:48:fe:ce:66:12:d4:61:dc: 65:f0:20:fe:4b:04:bf:03:28:0d:f8:5b:0c:b6:4d:2e:e1:d5: 88:57:e8:34:7d:ab:6a:c3:de:47:da:7e:40:7a:7e:79:11:17: 9f:36:bb:64:63:4b:47:a5:53:62:0e:9a:56:08:1f:60:03:3e: 1e:7c:7d:b9:ef:23:0a:85:cc:79:dc:65:0f:37:68:0b:a6:e4: e2:7a:53:68 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBLEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkNDRkYxMTAvBgNVBAUTKDA4MDM2NjJDNTcxMzI1NzI4RjI0RkFBRDhDQjFBNUYx OTAwNzE1RUQwHhcNMjUwNzE5MDAzNzI2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdhZThjNS03OGFlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2MGKcQlH2vrWbQHDKg0qiwH5I8kIFBtCHhVR0onOSksIQwM0Da3jIHzkGiL5 bfFwJrnkyGixbIh11VPSFmNllKW+MGkT1yEHMg4K7QW/q1pqAgGVGwna9Wkm9JTK N6L3t5WVtO48HRFixT1cYSlQRjhCml1NIbYidx8eQrO3ugH1m8YRfcPGcMv3Zy+r SJl2T2FFh3X181qvgItPkfagSv5g6iJLcN/Su8JdZfgR1AdiiFmRlTqu4SfLhkSa 2m3nxMc9R6HBeydBzSxqXI0YWZDUGmcHgPDWprA9P+AzfSPE9oCBWkZeInYKOWb3 5sV1sraBCT8F6B4nKxslmLE3QwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPpyOR5C uXZO+XjakqRDLx8u19ZqMB8GA1UdIwQYMBaAFAgDZixXEyVyjyT6rYyxpfGQBxXt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Q0NGRi85QTVFQzE2QzQ2 RkUxMUVDOTRFM0QyNEFDNEY5QUUwMi9DQU5tTEZjVEpYS1BKUHF0akxHbDhaQUhG ZTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NBTm1MRmNUSlhLUEpQcXRqTEdsOFpBSEZlMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkNDRkYvOUE1RUMxNkM0NkZFMTFFQzk0RTNEMjRBQzRGOUFFMDIvMDJGNTdCRDI1 MkU3MTFFQzkzMURCOTVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKXMAwDQYJKoZIhvcNAQELBQADggEBAJWRm9I7yhr/QJeA 3H/uv1sWhiWiYMfkbpWLYRmDTxnzrC4DFPJfB2SQfbJz366jF3Smot3Z28tS6nhZ Ia0iIy7EBpJhdKhnVMJzzHNooKSUewOuHGKhqkauH7q2j5boJXeGK6bfZMBSmeSA t63br4lsFyi7RQpXFrZMCRS6AnBgGokDqkpyLv+swjIOhUDcA2BhVis5RxnGfMmW QzQ9u95/Blcr6juN3WLtMn9I/s5mEtRh3GXwIP5LBL8DKA34Wwy2TS7h1YhX6DR9 q2rD3kfafkB6fnkRF582u2RjS0elU2IOmlYIH2ADPh58fbnvIwqFzHncZQ83aAum 5OJ6U2g= -----END CERTIFICATE-----Generated at Sun Jul 20 09:38:29 2025 by rpki-client