$ rpki-client -vvf rpki.apnic.net/member_repository/A91A29A1/F8F0EC961E5011EB82078626C4F9AE02/FD33BACA1E5211EBA055EE2BC4F9AE02.roa File: FD33BACA1E5211EBA055EE2BC4F9AE02.roa (raw, json) Hash identifier: Dkqf9iSh4QQJs2mZkJEMgbT0BzwzhORuJVYaCkXmjeU= Subject key identifier: BB:D1:07:2B:1B:A5:1E:32:4B:EE:02:DA:46:8F:03:47:4E:22:BB:38 Certificate issuer: /CN=A91A29A1/serialNumber=F1BB79E56D2B098692CC7D1F226F756C7961E19B Certificate serial: 0786 Authority key identifier: F1:BB:79:E5:6D:2B:09:86:92:CC:7D:1F:22:6F:75:6C:79:61:E1:9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bt55W0rCYaSzH0fIm91bHlh4Zs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A29A1/F8F0EC961E5011EB82078626C4F9AE02/FD33BACA1E5211EBA055EE2BC4F9AE02.roa Signing time: Sat 26 Jul 2025 22:01:54 +0000 ROA not before: Sat 26 Jul 2025 22:01:54 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 9268 IP address blocks: 119.18.40.0/21 maxlen: 21 2407:600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A29A1/F8F0EC961E5011EB82078626C4F9AE02/8bt55W0rCYaSzH0fIm91bHlh4Zs.crl rsync://rpki.apnic.net/member_repository/A91A29A1/F8F0EC961E5011EB82078626C4F9AE02/8bt55W0rCYaSzH0fIm91bHlh4Zs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bt55W0rCYaSzH0fIm91bHlh4Zs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 04 Aug 2025 21:57:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1926 (0x786) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A29A1, serialNumber=F1BB79E56D2B098692CC7D1F226F756C7961E19B Validity Not Before: Jul 26 22:01:54 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68855051-dd5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:a4:35:6b:19:79:ea:99:f0:79:a4:80:e4:11: 97:3e:87:46:11:1b:97:42:0a:5c:b9:80:5a:49:fa: aa:75:31:bd:35:e0:2c:ff:78:05:e7:fb:0c:3f:4b: b5:a9:38:34:47:3c:95:6a:2b:44:1a:81:ad:0a:2b: b2:4d:86:96:3e:b8:d6:63:e0:95:4e:08:39:e5:4d: a9:63:89:f5:64:50:83:60:80:2a:7b:aa:8b:1c:ce: e1:c9:a8:b1:5c:a6:db:8e:ad:74:04:3b:4f:5d:1b: 05:31:c7:3e:1e:59:93:47:ac:c7:da:66:0a:d3:14: d4:7a:b8:74:63:73:c6:b3:91:ba:63:64:ba:dd:13: 83:99:ee:7f:3e:5d:79:8a:71:a2:17:99:d4:94:ab: 2d:48:82:49:55:f5:33:3c:b0:a5:c8:64:90:4b:d5: 09:dd:08:a8:06:29:07:73:05:0c:33:c8:f9:ae:55: 90:26:fc:43:5b:4d:63:bb:c1:85:2d:32:fe:d9:d2: 79:75:fc:b0:15:16:58:34:70:c9:71:56:83:6f:95: 22:d1:c6:4d:69:b8:cd:12:c6:36:56:bb:61:d0:ca: 81:1d:9d:ab:0e:6a:4d:5f:de:75:40:cd:96:33:b7: d2:da:50:43:6f:09:5e:ca:94:3d:37:12:f0:b5:9c: 9f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:D1:07:2B:1B:A5:1E:32:4B:EE:02:DA:46:8F:03:47:4E:22:BB:38 X509v3 Authority Key Identifier: keyid:F1:BB:79:E5:6D:2B:09:86:92:CC:7D:1F:22:6F:75:6C:79:61:E1:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A29A1/F8F0EC961E5011EB82078626C4F9AE02/8bt55W0rCYaSzH0fIm91bHlh4Zs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8bt55W0rCYaSzH0fIm91bHlh4Zs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A29A1/F8F0EC961E5011EB82078626C4F9AE02/FD33BACA1E5211EBA055EE2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.18.40.0/21 IPv6: 2407:600::/32 Signature Algorithm: sha256WithRSAEncryption 3b:22:06:43:89:c1:4e:28:1a:10:37:64:bf:88:b2:27:5f:18: d5:34:80:64:d1:a4:89:54:7f:e2:40:2c:c7:3e:fc:f5:86:ef: ba:90:63:d4:4c:ec:d7:0a:00:a0:a3:a1:d9:81:e0:9b:3c:d5: 25:dd:d0:07:94:77:aa:dd:72:9b:2a:30:b2:b2:07:47:94:88: 88:b4:32:d4:a9:27:f3:02:93:7d:77:96:da:ad:8c:39:6f:fc: 8a:cd:6d:24:f4:1e:85:66:bb:71:4f:00:f6:65:8b:76:18:a1: db:3c:89:81:a8:69:2b:02:2a:13:ff:87:af:5c:2e:9a:cd:09: 84:e3:33:5d:96:86:57:5b:41:f6:b9:3c:d5:08:18:26:8f:03: 74:95:2e:41:f6:3c:3f:98:c4:34:91:10:82:6a:5e:41:24:f0: ea:3a:54:d1:b7:f2:3d:2f:49:e1:d4:51:9e:91:33:05:cc:2a: a2:ee:24:ee:51:5b:62:24:15:4b:89:82:34:57:b6:a1:73:f8: 7a:55:e7:48:ff:6d:97:cd:3a:c1:ab:d3:b1:05:01:cc:d5:24: 13:4b:8b:f9:49:ea:71:d4:b1:2f:b5:a3:2b:b5:88:35:aa:d8: 69:67:89:fe:1a:61:ee:38:01:39:5d:28:b8:8e:dd:b5:5f:0e: 36:a7:e1:ed -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB4YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI5QTExMTAvBgNVBAUTKEYxQkI3OUU1NkQyQjA5ODY5MkNDN0QxRjIyNkY3NTZD Nzk2MUUxOUIwHhcNMjUwNzI2MjIwMTU0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg1NTA1MS1kZDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0KQ1axl56pnweaSA5BGXPodGERuXQgpcuYBaSfqqdTG9NeAs/3gF5/sMP0u1 qTg0RzyVaitEGoGtCiuyTYaWPrjWY+CVTgg55U2pY4n1ZFCDYIAqe6qLHM7hyaix XKbbjq10BDtPXRsFMcc+HlmTR6zH2mYK0xTUerh0Y3PGs5G6Y2S63RODme5/Pl15 inGiF5nUlKstSIJJVfUzPLClyGSQS9UJ3QioBikHcwUMM8j5rlWQJvxDW01ju8GF LTL+2dJ5dfywFRZYNHDJcVaDb5Ui0cZNabjNEsY2Vrth0MqBHZ2rDmpNX951QM2W M7fS2lBDbwleypQ9NxLwtZyf4QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFLvRBysb pR4yS+4C2kaPA0dOIrs4MB8GA1UdIwQYMBaAFPG7eeVtKwmGksx9HyJvdWx5YeGb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjlBMS9GOEYwRUM5NjFF NTAxMUVCODIwNzg2MjZDNEY5QUUwMi84YnQ1NVcwckNZYVN6SDBmSW05MWJIbGg0 WnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhidDU1VzByQ1lhU3pIMGZJbTkxYkhsaDRacy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTI5QTEvRjhGMEVDOTYxRTUwMTFFQjgyMDc4NjI2QzRGOUFFMDIvRkQzM0JBQ0Ex RTUyMTFFQkEwNTVFRTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAN3EigwDQQCAAIwBwMFACQHBgAwDQYJKoZIhvcNAQELBQAD ggEBADsiBkOJwU4oGhA3ZL+IsidfGNU0gGTRpIlUf+JALMc+/PWG77qQY9RM7NcK AKCjodmB4Js81SXd0AeUd6rdcpsqMLKyB0eUiIi0MtSpJ/MCk313ltqtjDlv/IrN bST0HoVmu3FPAPZli3YYods8iYGoaSsCKhP/h69cLprNCYTjM12WhldbQfa5PNUI GCaPA3SVLkH2PD+YxDSREIJqXkEk8Oo6VNG38j0vSeHUUZ6RMwXMKqLuJO5RW2Ik FUuJgjRXtqFz+HpV50j/bZfNOsGr07EFAczVJBNLi/lJ6nHUsS+1oyu1iDWq2Gln if4aYe44ATldKLiO3bVfDjan4e0= -----END CERTIFICATE-----Generated at Tue Jul 29 07:47:33 2025 by rpki-client