$ rpki-client -vvf rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/2EA68D96D65211EB8DAD1886C4F9AE02.roa File: 2EA68D96D65211EB8DAD1886C4F9AE02.roa (raw, json) Hash identifier: 6nBsIW1FtTa2lY5be/el75WgarvUxw35P+urmn+K7Hk= Subject key identifier: 26:88:1C:7A:AD:CD:03:98:E9:B3:41:80:C3:50:F6:B5:26:01:27:1B Certificate issuer: /CN=A91B929F/serialNumber=8B57DD16BD97FB5BFC21D9CCA9E2B86D5502E288 Certificate serial: 05A7 Authority key identifier: 8B:57:DD:16:BD:97:FB:5B:FC:21:D9:CC:A9:E2:B8:6D:55:02:E2:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/2EA68D96D65211EB8DAD1886C4F9AE02.roa Signing time: Mon 14 Jul 2025 23:34:24 +0000 ROA not before: Mon 14 Jul 2025 23:34:24 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4764 IP address blocks: 203.3.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.crl rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1447 (0x5a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B929F, serialNumber=8B57DD16BD97FB5BFC21D9CCA9E2B86D5502E288 Validity Not Before: Jul 14 23:34:24 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68759400-f8d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:09:3b:73:df:4d:3a:44:53:ce:d1:1a:d7:17: f8:d0:51:cd:fe:12:41:99:22:f8:9f:71:3c:0a:ee: fb:0a:5f:df:b0:c8:60:21:dc:54:62:db:3f:1d:8c: 97:d2:91:b9:0f:27:11:f5:5e:3f:56:5d:ce:64:dc: 4b:9a:74:6c:2a:ea:7d:16:74:0a:d9:61:c2:d2:91: 88:a6:05:31:88:bb:48:f2:d8:45:de:33:fb:26:d6: 41:48:24:0f:cd:90:06:74:6a:13:12:e6:4f:9d:a7: b4:af:68:0d:ba:fe:05:0e:33:24:17:5e:b7:47:95: d8:32:09:ab:a9:31:c4:25:fd:ed:02:f7:ab:36:2e: f4:cc:ff:a1:c7:b2:d3:16:7c:d4:b6:d9:c9:59:40: 3f:84:ca:48:7d:75:ba:24:bf:74:62:6b:0d:d5:e3: 59:aa:8b:df:a1:f2:1a:2a:cc:38:b9:11:92:c5:42: 18:72:fb:21:e6:50:f0:9a:68:5c:a2:9a:8c:c9:34: 8f:b0:fb:82:b2:65:ff:64:c0:87:de:51:ba:74:36: 37:74:15:c8:c4:04:51:3d:1c:d7:54:27:36:db:ae: 3d:38:8f:cf:6b:4a:56:00:12:74:2d:84:0d:c6:26: a2:96:e6:94:62:8a:13:ee:6c:98:62:9f:cc:c8:83: c1:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:88:1C:7A:AD:CD:03:98:E9:B3:41:80:C3:50:F6:B5:26:01:27:1B X509v3 Authority Key Identifier: keyid:8B:57:DD:16:BD:97:FB:5B:FC:21:D9:CC:A9:E2:B8:6D:55:02:E2:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/i1fdFr2X-1v8IdnMqeK4bVUC4og.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i1fdFr2X-1v8IdnMqeK4bVUC4og.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B929F/3BE549CED64E11EB94D4F27DC4F9AE02/2EA68D96D65211EB8DAD1886C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.3.122.0/24 Signature Algorithm: sha256WithRSAEncryption 8e:8c:21:08:3a:c9:27:59:0a:f7:65:f8:6a:48:be:19:ec:5a: 0b:5f:e5:1a:a3:cc:b5:43:76:0b:fa:8f:79:d0:93:3c:ee:e0: ef:ce:55:55:94:36:1c:b5:35:c9:ba:c9:80:3b:24:ff:93:5b: bd:83:a9:ee:60:aa:ad:90:2a:77:29:ad:df:36:63:0c:82:37: 18:22:ee:8b:62:29:4a:7e:33:ed:95:50:65:14:6a:73:7d:56: 47:2e:91:a7:f1:f6:21:9f:86:8d:9b:4e:87:9c:e3:fd:58:09: 7e:c3:9a:4c:54:ce:09:85:69:6e:28:4f:ab:26:0c:49:28:88: 5f:3d:67:9d:1d:53:ca:ad:2f:42:07:ee:0b:1b:02:c1:50:76: f5:7e:c5:32:b9:aa:ab:1a:27:24:49:93:0c:92:39:c4:8c:f0: a5:02:e9:e6:d1:d4:3d:fa:1f:2a:0d:39:7b:e4:ad:76:60:7a: 7f:31:87:9c:e5:ae:66:d9:59:a1:0d:da:fe:e2:c0:9f:41:e1: c1:1f:ee:91:c2:be:7a:45:ef:39:7b:dc:32:5a:b4:91:89:a3: 28:2b:7a:0a:f7:25:d6:88:78:c9:93:f7:a0:02:89:50:21:07: ca:44:9e:db:1b:49:65:51:a9:e6:f5:00:e4:cd:10:3c:a8:79: 04:6b:ae:45 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyOUYxMTAvBgNVBAUTKDhCNTdERDE2QkQ5N0ZCNUJGQzIxRDlDQ0E5RTJCODZE NTUwMkUyODgwHhcNMjUwNzE0MjMzNDI0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1OTQwMC1mOGQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoAk7c99NOkRTztEa1xf40FHN/hJBmSL4n3E8Cu77Cl/fsMhgIdxUYts/HYyX 0pG5DycR9V4/Vl3OZNxLmnRsKup9FnQK2WHC0pGIpgUxiLtI8thF3jP7JtZBSCQP zZAGdGoTEuZPnae0r2gNuv4FDjMkF163R5XYMgmrqTHEJf3tAverNi70zP+hx7LT FnzUttnJWUA/hMpIfXW6JL90YmsN1eNZqovfofIaKsw4uRGSxUIYcvsh5lDwmmhc opqMyTSPsPuCsmX/ZMCH3lG6dDY3dBXIxARRPRzXVCc22649OI/Pa0pWABJ0LYQN xiailuaUYooT7myYYp/MyIPBGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCaIHHqt zQOY6bNBgMNQ9rUmAScbMB8GA1UdIwQYMBaAFItX3Ra9l/tb/CHZzKniuG1VAuKI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI5Ri8zQkU1NDlDRUQ2 NEUxMUVCOTRENEYyN0RDNEY5QUUwMi9pMWZkRnIyWC0xdjhJZG5NcWVLNGJWVUM0 b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2kxZmRGcjJYLTF2OElkbk1xZUs0YlZVQzRvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkyOUYvM0JFNTQ5Q0VENjRFMTFFQjk0RDRGMjdEQzRGOUFFMDIvMkVBNjhEOTZE NjUyMTFFQjhEQUQxODg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLA3owDQYJKoZIhvcNAQELBQADggEBAI6MIQg6ySdZCvdl +GpIvhnsWgtf5RqjzLVDdgv6j3nQkzzu4O/OVVWUNhy1Ncm6yYA7JP+TW72Dqe5g qq2QKncprd82YwyCNxgi7otiKUp+M+2VUGUUanN9Vkcukafx9iGfho2bToec4/1Y CX7DmkxUzgmFaW4oT6smDEkoiF89Z50dU8qtL0IH7gsbAsFQdvV+xTK5qqsaJyRJ kwySOcSM8KUC6ebR1D36HyoNOXvkrXZgen8xh5zlrmbZWaEN2v7iwJ9B4cEf7pHC vnpF7zl73DJatJGJoygregr3JdaIeMmT96ACiVAhB8pEntsbSWVRqeb1AOTNEDyo eQRrrkU= -----END CERTIFICATE-----Generated at Sun Jul 20 11:21:32 2025 by rpki-client