$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/BE48D4AA927D11EF9651FC4AC4F9AE02.roa File: BE48D4AA927D11EF9651FC4AC4F9AE02.roa (raw, json) Hash identifier: QPPTXA+ALXUhXbBS6N6EbcLL1inNfd3655N4UckWgIw= Subject key identifier: 92:28:3A:F9:32:BB:49:25:97:D1:48:4A:DC:A4:36:FC:1C:1B:E6:7D Certificate issuer: /CN=A91C8203/serialNumber=31D21D5CEE5FACDEF3C8C1C87D0D7391F9F73AFF Certificate serial: AC Authority key identifier: 31:D2:1D:5C:EE:5F:AC:DE:F3:C8:C1:C8:7D:0D:73:91:F9:F7:3A:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/BE48D4AA927D11EF9651FC4AC4F9AE02.roa Signing time: Sat 13 Sep 2025 06:43:12 +0000 ROA not before: Sat 13 Sep 2025 06:43:12 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 16509 IP address blocks: 202.0.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.crl rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 Oct 2025 06:18:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 172 (0xac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8203, serialNumber=31D21D5CEE5FACDEF3C8C1C87D0D7391F9F73AFF Validity Not Before: Sep 13 06:43:12 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c51280-be72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:bd:46:72:21:9f:a9:22:d8:c5:43:d6:c1:84: af:3a:ae:4b:df:8c:63:48:08:81:03:f7:99:ef:54: 96:10:ab:10:67:a3:d0:87:e4:b8:87:1f:08:63:4c: d9:d8:55:e6:f0:58:c8:c4:32:49:a4:17:66:36:c4: 5e:f9:6f:bb:d0:ac:aa:60:94:36:28:80:86:0c:32: 76:3a:77:86:f9:a1:0a:3e:b4:51:12:55:da:1a:0c: ce:c9:aa:94:44:86:82:43:b0:83:95:4c:41:cc:c1: 01:e7:35:a8:4b:36:dc:af:72:f1:76:b8:35:b5:10: b8:6b:8c:82:0e:59:6d:04:5d:74:b4:e0:92:5b:a7: 11:16:27:b3:a6:93:c7:68:86:8a:a9:8e:fa:62:91: b4:f9:57:2e:24:55:40:09:97:d9:9b:0a:a7:20:12: 74:db:f3:2b:3b:aa:9c:50:32:5e:83:4e:52:ee:7a: 2f:4d:71:c1:3a:64:06:c8:ef:7c:c1:d3:48:e1:8c: ba:30:f6:4f:4b:fe:5c:a8:ab:d6:de:61:04:6b:f5: e8:91:06:ce:27:57:5a:49:16:9d:8a:83:f9:5b:e5: 35:91:ec:70:c6:2c:6e:3c:c7:c0:dd:ab:34:a5:28: 87:16:11:00:20:89:13:48:f5:94:95:33:da:03:11: 47:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:28:3A:F9:32:BB:49:25:97:D1:48:4A:DC:A4:36:FC:1C:1B:E6:7D X509v3 Authority Key Identifier: keyid:31:D2:1D:5C:EE:5F:AC:DE:F3:C8:C1:C8:7D:0D:73:91:F9:F7:3A:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MdIdXO5frN7zyMHIfQ1zkfn3Ov8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8203/BC515DAA927A11EFB5643C4EC4F9AE02/BE48D4AA927D11EF9651FC4AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.0.70.0/24 Signature Algorithm: sha256WithRSAEncryption d0:e2:d4:08:b8:5b:f9:dd:04:1c:e1:bd:66:cd:a8:de:79:a7: 78:28:11:ad:ac:93:28:cd:21:ac:3e:e9:6b:50:1b:b7:61:5e: 01:4c:96:9e:de:c1:f3:95:8d:1c:5f:ef:da:c7:72:48:c9:42: cf:72:95:f8:a4:13:e4:b0:5c:9c:6e:31:a6:0d:4f:91:da:f2: 5f:6e:9a:ce:f3:85:45:c7:d8:08:39:d4:35:a9:cc:64:3d:a9: 48:4c:f0:f3:2e:8f:f9:c2:8a:da:90:f0:15:2a:a8:eb:a8:a4: 42:f8:f7:ab:55:54:04:2b:b1:af:65:cf:c2:9b:81:fa:9d:0a: e7:08:d7:5d:bb:49:c6:8e:64:3a:69:f8:c2:44:f8:fa:b7:7b: 26:59:b3:3f:b8:dd:82:11:ba:d3:9d:3d:3e:60:1d:be:68:e5: 75:79:cd:23:b5:6c:77:f1:1f:44:30:35:b2:19:ef:8f:b3:85: 5d:2e:07:63:ae:e3:42:07:63:85:31:3a:2f:b0:0b:bd:d2:aa: 15:3d:05:af:26:df:9b:15:46:45:81:e0:46:c3:0d:79:6e:0c: 2d:ff:ae:43:70:d0:4b:d8:4b:e3:b8:33:91:87:5a:51:62:d7: 56:b2:a5:9a:cf:3b:3b:74:e3:97:44:e7:8b:bc:03:3c:2a:2d: 8b:b6:f5:9c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgyMDMxMTAvBgNVBAUTKDMxRDIxRDVDRUU1RkFDREVGM0M4QzFDODdEMEQ3Mzkx RjlGNzNBRkYwHhcNMjUwOTEzMDY0MzEyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM1MTI4MC1iZTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu71GciGfqSLYxUPWwYSvOq5L34xjSAiBA/eZ71SWEKsQZ6PQh+S4hx8IY0zZ 2FXm8FjIxDJJpBdmNsRe+W+70KyqYJQ2KICGDDJ2OneG+aEKPrRRElXaGgzOyaqU RIaCQ7CDlUxBzMEB5zWoSzbcr3Lxdrg1tRC4a4yCDlltBF10tOCSW6cRFiezppPH aIaKqY76YpG0+VcuJFVACZfZmwqnIBJ02/MrO6qcUDJeg05S7novTXHBOmQGyO98 wdNI4Yy6MPZPS/5cqKvW3mEEa/XokQbOJ1daSRadioP5W+U1kexwxixuPMfA3as0 pSiHFhEAIIkTSPWUlTPaAxFHuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJIoOvky u0kll9FIStykNvwcG+Z9MB8GA1UdIwQYMBaAFDHSHVzuX6ze88jByH0Nc5H59zr/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODIwMy9CQzUxNURBQTky N0ExMUVGQjU2NDNDNEVDNEY5QUUwMi9NZElkWE81ZnJON3p5TUhJZlExemtmbjNP djguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01kSWRYTzVmck43enlNSElmUTF6a2ZuM092OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzgyMDMvQkM1MTVEQUE5MjdBMTFFRkI1NjQzQzRFQzRGOUFFMDIvQkU0OEQ0QUE5 MjdEMTFFRjk2NTFGQzRBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKAEYwDQYJKoZIhvcNAQELBQADggEBANDi1Ai4W/ndBBzh vWbNqN55p3goEa2skyjNIaw+6WtQG7dhXgFMlp7ewfOVjRxf79rHckjJQs9ylfik E+SwXJxuMaYNT5Ha8l9ums7zhUXH2Ag51DWpzGQ9qUhM8PMuj/nCitqQ8BUqqOuo pEL496tVVAQrsa9lz8KbgfqdCucI1127ScaOZDpp+MJE+Pq3eyZZsz+43YIRutOd PT5gHb5o5XV5zSO1bHfxH0QwNbIZ74+zhV0uB2Ou40IHY4UxOi+wC73SqhU9Ba8m 35sVRkWB4EbDDXluDC3/rkNw0EvYS+O4M5GHWlFi11aypZrPOzt045dE54u8Azwq LYu29Zw= -----END CERTIFICATE-----Generated at Thu Oct 9 06:20:33 2025 by rpki-client