$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC86F/47BA28AE13F611EE925F0A36C4F9AE02/96F5D26CFD5A11EEA0731E55C4F9AE02.roa File: 96F5D26CFD5A11EEA0731E55C4F9AE02.roa (raw, json) Hash identifier: 4bQshwbLuuIizTEi1i8kAXXdNltaobrkapRT1VY6dw0= Subject key identifier: D8:08:0E:65:A2:2A:22:54:D7:96:51:E7:4F:15:5F:F5:DD:45:46:13 Certificate issuer: /CN=A91CC86F/serialNumber=6BADD7D5D1128112D70AB4A2452401428F9D097B Certificate serial: 0185 Authority key identifier: 6B:AD:D7:D5:D1:12:81:12:D7:0A:B4:A2:45:24:01:42:8F:9D:09:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a63X1dESgRLXCrSiRSQBQo-dCXs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC86F/47BA28AE13F611EE925F0A36C4F9AE02/96F5D26CFD5A11EEA0731E55C4F9AE02.roa Signing time: Sat 05 Jul 2025 04:09:49 +0000 ROA not before: Sat 05 Jul 2025 04:09:49 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152687 IP address blocks: 202.37.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC86F/47BA28AE13F611EE925F0A36C4F9AE02/a63X1dESgRLXCrSiRSQBQo-dCXs.crl rsync://rpki.apnic.net/member_repository/A91CC86F/47BA28AE13F611EE925F0A36C4F9AE02/a63X1dESgRLXCrSiRSQBQo-dCXs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a63X1dESgRLXCrSiRSQBQo-dCXs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 03:48:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 389 (0x185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC86F, serialNumber=6BADD7D5D1128112D70AB4A2452401428F9D097B Validity Not Before: Jul 5 04:09:49 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6868a58d-3412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:aa:e6:f9:33:61:9e:7b:0f:0c:93:35:1e:d8: b3:62:a5:b5:e4:09:7d:e2:01:d0:64:91:0c:7e:b4: cc:db:7c:60:36:7d:a1:10:46:6f:bf:09:16:d5:7c: 6c:d8:77:23:db:ba:99:66:5e:a8:1c:e2:46:1c:f8: 9c:49:c2:06:4d:4a:53:76:2c:88:6e:05:59:e7:d1: 0f:9b:28:ee:35:49:18:d4:e3:74:d0:5d:d8:17:7e: 59:d3:4a:d2:ac:79:78:6c:83:b6:4e:50:4e:be:9c: 7f:8e:46:62:54:11:9a:61:ca:59:4c:eb:f4:10:ed: 3c:72:cb:66:0b:43:74:d1:2b:56:ab:c4:6d:25:74: a1:35:06:09:48:6d:08:1d:80:40:d3:f4:62:ff:02: d8:a9:8c:4e:71:b5:df:56:9a:10:6c:14:9e:7b:33: 05:db:2d:cd:54:92:83:4b:fa:3c:de:09:21:4f:71: d8:20:29:0e:63:3e:bf:5d:66:4d:60:3b:0c:84:ce: 8a:a2:c6:24:37:14:0b:33:d6:cb:b6:5d:1e:97:60: 98:0f:c6:49:7e:02:92:c4:fa:74:83:87:bc:23:0b: 79:11:b2:a0:3e:d3:23:68:3a:28:b7:ac:51:b8:ba: 6f:47:ac:37:e4:84:b9:2d:01:51:fa:9c:5c:67:6a: 0e:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:08:0E:65:A2:2A:22:54:D7:96:51:E7:4F:15:5F:F5:DD:45:46:13 X509v3 Authority Key Identifier: keyid:6B:AD:D7:D5:D1:12:81:12:D7:0A:B4:A2:45:24:01:42:8F:9D:09:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC86F/47BA28AE13F611EE925F0A36C4F9AE02/a63X1dESgRLXCrSiRSQBQo-dCXs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/a63X1dESgRLXCrSiRSQBQo-dCXs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC86F/47BA28AE13F611EE925F0A36C4F9AE02/96F5D26CFD5A11EEA0731E55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.133.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:0a:71:78:1f:ac:10:a6:1e:cc:50:6c:c7:2d:18:c9:92:a6: d8:7a:f3:7a:eb:24:bf:85:44:69:39:02:02:be:ff:c2:71:b3: 80:97:2f:48:8d:68:e9:3c:57:99:ad:c6:84:ae:8e:30:f4:11: 5e:8d:e3:ae:c3:f9:49:54:87:e1:a3:e0:d1:a7:9b:64:b1:74: 79:74:e0:a1:28:68:83:94:d6:b3:d6:ed:71:66:6e:3e:4e:f9: 0c:7b:d4:95:f4:cf:56:e6:35:48:6b:eb:21:17:c7:0e:d0:5e: 58:e2:87:25:c5:1f:25:97:b9:28:67:29:47:29:d8:22:07:a4: 90:53:9d:2e:54:1f:69:79:63:bd:f6:02:a9:88:32:87:df:ba: fc:71:b3:d2:91:33:ff:19:b1:98:54:1a:c5:33:58:28:2d:fd: b6:34:f0:a6:50:66:81:05:7e:fe:d1:7d:48:fb:cb:cd:b6:f0: 15:e4:da:12:ea:0a:b5:db:34:89:d2:d3:d7:1b:96:e7:2e:2d: f0:c4:37:90:16:ec:fd:40:ec:b3:1e:1d:e6:2e:19:b0:f3:7a: 08:92:db:96:58:93:27:1b:be:0b:93:29:d3:82:3f:cb:2f:5b: b6:e1:df:c8:d5:9e:91:86:92:e4:a0:61:4b:6b:67:37:6c:d8: 63:12:b5:63 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAYUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M4NkYxMTAvBgNVBAUTKDZCQUREN0Q1RDExMjgxMTJENzBBQjRBMjQ1MjQwMTQy OEY5RDA5N0IwHhcNMjUwNzA1MDQwOTQ5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4YTU4ZC0zNDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApqrm+TNhnnsPDJM1HtizYqW15Al94gHQZJEMfrTM23xgNn2hEEZvvwkW1Xxs 2Hcj27qZZl6oHOJGHPicScIGTUpTdiyIbgVZ59EPmyjuNUkY1ON00F3YF35Z00rS rHl4bIO2TlBOvpx/jkZiVBGaYcpZTOv0EO08cstmC0N00StWq8RtJXShNQYJSG0I HYBA0/Ri/wLYqYxOcbXfVpoQbBSeezMF2y3NVJKDS/o83gkhT3HYICkOYz6/XWZN YDsMhM6KosYkNxQLM9bLtl0el2CYD8ZJfgKSxPp0g4e8Iwt5EbKgPtMjaDoot6xR uLpvR6w35IS5LQFR+pxcZ2oOLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNgIDmWi KiJU15ZR508VX/XdRUYTMB8GA1UdIwQYMBaAFGut19XREoES1wq0okUkAUKPnQl7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzg2Ri80N0JBMjhBRTEz RjYxMUVFOTI1RjBBMzZDNEY5QUUwMi9hNjNYMWRFU2dSTFhDclNpUlNRQlFvLWRD WHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2E2M1gxZEVTZ1JMWENyU2lSU1FCUW8tZENYcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0M4NkYvNDdCQTI4QUUxM0Y2MTFFRTkyNUYwQTM2QzRGOUFFMDIvOTZGNUQyNkNG RDVBMTFFRUEwNzMxRTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJYUwDQYJKoZIhvcNAQELBQADggEBAIwKcXgfrBCmHsxQ bMctGMmSpth683rrJL+FRGk5AgK+/8Jxs4CXL0iNaOk8V5mtxoSujjD0EV6N467D +UlUh+Gj4NGnm2SxdHl04KEoaIOU1rPW7XFmbj5O+Qx71JX0z1bmNUhr6yEXxw7Q XljihyXFHyWXuShnKUcp2CIHpJBTnS5UH2l5Y732AqmIMoffuvxxs9KRM/8ZsZhU GsUzWCgt/bY08KZQZoEFfv7RfUj7y8228BXk2hLqCrXbNInS09cblucuLfDEN5AW 7P1A7LMeHeYuGbDzegiS25ZYkycbvguTKdOCP8svW7bh38jVnpGGkuSgYUtrZzds 2GMStWM= -----END CERTIFICATE-----Generated at Sun Jul 20 07:47:16 2025 by rpki-client