$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/E69E92582C4A11EF91F6202DC4F9AE02.roa File: E69E92582C4A11EF91F6202DC4F9AE02.roa (raw, json) Hash identifier: 0taDnwo0qjXesfO3FrAvUEEfUHs3YxCMYz8QGg31osQ= Subject key identifier: E6:36:A4:B9:59:A3:64:DC:0F:AD:1E:23:81:21:9A:39:16:9D:BF:4E Certificate issuer: /CN=A91CFC1C/serialNumber=3645CD90E3F43C012DAB3BF3972E86BC94DDD454 Certificate serial: 0157 Authority key identifier: 36:45:CD:90:E3:F4:3C:01:2D:AB:3B:F3:97:2E:86:BC:94:DD:D4:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkXNkOP0PAEtqzvzly6GvJTd1FQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/E69E92582C4A11EF91F6202DC4F9AE02.roa Signing time: Sat 05 Jul 2025 04:40:27 +0000 ROA not before: Sat 05 Jul 2025 04:40:27 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 4049 IP address blocks: 202.49.208.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/NkXNkOP0PAEtqzvzly6GvJTd1FQ.crl rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/NkXNkOP0PAEtqzvzly6GvJTd1FQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkXNkOP0PAEtqzvzly6GvJTd1FQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 04:17:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 343 (0x157) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFC1C, serialNumber=3645CD90E3F43C012DAB3BF3972E86BC94DDD454 Validity Not Before: Jul 5 04:40:27 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6868acbb-8f93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:e0:47:85:5a:2e:7f:24:ee:dd:05:77:67:a8: 24:20:4e:9d:b2:73:99:8f:9b:be:ed:af:d7:c5:b5: b6:bc:ba:6d:4c:fc:9f:72:25:0e:bb:5d:a0:51:d6: 03:69:75:18:31:3f:17:95:cf:cc:c4:4e:f3:f8:47: 0a:87:02:e4:eb:41:6c:5c:92:2f:52:2f:c5:de:ed: 67:d7:0e:f2:e7:b8:27:4b:31:12:12:a3:e5:f4:3a: 42:0d:4b:a3:0a:41:5d:5d:ab:e2:80:85:93:2b:45: 97:31:8a:a5:34:4f:09:ce:77:46:a9:18:bb:5a:1c: 1c:8e:1c:de:6c:95:e0:b5:7b:8c:ad:f6:a5:67:b5: 7a:e6:49:a4:af:da:a6:cd:32:03:d9:5e:2c:41:50: f9:b0:07:e4:4b:d1:3a:55:b6:11:c3:cb:8e:2e:e5: 57:06:8d:76:1b:35:d6:fe:61:bc:5c:0b:b9:b4:6e: 3d:8d:72:1a:89:91:5e:be:eb:bb:d6:27:2e:5b:48: b5:fb:f4:85:6c:b6:f5:ba:5e:61:f0:46:3f:99:3b: 3d:fa:64:71:67:2e:52:1b:af:64:39:c2:d2:df:6f: 50:93:21:76:79:f6:d8:cd:64:1c:d3:d6:3c:9a:b9: 51:c2:fd:e4:12:be:3b:26:01:bf:a5:3b:43:a2:b5: 47:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:36:A4:B9:59:A3:64:DC:0F:AD:1E:23:81:21:9A:39:16:9D:BF:4E X509v3 Authority Key Identifier: keyid:36:45:CD:90:E3:F4:3C:01:2D:AB:3B:F3:97:2E:86:BC:94:DD:D4:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/NkXNkOP0PAEtqzvzly6GvJTd1FQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkXNkOP0PAEtqzvzly6GvJTd1FQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/E69E92582C4A11EF91F6202DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.49.208.0/21 Signature Algorithm: sha256WithRSAEncryption 9f:bf:b5:b7:9f:e7:51:48:92:87:f3:2d:43:82:d2:b7:5b:21: de:f3:32:b3:27:60:50:34:62:46:21:b4:40:47:db:c5:93:95: 0f:4c:93:ea:c0:18:96:ca:08:21:b0:08:45:ad:3e:3e:bb:00: a7:96:11:8a:93:cc:f8:57:cc:d9:4b:2d:ba:64:b4:2c:ea:0f: f3:1f:a7:5d:d7:de:2b:4b:4e:3f:b2:e0:28:de:c8:1c:56:d4: 65:55:09:14:2d:d0:b6:03:64:13:50:58:02:a6:02:98:42:4e: f4:42:65:38:40:15:fc:a5:57:e6:1b:e8:bf:88:fb:0f:4b:72: ab:24:07:38:fd:37:df:9a:0b:14:c8:5d:e0:9f:7f:b5:09:74: 31:fb:72:6e:8a:b7:aa:3e:c4:44:9d:76:48:0a:24:cb:99:0b: db:77:91:a3:41:c4:1f:a5:75:cd:61:62:18:43:75:45:2c:3d: 8c:ba:7b:ec:98:51:e1:50:56:35:3f:56:cc:18:50:c7:fb:bd: 5a:ad:24:9b:2b:d1:26:3f:22:91:23:ed:73:39:6f:24:d6:6b: 4f:eb:bc:70:8b:53:e6:97:a6:38:eb:f7:99:da:2b:59:fa:5d: f6:22:cf:69:aa:9b:56:c0:b0:4a:09:bc:2c:b8:da:9f:ec:2e: 12:c9:99:48 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZDMUMxMTAvBgNVBAUTKDM2NDVDRDkwRTNGNDNDMDEyREFCM0JGMzk3MkU4NkJD OTREREQ0NTQwHhcNMjUwNzA1MDQ0MDI3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4YWNiYi04ZjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnOBHhVoufyTu3QV3Z6gkIE6dsnOZj5u+7a/XxbW2vLptTPyfciUOu12gUdYD aXUYMT8Xlc/MxE7z+EcKhwLk60FsXJIvUi/F3u1n1w7y57gnSzESEqPl9DpCDUuj CkFdXavigIWTK0WXMYqlNE8JzndGqRi7WhwcjhzebJXgtXuMrfalZ7V65kmkr9qm zTID2V4sQVD5sAfkS9E6VbYRw8uOLuVXBo12GzXW/mG8XAu5tG49jXIaiZFevuu7 1icuW0i1+/SFbLb1ul5h8EY/mTs9+mRxZy5SG69kOcLS329QkyF2efbYzWQc09Y8 mrlRwv3kEr47JgG/pTtDorVHkQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOY2pLlZ o2TcD60eI4EhmjkWnb9OMB8GA1UdIwQYMBaAFDZFzZDj9DwBLas785cuhryU3dRU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkMxQy8zQzE0MkIxNjU3 RkUxMUVFQUE1NTMwNjBDNEY5QUUwMi9Oa1hOa09QMFBBRXRxenZ6bHk2R3ZKVGQx RlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rWE5rT1AwUEFFdHF6dnpseTZHdkpUZDFGUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZDMUMvM0MxNDJCMTY1N0ZFMTFFRUFBNTUzMDYwQzRGOUFFMDIvRTY5RTkyNTgy QzRBMTFFRjkxRjYyMDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKMdAwDQYJKoZIhvcNAQELBQADggEBAJ+/tbef51FIkofz LUOC0rdbId7zMrMnYFA0YkYhtEBH28WTlQ9Mk+rAGJbKCCGwCEWtPj67AKeWEYqT zPhXzNlLLbpktCzqD/Mfp13X3itLTj+y4CjeyBxW1GVVCRQt0LYDZBNQWAKmAphC TvRCZThAFfylV+Yb6L+I+w9LcqskBzj9N9+aCxTIXeCff7UJdDH7cm6Kt6o+xESd dkgKJMuZC9t3kaNBxB+ldc1hYhhDdUUsPYy6e+yYUeFQVjU/VswYUMf7vVqtJJsr 0SY/IpEj7XM5byTWa0/rvHCLU+aXpjjr95naK1n6XfYiz2mqm1bAsEoJvCy42p/s LhLJmUg= -----END CERTIFICATE-----Generated at Sun Jul 20 13:30:28 2025 by rpki-client