$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/D69C342850E311F098697E1BC4F9AE02.roa File: D69C342850E311F098697E1BC4F9AE02.roa (raw, json) Hash identifier: BsgTCGS6ZY9wo4DRbXqJWgsBM56PxcgPxCxnw/1lRZA= Subject key identifier: EC:56:08:12:6D:B4:C3:58:9B:56:D9:39:82:84:6F:22:8C:DD:B5:4C Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: A7 Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/D69C342850E311F098697E1BC4F9AE02.roa Signing time: Tue 24 Jun 2025 10:13:14 +0000 ROA not before: Tue 24 Jun 2025 10:13:14 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 26658 IP address blocks: 202.88.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 06:16:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 167 (0xa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Jun 24 10:13:14 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=685a7a39-ba8e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:8a:c2:d5:8a:6c:cc:15:6e:12:e5:e4:bd:4a: 59:6d:4d:a7:8e:2f:a2:d5:df:d1:c7:53:fb:05:b7: 7f:b4:7d:76:fc:45:f4:91:5b:a4:c3:43:ce:9d:ee: 4d:27:7c:a9:b1:a4:2e:8e:a9:44:c3:fc:42:15:0a: a9:e3:ba:f3:1a:f5:b1:54:0e:7c:b8:cc:8e:79:0e: a0:e3:a1:ff:a7:f7:da:fb:32:76:20:b6:59:8c:16: 00:13:20:27:5d:9e:4a:d3:99:06:9d:22:2c:3a:b1: ae:c8:b4:50:0f:b3:a3:68:48:57:b0:26:10:62:8a: 3c:b9:78:9d:0f:5e:88:4d:fc:e5:f4:c1:f8:54:55: c8:ec:4d:94:59:a7:91:03:b3:77:93:25:b3:6a:be: 2e:ce:dc:aa:18:aa:ec:12:34:a2:92:18:1e:f8:57: 64:ab:93:35:bb:e4:2f:6b:08:9e:2e:f9:e0:16:bb: 67:21:f1:6a:70:15:09:52:ca:7d:7b:93:27:e9:ce: 54:f9:c2:97:d2:b1:98:7f:79:89:d6:0f:62:3a:6f: 97:ea:3f:90:4e:f4:8b:25:83:0c:da:de:4c:55:97: 23:58:0e:87:c8:32:42:f4:21:5d:fd:ab:0f:08:1c: ea:82:c3:72:74:c5:45:d7:63:49:a7:a9:ad:76:ac: 7a:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:56:08:12:6D:B4:C3:58:9B:56:D9:39:82:84:6F:22:8C:DD:B5:4C X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/D69C342850E311F098697E1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.88.36.0/22 Signature Algorithm: sha256WithRSAEncryption 12:73:e9:c8:41:dd:20:ea:8a:d3:b3:f1:77:7b:50:cb:00:5d: b7:4d:90:c8:22:af:01:c0:3d:36:6b:8b:3d:14:96:10:0d:94: 24:9a:39:2e:fb:25:43:5d:4f:9d:ae:67:50:57:e9:46:44:68: dc:b9:5a:d7:bb:96:32:70:82:d1:19:ba:8d:7e:4d:19:42:15: fa:cf:67:0c:20:74:82:e2:74:5b:b7:41:f2:f2:38:8e:77:e3: b3:cd:e9:ad:85:5b:bf:a1:0a:9a:ab:7b:52:b6:96:52:7f:c7: 16:69:02:43:8d:fc:8f:32:21:b6:da:ee:05:ce:af:58:82:a3: bb:3f:3e:73:96:54:18:c4:2e:fd:90:26:3b:fc:47:40:04:3e: e6:c6:99:f8:03:44:9a:63:f1:34:bb:26:a3:74:e6:cf:bc:ae: b8:bc:07:95:a1:09:cb:6a:cb:95:92:12:c9:48:8f:39:b2:02: ab:35:4c:60:22:f8:c9:b7:f4:4d:81:f8:74:ee:48:be:a5:a7: c3:bc:7c:6d:2b:2e:c7:b0:20:b5:fe:49:3b:5a:16:70:3d:ec: b8:e5:61:95:c4:9a:fa:3f:66:c0:93:71:59:1b:88:76:30:c1: 9a:87:c6:39:87:f8:3c:54:9c:28:64:5e:19:58:a3:fa:78:04: 3a:67:33:ea -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjUwNjI0MTAxMzE0WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVhN2EzOS1iYThlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3orC1YpszBVuEuXkvUpZbU2nji+i1d/Rx1P7Bbd/tH12/EX0kVukw0POne5N J3ypsaQujqlEw/xCFQqp47rzGvWxVA58uMyOeQ6g46H/p/fa+zJ2ILZZjBYAEyAn XZ5K05kGnSIsOrGuyLRQD7OjaEhXsCYQYoo8uXidD16ITfzl9MH4VFXI7E2UWaeR A7N3kyWzar4uztyqGKrsEjSikhge+Fdkq5M1u+QvawieLvngFrtnIfFqcBUJUsp9 e5Mn6c5U+cKX0rGYf3mJ1g9iOm+X6j+QTvSLJYMM2t5MVZcjWA6HyDJC9CFd/asP CBzqgsNydMVF12NJp6mtdqx6UwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOxWCBJt tMNYm1bZOYKEbyKM3bVMMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgyNEEvNEFERjMzRkM1QjlBMTFFRjgzMDdGNTQwQzRGOUFFMDIvRDY5QzM0Mjg1 MEUzMTFGMDk4Njk3RTFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKWCQwDQYJKoZIhvcNAQELBQADggEBABJz6chB3SDqitOz 8Xd7UMsAXbdNkMgirwHAPTZriz0UlhANlCSaOS77JUNdT52uZ1BX6UZEaNy5Wte7 ljJwgtEZuo1+TRlCFfrPZwwgdILidFu3QfLyOI5347PN6a2FW7+hCpqre1K2llJ/ xxZpAkON/I8yIbba7gXOr1iCo7s/PnOWVBjELv2QJjv8R0AEPubGmfgDRJpj8TS7 JqN05s+8rri8B5WhCctqy5WSEslIjzmyAqs1TGAi+Mm39E2B+HTuSL6lp8O8fG0r LsewILX+STtaFnA97LjlYZXEmvo/ZsCTcVkbiHYwwZqHxjmH+DxUnChkXhlYo/p4 BDpnM+o= -----END CERTIFICATE-----Generated at Sun Jul 20 11:26:39 2025 by rpki-client