$ rpki-client -vvf rpki.apnic.net/member_repository/A91D890E/8D4135FEA12911EAA0227746C4F9AE02/FDAEEFB0A12A11EAB063A548C4F9AE02.roa File: FDAEEFB0A12A11EAB063A548C4F9AE02.roa (raw, json) Hash identifier: 0cYkjMp/gtYpvp6HxvXFQpX0b09jvpiPKpMRszh/Xsc= Subject key identifier: AC:E4:C5:71:E3:E9:6B:F1:C9:A0:9C:0D:E8:D0:C1:21:5E:D0:95:DF Certificate issuer: /CN=A91D890E/serialNumber=0B022B1EA34C037C51F657FC3E0D84A3C6186822 Certificate serial: 093B Authority key identifier: 0B:02:2B:1E:A3:4C:03:7C:51:F6:57:FC:3E:0D:84:A3:C6:18:68:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CwIrHqNMA3xR9lf8Pg2Eo8YYaCI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D890E/8D4135FEA12911EAA0227746C4F9AE02/FDAEEFB0A12A11EAB063A548C4F9AE02.roa Signing time: Fri 04 Jul 2025 21:01:36 +0000 ROA not before: Fri 04 Jul 2025 21:01:36 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 23760 IP address blocks: 202.41.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D890E/8D4135FEA12911EAA0227746C4F9AE02/CwIrHqNMA3xR9lf8Pg2Eo8YYaCI.crl rsync://rpki.apnic.net/member_repository/A91D890E/8D4135FEA12911EAA0227746C4F9AE02/CwIrHqNMA3xR9lf8Pg2Eo8YYaCI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CwIrHqNMA3xR9lf8Pg2Eo8YYaCI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 20:20:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2363 (0x93b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D890E, serialNumber=0B022B1EA34C037C51F657FC3E0D84A3C6186822 Validity Not Before: Jul 4 21:01:36 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68684130-7bdf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:22:84:2c:fc:f8:74:ac:71:3e:ac:01:3a:81: 4b:6a:8d:96:25:57:57:ca:5d:c9:de:7f:49:99:cb: a1:c6:00:5b:88:37:7a:22:48:11:fe:fc:d5:3a:32: 02:bc:f3:e7:5f:e5:e9:9c:38:2f:81:22:39:65:60: 22:0e:06:f0:56:2b:b7:4c:f3:4b:06:4e:92:f1:26: e5:c0:d8:a0:e6:21:48:b9:c6:9d:33:69:46:70:65: f5:0e:a6:a9:1d:15:13:ed:f3:f4:7e:03:2f:5b:60: 76:12:24:86:dd:5a:e5:f6:50:a8:1a:ae:d6:83:8d: 2a:59:ed:90:bd:e6:db:25:af:9b:86:da:89:c3:62: 57:ac:4a:f8:12:d7:ec:01:1e:c8:64:c1:8e:98:91: 4e:0c:35:1b:8e:ed:75:55:4c:9e:ad:d0:1f:a0:69: e8:8c:07:88:f7:3d:f1:b8:e6:61:c2:ed:18:45:61: 6f:42:6c:d4:bc:70:89:0d:d1:2a:fb:e1:54:94:ac: cf:3a:dd:fb:85:a1:dc:58:0a:4e:4d:71:2c:f6:82: 3b:d9:04:5b:ea:9b:fb:fb:12:70:9e:5a:f4:b0:4a: 0c:aa:6f:cf:e6:95:ee:1d:ab:76:57:80:46:d0:8f: 37:9c:4b:58:0f:29:4b:3b:7b:04:69:08:12:9e:08: 3d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:E4:C5:71:E3:E9:6B:F1:C9:A0:9C:0D:E8:D0:C1:21:5E:D0:95:DF X509v3 Authority Key Identifier: keyid:0B:02:2B:1E:A3:4C:03:7C:51:F6:57:FC:3E:0D:84:A3:C6:18:68:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D890E/8D4135FEA12911EAA0227746C4F9AE02/CwIrHqNMA3xR9lf8Pg2Eo8YYaCI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CwIrHqNMA3xR9lf8Pg2Eo8YYaCI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D890E/8D4135FEA12911EAA0227746C4F9AE02/FDAEEFB0A12A11EAB063A548C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.41.135.0/24 Signature Algorithm: sha256WithRSAEncryption 34:a9:e2:1f:b9:30:4a:99:d0:fd:93:69:42:f2:e2:f2:41:73: e4:0c:ff:ae:00:b9:e2:8d:9c:d3:ab:1d:e1:d3:90:83:c0:f6: 4b:b3:59:bd:52:37:86:7e:fc:d5:dd:a7:9d:8b:c5:0b:4a:5a: 4f:b5:a4:c7:c6:82:22:9b:3e:10:4d:24:99:d5:5e:11:24:2e: 4a:ad:ab:81:2c:8d:a0:57:6f:c9:74:29:37:96:ec:e5:50:1d: 87:ff:64:62:20:41:d9:db:66:59:9e:45:df:95:7b:b4:fc:34: ac:e5:85:a0:48:13:4a:1d:9f:12:08:8e:fa:ce:87:b4:7f:ab: 9e:63:30:31:11:a8:60:c4:4f:60:a7:12:7a:33:2d:0b:ad:0a: bb:a6:84:33:e7:c7:c5:a5:36:99:08:ad:d8:85:5d:60:39:39: 0b:ab:5e:6e:33:be:f3:06:a6:0e:23:a2:be:2f:40:41:c2:37: fb:46:d1:b4:df:b1:f5:3b:95:c6:84:4a:82:97:4b:58:3f:93: 8f:aa:54:8c:a1:17:d7:29:dd:ba:ab:01:2c:32:43:07:ef:50: c5:21:78:e7:e3:ff:af:8c:77:b4:df:fe:74:d2:51:8d:53:f9: e0:15:c0:63:31:fc:f2:98:a6:c1:da:d4:03:2a:19:fe:08:6c: 7e:eb:e6:28 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCTswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg5MEUxMTAvBgNVBAUTKDBCMDIyQjFFQTM0QzAzN0M1MUY2NTdGQzNFMEQ4NEEz QzYxODY4MjIwHhcNMjUwNzA0MjEwMTM2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4NDEzMC03YmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSKELPz4dKxxPqwBOoFLao2WJVdXyl3J3n9JmcuhxgBbiDd6IkgR/vzVOjIC vPPnX+XpnDgvgSI5ZWAiDgbwViu3TPNLBk6S8SblwNig5iFIucadM2lGcGX1Dqap HRUT7fP0fgMvW2B2EiSG3Vrl9lCoGq7Wg40qWe2QvebbJa+bhtqJw2JXrEr4Etfs AR7IZMGOmJFODDUbju11VUyerdAfoGnojAeI9z3xuOZhwu0YRWFvQmzUvHCJDdEq ++FUlKzPOt37haHcWApOTXEs9oI72QRb6pv7+xJwnlr0sEoMqm/P5pXuHat2V4BG 0I83nEtYDylLO3sEaQgSngg9CQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKzkxXHj 6WvxyaCcDejQwSFe0JXfMB8GA1UdIwQYMBaAFAsCKx6jTAN8UfZX/D4NhKPGGGgi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODkwRS84RDQxMzVGRUEx MjkxMUVBQTAyMjc3NDZDNEY5QUUwMi9Dd0lySHFOTUEzeFI5bGY4UGcyRW84WVlh Q0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0N3SXJIcU5NQTN4UjlsZjhQZzJFbzhZWWFDSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg5MEUvOEQ0MTM1RkVBMTI5MTFFQUEwMjI3NzQ2QzRGOUFFMDIvRkRBRUVGQjBB MTJBMTFFQUIwNjNBNTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKKYcwDQYJKoZIhvcNAQELBQADggEBADSp4h+5MEqZ0P2T aULy4vJBc+QM/64AueKNnNOrHeHTkIPA9kuzWb1SN4Z+/NXdp52LxQtKWk+1pMfG giKbPhBNJJnVXhEkLkqtq4EsjaBXb8l0KTeW7OVQHYf/ZGIgQdnbZlmeRd+Ve7T8 NKzlhaBIE0odnxIIjvrOh7R/q55jMDERqGDET2CnEnozLQutCrumhDPnx8WlNpkI rdiFXWA5OQurXm4zvvMGpg4jor4vQEHCN/tG0bTfsfU7lcaESoKXS1g/k4+qVIyh F9cp3bqrASwyQwfvUMUheOfj/6+Md7Tf/nTSUY1T+eAVwGMx/PKYpsHa1AMqGf4I bH7r5ig= -----END CERTIFICATE-----Generated at Mon Jul 21 06:18:36 2025 by rpki-client