$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/64A4C4A0DF1911EC8F85991EC4F9AE02.roa File: 64A4C4A0DF1911EC8F85991EC4F9AE02.roa (raw, json) Hash identifier: 2KxV6FwpiI2dHtdnwSwLQormN76GuR6OHCIFe0S9edM= Subject key identifier: A2:DD:26:57:24:D0:00:11:73:72:06:51:45:32:62:19:75:5A:40:9C Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Certificate serial: 0650 Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/64A4C4A0DF1911EC8F85991EC4F9AE02.roa Signing time: Wed 27 Aug 2025 01:05:41 +0000 ROA not before: Wed 27 Aug 2025 01:05:41 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135620 IP address blocks: 58.137.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1616 (0x650) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA, serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Validity Not Before: Aug 27 01:05:41 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68ae59e4-12ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cb:af:b8:d3:60:de:d5:d3:53:83:67:61:00: a5:7a:3f:3c:19:53:d1:14:81:a2:aa:54:0d:cf:63: 9f:8b:84:83:e3:cb:bd:1b:89:f3:0a:47:c9:de:18: e3:9b:3a:fc:13:d8:aa:91:63:73:a6:a4:2e:4e:ea: 13:85:0a:eb:80:54:e7:65:48:c2:87:49:19:19:38: 22:66:28:af:45:7f:be:62:53:f1:96:73:52:f7:87: 06:78:d5:c6:98:0b:92:44:5a:20:16:db:75:e5:2b: f1:50:4a:bb:5f:8f:a4:45:e6:f5:84:7a:21:6d:be: a2:1c:dd:22:e8:a5:0c:25:5e:0d:75:cb:d7:4f:36: ae:f3:48:59:f2:50:9b:5a:0e:a6:00:fa:e1:d7:1d: 03:86:40:47:0a:09:b4:41:a2:f1:72:09:3f:07:9b: 4a:2f:48:7b:c3:2a:a6:df:0d:c4:ca:5c:6c:44:cb: 7b:8b:f3:a4:12:be:6e:8e:13:cb:2d:f8:8a:77:62: 5e:1b:23:38:f9:f8:2b:d0:3f:c0:04:b6:c6:25:f4: ca:26:a6:e3:af:fa:4e:79:f9:44:5e:9c:f3:71:29: b2:7b:33:42:df:71:4e:9c:b5:ab:11:95:fb:c2:95: 17:a9:ea:ab:51:6b:e0:7d:f0:50:f6:9b:1a:a7:87: 14:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:DD:26:57:24:D0:00:11:73:72:06:51:45:32:62:19:75:5A:40:9C X509v3 Authority Key Identifier: keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/64A4C4A0DF1911EC8F85991EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.137.166.0/24 Signature Algorithm: sha256WithRSAEncryption 33:96:af:a0:c1:76:d0:2d:73:b8:b3:1d:02:11:47:3e:cd:18: 20:9c:c5:6c:b8:02:36:3d:e8:e8:d5:71:f9:4e:80:35:ff:ea: 63:00:e3:d5:50:51:a8:24:15:71:b2:00:6e:95:a2:f1:f0:b3: d2:67:5f:37:17:7d:42:39:47:16:d9:82:a7:24:a8:6e:56:e4: c9:c8:47:f9:7c:44:90:9e:21:a3:ff:1e:02:47:bb:64:54:48: ca:53:88:8b:96:70:fa:8a:6a:4c:62:5c:3c:f1:ef:2b:c6:07: f6:1b:7b:28:58:bf:49:8e:f1:d4:0d:26:d4:d8:08:8b:55:1b: a6:fa:c7:0d:ab:29:9d:73:5a:02:cb:4a:5d:18:51:68:4c:cb: 76:9e:40:da:eb:db:b3:d6:cc:d7:af:fd:32:39:3b:70:47:d4: 25:ca:44:20:3d:6e:0e:a6:2c:c7:ae:b3:62:74:9a:d2:62:d9: 1e:eb:a6:e4:82:ae:9a:dd:43:2a:8b:68:af:03:f7:37:2e:04: c7:bf:7f:3f:ca:94:77:14:78:90:42:20:41:96:5e:77:d0:03: 38:68:1f:22:dc:a2:8f:7b:f7:dc:bd:4e:bb:10:06:70:8c:1a: c3:c6:2a:7a:c0:57:1b:43:1d:e9:38:db:f3:b8:ac:f4:33:78: 89:ea:bd:ee -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBlAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1 OTVFNjFBMTkwHhcNMjUwODI3MDEwNTQxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlNTllNC0xMmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr8uvuNNg3tXTU4NnYQClej88GVPRFIGiqlQNz2Ofi4SD48u9G4nzCkfJ3hjj mzr8E9iqkWNzpqQuTuoThQrrgFTnZUjCh0kZGTgiZiivRX++YlPxlnNS94cGeNXG mAuSRFogFtt15SvxUEq7X4+kReb1hHohbb6iHN0i6KUMJV4NdcvXTzau80hZ8lCb Wg6mAPrh1x0DhkBHCgm0QaLxcgk/B5tKL0h7wyqm3w3EylxsRMt7i/OkEr5ujhPL LfiKd2JeGyM4+fgr0D/ABLbGJfTKJqbjr/pOeflEXpzzcSmyezNC33FOnLWrEZX7 wpUXqeqrUWvgffBQ9psap4cUCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKLdJlck 0AARc3IGUUUyYhl1WkCcMB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvNjRBNEM0QTBE RjE5MTFFQzhGODU5OTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6iaYwDQYJKoZIhvcNAQELBQADggEBADOWr6DBdtAtc7iz HQIRRz7NGCCcxWy4AjY96OjVcflOgDX/6mMA49VQUagkFXGyAG6VovHws9JnXzcX fUI5RxbZgqckqG5W5MnIR/l8RJCeIaP/HgJHu2RUSMpTiIuWcPqKakxiXDzx7yvG B/YbeyhYv0mO8dQNJtTYCItVG6b6xw2rKZ1zWgLLSl0YUWhMy3aeQNrr27PWzNev /TI5O3BH1CXKRCA9bg6mLMeus2J0mtJi2R7rpuSCrprdQyqLaK8D9zcuBMe/fz/K lHcUeJBCIEGWXnfQAzhoHyLcoo9799y9TrsQBnCMGsPGKnrAVxtDHek42/O4rPQz eInqve4= -----END CERTIFICATE-----Generated at Mon Sep 8 06:17:36 2025 by rpki-client