$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/7FAD5996DF1011ECA2548C86C4F9AE02.roa File: 7FAD5996DF1011ECA2548C86C4F9AE02.roa (raw, json) Hash identifier: MmXo6Tmr/kdsaqjlB/7o82ZBaubdrF3GIsKeYuv7+wM= Subject key identifier: 29:C5:D5:19:CB:1F:B8:A6:AC:6E:6B:01:F6:EC:C9:23:58:E6:D0:98 Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Certificate serial: 0678 Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/7FAD5996DF1011ECA2548C86C4F9AE02.roa Signing time: Wed 27 Aug 2025 01:06:16 +0000 ROA not before: Wed 27 Aug 2025 01:06:16 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 56112 IP address blocks: 58.137.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1656 (0x678) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA, serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Validity Not Before: Aug 27 01:06:16 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68ae5a08-6ff7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:81:a1:89:15:cc:9e:6b:86:df:a3:03:6e:ce: 11:ae:bb:03:a7:80:37:8d:11:22:11:a0:74:4d:95: f9:54:cd:17:8d:d1:74:90:0e:f3:ee:ef:25:c1:98: 6e:e2:20:07:58:f2:31:51:7f:0d:94:c6:7d:80:34: 9c:a2:86:bc:f5:22:bc:d9:c0:4c:86:a1:c6:35:2e: f7:39:dc:44:11:48:43:f8:d4:2e:a1:bd:96:e5:46: 2b:21:af:a9:ad:d9:bb:94:54:a6:ce:a9:08:fc:a9: bd:83:6d:ac:8f:ad:7a:23:40:91:04:54:42:e5:a8: b4:27:c4:9d:65:34:58:4b:a9:8e:dd:24:44:41:f6: 39:3f:af:4d:02:c1:f6:72:b4:ea:ac:a0:30:54:13: ec:6e:b2:d5:aa:1c:95:d4:f8:55:f3:ee:43:2a:ca: 24:a1:f8:37:e7:7f:ed:b0:2a:1a:2f:55:2c:43:d0: 9c:a9:86:a9:5a:d5:cf:56:1c:03:b8:d3:37:ad:b8: 4e:e8:a1:3a:67:a8:7b:4a:2c:9d:e0:a7:ec:03:36: 73:73:0f:96:d5:b4:5d:e4:8a:c0:b6:b5:e8:5f:ad: ba:b4:26:6c:dc:69:0a:5e:ed:02:42:b0:eb:88:c0: e5:f8:fb:f9:c4:2c:a7:63:bf:8b:d9:73:4b:21:b5: 00:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:C5:D5:19:CB:1F:B8:A6:AC:6E:6B:01:F6:EC:C9:23:58:E6:D0:98 X509v3 Authority Key Identifier: keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/7FAD5996DF1011ECA2548C86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.137.96.0/24 Signature Algorithm: sha256WithRSAEncryption 86:de:f3:62:56:ff:d5:ab:01:58:1f:6f:ed:76:57:fe:ec:cb: 3e:cf:15:fa:2d:d6:f1:a4:ed:10:eb:3b:c3:8b:db:f2:2a:dd: 23:17:a0:30:df:78:60:b9:c4:87:aa:66:41:83:78:53:c7:66: 05:62:8f:78:4c:37:bc:03:e3:7b:76:e8:f4:85:5f:52:37:cc: 0f:fb:cd:8d:74:c3:0b:27:99:e5:89:fd:e1:3a:a2:ec:39:31: 0d:e8:19:68:3c:ee:eb:33:20:99:cb:13:a8:0b:7f:97:71:7b: 46:f5:d7:b1:76:bf:c6:c7:2a:9d:08:51:05:0f:64:78:33:29: 2c:75:64:e1:8c:6e:ae:2b:d2:a8:1f:2c:8b:80:13:64:fa:9a: 31:bf:eb:c7:cd:6a:66:9e:a8:c8:f7:58:b6:85:95:b0:57:fa: 48:03:d4:65:e6:0d:9b:4a:c3:0e:03:f2:e4:0e:ac:4d:39:e4: 7d:45:bb:aa:c9:89:29:53:69:11:1f:03:07:ae:47:e5:13:fb: 5d:3c:96:10:e0:1a:dc:8c:16:eb:ff:1b:a9:26:4b:6f:5f:de: cb:27:6c:05:7f:da:15:10:9f:63:38:a9:cb:7c:72:bc:0d:13: c6:3c:77:cf:6b:6a:87:7c:5b:3a:91:ca:fe:81:1c:65:b2:70: 27:c6:42:d6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBngwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1 OTVFNjFBMTkwHhcNMjUwODI3MDEwNjE2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlNWEwOC02ZmY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAloGhiRXMnmuG36MDbs4RrrsDp4A3jREiEaB0TZX5VM0XjdF0kA7z7u8lwZhu 4iAHWPIxUX8NlMZ9gDScooa89SK82cBMhqHGNS73OdxEEUhD+NQuob2W5UYrIa+p rdm7lFSmzqkI/Km9g22sj616I0CRBFRC5ai0J8SdZTRYS6mO3SREQfY5P69NAsH2 crTqrKAwVBPsbrLVqhyV1PhV8+5DKsokofg353/tsCoaL1UsQ9CcqYapWtXPVhwD uNM3rbhO6KE6Z6h7Siyd4KfsAzZzcw+W1bRd5IrAtrXoX626tCZs3GkKXu0CQrDr iMDl+Pv5xCynY7+L2XNLIbUAXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCnF1RnL H7imrG5rAfbsySNY5tCYMB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvN0ZBRDU5OTZE RjEwMTFFQ0EyNTQ4Qzg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6iWAwDQYJKoZIhvcNAQELBQADggEBAIbe82JW/9WrAVgf b+12V/7syz7PFfot1vGk7RDrO8OL2/Iq3SMXoDDfeGC5xIeqZkGDeFPHZgVij3hM N7wD43t26PSFX1I3zA/7zY10wwsnmeWJ/eE6ouw5MQ3oGWg87uszIJnLE6gLf5dx e0b117F2v8bHKp0IUQUPZHgzKSx1ZOGMbq4r0qgfLIuAE2T6mjG/68fNamaeqMj3 WLaFlbBX+kgD1GXmDZtKww4D8uQOrE055H1Fu6rJiSlTaREfAweuR+UT+108lhDg GtyMFuv/G6kmS29f3ssnbAV/2hUQn2M4qct8crwNE8Y8d89raod8WzqRyv6BHGWy cCfGQtY= -----END CERTIFICATE-----Generated at Mon Sep 8 06:17:33 2025 by rpki-client