$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C1F18634E04A11ECB5330E65C4F9AE02.roa File: C1F18634E04A11ECB5330E65C4F9AE02.roa (raw, json) Hash identifier: 0P/+x+QYRX6nRF8k45kZZCzzt9o+naNtMjdYjy/dVNs= Subject key identifier: 17:AC:78:5B:EB:E7:59:73:5F:08:E5:4E:FA:A9:C5:2D:5B:DF:ED:ED Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Certificate serial: 0668 Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C1F18634E04A11ECB5330E65C4F9AE02.roa Signing time: Wed 27 Aug 2025 01:06:00 +0000 ROA not before: Wed 27 Aug 2025 01:06:00 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 38448 IP address blocks: 202.183.146.0/24 maxlen: 24 203.146.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA, serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Validity Not Before: Aug 27 01:06:00 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68ae59f8-4940 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:0a:de:c8:82:8f:8d:d8:7b:f7:3b:07:4c:bb: 7c:5e:5b:7f:9f:ff:79:42:1d:30:51:c1:41:c7:50: cd:39:4c:67:19:d5:d6:dc:ba:25:dc:b0:3c:c9:f5: 0b:60:75:bd:d2:99:61:2f:78:00:56:18:57:e1:7f: 7c:4e:41:8e:c8:09:12:7b:89:9f:78:d9:03:6b:31: 66:72:f6:7b:f0:77:bf:c8:c9:fa:48:b2:b4:76:b2: 56:44:93:7e:42:92:e5:f7:10:92:05:d7:fd:b7:ae: 50:51:5a:cd:6b:b5:06:7d:b1:09:1a:62:d0:69:45: 87:32:0c:ad:e9:f9:33:76:9b:0f:5f:05:38:6a:34: 53:7c:b3:e5:38:9c:e9:a3:ed:01:70:94:92:5c:24: d0:4c:d2:e5:5e:4b:d7:7d:13:cf:9b:6b:0d:31:bc: 48:9d:66:c2:e1:98:5c:f9:57:fb:73:df:da:9a:40: 47:42:a7:1e:79:2a:07:ed:b4:56:e7:fd:50:4a:1b: 73:67:6e:0d:ab:7e:72:ca:01:b6:d6:5f:74:ed:fb: aa:1f:4c:48:20:c9:85:29:18:05:fb:b9:68:59:a0: 71:69:73:ef:58:11:8a:09:e7:48:33:18:ed:56:73: ce:1c:df:73:67:c5:17:85:71:ab:95:79:64:0e:56: 1a:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:AC:78:5B:EB:E7:59:73:5F:08:E5:4E:FA:A9:C5:2D:5B:DF:ED:ED X509v3 Authority Key Identifier: keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C1F18634E04A11ECB5330E65C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.183.146.0/24 203.146.204.0/24 Signature Algorithm: sha256WithRSAEncryption 33:81:0b:47:61:f5:76:13:87:64:c8:7e:c1:cf:d7:95:bd:96: f2:ce:41:d2:b7:7f:e7:22:02:d8:29:dc:98:b2:91:49:a2:76: d8:93:5f:ae:8a:09:01:ae:00:9d:93:21:02:b0:8b:04:c6:2e: 98:20:48:dc:4c:21:57:26:7b:43:69:92:56:1f:09:d1:51:b6: 4d:67:0c:94:6f:3a:17:03:4a:2f:3f:f7:40:27:69:50:1c:19: ef:82:09:a2:5f:3f:d0:f5:42:df:58:19:11:b1:44:74:ea:30: e4:06:a4:b8:98:02:8e:29:98:1c:1a:e6:7a:c5:ab:80:7d:79: 20:b9:10:fa:fd:6d:6e:ba:1c:07:7a:01:46:17:1e:af:13:5d: d2:0b:17:ea:03:4c:1b:e4:92:66:99:52:a5:6a:e4:e1:cf:0a: f0:b9:31:be:11:a2:a5:89:0c:b4:0b:af:2e:c0:52:a5:7b:4f: 46:1f:59:c6:04:79:33:ac:59:bb:e4:d7:49:e9:2a:d7:62:57: b0:18:2f:63:e9:5e:ce:aa:55:d0:6b:4f:ac:dc:e0:26:cb:02: 1b:cb:03:74:4f:3b:ac:f5:ea:9d:6e:2b:48:84:b9:5a:5a:0a: 2d:dc:17:55:94:04:1b:95:47:d4:53:87:db:1f:7d:e5:a0:fe: 17:44:92:eb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1 OTVFNjFBMTkwHhcNMjUwODI3MDEwNjAwWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlNTlmOC00OTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6AreyIKPjdh79zsHTLt8Xlt/n/95Qh0wUcFBx1DNOUxnGdXW3Lol3LA8yfUL YHW90plhL3gAVhhX4X98TkGOyAkSe4mfeNkDazFmcvZ78He/yMn6SLK0drJWRJN+ QpLl9xCSBdf9t65QUVrNa7UGfbEJGmLQaUWHMgyt6fkzdpsPXwU4ajRTfLPlOJzp o+0BcJSSXCTQTNLlXkvXfRPPm2sNMbxInWbC4Zhc+Vf7c9/amkBHQqceeSoH7bRW 5/1QShtzZ24Nq35yygG21l907fuqH0xIIMmFKRgF+7loWaBxaXPvWBGKCedIMxjt VnPOHN9zZ8UXhXGrlXlkDlYaPwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBeseFvr 51lzXwjlTvqpxS1b3+3tMB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvQzFGMTg2MzRF MDRBMTFFQ0I1MzMwRTY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKt5IDBADLkswwDQYJKoZIhvcNAQELBQADggEBADOBC0dh 9XYTh2TIfsHP15W9lvLOQdK3f+ciAtgp3JiykUmidtiTX66KCQGuAJ2TIQKwiwTG LpggSNxMIVcme0NpklYfCdFRtk1nDJRvOhcDSi8/90AnaVAcGe+CCaJfP9D1Qt9Y GRGxRHTqMOQGpLiYAo4pmBwa5nrFq4B9eSC5EPr9bW66HAd6AUYXHq8TXdILF+oD TBvkkmaZUqVq5OHPCvC5Mb4RoqWJDLQLry7AUqV7T0YfWcYEeTOsWbvk10npKtdi V7AYL2PpXs6qVdBrT6zc4CbLAhvLA3RPO6z16p1uK0iEuVpaCi3cF1WUBBuVR9RT h9sffeWg/hdEkus= -----END CERTIFICATE-----Generated at Mon Sep 8 06:17:24 2025 by rpki-client