$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C39CEEAAE17C11EC93AB7473C4F9AE02.roa File: C39CEEAAE17C11EC93AB7473C4F9AE02.roa (raw, json) Hash identifier: XqwL3z33p9VxpGMUn9kD7UNN5wyeKV+lUpwT2wn+X6k= Subject key identifier: AE:E5:71:8E:D1:C6:AA:EE:48:8B:E5:94:1A:97:51:81:36:DC:1E:35 Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Certificate serial: 0649 Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C39CEEAAE17C11EC93AB7473C4F9AE02.roa Signing time: Wed 27 Aug 2025 01:05:35 +0000 ROA not before: Wed 27 Aug 2025 01:05:35 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133481 IP address blocks: 203.170.208.0/24 maxlen: 24 203.170.209.0/24 maxlen: 24 203.170.212.0/24 maxlen: 24 203.170.213.0/24 maxlen: 24 203.170.216.0/24 maxlen: 24 203.170.217.0/24 maxlen: 24 203.170.218.0/24 maxlen: 24 203.170.219.0/24 maxlen: 24 203.170.220.0/24 maxlen: 24 203.170.221.0/24 maxlen: 24 203.170.222.0/24 maxlen: 24 203.170.223.0/24 maxlen: 24 203.170.240.0/24 maxlen: 24 203.170.241.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 00:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1609 (0x649) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA, serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Validity Not Before: Aug 27 01:05:35 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68ae59df-94b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:62:9b:8f:df:27:2e:2f:df:fa:2c:a5:1d:d5: 12:72:5e:7d:1f:69:2c:d9:de:c3:cb:bc:92:78:fd: 18:93:69:10:ff:11:b2:64:bc:30:11:c1:cb:19:50: 76:16:b3:89:23:e9:f5:b6:64:9a:2f:33:06:3b:cf: d2:72:c5:bf:39:a4:01:03:e3:7c:1b:ec:c8:e8:42: 2e:2b:cc:e5:64:19:93:75:38:e1:a2:52:d1:79:3c: e3:be:d1:57:70:0d:39:39:04:88:f3:02:32:1d:42: 2e:c5:35:84:6d:8e:46:da:1a:c4:18:eb:c4:ba:66: d2:16:33:cb:93:2a:c0:7f:d2:71:fa:56:65:c4:8a: 7e:f3:f9:96:63:7d:42:c5:9f:42:b4:56:f9:ab:bd: 64:a6:58:63:e2:c4:24:93:4e:a3:a8:33:23:22:cc: 1f:c5:bb:53:57:83:45:f5:2d:10:0f:06:ea:ba:a4: 77:db:46:5c:86:a1:08:d0:71:89:2e:f8:37:fa:82: ef:08:30:fc:21:6c:e8:55:f5:00:7c:41:70:a3:41: 84:6e:c6:72:0a:17:7f:da:8e:65:d9:36:2a:c2:4f: c0:42:53:c1:2e:b1:0c:4d:8f:42:d5:bd:c1:bc:b5: 86:ed:e8:97:a7:e1:bf:58:72:9c:76:e2:e8:4b:43: 97:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:E5:71:8E:D1:C6:AA:EE:48:8B:E5:94:1A:97:51:81:36:DC:1E:35 X509v3 Authority Key Identifier: keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/C39CEEAAE17C11EC93AB7473C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.170.208.0/23 203.170.212.0/23 203.170.216.0/21 203.170.240.0/23 Signature Algorithm: sha256WithRSAEncryption 26:44:0d:8d:cf:be:32:8c:55:f0:30:00:63:43:f6:c8:83:0b: 8a:48:8c:df:ed:93:aa:67:fe:d9:fd:91:41:fc:f7:fc:85:8c: 62:01:46:66:0a:47:2b:e3:ae:f2:be:2d:f2:6a:58:51:6c:5e: ec:28:8c:e4:dc:85:97:32:a8:05:53:14:91:a8:21:00:cb:1f: 01:88:42:c1:75:8e:19:d2:84:9e:5d:a7:ab:02:06:8a:40:b5: 5f:11:4a:61:93:4f:62:11:68:f3:30:e0:1b:05:1c:77:26:1e: b7:d0:02:dc:04:5c:98:bd:ca:9f:f8:83:d7:91:83:b5:4f:60: 82:3c:17:b4:ff:97:7e:6b:4a:8c:3f:65:79:b7:e6:7e:8e:7c: 56:c8:b9:08:d0:2a:16:7b:85:57:b9:15:d6:cc:32:77:f6:28: 21:10:bb:b1:23:19:9b:5a:f4:3b:b2:a7:3d:15:c5:45:14:8d: e9:1a:12:d0:51:d4:c7:4b:a4:bf:7e:39:ab:e3:f1:f7:74:5f: 7f:e5:e3:da:0e:ab:3c:b9:9c:ef:35:a1:bc:6e:66:1a:c6:88: 41:e2:4f:f7:e3:75:fb:ba:92:38:07:59:6a:62:b8:2a:ae:44: b3:59:ea:91:03:e2:7a:5f:b4:3b:e1:f4:d9:b2:22:1a:24:50: ca:1c:d3:ff -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBkkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1 OTVFNjFBMTkwHhcNMjUwODI3MDEwNTM1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFlNTlkZi05NGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp2Kbj98nLi/f+iylHdUScl59H2ks2d7Dy7ySeP0Yk2kQ/xGyZLwwEcHLGVB2 FrOJI+n1tmSaLzMGO8/ScsW/OaQBA+N8G+zI6EIuK8zlZBmTdTjholLReTzjvtFX cA05OQSI8wIyHUIuxTWEbY5G2hrEGOvEumbSFjPLkyrAf9Jx+lZlxIp+8/mWY31C xZ9CtFb5q71kplhj4sQkk06jqDMjIswfxbtTV4NF9S0QDwbquqR320ZchqEI0HGJ Lvg3+oLvCDD8IWzoVfUAfEFwo0GEbsZyChd/2o5l2TYqwk/AQlPBLrEMTY9C1b3B vLWG7eiXp+G/WHKcduLoS0OXUQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFK7lcY7R xqruSIvllBqXUYE23B41MB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvQzM5Q0VFQUFF MTdDMTFFQzkzQUI3NDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAHLqtADBAHLqtQDBAPLqtgDBAHLqvAwDQYJKoZIhvcNAQEL BQADggEBACZEDY3PvjKMVfAwAGND9siDC4pIjN/tk6pn/tn9kUH89/yFjGIBRmYK RyvjrvK+LfJqWFFsXuwojOTchZcyqAVTFJGoIQDLHwGIQsF1jhnShJ5dp6sCBopA tV8RSmGTT2IRaPMw4BsFHHcmHrfQAtwEXJi9yp/4g9eRg7VPYII8F7T/l35rSow/ ZXm35n6OfFbIuQjQKhZ7hVe5FdbMMnf2KCEQu7EjGZta9Duypz0VxUUUjekaEtBR 1MdLpL9+Oavj8fd0X3/l49oOqzy5nO81obxuZhrGiEHiT/fjdfu6kjgHWWpiuCqu RLNZ6pED4npftDvh9NmyIhokUMoc0/8= -----END CERTIFICATE-----Generated at Mon Sep 8 06:17:32 2025 by rpki-client