$ rpki-client -vvf rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/91C771A2D02111EA843F372FC4F9AE02.roa File: 91C771A2D02111EA843F372FC4F9AE02.roa (raw, json) Hash identifier: 2WI4sxtYmY5FbIMN92teU/BhJO18tsufNaqCJaxaAYc= Subject key identifier: C0:BB:BF:7F:C0:89:A8:A3:CF:F5:B1:59:80:A0:B0:26:DA:2E:CF:BB Certificate issuer: /CN=A91304A9/serialNumber=580553B883DEC3DDB24F688E6C2D1BFA93C263AA Certificate serial: 0B88 Authority key identifier: 58:05:53:B8:83:DE:C3:DD:B2:4F:68:8E:6C:2D:1B:FA:93:C2:63:AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAVTuIPew92yT2iObC0b-pPCY6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/91C771A2D02111EA843F372FC4F9AE02.roa Signing time: Thu 28 Aug 2025 19:40:44 +0000 ROA not before: Thu 28 Aug 2025 19:40:44 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 198148 IP address blocks: 116.66.212.0/22 maxlen: 22 116.66.216.0/22 maxlen: 22 116.66.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/WAVTuIPew92yT2iObC0b-pPCY6o.crl rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/WAVTuIPew92yT2iObC0b-pPCY6o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAVTuIPew92yT2iObC0b-pPCY6o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 19:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2952 (0xb88) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91304A9, serialNumber=580553B883DEC3DDB24F688E6C2D1BFA93C263AA Validity Not Before: Aug 28 19:40:44 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68b0b0bc-9b67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:13:f0:22:ee:b3:9d:73:e7:6a:51:10:9e:92: 98:69:52:ea:15:09:12:0b:63:2d:a3:6b:85:71:83: f3:9b:09:59:99:db:b0:9c:17:d1:56:25:77:6d:35: 77:2d:54:2b:a7:2b:7e:be:4f:99:56:c1:e7:76:6b: 09:3b:67:03:4b:bb:54:ac:fc:79:26:02:2a:31:b0: d7:73:38:b2:3f:d8:54:a1:e5:3a:80:d8:70:2d:1f: ae:8f:79:bc:88:bd:7f:62:4c:31:16:6e:6d:62:fb: e3:91:1b:03:55:1f:63:05:84:03:24:a9:35:bc:6c: 76:f2:19:13:a4:a1:3d:38:c6:b4:8e:87:35:b7:6a: da:db:1d:e0:88:b4:67:e6:a2:dc:11:80:a4:a5:9f: 4e:01:ca:8e:5b:84:59:01:87:88:06:a2:ce:7d:5d: 3c:2c:55:fa:ff:a8:9b:2e:40:b0:0a:75:30:5b:83: 8c:49:51:5a:57:e6:00:d8:71:e0:69:22:f5:56:5c: 17:b0:56:a0:b8:1b:a8:fb:48:3c:4c:e0:93:4c:c7: 8f:d6:40:d4:cf:a0:5c:04:b9:16:67:e7:6d:00:66: 52:41:0d:eb:3d:c9:11:20:59:d2:d9:9a:35:29:aa: 53:a8:20:13:44:80:42:ad:2c:86:26:b3:09:ac:34: 8e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:BB:BF:7F:C0:89:A8:A3:CF:F5:B1:59:80:A0:B0:26:DA:2E:CF:BB X509v3 Authority Key Identifier: keyid:58:05:53:B8:83:DE:C3:DD:B2:4F:68:8E:6C:2D:1B:FA:93:C2:63:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/WAVTuIPew92yT2iObC0b-pPCY6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WAVTuIPew92yT2iObC0b-pPCY6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91304A9/A374A1B6467111EA81ABB25FC4F9AE02/91C771A2D02111EA843F372FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.66.212.0-116.66.223.255 Signature Algorithm: sha256WithRSAEncryption 8e:df:c5:a5:f6:b2:ab:c9:0c:46:0d:6d:ac:7f:86:d6:b0:79: 80:c4:9c:6c:49:cf:ce:39:ed:96:88:cb:37:12:aa:bc:b7:68: f0:28:29:c2:54:13:8c:18:cf:9a:e5:05:63:f9:ac:13:f5:7c: 1c:0b:4e:1a:26:70:07:da:8f:05:8c:a9:61:11:32:85:5a:28: 38:46:26:de:c4:64:65:30:2c:af:41:88:0d:11:9c:30:6f:0a: 7e:8b:77:b7:61:41:09:9c:46:80:ad:2a:92:ec:36:c6:32:0c: d8:a6:2d:90:20:1b:ba:92:d1:80:6d:3e:2d:8a:8a:d9:fc:23: 6b:4d:fb:4a:3e:47:a9:b7:f7:dc:87:99:82:02:70:bb:7d:c2: 1a:80:0b:53:2f:43:18:e3:5e:f9:b7:b4:b0:8b:a7:2f:f4:b7: b6:b4:2e:6a:bf:da:77:33:d3:ed:04:ad:1e:c9:da:ea:a0:8e: 0c:36:07:e3:e1:a2:e0:81:51:eb:cf:3d:ed:51:53:3a:6f:84: 61:72:29:f7:ed:36:ce:ad:60:e3:07:5a:2d:16:80:5c:c1:4d: 5a:bf:22:1d:38:8f:18:75:90:a2:c2:12:26:9c:51:b6:c5:e7: d2:f3:43:c5:e6:6d:18:cc:ae:22:21:4c:0c:9c:1a:4a:76:ee: 81:c6:5c:3e -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICC4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzA0QTkxMTAvBgNVBAUTKDU4MDU1M0I4ODNERUMzRERCMjRGNjg4RTZDMkQxQkZB OTNDMjYzQUEwHhcNMjUwODI4MTk0MDQ0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwYjBiYy05YjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xPwIu6znXPnalEQnpKYaVLqFQkSC2Mto2uFcYPzmwlZmduwnBfRViV3bTV3 LVQrpyt+vk+ZVsHndmsJO2cDS7tUrPx5JgIqMbDXcziyP9hUoeU6gNhwLR+uj3m8 iL1/YkwxFm5tYvvjkRsDVR9jBYQDJKk1vGx28hkTpKE9OMa0joc1t2ra2x3giLRn 5qLcEYCkpZ9OAcqOW4RZAYeIBqLOfV08LFX6/6ibLkCwCnUwW4OMSVFaV+YA2HHg aSL1VlwXsFaguBuo+0g8TOCTTMeP1kDUz6BcBLkWZ+dtAGZSQQ3rPckRIFnS2Zo1 KapTqCATRIBCrSyGJrMJrDSO2QIDAQABo4ICnTCCApkwHQYDVR0OBBYEFMC7v3/A iaijz/WxWYCgsCbaLs+7MB8GA1UdIwQYMBaAFFgFU7iD3sPdsk9ojmwtG/qTwmOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMDRBOS9BMzc0QTFCNjQ2 NzExMUVBODFBQkIyNUZDNEY5QUUwMi9XQVZUdUlQZXc5MnlUMmlPYkMwYi1wUENZ Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dBVlR1SVBldzkyeVQyaU9iQzBiLXBQQ1k2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzA0QTkvQTM3NEExQjY0NjcxMTFFQTgxQUJCMjVGQzRGOUFFMDIvOTFDNzcxQTJE MDIxMTFFQTg0M0YzNzJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEAnRC1AMEBXRCwDANBgkqhkiG9w0BAQsFAAOCAQEAjt/F pfayq8kMRg1trH+G1rB5gMScbEnPzjntlojLNxKqvLdo8CgpwlQTjBjPmuUFY/ms E/V8HAtOGiZwB9qPBYypYREyhVooOEYm3sRkZTAsr0GIDRGcMG8Kfot3t2FBCZxG gK0qkuw2xjIM2KYtkCAbupLRgG0+LYqK2fwja037Sj5Hqbf33IeZggJwu33CGoAL Uy9DGONe+be0sIunL/S3trQuar/adzPT7QStHsna6qCODDYH4+Gi4IFR68897VFT Om+EYXIp9+02zq1g4wdaLRaAXMFNWr8iHTiPGHWQosISJpxRtsXn0vNDxeZtGMyu IiFMDJwaSnbugcZcPg== -----END CERTIFICATE-----Generated at Tue Sep 9 06:39:26 2025 by rpki-client