$ rpki-client -vvf rpki.apnic.net/member_repository/A91547EC/256357C887DD11F0B74CFE76C4F9AE02/7CB1102487DD11F0A89FB377C4F9AE02.roa File: 7CB1102487DD11F0A89FB377C4F9AE02.roa (raw, json) Hash identifier: vMZkY4LJvSskuTqDy/+VGXHXuUJS0EC4VIR/FgkiiB0= Subject key identifier: 8C:97:21:A4:14:BC:D4:39:F5:2D:4E:7B:83:F6:B6:60:3D:B6:B1:81 Certificate issuer: /CN=A91547EC/serialNumber=0812A09662F0B3E34F2B5A51C33E8E92703E4369 Certificate serial: 02 Authority key identifier: 08:12:A0:96:62:F0:B3:E3:4F:2B:5A:51:C3:3E:8E:92:70:3E:43:69 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CBKglmLws-NPK1pRwz6OknA-Q2k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91547EC/256357C887DD11F0B74CFE76C4F9AE02/7CB1102487DD11F0A89FB377C4F9AE02.roa Signing time: Tue 02 Sep 2025 09:16:20 +0000 ROA not before: Tue 02 Sep 2025 09:16:20 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 18055 IP address blocks: 192.108.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91547EC/256357C887DD11F0B74CFE76C4F9AE02/CBKglmLws-NPK1pRwz6OknA-Q2k.crl rsync://rpki.apnic.net/member_repository/A91547EC/256357C887DD11F0B74CFE76C4F9AE02/CBKglmLws-NPK1pRwz6OknA-Q2k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CBKglmLws-NPK1pRwz6OknA-Q2k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 08:40:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91547EC, serialNumber=0812A09662F0B3E34F2B5A51C33E8E92703E4369 Validity Not Before: Sep 2 09:16:20 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68b6b5e4-2bbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6a:47:e6:29:80:95:32:fd:29:b6:fb:4a:07: b8:d5:6b:b9:a4:fd:c3:bf:4d:72:df:5d:30:04:12: b2:c3:4b:3f:3f:30:77:42:49:9f:db:0e:ed:55:ee: 3f:31:b5:95:04:30:8d:61:e4:ad:87:f0:c2:98:ef: 07:de:d5:f6:b3:5c:4a:04:60:17:30:26:74:a8:08: 7a:ff:d2:f6:12:5c:0b:72:48:00:4c:92:ea:20:69: bd:7e:87:06:5a:1f:1b:13:2e:af:8b:56:a0:76:8f: 74:c9:ea:25:35:34:95:7b:d5:02:be:a8:18:aa:5b: 40:2f:9a:d4:bc:93:4b:55:02:2b:fe:4e:a1:02:8d: 27:06:6f:5d:e6:b1:f8:43:17:ac:d8:1a:81:ac:f8: 3b:d1:eb:de:e3:04:d2:7a:83:e2:ae:cf:07:ad:44: bb:35:b1:73:15:62:11:73:db:fe:d5:54:37:cf:3f: 6b:3d:8f:8c:c3:80:96:1e:9a:a9:02:40:be:27:3f: c1:94:f0:d6:20:46:76:c0:b7:86:2d:3d:61:59:1c: e9:87:88:1a:0e:b2:55:7a:1f:1a:98:c2:71:b9:47: 46:39:7f:28:14:77:37:64:6e:fd:c0:2e:47:5d:99: 41:5f:36:e2:e5:ba:74:71:9e:6a:65:7b:09:bd:b4: b4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:97:21:A4:14:BC:D4:39:F5:2D:4E:7B:83:F6:B6:60:3D:B6:B1:81 X509v3 Authority Key Identifier: keyid:08:12:A0:96:62:F0:B3:E3:4F:2B:5A:51:C3:3E:8E:92:70:3E:43:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91547EC/256357C887DD11F0B74CFE76C4F9AE02/CBKglmLws-NPK1pRwz6OknA-Q2k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CBKglmLws-NPK1pRwz6OknA-Q2k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91547EC/256357C887DD11F0B74CFE76C4F9AE02/7CB1102487DD11F0A89FB377C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.108.99.0/24 Signature Algorithm: sha256WithRSAEncryption 86:d5:be:b2:f6:fa:ca:7d:b1:6c:1f:e9:7c:bf:a6:a7:10:05: a4:9b:10:bf:69:3a:fc:9a:e2:eb:61:f2:a0:a3:1c:c2:86:af: 9d:bf:30:05:a7:02:f9:d9:03:12:5b:30:ec:3a:7e:27:dc:f9: 23:ec:e1:ed:c4:a2:5f:0d:7b:fc:1e:2b:14:a7:05:38:e9:06: d6:03:04:14:11:45:2a:07:59:89:5f:9d:8d:75:ce:b4:84:2e: 1f:ff:b7:26:62:e5:6c:5d:ab:6c:4c:ae:71:b8:ef:d0:e0:c1: 33:90:44:3e:ab:48:1a:42:b9:4d:f9:1d:3e:43:bf:5a:28:8c: f4:89:9f:1c:fe:2c:39:d1:40:dd:aa:30:e4:65:72:2b:f2:44: 83:3e:aa:ad:d3:16:c3:49:7d:11:52:44:59:01:90:46:28:49: 7b:98:a9:cb:c7:a2:8f:f3:ee:66:d9:0a:e2:1e:ea:c5:4a:ee: 9a:97:d6:ff:78:28:b5:2a:0f:18:45:d6:e2:46:fd:b8:f3:86: f1:52:06:4f:47:88:2b:78:85:9c:2c:fa:08:f1:15:81:95:1b: ee:fe:9a:e8:e8:1b:f8:1a:8b:e4:aa:78:97:32:e1:48:30:bc: 9d:d0:95:d1:9a:02:df:8e:5d:1a:6d:09:f4:bf:f4:86:5a:93: 6d:88:14:b3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NDdFQzExMC8GA1UEBRMoMDgxMkEwOTY2MkYwQjNFMzRGMkI1QTUxQzMzRThFOTI3 MDNFNDM2OTAeFw0yNTA5MDIwOTE2MjBaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YjZiNWU0LTJiYmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGakfmKYCVMv0ptvtKB7jVa7mk/cO/TXLfXTAEErLDSz8/MHdCSZ/bDu1V7j8x tZUEMI1h5K2H8MKY7wfe1fazXEoEYBcwJnSoCHr/0vYSXAtySABMkuogab1+hwZa HxsTLq+LVqB2j3TJ6iU1NJV71QK+qBiqW0AvmtS8k0tVAiv+TqECjScGb13msfhD F6zYGoGs+DvR697jBNJ6g+KuzwetRLs1sXMVYhFz2/7VVDfPP2s9j4zDgJYemqkC QL4nP8GU8NYgRnbAt4YtPWFZHOmHiBoOslV6HxqYwnG5R0Y5fygUdzdkbv3ALkdd mUFfNuLlunRxnmplewm9tLRzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUjJchpBS8 1Dn1LU57g/a2YD22sYEwHwYDVR0jBBgwFoAUCBKglmLws+NPK1pRwz6OknA+Q2kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU0N0VDLzI1NjM1N0M4ODdE RDExRjBCNzRDRkU3NkM0RjlBRTAyL0NCS2dsbUx3cy1OUEsxcFJ3ejZPa25BLVEy ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvQ0JLZ2xtTHdzLU5QSzFwUnd6Nk9rbkEtUTJrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NDdFQy8yNTYzNTdDODg3REQxMUYwQjc0Q0ZFNzZDNEY5QUUwMi83Q0IxMTAyNDg3 REQxMUYwQTg5RkIzNzdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMBsYzANBgkqhkiG9w0BAQsFAAOCAQEAhtW+svb6yn2xbB/p fL+mpxAFpJsQv2k6/Jri62HyoKMcwoavnb8wBacC+dkDElsw7Dp+J9z5I+zh7cSi Xw17/B4rFKcFOOkG1gMEFBFFKgdZiV+djXXOtIQuH/+3JmLlbF2rbEyucbjv0ODB M5BEPqtIGkK5TfkdPkO/WiiM9ImfHP4sOdFA3aow5GVyK/JEgz6qrdMWw0l9EVJE WQGQRihJe5ipy8eij/PuZtkK4h7qxUrumpfW/3gotSoPGEXW4kb9uPOG8VIGT0eI K3iFnCz6CPEVgZUb7v6a6Ogb+BqL5Kp4lzLhSDC8ndCV0ZoC345dGm0J9L/0hlqT bYgUsw== -----END CERTIFICATE-----Generated at Sun Sep 7 19:09:31 2025 by rpki-client