$ rpki-client -vvf rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/F060118A896511F085932767C4F9AE02.roa File: F060118A896511F085932767C4F9AE02.roa (raw, json) Hash identifier: NflGB5cG6iDGEXLAgTMkx8GjKVI5zeUepUeNC6PCvow= Subject key identifier: D1:F9:4E:94:EC:07:10:2D:76:E6:1B:82:17:D2:A2:68:11:20:D1:84 Certificate issuer: /CN=A91599B5/serialNumber=B52AE1836C61193DEA8BA5BE9D71B8CBB3430398 Certificate serial: 1B Authority key identifier: B5:2A:E1:83:6C:61:19:3D:EA:8B:A5:BE:9D:71:B8:CB:B3:43:03:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSrhg2xhGT3qi6W-nXG4y7NDA5g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/F060118A896511F085932767C4F9AE02.roa Signing time: Thu 04 Sep 2025 08:05:36 +0000 ROA not before: Thu 04 Sep 2025 08:05:36 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 138998 IP address blocks: 202.1.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/tSrhg2xhGT3qi6W-nXG4y7NDA5g.crl rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/tSrhg2xhGT3qi6W-nXG4y7NDA5g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSrhg2xhGT3qi6W-nXG4y7NDA5g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 08:31:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27 (0x1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91599B5, serialNumber=B52AE1836C61193DEA8BA5BE9D71B8CBB3430398 Validity Not Before: Sep 4 08:05:36 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68b94850-0946 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8b:ce:95:1a:b7:63:d4:56:ec:85:29:29:df: 69:66:7d:57:31:e0:26:ae:49:75:cd:00:69:7c:0e: 2e:59:d6:c9:db:4e:a8:1a:9a:a2:74:d7:0d:ce:08: 66:5b:e6:59:37:35:56:35:b5:29:56:08:fa:c6:2f: 75:8b:3b:17:8d:7e:f5:73:ae:6d:4d:ae:df:38:72: 88:39:6a:89:b5:b4:9c:e0:62:ba:23:4c:ef:04:1c: 75:cd:16:28:b7:b9:1e:e1:84:2f:d1:27:50:51:dc: e4:7b:ce:f6:bf:e2:23:81:49:81:31:80:82:a5:29: 69:d2:0a:77:97:4c:fb:a2:69:49:59:88:2f:86:f5: 26:00:99:71:32:2c:78:fb:e7:1e:07:15:85:64:08: 99:04:e6:4c:79:1c:4f:1a:27:98:da:dc:85:66:86: bf:c0:5c:30:40:13:5d:10:51:89:52:6b:8d:eb:32: a4:e4:28:25:bd:82:aa:70:ac:b6:16:c0:d2:65:e1: 43:ea:83:90:da:a8:b6:b6:19:b9:ff:2f:52:e3:29: 89:d5:8a:65:34:f5:7c:0f:be:30:f5:9d:fd:ab:1c: 06:03:82:ff:f0:d4:ac:aa:ff:e2:e0:5b:f1:6d:9c: 6e:b3:39:a7:e4:23:3f:5f:99:78:4a:9d:97:56:6c: ad:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:F9:4E:94:EC:07:10:2D:76:E6:1B:82:17:D2:A2:68:11:20:D1:84 X509v3 Authority Key Identifier: keyid:B5:2A:E1:83:6C:61:19:3D:EA:8B:A5:BE:9D:71:B8:CB:B3:43:03:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/tSrhg2xhGT3qi6W-nXG4y7NDA5g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tSrhg2xhGT3qi6W-nXG4y7NDA5g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91599B5/B2266FD26DE411F0BE02F961C4F9AE02/F060118A896511F085932767C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.1.29.0/24 Signature Algorithm: sha256WithRSAEncryption 98:44:5d:8b:6a:bf:31:6b:4f:89:a7:73:f7:fb:d1:b8:e9:1e: 76:44:af:3f:1a:67:6d:44:ca:be:25:9b:be:9a:7a:dd:d1:b2: f2:f0:f0:c3:d3:e9:c5:9a:c6:74:78:4e:62:db:ce:a5:38:77: 9f:26:f2:a2:54:a4:1f:49:22:7f:98:b9:3e:b6:84:ac:27:0c: 6f:b2:21:64:a8:11:b9:93:98:3b:1d:a5:cd:5a:e9:a2:aa:90: a4:64:45:a9:6f:2a:aa:87:f3:23:bd:ad:56:5e:02:1f:78:65: 75:3e:4c:0b:0a:4f:30:85:47:16:98:7d:f1:f6:ce:e3:8e:a7: 1d:60:25:07:8d:98:d3:56:66:db:97:1b:c9:6a:d3:36:05:93: 8c:9c:c8:ce:8b:f2:c1:8c:66:68:63:00:14:b3:cb:f5:a4:c7: 2b:78:5a:d9:01:ab:e2:73:97:18:08:f8:2a:0a:c6:f3:0d:39: 15:98:bd:01:00:cf:24:1f:15:21:6f:5f:a9:86:c6:fd:44:da: d8:ca:63:e8:93:d0:e9:c8:e4:d2:1c:29:c3:fa:aa:c8:6e:f5: ba:e8:d8:7a:a4:a9:30:9a:62:32:03:ce:d8:89:9c:73:df:bb: f0:50:0f:43:ab:f3:4d:1a:99:8f:b8:67:b8:53:ef:c7:29:8b: 0f:01:c6:71 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBGzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 OTlCNTExMC8GA1UEBRMoQjUyQUUxODM2QzYxMTkzREVBOEJBNUJFOUQ3MUI4Q0JC MzQzMDM5ODAeFw0yNTA5MDQwODA1MzZaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4Yjk0ODUwLTA5NDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUi86VGrdj1FbshSkp32lmfVcx4CauSXXNAGl8Di5Z1snbTqgamqJ01w3OCGZb 5lk3NVY1tSlWCPrGL3WLOxeNfvVzrm1Nrt84cog5aom1tJzgYrojTO8EHHXNFii3 uR7hhC/RJ1BR3OR7zva/4iOBSYExgIKlKWnSCneXTPuiaUlZiC+G9SYAmXEyLHj7 5x4HFYVkCJkE5kx5HE8aJ5ja3IVmhr/AXDBAE10QUYlSa43rMqTkKCW9gqpwrLYW wNJl4UPqg5DaqLa2Gbn/L1LjKYnVimU09XwPvjD1nf2rHAYDgv/w1Kyq/+LgW/Ft nG6zOafkIz9fmXhKnZdWbK05AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU0flOlOwH EC125huCF9KiaBEg0YQwHwYDVR0jBBgwFoAUtSrhg2xhGT3qi6W+nXG4y7NDA5gw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU5OUI1L0IyMjY2RkQyNkRF NDExRjBCRTAyRjk2MUM0RjlBRTAyL3RTcmhnMnhoR1QzcWk2Vy1uWEc0eTdOREE1 Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdFNyaGcyeGhHVDNxaTZXLW5YRzR5N05EQTVnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 OTlCNS9CMjI2NkZEMjZERTQxMUYwQkUwMkY5NjFDNEY5QUUwMi9GMDYwMTE4QTg5 NjUxMUYwODU5MzI3NjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMoBHTANBgkqhkiG9w0BAQsFAAOCAQEAmERdi2q/MWtPiadz 9/vRuOkedkSvPxpnbUTKviWbvpp63dGy8vDww9PpxZrGdHhOYtvOpTh3nybyolSk H0kif5i5PraErCcMb7IhZKgRuZOYOx2lzVrpoqqQpGRFqW8qqofzI72tVl4CH3hl dT5MCwpPMIVHFph98fbO446nHWAlB42Y01Zm25cbyWrTNgWTjJzIzovywYxmaGMA FLPL9aTHK3ha2QGr4nOXGAj4KgrG8w05FZi9AQDPJB8VIW9fqYbG/UTa2Mpj6JPQ 6cjk0hwpw/qqyG71uujYeqSpMJpiMgPO2Imcc9+78FAPQ6vzTRqZj7hnuFPvxymL DwHGcQ== -----END CERTIFICATE-----Generated at Mon Sep 8 15:51:58 2025 by rpki-client