$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/5B917C28A2E011E9A98B0235C4F9AE02.roa File: 5B917C28A2E011E9A98B0235C4F9AE02.roa (raw, json) Hash identifier: +zMT8yB+e8TH1LiL/hekG194ZDTDk4B7qTjHy7txnvM= Subject key identifier: E5:8E:02:29:C1:6B:63:E9:4E:CC:DC:5F:0C:9D:17:FD:C9:26:CB:FA Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 35CF Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/5B917C28A2E011E9A98B0235C4F9AE02.roa Signing time: Thu 24 Jul 2025 14:50:27 +0000 ROA not before: Thu 24 Jul 2025 14:50:27 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 17478 IP address blocks: 58.181.227.0/24 maxlen: 24 203.155.220.0/24 maxlen: 24 203.155.221.0/24 maxlen: 24 203.155.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 14:23:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13775 (0x35cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA, serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Validity Not Before: Jul 24 14:50:27 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68824833-3d2a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0b:92:81:28:0b:7b:4e:03:7f:0f:27:f4:e7: c4:f0:0f:1f:ce:a3:eb:c5:4d:f6:74:02:38:56:28: 74:84:d7:75:bb:7e:ec:1e:67:b0:6e:46:da:ee:f0: 27:8f:b0:b5:93:99:f7:9f:0f:17:71:63:72:70:ef: df:fc:07:cc:27:de:cb:4f:9c:06:e8:66:a0:a9:b0: d2:6b:6d:73:bb:9d:09:16:23:7e:f5:50:58:fe:36: 6a:b4:4d:98:89:a7:57:23:a7:63:0a:18:29:98:fe: 0a:68:b4:da:81:46:c5:97:1b:55:6e:d3:b1:32:e4: 17:22:9e:d6:05:34:f5:19:ce:80:18:af:7e:29:e2: 5d:b9:7e:11:e9:c7:f5:41:7a:db:51:57:d5:08:f2: a4:0b:a1:14:bf:b9:2d:60:a4:10:d7:09:ea:45:a3: 5a:76:17:77:6c:30:8a:2a:1e:09:6f:88:90:5c:f9: e7:7b:c1:53:b1:9c:e0:46:8d:c4:87:fc:80:5c:c4: 1c:91:93:37:22:7d:0b:52:10:3c:7a:42:ed:9f:ae: 21:86:59:af:5c:b5:93:1d:cb:2e:f0:6c:5f:60:72: d3:16:fe:54:dc:ba:c9:e4:be:95:67:1d:24:12:aa: 32:2a:54:34:01:e4:62:97:54:d0:fc:a2:7f:03:b3: 86:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:8E:02:29:C1:6B:63:E9:4E:CC:DC:5F:0C:9D:17:FD:C9:26:CB:FA X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/5B917C28A2E011E9A98B0235C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.181.227.0/24 203.155.220.0-203.155.222.255 Signature Algorithm: sha256WithRSAEncryption 29:a8:ef:12:73:9b:29:02:e1:dc:b3:36:e3:fb:91:38:02:75: b0:58:dc:f5:c9:28:e1:65:de:0a:82:ca:20:e6:d4:4d:f9:5b: c4:e2:17:3d:76:dd:e6:c3:b5:a8:ec:f6:02:01:51:7c:53:0f: 7e:37:2c:d9:c7:41:b0:17:65:a7:8d:af:de:c7:eb:40:39:76: 2a:e9:92:b9:e0:af:4d:c9:cb:62:d7:a7:ce:99:f6:0a:c5:d0: ca:d0:66:d6:82:fa:03:d4:c1:19:2f:a9:68:25:12:4b:ed:e6: 42:30:c6:59:3e:64:af:19:b9:e6:3a:0f:03:89:1a:51:6d:eb: 9c:a1:58:b1:97:da:c3:30:08:dd:2d:64:0c:25:e2:05:21:61: 08:91:38:26:f4:7b:19:ad:6b:cc:d7:3e:19:66:b4:65:5e:73: cf:99:a3:54:b7:8a:64:f2:3b:1b:c0:94:51:63:84:5d:12:2b: 86:80:1d:21:93:88:9c:3a:a8:4b:c4:bb:15:d1:54:db:9f:ee: 90:93:28:5d:de:6e:5f:84:29:aa:9c:9c:7d:7d:c2:ab:5e:49: 2f:e1:e0:9f:b6:35:1a:bb:b9:5f:0c:d1:94:10:5a:ef:4b:45: 5d:b4:92:e3:ba:36:4c:7e:0b:f6:d3:69:c1:5f:d2:d8:7e:0b: b2:91:d4:59 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICNc8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjUwNzI0MTQ1MDI3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgyNDgzMy0zZDJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApQuSgSgLe04Dfw8n9OfE8A8fzqPrxU32dAI4Vih0hNd1u37sHmewbkba7vAn j7C1k5n3nw8XcWNycO/f/AfMJ97LT5wG6GagqbDSa21zu50JFiN+9VBY/jZqtE2Y iadXI6djChgpmP4KaLTagUbFlxtVbtOxMuQXIp7WBTT1Gc6AGK9+KeJduX4R6cf1 QXrbUVfVCPKkC6EUv7ktYKQQ1wnqRaNadhd3bDCKKh4Jb4iQXPnne8FTsZzgRo3E h/yAXMQckZM3In0LUhA8ekLtn64hhlmvXLWTHcsu8GxfYHLTFv5U3LrJ5L6VZx0k EqoyKlQ0AeRil1TQ/KJ/A7OGAQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFOWOAinB a2PpTszcXwydF/3JJsv6MB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk3RkEvMjdGODNCNzAxRDgzMTFFMjkzMjkyMUQ4MDhCMDJDRDIvNUI5MTdDMjhB MkUwMTFFOUE5OEIwMjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAA6teMwDAMEAsub3AMEAMub3jANBgkqhkiG9w0BAQsFAAOC AQEAKajvEnObKQLh3LM24/uROAJ1sFjc9cko4WXeCoLKIObUTflbxOIXPXbd5sO1 qOz2AgFRfFMPfjcs2cdBsBdlp42v3sfrQDl2KumSueCvTcnLYtenzpn2CsXQytBm 1oL6A9TBGS+paCUSS+3mQjDGWT5krxm55joPA4kaUW3rnKFYsZfawzAI3S1kDCXi BSFhCJE4JvR7Ga1rzNc+GWa0ZV5zz5mjVLeKZPI7G8CUUWOEXRIrhoAdIZOInDqo S8S7FdFU25/ukJMoXd5uX4QpqpycfX3Cq15JL+Hgn7Y1Gru5XwzRlBBa70tFXbSS 47o2TH4L9tNpwV/S2H4LspHUWQ== -----END CERTIFICATE-----Generated at Sat Oct 25 15:25:04 2025 by rpki-client