$ rpki-client -vvf rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/FDCAB8A4948011F09DD92B2BC4F9AE02.roa File: FDCAB8A4948011F09DD92B2BC4F9AE02.roa (raw, json) Hash identifier: kCEBaHwfIqs+1MsTxHmP6olnCtMZseut6OSfDQus2HE= Subject key identifier: 56:A9:C1:CF:DF:1F:F4:E8:74:EF:32:CE:25:61:6D:7E:8F:45:6F:7E Certificate issuer: /CN=A917C4E7/serialNumber=A5C4A0AB0E5EE13B14845439B1AE4FB34468C7B9 Certificate serial: 033C Authority key identifier: A5:C4:A0:AB:0E:5E:E1:3B:14:84:54:39:B1:AE:4F:B3:44:68:C7:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/FDCAB8A4948011F09DD92B2BC4F9AE02.roa Signing time: Thu 18 Sep 2025 11:16:58 +0000 ROA not before: Thu 18 Sep 2025 11:16:58 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9009 IP address blocks: 36.255.96.0/24 maxlen: 24 36.255.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.crl rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 Oct 2025 03:11:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 828 (0x33c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C4E7, serialNumber=A5C4A0AB0E5EE13B14845439B1AE4FB34468C7B9 Validity Not Before: Sep 18 11:16:58 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68cbea2a-933a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:5f:79:62:5d:3f:6a:c5:88:6f:4c:a8:a7:c4: 63:ef:72:a4:6a:94:4f:2d:92:34:49:57:9b:e4:05: 06:c5:7d:e8:55:a4:95:22:d0:c4:9e:f0:74:62:3e: 7e:82:04:ca:a4:ad:f1:70:31:6b:51:0d:e3:11:e9: 58:cd:4a:eb:d6:27:33:48:76:cb:d2:9c:53:bb:92: d1:65:74:dc:3a:30:8f:02:19:c3:27:b4:1d:fa:63: c6:56:20:24:18:67:16:c9:39:36:a6:8f:6d:05:78: b7:7c:95:22:8f:b2:54:ef:a3:f1:1e:a5:4c:83:3b: 9d:7f:26:71:b8:b3:10:ff:a7:83:fb:ad:df:6f:75: 6d:cc:b8:15:77:2c:1d:c0:73:32:35:aa:fd:8d:90: a0:39:2b:07:12:f0:69:c0:b6:3a:18:7d:5e:1e:18: 44:a3:13:e7:15:e7:e0:60:11:3c:0e:35:42:ed:de: 19:19:59:39:08:fe:8b:a8:16:a3:b9:7b:bf:39:75: 58:82:f3:32:98:57:10:44:83:6c:89:b6:dd:76:f1: 0b:33:ca:bf:16:bb:25:01:55:f4:b0:85:72:12:ee: 9e:c5:cd:00:eb:dc:b5:ac:47:3a:6e:ed:17:1f:86: 18:12:b8:8b:7c:e6:f7:80:7c:82:c4:d9:86:95:e4: 4b:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:A9:C1:CF:DF:1F:F4:E8:74:EF:32:CE:25:61:6D:7E:8F:45:6F:7E X509v3 Authority Key Identifier: keyid:A5:C4:A0:AB:0E:5E:E1:3B:14:84:54:39:B1:AE:4F:B3:44:68:C7:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pcSgqw5e4TsUhFQ5sa5Ps0Rox7k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C4E7/981C0558EAD811ECBC7EE015C4F9AE02/FDCAB8A4948011F09DD92B2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.96.0/23 Signature Algorithm: sha256WithRSAEncryption 78:b7:9c:f1:ff:a4:8f:93:ca:02:e9:51:63:0c:80:a9:23:9a: a1:54:2d:cf:ee:ff:cf:50:37:e7:6c:fb:50:66:54:18:9e:b5: 42:73:25:01:52:fe:ba:81:cf:96:81:dd:d4:42:6c:a4:14:55: aa:c0:be:3f:70:a3:e9:35:2e:5c:fa:f6:ba:0b:e8:0b:c9:34: b6:b4:9c:c0:1a:23:04:11:bf:09:3d:e2:d4:5b:25:99:a2:ce: 08:92:65:79:c8:1b:0c:7c:66:a0:0b:6a:39:0d:92:bc:cf:82: 09:68:4f:dd:01:09:a2:ee:47:d8:60:26:3e:95:f7:ab:34:3c: 47:e3:e3:1d:cd:94:cb:07:29:4d:39:55:fc:8c:8a:2f:c5:82: 32:47:05:e8:4e:78:d6:fe:bc:00:61:a5:11:5a:bb:f6:28:09: c0:99:59:70:ae:4b:51:58:c8:d1:95:2d:59:ec:8c:f2:bf:88: cc:72:a9:ed:ae:04:b8:b6:e7:b2:07:a4:94:8b:ed:79:d1:72: de:9d:9c:de:5f:a7:36:ba:f2:ad:7e:f8:12:11:f3:02:75:e7: c0:27:11:47:b9:41:ec:b1:64:2a:16:02:3b:a9:18:c0:a3:db: 58:3c:d9:06:8e:1a:1a:c5:17:b5:12:8f:54:e8:8b:e2:ea:56: c0:75:1b:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAzwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0RTcxMTAvBgNVBAUTKEE1QzRBMEFCMEU1RUUxM0IxNDg0NTQzOUIxQUU0RkIz NDQ2OEM3QjkwHhcNMjUwOTE4MTExNjU4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02OGNiZWEyYS05MzNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu195Yl0/asWIb0yop8Rj73KkapRPLZI0SVeb5AUGxX3oVaSVItDEnvB0Yj5+ ggTKpK3xcDFrUQ3jEelYzUrr1iczSHbL0pxTu5LRZXTcOjCPAhnDJ7Qd+mPGViAk GGcWyTk2po9tBXi3fJUij7JU76PxHqVMgzudfyZxuLMQ/6eD+63fb3VtzLgVdywd wHMyNar9jZCgOSsHEvBpwLY6GH1eHhhEoxPnFefgYBE8DjVC7d4ZGVk5CP6LqBaj uXu/OXVYgvMymFcQRINsibbddvELM8q/FrslAVX0sIVyEu6exc0A69y1rEc6bu0X H4YYEriLfOb3gHyCxNmGleRLSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFapwc/f H/TodO8yziVhbX6PRW9+MB8GA1UdIwQYMBaAFKXEoKsOXuE7FIRUObGuT7NEaMe5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzRFNy85ODFDMDU1OEVB RDgxMUVDQkM3RUUwMTVDNEY5QUUwMi9wY1NncXc1ZTRUc1VoRlE1c2E1UHMwUm94 N2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BjU2dxdzVlNFRzVWhGUTVzYTVQczBSb3g3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M0RTcvOTgxQzA1NThFQUQ4MTFFQ0JDN0VFMDE1QzRGOUFFMDIvRkRDQUI4QTQ5 NDgwMTFGMDlERDkyQjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEk/2AwDQYJKoZIhvcNAQELBQADggEBAHi3nPH/pI+TygLp UWMMgKkjmqFULc/u/89QN+ds+1BmVBietUJzJQFS/rqBz5aB3dRCbKQUVarAvj9w o+k1Llz69roL6AvJNLa0nMAaIwQRvwk94tRbJZmizgiSZXnIGwx8ZqALajkNkrzP ggloT90BCaLuR9hgJj6V96s0PEfj4x3NlMsHKU05VfyMii/FgjJHBehOeNb+vABh pRFau/YoCcCZWXCuS1FYyNGVLVnsjPK/iMxyqe2uBLi257IHpJSL7XnRct6dnN5f pza68q1++BIR8wJ158AnEUe5QeyxZCoWAjupGMCj21g82QaOGhrFF7USj1Toi+Lq VsB1G4I= -----END CERTIFICATE-----Generated at Sun Oct 19 07:08:03 2025 by rpki-client