$ rpki-client -vvf rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/9E194914B3EC11EE8B2EE910C4F9AE02.roa File: 9E194914B3EC11EE8B2EE910C4F9AE02.roa (raw, json) Hash identifier: 7elJ6pQ+byTKAI8AjP50DQU04UmdYGJ25Y7476bHuB0= Subject key identifier: 60:C3:E7:B6:BC:8C:4A:10:DA:6A:DD:91:61:E6:7E:32:54:6A:6A:03 Certificate issuer: /CN=A91805CE/serialNumber=72926FC60F7C184A61D73BD094AA6A386B63002A Certificate serial: 014F Authority key identifier: 72:92:6F:C6:0F:7C:18:4A:61:D7:3B:D0:94:AA:6A:38:6B:63:00:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/9E194914B3EC11EE8B2EE910C4F9AE02.roa Signing time: Mon 08 Sep 2025 02:37:51 +0000 ROA not before: Mon 08 Sep 2025 02:37:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9463 IP address blocks: 202.74.128.0/22 maxlen: 22 202.74.132.0/22 maxlen: 22 202.74.136.0/22 maxlen: 22 202.74.140.0/22 maxlen: 22 202.74.147.0/24 maxlen: 24 202.74.148.0/24 maxlen: 24 202.74.150.0/24 maxlen: 24 202.74.152.0/23 maxlen: 23 202.74.152.0/24 maxlen: 24 202.74.153.0/24 maxlen: 24 202.74.154.0/23 maxlen: 23 202.74.154.0/24 maxlen: 24 202.74.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.crl rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 04:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 335 (0x14f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91805CE, serialNumber=72926FC60F7C184A61D73BD094AA6A386B63002A Validity Not Before: Sep 8 02:37:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68be417e-2d32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:be:dd:81:63:e8:1e:c2:29:26:8a:65:f9:b7: d9:fc:31:69:62:e2:1d:65:bb:e9:7b:04:74:23:6a: 2f:51:b6:aa:dd:f2:e3:80:bd:28:d2:3e:f3:43:fc: 9b:a4:ca:75:7e:b0:b9:b7:6b:71:26:a5:92:21:d8: 6c:98:7c:b1:7e:71:80:f9:23:da:0c:a6:b3:a4:cc: c1:f5:0a:b2:3a:20:a2:29:fb:e3:33:73:fb:a8:a3: 7e:17:e0:9c:8d:6c:5c:06:24:1e:6f:f2:c3:01:ef: 94:76:81:37:fe:66:24:c5:d7:a1:d7:32:d7:01:2b: 99:14:51:a7:82:e4:85:35:d1:f9:48:ce:c0:2e:24: 7a:c7:02:6a:2a:80:83:fa:fb:01:73:1d:80:e6:5c: 4e:e3:22:94:f3:02:08:ea:9a:ef:63:f6:6c:13:71: a1:9f:5a:bc:dc:e5:70:01:88:73:ab:2d:c5:52:2e: 9a:2e:bd:0e:14:ab:de:74:2c:1f:7d:83:30:e9:c0: ef:53:55:c8:af:4d:b0:5c:0c:c8:62:a9:94:ff:90: 1f:04:bb:f9:e3:89:95:26:80:07:af:be:90:36:58: e0:90:f7:4d:46:6f:63:09:1d:db:74:a2:9b:89:f2: 17:20:0f:f2:7c:ee:2b:23:3b:45:15:a3:55:77:54: c1:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:C3:E7:B6:BC:8C:4A:10:DA:6A:DD:91:61:E6:7E:32:54:6A:6A:03 X509v3 Authority Key Identifier: keyid:72:92:6F:C6:0F:7C:18:4A:61:D7:3B:D0:94:AA:6A:38:6B:63:00:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/9E194914B3EC11EE8B2EE910C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.74.128.0/20 202.74.147.0-202.74.148.255 202.74.150.0/24 202.74.152.0/22 Signature Algorithm: sha256WithRSAEncryption c1:45:8c:9e:7a:ca:a8:08:39:31:c6:24:c6:55:cc:f9:df:41: 9a:bd:76:fb:63:dd:3f:da:98:86:83:67:62:bc:fc:35:05:66: fd:0b:05:5a:fc:a9:e8:cc:0c:d2:14:df:23:75:cb:16:2d:ec: fa:31:2a:74:ae:c9:34:eb:d2:ac:78:35:11:4a:32:22:12:9b: ab:49:cf:73:30:32:34:dc:2a:b3:ab:cc:a0:d3:92:f4:fe:63: 94:0f:b7:58:57:db:9e:d1:fb:81:b2:95:b0:55:da:60:c9:42: cf:60:8d:21:7c:a8:6a:ea:2f:2e:ad:56:6a:35:b2:b2:7a:6f: e1:8e:b2:54:1f:ae:75:9c:f0:89:97:46:f6:35:23:d3:ae:eb: 5a:67:70:35:ee:bf:5b:7f:8d:f5:73:dd:69:1b:8e:f8:3b:1c: 91:a4:c0:12:99:bc:11:9f:80:99:bc:d9:1c:ab:c5:8c:04:ac: 2a:c9:45:0e:b3:6c:5b:c4:4c:c4:6b:7a:ed:5b:d9:c7:1b:4b: 17:a9:ba:80:60:c5:52:43:ab:1a:a1:db:bc:32:09:e6:7b:df: cc:05:75:7a:86:09:a8:fe:0f:3b:e4:01:ae:db:d7:dc:5a:86: 2c:64:ab:d6:6e:f3:f6:a5:19:cc:d0:9a:24:c1:2d:fd:af:c6: 7b:97:26:ac -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICAU8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA1Q0UxMTAvBgNVBAUTKDcyOTI2RkM2MEY3QzE4NEE2MUQ3M0JEMDk0QUE2QTM4 NkI2MzAwMkEwHhcNMjUwOTA4MDIzNzUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJlNDE3ZS0yZDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApb7dgWPoHsIpJopl+bfZ/DFpYuIdZbvpewR0I2ovUbaq3fLjgL0o0j7zQ/yb pMp1frC5t2txJqWSIdhsmHyxfnGA+SPaDKazpMzB9QqyOiCiKfvjM3P7qKN+F+Cc jWxcBiQeb/LDAe+UdoE3/mYkxdeh1zLXASuZFFGnguSFNdH5SM7ALiR6xwJqKoCD +vsBcx2A5lxO4yKU8wII6prvY/ZsE3Ghn1q83OVwAYhzqy3FUi6aLr0OFKvedCwf fYMw6cDvU1XIr02wXAzIYqmU/5AfBLv544mVJoAHr76QNljgkPdNRm9jCR3bdKKb ifIXIA/yfO4rIztFFaNVd1TB3QIDAQABo4ICrzCCAqswHQYDVR0OBBYEFGDD57a8 jEoQ2mrdkWHmfjJUamoDMB8GA1UdIwQYMBaAFHKSb8YPfBhKYdc70JSqajhrYwAq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDVDRS8wRUIwOUQzNkFF NzQxMUVFOENFRDIzNUNDNEY5QUUwMi9jcEp2eGc5OEdFcGgxenZRbEtwcU9HdGpB Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NwSnZ4Zzk4R0VwaDF6dlFsS3BxT0d0akFDby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA1Q0UvMEVCMDlEMzZBRTc0MTFFRThDRUQyMzVDQzRGOUFFMDIvOUUxOTQ5MTRC M0VDMTFFRThCMkVFOTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBATKSoAwDAMEAMpKkwMEAMpKlAMEAMpKlgMEAspKmDANBgkq hkiG9w0BAQsFAAOCAQEAwUWMnnrKqAg5McYkxlXM+d9Bmr12+2PdP9qYhoNnYrz8 NQVm/QsFWvyp6MwM0hTfI3XLFi3s+jEqdK7JNOvSrHg1EUoyIhKbq0nPczAyNNwq s6vMoNOS9P5jlA+3WFfbntH7gbKVsFXaYMlCz2CNIXyoauovLq1WajWysnpv4Y6y VB+udZzwiZdG9jUj067rWmdwNe6/W3+N9XPdaRuO+DsckaTAEpm8EZ+AmbzZHKvF jASsKslFDrNsW8RMxGt67VvZxxtLF6m6gGDFUkOrGqHbvDIJ5nvfzAV1eoYJqP4P O+QBrtvX3FqGLGSr1m7z9qUZzNCaJMEt/a/Ge5cmrA== -----END CERTIFICATE-----Generated at Fri Sep 19 05:34:57 2025 by rpki-client