$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/4ABCFD508D3A11F0B6F4F46FC4F9AE02.roa File: 4ABCFD508D3A11F0B6F4F46FC4F9AE02.roa (raw, json) Hash identifier: N5o2mOrAAIEN4JkFArU+q/6rZ4IO6YadfTVlKFOEiVE= Subject key identifier: 47:C4:21:FA:35:1D:FB:F4:BB:C8:A3:16:1D:DC:FD:FC:C6:A3:EA:5C Certificate issuer: /CN=A9191E19/serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Certificate serial: FE Authority key identifier: 37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/4ABCFD508D3A11F0B6F4F46FC4F9AE02.roa Signing time: Tue 09 Sep 2025 05:04:49 +0000 ROA not before: Tue 09 Sep 2025 05:04:49 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 18390 IP address blocks: 203.4.136.0/24 maxlen: 24 203.4.137.0/24 maxlen: 24 203.4.138.0/24 maxlen: 24 203.4.139.0/24 maxlen: 24 203.4.140.0/24 maxlen: 24 203.4.141.0/24 maxlen: 24 203.4.142.0/24 maxlen: 24 203.4.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 04:23:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 254 (0xfe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E19, serialNumber=372081F7DBE2EF11A4411BD4E6AF86F32698CAFA Validity Not Before: Sep 9 05:04:49 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68bfb571-e78f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:5f:d8:c7:54:9e:62:57:dd:3f:4b:da:fd:85: 7e:ae:2b:8e:3d:9f:27:fe:11:ad:e4:5f:8e:60:a9: 4d:68:72:9f:48:06:70:4e:34:0b:7f:81:b3:fe:17: ae:c8:55:41:0b:f9:63:07:ff:9a:a9:e5:2b:99:da: e8:a3:54:2b:9f:df:fe:3b:3e:ac:9b:af:9a:76:74: e4:bb:f6:4f:85:b3:a5:0e:0d:ae:74:94:ea:33:58: bc:f0:3e:0e:29:04:fb:48:d9:3d:b8:22:fc:43:8b: 15:9d:40:9b:8d:33:cb:00:13:7e:0e:fb:76:fe:87: 82:fb:01:f3:fc:95:f7:9a:ac:bc:e0:0e:b8:ef:68: 04:92:5c:df:12:4f:0f:8a:87:d0:b3:7f:e6:36:a5: 35:04:c9:78:3f:89:8d:5f:35:69:8e:bb:2c:99:30: dd:ec:ac:be:53:07:e4:47:ee:ba:74:dc:e1:82:a4: 76:11:29:f0:cb:6a:de:83:e7:aa:f0:f9:34:8b:6a: 5d:e7:19:d1:ff:5d:ae:f9:c9:d6:50:94:f0:9b:02: 9f:e6:ab:70:74:2a:f3:b6:37:eb:9a:b5:71:03:92: df:da:03:4d:45:43:51:40:43:fd:f0:c5:b9:d5:b1: 90:1e:76:54:76:9b:fa:20:30:a8:cc:13:e3:67:6a: 53:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:C4:21:FA:35:1D:FB:F4:BB:C8:A3:16:1D:DC:FD:FC:C6:A3:EA:5C X509v3 Authority Key Identifier: keyid:37:20:81:F7:DB:E2:EF:11:A4:41:1B:D4:E6:AF:86:F3:26:98:CA:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/NyCB99vi7xGkQRvU5q-G8yaYyvo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NyCB99vi7xGkQRvU5q-G8yaYyvo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E19/10C7F0AA140F11EF8A4A7016C4F9AE02/4ABCFD508D3A11F0B6F4F46FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.4.136.0/21 Signature Algorithm: sha256WithRSAEncryption 26:55:32:2a:68:b3:18:02:13:cd:78:71:d7:44:1b:92:a7:4c: 9f:85:bf:dd:af:e0:b0:5a:df:8c:cc:84:28:af:a3:94:cf:8e: 54:59:9e:de:0d:6a:c3:de:57:bb:f7:54:2b:ec:30:14:9e:57: 27:e7:f0:d7:9f:97:2f:79:a2:37:6c:24:7f:7f:43:b6:c2:1f: db:cc:a5:b8:e8:0f:9e:b6:56:8c:b7:41:a0:d7:f2:40:15:3b: c1:b3:03:fe:1b:b5:6c:90:b7:ce:4e:62:88:c9:8b:4c:7f:b2: be:94:8a:01:73:0e:09:60:8b:c2:f9:8e:f7:55:e8:27:1b:a9: 5d:26:4f:85:7f:91:bb:33:90:88:47:8c:cc:d7:8a:e7:db:9f: 44:bb:3a:aa:6d:af:e8:41:a3:b2:dd:77:b1:cb:eb:1c:4b:23: b2:5b:b8:07:54:db:09:40:97:41:69:77:6e:4a:8d:73:72:d3: fe:61:f5:a4:8c:8c:f9:a1:9c:c8:6a:be:c1:d8:bb:50:bc:51: ed:da:3b:de:9d:15:7c:79:16:40:4e:76:06:b8:97:50:c8:f1: d3:b0:17:b5:cb:71:a2:f6:c3:9b:04:1e:e5:25:94:16:3a:ce: b5:6e:82:f6:2c:93:b4:ea:8b:a7:29:c1:a6:c7:34:3f:02:d3: f3:d8:36:00 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMTkxMTAvBgNVBAUTKDM3MjA4MUY3REJFMkVGMTFBNDQxMUJENEU2QUY4NkYz MjY5OENBRkEwHhcNMjUwOTA5MDUwNDQ5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJmYjU3MS1lNzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuF/Yx1SeYlfdP0va/YV+riuOPZ8n/hGt5F+OYKlNaHKfSAZwTjQLf4Gz/heu yFVBC/ljB/+aqeUrmdroo1Qrn9/+Oz6sm6+adnTku/ZPhbOlDg2udJTqM1i88D4O KQT7SNk9uCL8Q4sVnUCbjTPLABN+Dvt2/oeC+wHz/JX3mqy84A6472gEklzfEk8P iofQs3/mNqU1BMl4P4mNXzVpjrssmTDd7Ky+UwfkR+66dNzhgqR2ESnwy2reg+eq 8Pk0i2pd5xnR/12u+cnWUJTwmwKf5qtwdCrztjfrmrVxA5Lf2gNNRUNRQEP98MW5 1bGQHnZUdpv6IDCozBPjZ2pThQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEfEIfo1 Hfv0u8ijFh3c/fzGo+pcMB8GA1UdIwQYMBaAFDcggffb4u8RpEEb1OavhvMmmMr6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUxOS8xMEM3RjBBQTE0 MEYxMUVGOEE0QTcwMTZDNEY5QUUwMi9OeUNCOTl2aTd4R2tRUnZVNXEtRzh5YVl5 dm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL055Q0I5OXZpN3hHa1FSdlU1cS1HOHlhWXl2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFFMTkvMTBDN0YwQUExNDBGMTFFRjhBNEE3MDE2QzRGOUFFMDIvNEFCQ0ZENTA4 RDNBMTFGMEI2RjRGNDZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPLBIgwDQYJKoZIhvcNAQELBQADggEBACZVMiposxgCE814 cddEG5KnTJ+Fv92v4LBa34zMhCivo5TPjlRZnt4NasPeV7v3VCvsMBSeVyfn8Nef ly95ojdsJH9/Q7bCH9vMpbjoD562Voy3QaDX8kAVO8GzA/4btWyQt85OYojJi0x/ sr6UigFzDglgi8L5jvdV6CcbqV0mT4V/kbszkIhHjMzXiufbn0S7Oqptr+hBo7Ld d7HL6xxLI7JbuAdU2wlAl0Fpd25KjXNy0/5h9aSMjPmhnMhqvsHYu1C8Ue3aO96d FXx5FkBOdga4l1DI8dOwF7XLcaL2w5sEHuUllBY6zrVugvYsk7Tqi6cpwabHND8C 0/PYNgA= -----END CERTIFICATE-----Generated at Fri Sep 19 07:37:41 2025 by rpki-client