$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4EAF8364839211EE9CAD6C0DC4F9AE02.roa File: 4EAF8364839211EE9CAD6C0DC4F9AE02.roa (raw, json) Hash identifier: XguyU4/6X7TK8tdaxv6Yyh8WQUuFawXxHRwODqGgBsQ= Subject key identifier: 4C:1B:37:D3:F8:DD:57:F0:DB:E3:76:2D:A4:F4:63:94:99:AC:78:47 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4E2A Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4EAF8364839211EE9CAD6C0DC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:57:35 +0000 ROA not before: Thu 28 Aug 2025 14:57:35 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 55317 IP address blocks: 202.74.58.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20010 (0x4e2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:57:35 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e5e-0f22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e2:3c:ad:de:e9:03:5d:50:b6:3f:d4:42:27: 4d:2c:d1:fd:e9:ff:0a:50:33:fa:4b:30:f0:24:2b: a4:cc:4a:2e:e6:ac:ed:ab:b0:d3:9f:6b:ea:88:98: bb:d5:6b:75:01:0b:14:d4:6c:6f:1f:3a:a3:06:77: 12:ba:6a:f5:18:ae:b1:a0:4d:3e:6d:ce:d8:79:f3: 08:12:df:89:c8:ff:70:1f:31:e8:05:e3:ab:ed:5f: d3:94:d3:55:3f:bf:88:e3:a9:54:23:64:5e:95:0d: 49:d1:90:90:64:3f:97:5f:d7:93:79:ec:f1:6f:55: ef:d1:45:63:a4:b6:77:c0:d1:6f:d4:96:13:34:d3: 28:47:a8:7f:8f:e1:8c:63:c7:d4:9f:56:9e:39:45: 23:06:6d:01:75:cc:be:b4:06:c0:1e:ff:a2:e4:5d: db:d1:e2:01:c2:50:63:09:7b:46:82:7e:47:14:74: 4a:8c:d5:94:b8:46:e6:20:80:13:ab:14:5f:34:16: 3b:83:7a:c1:90:3e:80:1f:1d:ff:b6:b8:1c:cc:1a: 54:a9:b4:51:31:fc:43:28:ee:b7:1e:39:04:75:ac: 72:89:5d:88:b6:45:13:e5:6e:3a:7b:9f:ee:bc:25: 2e:3e:72:a8:61:c6:35:43:f0:79:39:90:8b:40:1c: f4:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:1B:37:D3:F8:DD:57:F0:DB:E3:76:2D:A4:F4:63:94:99:AC:78:47 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4EAF8364839211EE9CAD6C0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.74.58.0/23 Signature Algorithm: sha256WithRSAEncryption 63:8e:32:67:63:78:44:05:a7:01:62:86:d0:dc:2e:8b:40:b2: 2e:98:23:11:39:80:c2:a7:05:c1:4a:b5:ef:69:bc:17:b9:2f: 2d:fa:dc:39:78:76:72:88:e4:56:1c:d5:d7:a4:96:1f:5e:8a: 3b:11:70:7f:ea:67:a0:b2:7b:15:e3:1f:eb:e5:76:c0:e6:a9: 66:7f:2e:0b:55:3d:a5:b0:7e:06:66:96:46:28:5a:05:7d:c2: 10:f0:28:08:8d:0c:5a:6a:e5:5d:ca:ca:fe:f5:65:d1:19:25: 89:dc:ba:c3:d1:98:b3:a9:a6:8c:f5:89:a5:7b:54:65:3e:92: 73:ff:ff:01:aa:a1:cd:59:2d:b8:0b:31:76:d7:14:2b:87:4a: c1:6f:20:81:e9:53:f6:eb:48:e3:2c:6a:38:b1:d3:9c:98:e0: 36:3f:1f:33:72:27:46:1e:77:45:04:79:1c:6f:b8:f5:e2:e0: 39:d9:3c:77:4a:ac:c5:b2:29:00:92:aa:35:db:be:49:89:07: e3:6d:42:83:24:d7:8a:00:b9:55:6e:97:6e:36:f8:39:31:81: 0e:02:1d:f8:64:af:c6:80:f1:c9:4e:e4:96:fb:b7:08:3a:0d: 2d:53:d2:d9:e2:c7:95:be:a5:95:63:3d:df:43:a3:74:a1:f5: f1:c8:f6:ee -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICTiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NzM1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmU1ZS0wZjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzeI8rd7pA11Qtj/UQidNLNH96f8KUDP6SzDwJCukzEou5qztq7DTn2vqiJi7 1Wt1AQsU1GxvHzqjBncSumr1GK6xoE0+bc7YefMIEt+JyP9wHzHoBeOr7V/TlNNV P7+I46lUI2RelQ1J0ZCQZD+XX9eTeezxb1Xv0UVjpLZ3wNFv1JYTNNMoR6h/j+GM Y8fUn1aeOUUjBm0Bdcy+tAbAHv+i5F3b0eIBwlBjCXtGgn5HFHRKjNWUuEbmIIAT qxRfNBY7g3rBkD6AHx3/trgczBpUqbRRMfxDKO63HjkEdaxyiV2ItkUT5W46e5/u vCUuPnKoYcY1Q/B5OZCLQBz0zQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEwbN9P4 3Vfw2+N2LaT0Y5SZrHhHMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNEVBRjgzNjQ4 MzkyMTFFRTlDQUQ2QzBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKSjowDQYJKoZIhvcNAQELBQADggEBAGOOMmdjeEQFpwFi htDcLotAsi6YIxE5gMKnBcFKte9pvBe5Ly363Dl4dnKI5FYc1deklh9eijsRcH/q Z6CyexXjH+vldsDmqWZ/LgtVPaWwfgZmlkYoWgV9whDwKAiNDFpq5V3Kyv71ZdEZ JYncusPRmLOppoz1iaV7VGU+knP//wGqoc1ZLbgLMXbXFCuHSsFvIIHpU/brSOMs ajix05yY4DY/HzNyJ0Yed0UEeRxvuPXi4DnZPHdKrMWyKQCSqjXbvkmJB+NtQoMk 14oAuVVul242+DkxgQ4CHfhkr8aA8clO5Jb7twg6DS1T0tnix5W+pZVjPd9Do3Sh 9fHI9u4= -----END CERTIFICATE-----Generated at Mon Sep 8 05:35:22 2025 by rpki-client