$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AF0CF752FE6511EE93D6CC3AC4F9AE02.roa File: AF0CF752FE6511EE93D6CC3AC4F9AE02.roa (raw, json) Hash identifier: dQUEPtHX+hLPpANagxL93AbIenXQxHwv50PN0tN6s+Y= Subject key identifier: 01:B5:E8:BF:A1:48:B7:71:3B:4B:74:1C:C5:04:F6:CA:19:C4:CD:BB Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4E00 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AF0CF752FE6511EE93D6CC3AC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:56:56 +0000 ROA not before: Thu 28 Aug 2025 14:56:56 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24176 IP address blocks: 101.53.0.0/18 maxlen: 24 119.15.176.0/20 maxlen: 24 119.17.224.0/19 maxlen: 24 202.151.168.0/21 maxlen: 24 210.86.232.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19968 (0x4e00) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:56 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e38-088a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:9a:12:85:ab:0d:2b:e6:db:48:16:cf:54:8b: b1:30:f6:34:85:37:6c:9f:d8:c0:fa:b6:10:7f:cf: 52:b0:eb:0d:5a:5e:bb:70:de:ce:2b:3a:0c:57:91: cc:1b:56:1b:e4:6f:b9:c2:37:b3:ef:90:0e:46:ad: 71:4a:3d:31:93:d5:28:74:7b:48:4b:2d:cf:bd:d9: e1:34:e8:65:32:97:54:0b:72:b6:61:7d:68:60:f9: 6c:cd:03:db:7e:07:8c:85:90:f9:88:99:7a:23:2e: 48:97:7d:c0:66:28:4d:3b:a8:a4:b1:2d:4c:ca:c2: 3d:09:0c:4d:38:9f:96:7c:78:fd:bc:f0:47:4e:09: e6:43:7e:41:6c:01:bf:ba:62:11:c4:a8:ec:fd:f2: fa:58:6a:73:c3:c1:f8:40:5b:6d:c2:3f:ce:b6:03: bc:a2:5b:e5:68:57:55:db:d0:3e:95:76:f5:2a:5c: 9b:9d:c3:16:d4:a1:92:9b:8d:df:55:c0:65:8a:0a: 0d:c6:8e:bc:86:b5:4e:0a:f7:c6:e9:25:ea:cf:16: a4:72:c5:72:26:64:03:fc:c9:ef:14:98:92:18:90: 92:35:38:47:d3:5e:e1:c8:ed:04:39:8a:23:31:5c: d3:a8:47:6e:ec:5d:68:a9:c8:cd:84:da:96:1b:cd: f1:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:B5:E8:BF:A1:48:B7:71:3B:4B:74:1C:C5:04:F6:CA:19:C4:CD:BB X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AF0CF752FE6511EE93D6CC3AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.53.0.0/18 119.15.176.0/20 119.17.224.0/19 202.151.168.0/21 210.86.232.0/21 Signature Algorithm: sha256WithRSAEncryption 1f:49:bc:b3:99:65:31:34:5e:b8:c1:66:70:0c:6e:54:dc:1d: 47:17:c3:e7:cf:84:11:30:07:3a:16:2b:a5:da:46:aa:36:8e: ba:70:6b:d5:89:9f:89:f0:65:0d:ad:02:55:50:7a:88:d2:7f: 52:96:7c:3c:56:7c:b7:31:fe:5f:b7:e4:9e:ca:9f:54:51:89: 47:a4:08:60:c4:6d:4d:9d:9f:f1:f2:ae:87:93:de:9f:26:01: 05:3c:0b:8a:9a:0d:ab:42:c3:6c:5c:76:78:93:60:f7:9d:45: b6:ac:3a:3d:7d:ab:18:fd:09:44:1d:b1:81:39:5d:e6:a6:85: 31:0f:be:d2:09:09:12:19:f6:6a:d0:6f:49:d2:55:d4:de:f3: 5b:78:b0:c8:19:48:00:f9:80:f0:ff:1c:44:50:7d:79:27:1e: 95:81:7b:4a:8b:8e:83:fb:86:44:bf:ec:22:c3:82:86:b5:40: 93:2e:e3:57:7e:28:f3:4b:01:a6:81:ef:5c:34:f7:3b:b4:30: fe:54:fa:34:85:fc:c8:ce:06:74:09:9e:79:83:ae:69:1f:fa: 89:42:5e:b2:5a:92:d9:18:f6:5f:ef:82:70:49:d3:2d:93:e0: 67:e2:8b:35:2f:13:8a:fb:16:b2:6b:6d:0a:33:20:5e:b1:09: ee:ac:47:13 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICTgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjU2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmUzOC0wODhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6poShasNK+bbSBbPVIuxMPY0hTdsn9jA+rYQf89SsOsNWl67cN7OKzoMV5HM G1Yb5G+5wjez75AORq1xSj0xk9UodHtISy3PvdnhNOhlMpdUC3K2YX1oYPlszQPb fgeMhZD5iJl6Iy5Il33AZihNO6iksS1MysI9CQxNOJ+WfHj9vPBHTgnmQ35BbAG/ umIRxKjs/fL6WGpzw8H4QFttwj/OtgO8olvlaFdV29A+lXb1KlybncMW1KGSm43f VcBligoNxo68hrVOCvfG6SXqzxakcsVyJmQD/MnvFJiSGJCSNThH017hyO0EOYoj MVzTqEdu7F1oqcjNhNqWG83xAwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFAG16L+h SLdxO0t0HMUE9soZxM27MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQUYwQ0Y3NTJG RTY1MTFFRTkzRDZDQzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAZlNQADBAR3D7ADBAV3EeADBAPKl6gDBAPSVugwDQYJKoZI hvcNAQELBQADggEBAB9JvLOZZTE0XrjBZnAMblTcHUcXw+fPhBEwBzoWK6XaRqo2 jrpwa9WJn4nwZQ2tAlVQeojSf1KWfDxWfLcx/l+35J7Kn1RRiUekCGDEbU2dn/Hy roeT3p8mAQU8C4qaDatCw2xcdniTYPedRbasOj19qxj9CUQdsYE5XeamhTEPvtIJ CRIZ9mrQb0nSVdTe81t4sMgZSAD5gPD/HERQfXknHpWBe0qLjoP7hkS/7CLDgoa1 QJMu41d+KPNLAaaB71w09zu0MP5U+jSF/MjOBnQJnnmDrmkf+olCXrJaktkY9l/v gnBJ0y2T4GfiizUvE4r7FrJrbQozIF6xCe6sRxM= -----END CERTIFICATE-----Generated at Mon Sep 8 05:33:16 2025 by rpki-client