$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C829F090459C11EF81933157C4F9AE02.roa File: C829F090459C11EF81933157C4F9AE02.roa (raw, json) Hash identifier: XD9W+hd/8ZZ17PAqvXJrXM+ofN5ddw5Aa3w8I5HaJ90= Subject key identifier: 1C:57:16:DD:C1:D6:3A:3A:3C:41:72:39:77:F4:09:78:A2:D9:BE:F8 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4E04 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C829F090459C11EF81933157C4F9AE02.roa Signing time: Thu 28 Aug 2025 14:56:59 +0000 ROA not before: Thu 28 Aug 2025 14:56:59 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38249 IP address blocks: 202.87.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 16:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19972 (0x4e04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Aug 28 14:56:59 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e3b-39a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7f:c2:0e:58:a8:fc:39:37:3d:4a:72:88:4a: 53:1b:61:49:10:37:a9:d6:93:b4:c2:93:64:d2:4a: 97:2c:09:da:ea:5c:d8:33:c0:2a:66:01:28:e5:ae: cb:44:6b:da:57:ee:db:e2:87:9c:df:33:57:f4:8d: 87:cb:04:82:47:d2:a5:d0:98:89:30:df:fa:d8:d7: 2f:cd:ff:21:89:ca:1b:8c:6b:d5:4f:9b:f6:96:28: 9d:17:1a:ee:bf:19:8d:ec:e0:f6:87:b5:26:44:f1: 62:8c:44:bc:5b:97:8c:e3:61:64:b5:bb:2d:cb:b0: 87:76:f2:eb:6f:59:67:42:fe:f6:ea:06:da:ad:7f: 56:45:f8:6d:0b:ab:1b:83:77:6e:93:7c:10:93:fe: 7e:a5:76:29:91:2b:14:a8:cc:e3:f5:a1:cb:d9:61: 2a:d3:e9:29:b8:95:73:54:fb:01:81:3b:81:81:ed: ec:80:22:fc:a9:86:73:6c:b0:ae:50:28:29:b3:e6: e6:53:b2:cd:77:c0:56:ee:5a:e9:91:d2:a6:d7:2f: a8:30:19:8a:a1:ca:19:2b:35:9b:ba:c4:eb:5b:0e: 27:3d:e9:f3:25:55:54:ca:28:68:30:c5:53:23:3c: 3f:96:c5:3b:1a:ab:9f:76:ed:56:2e:a9:3d:bd:b2: 60:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:57:16:DD:C1:D6:3A:3A:3C:41:72:39:77:F4:09:78:A2:D9:BE:F8 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C829F090459C11EF81933157C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.87.212.0/22 Signature Algorithm: sha256WithRSAEncryption aa:bc:9c:6c:08:2b:97:6d:62:6f:7b:1c:a5:3b:6f:e8:3b:41: 11:88:90:9e:22:97:53:25:37:ab:d2:ce:0a:97:fb:fb:c7:ae: 9b:b3:a5:0b:b2:b2:7a:e2:4c:eb:29:03:58:7f:5f:ff:80:0a: 29:c8:6e:4c:35:6d:88:d5:35:db:8b:1b:01:3b:b6:c6:3a:6c: 76:9c:d0:0e:1e:8d:40:9b:ea:fe:86:8a:c4:48:91:de:6f:3d: 3d:e9:54:17:a1:ea:e0:e3:0f:f0:0c:e0:8f:3c:de:57:77:5d: fc:1c:2a:7f:cc:41:af:bd:b7:0a:8a:ca:c6:06:96:8b:be:7e: c0:0f:ff:58:00:c3:02:8a:81:0b:09:f2:95:fe:b2:65:61:1c: b2:c5:d4:2e:cb:ea:4b:3d:2e:52:12:17:34:69:74:16:b3:ec: 4b:98:04:07:dd:0b:6e:e2:60:97:99:c5:f9:6a:0d:33:12:9f: 6b:b6:53:56:f6:b7:61:38:46:b6:10:34:68:83:d4:6c:83:04: 23:42:ec:eb:7d:3e:f2:72:c0:c6:5f:9c:c2:0f:37:ed:80:5e: 91:3b:12:1e:de:ae:ea:61:18:bd:70:17:0d:53:08:bd:69:58: 8f:20:b4:8d:13:65:49:33:65:7b:00:c7:2b:ff:e7:60:7d:2b: 6b:12:09:c7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICTgQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwODI4MTQ1NjU5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmUzYi0zOWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3/CDlio/Dk3PUpyiEpTG2FJEDep1pO0wpNk0kqXLAna6lzYM8AqZgEo5a7L RGvaV+7b4oec3zNX9I2HywSCR9Kl0JiJMN/62Ncvzf8hicobjGvVT5v2liidFxru vxmN7OD2h7UmRPFijES8W5eM42Fktbsty7CHdvLrb1lnQv726gbarX9WRfhtC6sb g3duk3wQk/5+pXYpkSsUqMzj9aHL2WEq0+kpuJVzVPsBgTuBge3sgCL8qYZzbLCu UCgps+bmU7LNd8BW7lrpkdKm1y+oMBmKocoZKzWbusTrWw4nPenzJVVUyihoMMVT Izw/lsU7Gqufdu1WLqk9vbJgswIDAQABo4IClTCCApEwHQYDVR0OBBYEFBxXFt3B 1jo6PEFyOXf0CXii2b74MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQzgyOUYwOTA0 NTlDMTFFRjgxOTMzMTU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKV9QwDQYJKoZIhvcNAQELBQADggEBAKq8nGwIK5dtYm97 HKU7b+g7QRGIkJ4il1MlN6vSzgqX+/vHrpuzpQuysnriTOspA1h/X/+ACinIbkw1 bYjVNduLGwE7tsY6bHac0A4ejUCb6v6GisRIkd5vPT3pVBeh6uDjD/AM4I883ld3 XfwcKn/MQa+9twqKysYGlou+fsAP/1gAwwKKgQsJ8pX+smVhHLLF1C7L6ks9LlIS FzRpdBaz7EuYBAfdC27iYJeZxflqDTMSn2u2U1b2t2E4RrYQNGiD1GyDBCNC7Ot9 PvJywMZfnMIPN+2AXpE7Eh7eruphGL1wFw1TCL1pWI8gtI0TZUkzZXsAxyv/52B9 K2sSCcc= -----END CERTIFICATE-----Generated at Mon Sep 8 05:43:28 2025 by rpki-client