$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/3B8DEC18F67C11EFA12FD55AC4F9AE02.roa File: 3B8DEC18F67C11EFA12FD55AC4F9AE02.roa (raw, json) Hash identifier: N2bskfxMFTrCp2qSWTYeMDSrONrPAtxZB594KPwftq8= Subject key identifier: F4:1E:A3:71:4B:54:15:64:2A:07:F8:54:10:B5:8B:B0:7D:8B:D4:13 Certificate issuer: /CN=A91A560A/serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Certificate serial: 36A9 Authority key identifier: 86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/3B8DEC18F67C11EFA12FD55AC4F9AE02.roa Signing time: Thu 28 Aug 2025 14:58:17 +0000 ROA not before: Thu 28 Aug 2025 14:58:17 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140766 IP address blocks: 109.237.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:33:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13993 (0x36a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=86DB57E690F7D309293A28BA7C55FB8AF37D5DBD Validity Not Before: Aug 28 14:58:17 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b06e89-46b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:dd:c5:b1:9b:d8:d4:21:ec:08:da:1d:b0:7a: 36:af:99:97:6f:b4:1f:4c:c5:72:aa:5a:9e:4f:89: ff:b9:ee:a0:f4:d0:78:70:21:4c:bb:29:67:bb:79: 68:9c:f6:ee:5f:2f:8a:4a:5d:47:ef:1e:8d:64:6d: 4a:53:5b:58:39:a3:76:5b:9d:53:0b:fa:a2:3f:9c: 2a:b7:f7:53:c5:d9:7b:83:7e:89:eb:d5:1e:73:4d: b0:2c:6c:6c:65:89:13:1f:ed:09:f2:20:f2:a6:95: 33:89:7d:e3:0b:0c:62:a2:7f:6f:d3:18:0e:f7:77: a7:35:c7:21:91:25:48:11:6d:4d:21:99:2a:fd:8f: d3:7f:ad:b2:ae:03:50:f1:c9:78:fc:7c:a7:f2:7c: 8a:6a:4a:7e:d8:2f:7a:99:ad:d9:aa:5d:52:b2:ff: d8:5b:1b:e3:27:cb:9d:35:3a:86:8a:2f:e2:c7:77: a9:f2:e2:c5:70:4f:23:9e:d3:5e:0a:f3:a0:d8:a7: c9:bc:2d:0b:31:ce:cc:a5:ef:ff:4e:ba:44:fe:6f: 20:1b:7e:0d:e6:8e:e7:96:bc:d8:f3:c6:a8:06:e6: 2d:b5:c9:7a:89:1d:66:41:bc:56:03:3e:00:24:39: b2:0c:27:69:91:f0:03:91:00:0e:fa:3c:ef:96:62: a1:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:1E:A3:71:4B:54:15:64:2A:07:F8:54:10:B5:8B:B0:7D:8B:D4:13 X509v3 Authority Key Identifier: keyid:86:DB:57:E6:90:F7:D3:09:29:3A:28:BA:7C:55:FB:8A:F3:7D:5D:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/httX5pD30wkpOii6fFX7ivN9Xb0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/httX5pD30wkpOii6fFX7ivN9Xb0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/B9953DBA1D8A11E2A387D0E408B02CD2/3B8DEC18F67C11EFA12FD55AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 109.237.64.0/21 Signature Algorithm: sha256WithRSAEncryption 91:04:67:ec:c6:d0:b7:2e:09:8a:1b:03:17:b5:8e:67:08:a7: ed:c4:45:a9:99:c2:8a:46:7b:19:f2:c5:b2:ac:b5:6e:4d:08: 7a:9f:fb:ed:44:13:ad:d9:1e:c3:8c:56:71:82:4b:0b:fb:03: 9f:ed:fb:74:44:c1:c8:ab:f3:51:0e:f6:92:d3:4f:ae:2e:a8: 47:ab:c9:10:60:c0:00:41:26:b3:ce:46:e0:61:06:9b:83:dc: b4:b4:a6:df:d6:76:ca:4e:10:f4:02:27:8d:7d:10:df:a6:53: 22:27:95:7e:e8:72:d1:d9:94:9e:ec:ca:4d:5a:10:a7:dd:fa: 54:24:5d:5c:7e:88:6a:67:bb:22:07:f8:9c:eb:dc:44:af:d8: 00:53:62:b7:d3:1d:39:f7:2f:2a:b0:7f:c2:88:05:2b:ff:76: 8a:b0:4a:64:9c:22:40:11:f4:1a:ef:14:94:22:fd:73:ce:10: f9:7a:38:6d:48:e3:73:3e:2f:c5:2a:90:47:19:08:ef:eb:91: db:e2:50:20:ae:2e:5a:d9:39:7a:91:9f:13:0b:d5:48:6f:ee: b9:8e:b6:23:1e:b7:5b:7f:40:67:19:cd:eb:bc:a2:26:39:41: 8e:a8:c9:19:13:d1:16:1a:6b:9f:1f:f5:12:c8:c4:65:5a:ce: 29:18:92:c6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDg2REI1N0U2OTBGN0QzMDkyOTNBMjhCQTdDNTVGQjhB RjM3RDVEQkQwHhcNMjUwODI4MTQ1ODE3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwNmU4OS00NmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsd3FsZvY1CHsCNodsHo2r5mXb7QfTMVyqlqeT4n/ue6g9NB4cCFMuylnu3lo nPbuXy+KSl1H7x6NZG1KU1tYOaN2W51TC/qiP5wqt/dTxdl7g36J69Uec02wLGxs ZYkTH+0J8iDyppUziX3jCwxion9v0xgO93enNcchkSVIEW1NIZkq/Y/Tf62yrgNQ 8cl4/Hyn8nyKakp+2C96ma3Zql1Ssv/YWxvjJ8udNTqGii/ix3ep8uLFcE8jntNe CvOg2KfJvC0LMc7Mpe//TrpE/m8gG34N5o7nlrzY88aoBuYttcl6iR1mQbxWAz4A JDmyDCdpkfADkQAO+jzvlmKhPQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPQeo3FL VBVkKgf4VBC1i7B9i9QTMB8GA1UdIwQYMBaAFIbbV+aQ99MJKToounxV+4rzfV29 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9COTk1M0RCQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9odHRYNXBEMzB3a3BPaWk2ZkZYN2l2TjlY YjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2h0dFg1cEQzMHdrcE9paTZmRlg3aXZOOVhiMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQjk5NTNEQkExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvM0I4REVDMThG NjdDMTFFRkExMkZENTVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBANt7UAwDQYJKoZIhvcNAQELBQADggEBAJEEZ+zG0LcuCYob Axe1jmcIp+3ERamZwopGexnyxbKstW5NCHqf++1EE63ZHsOMVnGCSwv7A5/t+3RE wcir81EO9pLTT64uqEeryRBgwABBJrPORuBhBpuD3LS0pt/WdspOEPQCJ419EN+m UyInlX7octHZlJ7syk1aEKfd+lQkXVx+iGpnuyIH+Jzr3ESv2ABTYrfTHTn3Lyqw f8KIBSv/doqwSmScIkAR9BrvFJQi/XPOEPl6OG1I43M+L8UqkEcZCO/rkdviUCCu LlrZOXqRnxML1Uhv7rmOtiMet1t/QGcZzeu8oiY5QY6oyRkT0RYaa58f9RLIxGVa zikYksY= -----END CERTIFICATE-----Generated at Mon Sep 8 15:50:55 2025 by rpki-client