$ rpki-client -vvf rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8BB1EB9E1C8A11EABAA73A62C4F9AE02.roa File: 8BB1EB9E1C8A11EABAA73A62C4F9AE02.roa (raw, json) Hash identifier: ufbhLIgMA/VLskicM2b7dedBW1kGeaUN1gsoMiATTdU= Subject key identifier: B6:9C:E8:E0:51:17:F5:B5:5E:67:17:6C:1E:AF:2D:D9:F1:D5:EA:AC Certificate issuer: /CN=A91A865F/serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Certificate serial: 0C02 Authority key identifier: 16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8BB1EB9E1C8A11EABAA73A62C4F9AE02.roa Signing time: Thu 28 Aug 2025 19:10:15 +0000 ROA not before: Thu 28 Aug 2025 19:10:15 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38835 IP address blocks: 45.123.104.0/22 maxlen: 24 103.63.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Sep 2025 18:58:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3074 (0xc02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A865F, serialNumber=161E022AE8975112EE7589D49B31660CA90A0410 Validity Not Before: Aug 28 19:10:15 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b0a996-b09f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:81:87:97:0f:d6:b5:46:54:cb:f4:a2:f1:d9: 78:7b:82:9c:e0:fb:67:c0:72:1c:b4:3e:16:92:a8: 4e:20:d5:4e:35:b3:d5:26:e6:e3:ad:91:31:83:ae: 09:51:5e:2b:b5:e8:0f:16:48:37:dc:a7:95:6e:2a: 06:92:0f:33:b1:54:d8:95:2d:50:66:aa:e5:a1:69: 17:2b:4d:20:b1:ba:52:43:77:b0:66:3f:c4:bb:10: e8:75:82:95:ce:ad:89:12:11:38:1a:1d:dd:eb:ad: 92:ad:de:be:5e:6f:48:7a:70:ef:a2:5d:50:d8:2f: f6:47:d4:a8:5c:29:0a:9a:86:16:5e:23:2c:16:72: 12:86:bd:75:f3:91:dc:24:97:7e:74:a5:c2:18:cc: d9:30:2f:1d:0e:29:5b:07:59:9a:cb:1c:d6:0f:0e: a9:bf:f5:f2:f8:70:94:d8:2a:0e:0a:b0:b3:db:30: ab:8c:9f:63:34:ac:dd:75:6b:56:1a:fc:7c:a2:88: b1:90:c1:3e:56:56:09:39:53:d1:5e:cd:8a:68:f2: 78:88:79:56:3b:0d:b1:98:19:c4:c9:52:7f:5a:3c: 72:d3:c9:1f:97:5a:cd:04:8e:4f:7a:3d:92:09:ae: 64:5c:4d:49:e4:af:a3:37:60:a6:41:ab:86:26:fd: 47:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:9C:E8:E0:51:17:F5:B5:5E:67:17:6C:1E:AF:2D:D9:F1:D5:EA:AC X509v3 Authority Key Identifier: keyid:16:1E:02:2A:E8:97:51:12:EE:75:89:D4:9B:31:66:0C:A9:0A:04:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/Fh4CKuiXURLudYnUmzFmDKkKBBA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fh4CKuiXURLudYnUmzFmDKkKBBA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A865F/BF966E4A1C8911EAA9B95761C4F9AE02/8BB1EB9E1C8A11EABAA73A62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.123.104.0/22 103.63.228.0/22 Signature Algorithm: sha256WithRSAEncryption 75:c1:ed:e9:9b:a1:cf:65:87:d6:16:1c:b5:75:73:23:8a:4d: 42:51:1f:b4:25:75:f1:72:9a:94:70:2b:10:71:32:fa:56:84: 10:86:86:f8:1c:f8:f0:6c:21:20:27:85:c4:41:69:53:c2:ab: 9b:00:27:79:15:80:06:eb:c9:0c:14:be:f9:5f:c8:cd:d7:3b: 80:e5:19:dd:b2:64:57:c8:69:93:23:3d:f7:b7:7d:fe:70:6f: c1:1b:44:91:59:e7:6b:92:a2:3b:2b:76:91:83:4e:d9:68:5d: fb:cf:21:c5:ac:33:80:c9:65:a0:0a:87:a4:eb:dc:5d:f2:cb: 29:51:53:2c:5c:14:ba:ab:3b:44:74:f3:96:6b:bb:64:b9:eb: 52:62:d5:0b:00:84:6a:32:99:44:36:ae:0d:1d:57:a0:35:73: e1:ad:e3:7a:db:c6:85:1e:2c:36:cd:47:71:cc:e5:9e:c4:de: 0d:11:5d:77:e0:7a:19:4f:9f:1b:af:a4:a9:a8:42:bb:f6:a0: ca:7a:7f:e1:ae:f1:47:3a:0e:3f:7e:45:86:17:ff:5e:06:90: 85:7c:80:73:1f:07:86:52:87:d2:84:fe:74:27:0f:e6:31:cc: ee:33:41:2c:f6:81:e2:cb:06:7b:bf:2f:19:6a:ea:a9:52:92: 1b:80:9f:85 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2NUYxMTAvBgNVBAUTKDE2MUUwMjJBRTg5NzUxMTJFRTc1ODlENDlCMzE2NjBD QTkwQTA0MTAwHhcNMjUwODI4MTkxMDE1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwYTk5Ni1iMDlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+IGHlw/WtUZUy/Si8dl4e4Kc4PtnwHIctD4WkqhOINVONbPVJubjrZExg64J UV4rtegPFkg33KeVbioGkg8zsVTYlS1QZqrloWkXK00gsbpSQ3ewZj/EuxDodYKV zq2JEhE4Gh3d662Srd6+Xm9IenDvol1Q2C/2R9SoXCkKmoYWXiMsFnIShr1185Hc JJd+dKXCGMzZMC8dDilbB1mayxzWDw6pv/Xy+HCU2CoOCrCz2zCrjJ9jNKzddWtW Gvx8ooixkME+VlYJOVPRXs2KaPJ4iHlWOw2xmBnEyVJ/Wjxy08kfl1rNBI5Pej2S Ca5kXE1J5K+jN2CmQauGJv1HWQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLac6OBR F/W1XmcXbB6vLdnx1eqsMB8GA1UdIwQYMBaAFBYeAirol1ES7nWJ1JsxZgypCgQQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODY1Ri9CRjk2NkU0QTFD ODkxMUVBQTlCOTU3NjFDNEY5QUUwMi9GaDRDS3VpWFVSTHVkWW5VbXpGbURLa0tC QkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZoNENLdWlYVVJMdWRZblVtekZtREtrS0JCQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg2NUYvQkY5NjZFNEExQzg5MTFFQUE5Qjk1NzYxQzRGOUFFMDIvOEJCMUVCOUUx QzhBMTFFQUJBQTczQTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIte2gDBAJnP+QwDQYJKoZIhvcNAQELBQADggEBAHXB7emb oc9lh9YWHLV1cyOKTUJRH7QldfFympRwKxBxMvpWhBCGhvgc+PBsISAnhcRBaVPC q5sAJ3kVgAbryQwUvvlfyM3XO4DlGd2yZFfIaZMjPfe3ff5wb8EbRJFZ52uSojsr dpGDTtloXfvPIcWsM4DJZaAKh6Tr3F3yyylRUyxcFLqrO0R085Zru2S561Ji1QsA hGoymUQ2rg0dV6A1c+Gt43rbxoUeLDbNR3HM5Z7E3g0RXXfgehlPnxuvpKmoQrv2 oMp6f+Gu8Uc6Dj9+RYYX/14GkIV8gHMfB4ZSh9KE/nQnD+YxzO4zQSz2geLLBnu/ Lxlq6qlSkhuAn4U= -----END CERTIFICATE-----Generated at Fri Sep 19 07:10:50 2025 by rpki-client