$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/1F578DB08F0111F0BF750433C4F9AE02.roa File: 1F578DB08F0111F0BF750433C4F9AE02.roa (raw, json) Hash identifier: LczUr77JgvxHIuqoELCyex8mBKm8am+vXeaFZ97FdZQ= Subject key identifier: A9:97:14:41:B1:13:87:40:A3:11:CA:48:8E:2C:09:54:29:FB:DB:04 Certificate issuer: /CN=A91B3087/serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Certificate serial: 0C Authority key identifier: 85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/1F578DB08F0111F0BF750433C4F9AE02.roa Signing time: Thu 11 Sep 2025 11:19:03 +0000 ROA not before: Thu 11 Sep 2025 11:19:03 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 154199 IP address blocks: 202.136.74.0/23 maxlen: 23 202.136.74.0/24 maxlen: 24 2402:27a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 07:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12 (0xc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3087, serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Validity Not Before: Sep 11 11:19:03 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c2b027-f59f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ac:0e:b6:a4:a5:04:82:08:8d:68:e1:9e:73: 44:27:27:63:34:61:99:15:f0:6e:3a:dd:82:6d:98: d4:69:61:22:3b:db:d2:67:70:4b:c8:23:45:45:be: 72:0d:77:ee:29:7f:78:5b:ce:1d:b1:66:8d:b1:7c: a8:18:e0:74:fe:23:91:a1:ba:09:ab:5b:16:d6:1f: b3:0d:30:6d:c8:55:2e:68:25:f7:00:59:f6:4a:26: 5f:53:8e:8d:80:e3:a4:d6:c9:00:bf:43:ce:88:92: c4:66:d4:70:de:64:6b:aa:0d:bc:a1:9b:59:1e:ee: 12:78:e3:9b:a5:72:6a:15:8a:53:3b:63:1f:31:18: 21:6e:1b:36:a6:18:c0:82:e9:dc:5a:3b:f1:39:84: f3:5c:11:d2:04:69:b4:75:d6:2e:b9:8c:c4:ce:74: be:cb:58:19:00:f9:43:06:10:62:52:53:48:2f:fa: bb:9a:89:74:89:ae:a4:72:d7:fa:f9:86:a0:2b:62: 7e:e4:40:4d:ca:a3:b9:09:21:75:56:2d:9e:2e:23: 09:97:57:b7:e6:38:40:71:6c:57:33:c5:49:a8:06: 82:b2:a3:f2:19:a6:3d:db:89:46:be:a2:e2:3f:95: ef:cd:87:3e:43:b6:03:09:6c:d8:0b:1b:72:f4:63: 63:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:97:14:41:B1:13:87:40:A3:11:CA:48:8E:2C:09:54:29:FB:DB:04 X509v3 Authority Key Identifier: keyid:85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/1F578DB08F0111F0BF750433C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.136.74.0/23 IPv6: 2402:27a0::/32 Signature Algorithm: sha256WithRSAEncryption 5b:91:52:f3:0b:1c:9f:8e:dc:1e:f6:2e:88:57:56:3e:1f:d2: 79:27:2d:b5:fc:48:dc:f9:00:83:ae:f6:8d:7d:64:0e:12:33: e0:34:dc:07:5a:ac:a0:2b:4c:ae:a4:c2:2e:63:04:57:b1:c9: cc:37:cf:ca:7c:e1:9d:dc:35:57:f2:89:d0:8c:b2:d1:23:54: d2:31:48:40:3f:3d:ca:fe:cb:21:31:03:c8:af:f2:2d:e5:a8: 5c:c9:bb:b7:73:0b:8e:2c:12:2b:84:1e:81:63:83:1b:de:1b: 95:b6:fa:0f:11:76:d3:c2:ef:72:ec:e3:e0:8e:6d:ac:e6:5c: 42:2c:1c:d1:aa:d4:9d:79:08:64:50:1e:12:2e:14:a1:b9:40: de:b8:c0:c3:b2:c1:22:36:ba:4a:c5:21:c3:1e:50:0a:11:ae: 21:14:b9:de:db:76:fa:b3:48:95:e3:db:b6:d5:34:3e:82:38: c5:8b:ab:37:ab:d3:51:5e:16:f7:d1:14:0a:c4:ed:c4:76:5c: a5:b5:40:f7:45:2a:37:bf:7d:ad:19:58:bd:0b:55:d1:cd:35: 7b:25:12:c6:45:ef:16:df:99:df:ab:c1:8e:6b:87:77:b8:61: 3a:8c:52:8d:ae:43:00:13:78:63:75:e9:a2:bb:72:49:fd:5e: 6d:03:f3:7b -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBDDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzA4NzExMC8GA1UEBRMoODUxMDBFNUExRkJBRTVGRTFBNjVDQkYxNTczNDEzMEE4 RTU0MUJCMjAeFw0yNTA5MTExMTE5MDNaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YzJiMDI3LWY1OWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVrA62pKUEggiNaOGec0QnJ2M0YZkV8G463YJtmNRpYSI729JncEvII0VFvnIN d+4pf3hbzh2xZo2xfKgY4HT+I5GhugmrWxbWH7MNMG3IVS5oJfcAWfZKJl9Tjo2A 46TWyQC/Q86IksRm1HDeZGuqDbyhm1ke7hJ445ulcmoVilM7Yx8xGCFuGzamGMCC 6dxaO/E5hPNcEdIEabR11i65jMTOdL7LWBkA+UMGEGJSU0gv+ruaiXSJrqRy1/r5 hqArYn7kQE3Ko7kJIXVWLZ4uIwmXV7fmOEBxbFczxUmoBoKyo/IZpj3biUa+ouI/ le/Nhz5DtgMJbNgLG3L0Y2M9AgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUqZcUQbET h0CjEcpIjiwJVCn72wQwHwYDVR0jBBgwFoAUhRAOWh+65f4aZcvxVzQTCo5UG7Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzMDg3LzQ4ODgzMTMyOEVB QTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0YVpjdnhWelFUQ281VUc3 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFJBT1doLTY1ZjRhWmN2eFZ6UVRDbzVVRzdJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzA4Ny80ODg4MzEzMjhFQUExMUYwQjgzNTI5NDlDNEY5QUUwMi8xRjU3OERCMDhG MDExMUYwQkY3NTA0MzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAcqISjANBAIAAjAHAwUAJAInoDANBgkqhkiG9w0BAQsFAAOC AQEAW5FS8wscn47cHvYuiFdWPh/SeScttfxI3PkAg672jX1kDhIz4DTcB1qsoCtM rqTCLmMEV7HJzDfPynzhndw1V/KJ0Iyy0SNU0jFIQD89yv7LITEDyK/yLeWoXMm7 t3MLjiwSK4QegWODG94blbb6DxF208Lvcuzj4I5trOZcQiwc0arUnXkIZFAeEi4U oblA3rjAw7LBIja6SsUhwx5QChGuIRS53tt2+rNIlePbttU0PoI4xYurN6vTUV4W 99EUCsTtxHZcpbVA90UqN799rRlYvQtV0c01eyUSxkXvFt+Z36vBjmuHd7hhOoxS ja5DABN4Y3XportySf1ebQPzew== -----END CERTIFICATE-----Generated at Fri Sep 19 11:57:34 2025 by rpki-client