$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/3D51EF7C8F0111F087307F35C4F9AE02.roa File: 3D51EF7C8F0111F087307F35C4F9AE02.roa (raw, json) Hash identifier: kGXFH8n6QfG+BvHqc1nKCy9yOgjS/7C0SlvW+QNDSlw= Subject key identifier: 49:F8:D9:FA:07:45:FD:FA:E0:2D:68:9F:33:E0:C1:E4:3F:B1:04:74 Certificate issuer: /CN=A91B3087/serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Certificate serial: 0E Authority key identifier: 85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/3D51EF7C8F0111F087307F35C4F9AE02.roa Signing time: Thu 11 Sep 2025 11:19:53 +0000 ROA not before: Thu 11 Sep 2025 11:19:53 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 138998 IP address blocks: 202.136.75.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 07:06:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3087, serialNumber=85100E5A1FBAE5FE1A65CBF15734130A8E541BB2 Validity Not Before: Sep 11 11:19:53 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c2b059-ad9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:42:a4:22:e7:69:ab:0a:5b:6a:4f:88:6b:74: 81:3a:79:56:01:ab:3d:c4:05:49:42:d6:d6:b0:51: 2c:50:9c:93:9b:a2:9d:b2:fe:64:b5:0b:67:5f:f8: 94:f2:14:a6:a5:f4:ab:26:a8:41:98:d3:3f:01:77: 16:f4:bd:63:91:64:b4:83:97:56:40:f9:25:8e:1f: 84:0a:25:52:ba:95:f4:63:dc:f9:2b:a2:dc:a6:0f: 43:32:40:3d:b5:c0:c9:e4:e8:25:00:17:ae:f1:3d: 07:ca:85:4a:8c:bb:de:7d:f3:40:3f:97:b4:e2:4d: a7:94:13:12:00:f1:fe:3a:fd:5b:64:1a:d4:ec:f0: 7a:fb:b5:3d:3c:a7:30:64:ba:49:4f:d3:c7:03:d4: 9b:7e:4f:3a:c8:87:a7:f0:8c:e1:71:ab:37:b5:84: d2:0f:dc:c5:1b:25:8e:28:a6:df:b8:ec:e2:78:ab: eb:18:e7:12:1c:cb:4f:21:b8:d1:43:c7:aa:de:23: 08:bc:aa:34:ac:88:43:d1:d4:20:0f:b0:00:49:4c: 14:1e:26:1b:12:86:fd:66:e4:d3:a7:5e:31:16:43: 84:1f:7a:77:d9:69:79:a1:fc:e9:ad:1f:8c:bc:6a: c1:1d:e1:cf:61:b5:c8:3f:5f:b3:9a:86:ec:0d:43: fe:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:F8:D9:FA:07:45:FD:FA:E0:2D:68:9F:33:E0:C1:E4:3F:B1:04:74 X509v3 Authority Key Identifier: keyid:85:10:0E:5A:1F:BA:E5:FE:1A:65:CB:F1:57:34:13:0A:8E:54:1B:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/hRAOWh-65f4aZcvxVzQTCo5UG7I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hRAOWh-65f4aZcvxVzQTCo5UG7I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3087/488831328EAA11F0B8352949C4F9AE02/3D51EF7C8F0111F087307F35C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.136.75.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:0b:9d:c8:aa:19:95:f3:83:4e:21:e4:0e:21:79:70:af:2e: 06:65:fc:be:fc:eb:cf:2d:aa:d7:cb:8f:69:c5:24:fd:f7:5b: 23:44:22:46:53:f0:e3:10:91:67:55:65:b8:a9:a7:1d:47:58: ff:cc:c6:e1:cb:fa:3e:9a:4f:cd:05:4c:c6:86:c2:15:90:83: 6b:ff:75:29:70:0b:fd:02:8c:aa:9e:2b:a8:98:ae:d8:b2:b1: f0:de:61:4f:a0:c8:36:fd:b4:64:44:a1:02:c5:68:e3:20:01: 6d:c1:41:01:5b:85:04:b7:c1:7a:1d:b5:2f:fa:c1:cb:cf:76: 9f:c2:53:49:b3:e9:20:aa:b8:fa:75:8c:42:2a:0a:fa:8b:e9: 20:1f:2a:ce:44:0b:b5:c4:ef:47:38:08:ae:a6:4b:fd:f6:2a: 15:ca:cb:91:0e:aa:fb:ed:b5:60:b4:62:c3:18:4a:88:91:a9: 4b:c2:e0:71:cf:78:4e:35:9d:65:c6:f3:ef:60:54:7a:d2:e8: 6c:9f:40:43:97:65:36:99:c2:45:54:f4:11:58:8b:ee:95:15: d0:a1:0f:bd:0f:96:36:ad:e0:3b:05:c2:8d:b2:e8:e1:60:a3: ed:31:56:04:6c:f7:23:68:95:8f:9e:18:ac:91:bc:57:de:2b: 21:a5:ba:1b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC MzA4NzExMC8GA1UEBRMoODUxMDBFNUExRkJBRTVGRTFBNjVDQkYxNTczNDEzMEE4 RTU0MUJCMjAeFw0yNTA5MTExMTE5NTNaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YzJiMDU5LWFkOWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1QqQi52mrCltqT4hrdIE6eVYBqz3EBUlC1tawUSxQnJObop2y/mS1C2df+JTy FKal9KsmqEGY0z8Bdxb0vWORZLSDl1ZA+SWOH4QKJVK6lfRj3PkrotymD0MyQD21 wMnk6CUAF67xPQfKhUqMu95980A/l7TiTaeUExIA8f46/VtkGtTs8Hr7tT08pzBk uklP08cD1Jt+TzrIh6fwjOFxqze1hNIP3MUbJY4opt+47OJ4q+sY5xIcy08huNFD x6reIwi8qjSsiEPR1CAPsABJTBQeJhsShv1m5NOnXjEWQ4QfenfZaXmh/OmtH4y8 asEd4c9htcg/X7OahuwNQ/7TAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUSfjZ+gdF /frgLWifM+DB5D+xBHQwHwYDVR0jBBgwFoAUhRAOWh+65f4aZcvxVzQTCo5UG7Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUIzMDg3LzQ4ODgzMTMyOEVB QTExRjBCODM1Mjk0OUM0RjlBRTAyL2hSQU9XaC02NWY0YVpjdnhWelFUQ281VUc3 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaFJBT1doLTY1ZjRhWmN2eFZ6UVRDbzVVRzdJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC MzA4Ny80ODg4MzEzMjhFQUExMUYwQjgzNTI5NDlDNEY5QUUwMi8zRDUxRUY3QzhG MDExMUYwODczMDdGMzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMqISzANBgkqhkiG9w0BAQsFAAOCAQEAHwudyKoZlfODTiHk DiF5cK8uBmX8vvzrzy2q18uPacUk/fdbI0QiRlPw4xCRZ1VluKmnHUdY/8zG4cv6 PppPzQVMxobCFZCDa/91KXAL/QKMqp4rqJiu2LKx8N5hT6DINv20ZEShAsVo4yAB bcFBAVuFBLfBeh21L/rBy892n8JTSbPpIKq4+nWMQioK+ovpIB8qzkQLtcTvRzgI rqZL/fYqFcrLkQ6q++21YLRiwxhKiJGpS8Lgcc94TjWdZcbz72BUetLobJ9AQ5dl NpnCRVT0EViL7pUV0KEPvQ+WNq3gOwXCjbLo4WCj7TFWBGz3I2iVj54YrJG8V94r IaW6Gw== -----END CERTIFICATE-----Generated at Fri Sep 19 11:57:40 2025 by rpki-client