$ rpki-client -vvf rpki.apnic.net/member_repository/A91B46FE/9B656F8E83E511F09C771E4BC4F9AE02/24C9831E83E611F0AF39BE57C4F9AE02.roa File: 24C9831E83E611F0AF39BE57C4F9AE02.roa (raw, json) Hash identifier: eoWky/ushFlFPOAMp9hbU/1xEcSwmCQfGQqBxUKHPn4= Subject key identifier: 5F:7C:D6:DF:4E:8D:84:29:56:97:F1:68:01:49:C1:3E:42:7B:DD:D9 Certificate issuer: /CN=A91B46FE/serialNumber=4ED0887BD304E04C98FBA53B9B9B02BDE4389703 Certificate serial: 02 Authority key identifier: 4E:D0:88:7B:D3:04:E0:4C:98:FB:A5:3B:9B:9B:02:BD:E4:38:97:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TtCIe9ME4EyY-6U7m5sCveQ4lwM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B46FE/9B656F8E83E511F09C771E4BC4F9AE02/24C9831E83E611F0AF39BE57C4F9AE02.roa Signing time: Thu 28 Aug 2025 08:08:13 +0000 ROA not before: Thu 28 Aug 2025 08:08:13 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154180 IP address blocks: 203.20.42.0/24 maxlen: 24 2001:df6:ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B46FE/9B656F8E83E511F09C771E4BC4F9AE02/TtCIe9ME4EyY-6U7m5sCveQ4lwM.crl rsync://rpki.apnic.net/member_repository/A91B46FE/9B656F8E83E511F09C771E4BC4F9AE02/TtCIe9ME4EyY-6U7m5sCveQ4lwM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TtCIe9ME4EyY-6U7m5sCveQ4lwM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 08:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B46FE, serialNumber=4ED0887BD304E04C98FBA53B9B9B02BDE4389703 Validity Not Before: Aug 28 08:08:13 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b00e6d-9a55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f4:e2:ee:5b:1e:b5:53:8f:eb:e9:c4:49:22: 16:00:16:ff:ca:21:e0:e8:70:c1:0d:68:88:e0:0d: 7d:db:63:67:71:16:10:b3:2a:09:cc:64:87:0d:a8: 89:60:76:0d:2d:ac:f5:7a:bb:e9:35:12:61:dd:6e: ee:7b:ab:d9:75:3f:25:6c:3a:17:3d:74:27:82:96: 66:92:3a:b8:1a:4a:3e:c5:d3:92:95:ae:4d:2a:72: b6:b2:e9:fa:8a:9d:8a:36:45:a7:2c:1e:54:d8:65: 27:95:9b:00:7c:e8:43:c8:fb:a3:18:e8:69:6d:72: 11:6b:b2:43:bd:d6:d8:44:ff:b9:f1:8d:68:d3:ae: de:6d:2b:e1:10:5b:ab:03:5f:7d:41:e7:20:c4:49: 28:a8:20:b0:ef:b0:6a:cc:ff:3b:dc:bc:26:73:8d: 72:45:66:f7:a0:14:03:b2:ad:34:00:b2:08:aa:df: 1b:39:7c:22:dc:00:57:61:51:eb:ff:44:09:7f:10: 66:fc:11:97:65:ca:1c:73:0a:f5:41:22:f4:ad:24: 65:4c:a0:74:ce:63:7c:32:eb:b9:78:b0:79:cf:d0: ce:9a:f0:ea:97:54:0b:af:13:f4:b2:eb:10:0d:58: f7:a2:09:55:5f:d1:52:fd:cb:4c:f2:5c:d2:fa:c4: 0a:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:7C:D6:DF:4E:8D:84:29:56:97:F1:68:01:49:C1:3E:42:7B:DD:D9 X509v3 Authority Key Identifier: keyid:4E:D0:88:7B:D3:04:E0:4C:98:FB:A5:3B:9B:9B:02:BD:E4:38:97:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B46FE/9B656F8E83E511F09C771E4BC4F9AE02/TtCIe9ME4EyY-6U7m5sCveQ4lwM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TtCIe9ME4EyY-6U7m5sCveQ4lwM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B46FE/9B656F8E83E511F09C771E4BC4F9AE02/24C9831E83E611F0AF39BE57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.42.0/24 IPv6: 2001:df6:ec0::/48 Signature Algorithm: sha256WithRSAEncryption 37:07:c0:fe:cc:41:96:8a:e8:2e:5d:d9:71:57:05:91:ad:ea: ee:ee:1d:89:0c:f6:99:b8:f7:40:e5:43:7f:f5:f5:ab:fc:7f: 5d:d0:1d:07:e0:88:81:47:d6:10:7a:52:90:22:f7:a0:63:6f: 23:4f:d8:cd:d7:fc:e0:17:aa:b6:a0:9f:a9:ad:bf:7c:24:e2: 09:4f:06:09:92:ce:83:ae:dd:f0:25:3a:3b:7c:56:a0:5d:f8: 88:20:66:b3:cb:0b:a0:98:c2:fd:14:74:fb:63:a7:71:39:cf: 31:f8:79:8d:fe:3c:aa:c4:90:9b:28:e9:4e:03:26:1e:6a:93: b1:e2:d0:f0:25:5a:b6:3e:f1:14:58:4f:3f:14:ca:01:35:d4: d6:dc:89:35:f2:4b:ea:fa:b6:0f:5b:42:bc:85:b6:47:f3:d1: 2f:2c:66:76:bf:0c:2f:d3:9b:93:4d:46:39:2d:be:6c:2d:26: e2:e3:e4:1e:0f:74:c4:65:8c:9d:e3:04:0a:70:ae:5a:9c:50: 7c:10:97:4e:c2:5f:24:58:36:de:01:94:ea:f5:c4:0d:9e:a2: 95:22:e8:91:51:70:bb:fe:3a:74:6c:72:54:e8:70:dc:77:83: 7a:a1:a9:39:b3:d7:35:2d:0c:e4:67:f4:95:52:1c:d7:00:7b: ab:10:5e:1e -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC NDZGRTExMC8GA1UEBRMoNEVEMDg4N0JEMzA0RTA0Qzk4RkJBNTNCOUI5QjAyQkRF NDM4OTcwMzAeFw0yNTA4MjgwODA4MTNaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YjAwZTZkLTlhNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDH9OLuWx61U4/r6cRJIhYAFv/KIeDocMENaIjgDX3bY2dxFhCzKgnMZIcNqIlg dg0trPV6u+k1EmHdbu57q9l1PyVsOhc9dCeClmaSOrgaSj7F05KVrk0qcray6fqK nYo2RacsHlTYZSeVmwB86EPI+6MY6GltchFrskO91thE/7nxjWjTrt5tK+EQW6sD X31B5yDESSioILDvsGrM/zvcvCZzjXJFZvegFAOyrTQAsgiq3xs5fCLcAFdhUev/ RAl/EGb8EZdlyhxzCvVBIvStJGVMoHTOY3wy67l4sHnP0M6a8OqXVAuvE/Sy6xAN WPeiCVVf0VL9y0zyXNL6xAqPAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUX3zW306N hClWl/FoAUnBPkJ73dkwHwYDVR0jBBgwFoAUTtCIe9ME4EyY+6U7m5sCveQ4lwMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI0NkZFLzlCNjU2RjhFODNF NTExRjA5Qzc3MUU0QkM0RjlBRTAyL1R0Q0llOU1FNEV5WS02VTdtNXNDdmVRNGx3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVHRDSWU5TUU0RXlZLTZVN201c0N2ZVE0bHdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC NDZGRS85QjY1NkY4RTgzRTUxMUYwOUM3NzFFNEJDNEY5QUUwMi8yNEM5ODMxRTgz RTYxMUYwQUYzOUJFNTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAMsUKjAPBAIAAjAJAwcAIAEN9g7AMA0GCSqGSIb3DQEBCwUA A4IBAQA3B8D+zEGWiuguXdlxVwWRreru7h2JDPaZuPdA5UN/9fWr/H9d0B0H4IiB R9YQelKQIvegY28jT9jN1/zgF6q2oJ+prb98JOIJTwYJks6Drt3wJTo7fFagXfiI IGazywugmML9FHT7Y6dxOc8x+HmN/jyqxJCbKOlOAyYeapOx4tDwJVq2PvEUWE8/ FMoBNdTW3Ik18kvq+rYPW0K8hbZH89EvLGZ2vwwv05uTTUY5Lb5sLSbi4+QeD3TE ZYyd4wQKcK5anFB8EJdOwl8kWDbeAZTq9cQNnqKVIuiRUXC7/jp0bHJU6HDcd4N6 oak5s9c1LQzkZ/SVUhzXAHurEF4e -----END CERTIFICATE-----Generated at Fri Sep 19 02:42:27 2025 by rpki-client