$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa File: 8FFA8D36FF0C11EA854DE24CC4F9AE02.roa (raw, json) Hash identifier: LME1ZhAaq4D7iSHVVtHL0FcfX1/v+j8wq+gk8wUnIrk= Subject key identifier: 74:41:4F:28:9B:32:25:E5:7D:32:4B:99:12:95:42:88:99:18:55:19 Certificate issuer: /CN=A91C1323/serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Certificate serial: 606A Authority key identifier: 41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa Signing time: Sat 17 May 2025 20:37:23 +0000 ROA not before: Sat 17 May 2025 20:37:23 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 55355 IP address blocks: 118.143.194.0/24 maxlen: 24 118.143.207.0/24 maxlen: 24 118.143.209.0/24 maxlen: 24 218.188.96.0/24 maxlen: 24 218.188.97.0/24 maxlen: 24 218.188.98.0/24 maxlen: 24 218.188.99.0/24 maxlen: 24 218.188.100.0/24 maxlen: 24 218.188.101.0/24 maxlen: 24 218.188.102.0/24 maxlen: 24 218.189.10.0/24 maxlen: 24 218.189.124.0/24 maxlen: 24 218.189.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 Oct 2025 20:43:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24682 (0x606a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1323, serialNumber=412A6511CFEDCFECB5590C96C8C361E2FED44857 Validity Not Before: May 17 20:37:23 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6828f383-7b68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4b:7f:2d:64:c3:b9:cd:7c:b7:00:58:93:d2: e5:31:15:18:e6:11:33:3e:7f:05:c9:8c:22:b8:80: 9c:a4:67:9e:6b:6a:67:60:79:cf:5a:29:eb:d3:1d: 47:e1:c3:25:56:57:9c:c0:e1:43:b3:06:fe:d4:02: 06:cc:34:80:2a:df:23:fb:9c:4e:38:47:57:7a:45: 39:e2:fa:28:a4:84:4e:bc:70:db:d8:43:ee:54:6a: e9:0b:e4:88:74:a3:2a:6a:bc:7f:f4:98:c3:7e:ba: 43:a4:e2:fa:30:38:51:b3:17:5f:62:04:1f:52:80: 8e:d4:13:8a:f2:2e:7c:92:5d:17:7e:5b:fb:1a:97: 13:d7:98:a8:bb:f3:07:85:5b:fa:68:2d:6d:18:aa: 69:13:f5:c7:52:f9:8a:ca:09:db:ed:7c:a0:52:6b: 84:22:8f:d5:b2:98:c5:d9:df:5a:57:77:22:08:57: 67:69:88:bc:c0:12:c2:40:02:9d:f6:a2:af:d6:09: 99:69:49:11:64:06:f2:68:fb:2c:ad:ea:83:9c:e4: a7:d4:17:95:41:fd:c0:76:89:23:90:72:98:e7:33: ee:68:a5:6f:e0:01:a2:9c:08:2c:9b:16:9f:28:19: 77:27:ef:7e:10:2a:52:00:9c:73:7b:c5:0a:08:81: 63:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:41:4F:28:9B:32:25:E5:7D:32:4B:99:12:95:42:88:99:18:55:19 X509v3 Authority Key Identifier: keyid:41:2A:65:11:CF:ED:CF:EC:B5:59:0C:96:C8:C3:61:E2:FE:D4:48:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/QSplEc_tz-y1WQyWyMNh4v7USFc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QSplEc_tz-y1WQyWyMNh4v7USFc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1323/084D88D495B711EABB824F1BC4F9AE02/8FFA8D36FF0C11EA854DE24CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.143.194.0/24 118.143.207.0/24 118.143.209.0/24 218.188.96.0-218.188.102.255 218.189.10.0/24 218.189.124.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:2e:74:c4:54:d2:8b:a8:3c:3e:e8:29:4c:9b:15:8a:83:e7: f8:4c:4a:2b:7e:37:3d:ee:cb:72:d2:f4:5c:09:00:2d:8c:a9: 58:9d:1d:a1:9a:91:f9:05:25:b3:b3:62:f6:00:99:17:e5:53: 59:c2:17:35:1d:ab:28:a6:62:63:3e:3a:47:d7:f8:f4:2d:58: 47:1a:c9:98:84:98:c9:2b:34:a2:b3:a4:1f:ca:5c:d5:95:4e: 14:e0:63:21:92:1a:76:57:0b:3c:0c:6a:0b:9e:bf:55:17:a4: 76:1b:a7:40:dc:c0:9d:cd:59:f2:7d:98:49:37:12:3b:98:76: 0d:2f:41:18:99:e9:64:12:a6:67:2c:62:29:51:82:75:73:2f: c8:41:eb:08:bb:14:39:c5:64:93:8f:7b:b8:19:8f:9f:68:41: 45:96:9e:6c:47:dd:d6:cf:b1:71:2d:92:a0:a7:df:09:a8:e9: ed:49:21:50:32:0f:c5:78:eb:1c:df:0e:59:9a:71:be:b1:cb: be:84:5a:f7:4c:71:5c:e6:bc:da:a8:ef:fb:82:32:ae:1d:b9: 12:bb:f5:88:fb:b2:43:67:fe:32:f2:d6:bb:b5:78:5d:9e:95: dc:5e:fc:c0:8c:9b:43:43:f2:aa:d7:1d:15:46:56:61:71:23: 40:74:18:be -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICYGowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzEzMjMxMTAvBgNVBAUTKDQxMkE2NTExQ0ZFRENGRUNCNTU5MEM5NkM4QzM2MUUy RkVENDQ4NTcwHhcNMjUwNTE3MjAzNzIzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI4ZjM4My03YjY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUt/LWTDuc18twBYk9LlMRUY5hEzPn8FyYwiuICcpGeea2pnYHnPWinr0x1H 4cMlVlecwOFDswb+1AIGzDSAKt8j+5xOOEdXekU54voopIROvHDb2EPuVGrpC+SI dKMqarx/9JjDfrpDpOL6MDhRsxdfYgQfUoCO1BOK8i58kl0Xflv7GpcT15iou/MH hVv6aC1tGKppE/XHUvmKygnb7XygUmuEIo/VspjF2d9aV3ciCFdnaYi8wBLCQAKd 9qKv1gmZaUkRZAbyaPssreqDnOSn1BeVQf3AdokjkHKY5zPuaKVv4AGinAgsmxaf KBl3J+9+ECpSAJxze8UKCIFjUQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFHRBTyib MiXlfTJLmRKVQoiZGFUZMB8GA1UdIwQYMBaAFEEqZRHP7c/stVkMlsjDYeL+1EhX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTMyMy8wODREODhENDk1 QjcxMUVBQkI4MjRGMUJDNEY5QUUwMi9RU3BsRWNfdHoteTFXUXlXeU1OaDR2N1VT RmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FTcGxFY190ei15MVdReVd5TU5oNHY3VVNGYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzEzMjMvMDg0RDg4RDQ5NUI3MTFFQUJCODI0RjFCQzRGOUFFMDIvOEZGQThEMzZG RjBDMTFFQTg1NERFMjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MDIEAgABMCwDBAB2j8IDBAB2j88DBAB2j9EwDAMEBdq8YAMEANq8ZgMEANq9 CgMEAdq9fDANBgkqhkiG9w0BAQsFAAOCAQEAKy50xFTSi6g8PugpTJsVioPn+ExK K343Pe7LctL0XAkALYypWJ0doZqR+QUls7Ni9gCZF+VTWcIXNR2rKKZiYz46R9f4 9C1YRxrJmISYySs0orOkH8pc1ZVOFOBjIZIadlcLPAxqC56/VRekdhunQNzAnc1Z 8n2YSTcSO5h2DS9BGJnpZBKmZyxiKVGCdXMvyEHrCLsUOcVkk497uBmPn2hBRZae bEfd1s+xcS2SoKffCajp7UkhUDIPxXjrHN8OWZpxvrHLvoRa90xxXOa82qjv+4Iy rh25Erv1iPuyQ2f+MvLWu7V4XZ6V3F78wIybQ0PyqtcdFUZWYXEjQHQYvg== -----END CERTIFICATE-----Generated at Fri Oct 24 10:36:43 2025 by rpki-client