$ rpki-client -vvf rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B8D1689472E411ED833AE326C4F9AE02.roa File: B8D1689472E411ED833AE326C4F9AE02.roa (raw, json) Hash identifier: KnjjlwBGZGlHwB2/vZh3+dF2wHN6eqe/SSteWBcMXo0= Subject key identifier: DD:2E:96:C5:CA:30:EB:19:5A:86:60:FB:0D:84:45:DF:AB:93:06:05 Certificate issuer: /CN=A91C326F/serialNumber=392F36E0A450053C3DC66D2E3894E10CA733DDA6 Certificate serial: 0724 Authority key identifier: 39:2F:36:E0:A4:50:05:3C:3D:C6:6D:2E:38:94:E1:0C:A7:33:DD:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B8D1689472E411ED833AE326C4F9AE02.roa Signing time: Sat 30 Aug 2025 22:44:37 +0000 ROA not before: Sat 30 Aug 2025 22:44:36 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134176 IP address blocks: 121.54.188.0/24 maxlen: 24 121.54.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.crl rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:15:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1828 (0x724) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C326F, serialNumber=392F36E0A450053C3DC66D2E3894E10CA733DDA6 Validity Not Before: Aug 30 22:44:36 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b37ed4-60e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:be:69:ed:75:93:74:30:e9:89:79:2b:59:d1: 23:49:b0:e4:c9:d9:4f:32:c9:39:ef:c8:df:f5:14: 47:5c:eb:20:a1:91:35:2a:e6:bc:bf:bf:c2:7d:6a: 5f:91:df:23:58:93:63:56:44:37:ee:79:b0:bb:51: 78:e8:68:cf:e2:e4:11:9a:a5:ce:69:ce:eb:af:25: 8e:26:4b:4e:85:d8:45:f3:8e:a8:ab:bf:44:f5:5f: bb:63:68:c4:42:1a:97:2d:f9:4e:f6:a6:8a:c2:03: d5:35:b5:b8:2b:01:af:96:c3:1e:3c:fa:9a:ce:9c: 55:76:67:47:ab:fe:41:81:83:58:e7:a6:5a:6a:df: 93:7c:3f:67:91:2f:3b:f6:69:05:46:7c:e8:94:b4: 2f:46:c7:46:53:04:e6:1b:95:ae:aa:6d:7a:42:65: 66:98:24:97:e5:f4:b0:41:aa:da:bb:ee:91:a1:19: dc:2c:cb:d8:8b:d6:83:ba:6a:c9:e8:0c:93:30:52: bf:f6:e5:8a:58:48:c2:b5:f9:36:ed:91:fe:44:d3: 26:5f:d0:fc:7e:fa:88:8a:79:43:f0:82:26:d6:d9: 57:0d:cd:e0:a9:af:57:c8:8d:da:cc:8c:6c:24:3d: bb:ed:d4:ca:be:0e:ed:92:e8:02:ab:b4:e6:a3:d0: c7:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:2E:96:C5:CA:30:EB:19:5A:86:60:FB:0D:84:45:DF:AB:93:06:05 X509v3 Authority Key Identifier: keyid:39:2F:36:E0:A4:50:05:3C:3D:C6:6D:2E:38:94:E1:0C:A7:33:DD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B8D1689472E411ED833AE326C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.54.188.0/23 Signature Algorithm: sha256WithRSAEncryption d4:5a:3b:10:74:c4:85:01:46:a2:18:fb:ea:7f:17:b8:c1:f3: 78:0a:c8:3f:d9:5d:68:8b:13:7a:3c:50:cd:8e:fc:5b:78:5b: 22:90:54:62:1c:d5:59:18:07:e4:23:fa:e7:88:f8:0a:58:db: 55:ba:f8:58:b1:a5:77:0a:a2:92:b8:47:b9:ef:db:60:ee:9a: a7:2d:75:7b:6d:d9:07:f5:e3:69:66:62:64:50:90:c9:d7:d0: 07:5e:f8:25:cc:d1:42:27:96:72:d8:12:a3:f3:9d:e5:38:57: e1:84:3c:c4:a3:b2:ba:e0:6b:60:ed:f8:b0:b6:bf:91:4d:c7: 25:8d:a9:c9:7e:83:6b:82:f0:dd:82:9d:94:03:a4:f2:39:1c: 06:5d:5d:1b:7a:1b:6c:df:0f:80:b4:b6:72:b3:55:58:fd:89: 86:ad:fb:c8:fb:13:43:47:8b:1f:6f:cc:9f:b5:d7:16:73:04: ed:98:b0:b3:fa:55:49:67:fb:3e:ab:5b:86:55:b1:98:e9:96: 69:52:18:c0:fa:bd:9f:cf:f4:38:83:3a:07:e3:22:32:34:11: 6c:e4:eb:55:e1:4e:4c:d7:78:93:7d:7d:7b:51:df:74:87:0e: 42:c5:0c:de:91:db:00:4b:b5:50:89:62:27:d0:c3:83:12:60: 08:2c:33:65 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICByQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMyNkYxMTAvBgNVBAUTKDM5MkYzNkUwQTQ1MDA1M0MzREM2NkQyRTM4OTRFMTBD QTczM0REQTYwHhcNMjUwODMwMjI0NDM2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzN2VkNC02MGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsr5p7XWTdDDpiXkrWdEjSbDkydlPMsk578jf9RRHXOsgoZE1Kua8v7/CfWpf kd8jWJNjVkQ37nmwu1F46GjP4uQRmqXOac7rryWOJktOhdhF846oq79E9V+7Y2jE QhqXLflO9qaKwgPVNbW4KwGvlsMePPqazpxVdmdHq/5BgYNY56Zaat+TfD9nkS87 9mkFRnzolLQvRsdGUwTmG5Wuqm16QmVmmCSX5fSwQarau+6RoRncLMvYi9aDumrJ 6AyTMFK/9uWKWEjCtfk27ZH+RNMmX9D8fvqIinlD8IIm1tlXDc3gqa9XyI3azIxs JD277dTKvg7tkugCq7Tmo9DH7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFN0ulsXK MOsZWoZg+w2ERd+rkwYFMB8GA1UdIwQYMBaAFDkvNuCkUAU8PcZtLjiU4QynM92m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzI2Ri83ODY2RjUzMDVG QzcxMUVCOEE2OTIwMkVDNEY5QUUwMi9PUzgyNEtSUUJUdzl4bTB1T0pUaERLY3oz YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09TODI0S1JRQlR3OXhtMHVPSlRoREtjejNhWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMyNkYvNzg2NkY1MzA1RkM3MTFFQjhBNjkyMDJFQzRGOUFFMDIvQjhEMTY4OTQ3 MkU0MTFFRDgzM0FFMzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF5NrwwDQYJKoZIhvcNAQELBQADggEBANRaOxB0xIUBRqIY ++p/F7jB83gKyD/ZXWiLE3o8UM2O/Ft4WyKQVGIc1VkYB+Qj+ueI+ApY21W6+Fix pXcKopK4R7nv22DumqctdXtt2Qf142lmYmRQkMnX0Ade+CXM0UInlnLYEqPzneU4 V+GEPMSjsrrga2Dt+LC2v5FNxyWNqcl+g2uC8N2CnZQDpPI5HAZdXRt6G2zfD4C0 tnKzVVj9iYat+8j7E0NHix9vzJ+11xZzBO2YsLP6VUln+z6rW4ZVsZjplmlSGMD6 vZ/P9DiDOgfjIjI0EWzk61XhTkzXeJN9fXtR33SHDkLFDN6R2wBLtVCJYifQw4MS YAgsM2U= -----END CERTIFICATE-----Generated at Sat Sep 6 12:40:50 2025 by rpki-client