$ rpki-client -vvf rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B9CCEC5A72E411ED833AE326C4F9AE02.roa File: B9CCEC5A72E411ED833AE326C4F9AE02.roa (raw, json) Hash identifier: PWv8/9+Uhep2yT4HPtU6HwobEUDh72i1to9IIzKKwYY= Subject key identifier: 3E:39:BC:FD:87:62:7D:A0:60:E1:AC:2E:DB:D0:14:0B:B1:C1:0D:FC Certificate issuer: /CN=A91C326F/serialNumber=392F36E0A450053C3DC66D2E3894E10CA733DDA6 Certificate serial: 0725 Authority key identifier: 39:2F:36:E0:A4:50:05:3C:3D:C6:6D:2E:38:94:E1:0C:A7:33:DD:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B9CCEC5A72E411ED833AE326C4F9AE02.roa Signing time: Sat 30 Aug 2025 22:44:37 +0000 ROA not before: Sat 30 Aug 2025 22:44:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 140224 IP address blocks: 121.54.188.0/24 maxlen: 24 121.54.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.crl rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 22:15:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1829 (0x725) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C326F, serialNumber=392F36E0A450053C3DC66D2E3894E10CA733DDA6 Validity Not Before: Aug 30 22:44:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b37ed5-d117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:74:da:b8:66:6b:36:08:99:41:8d:cc:ed:5f: 05:ce:74:c8:a3:14:78:c4:f1:3a:3c:06:d6:36:dd: e6:66:f7:25:7d:80:73:20:52:3e:2d:21:27:85:30: f8:62:22:d7:0d:2b:39:e0:62:b8:7f:ca:d8:c4:51: 31:e2:38:28:69:32:bb:1d:03:55:30:fa:2a:d3:c6: 12:a7:22:a6:13:59:24:4c:17:2b:44:4b:44:05:77: e6:e3:fa:7c:f1:2e:1d:c1:83:56:c6:d1:f6:ce:8b: 99:c4:46:56:56:f4:60:a5:38:ad:c7:a5:2a:81:08: b7:cf:eb:fc:ba:5b:3e:2b:4a:6f:d3:86:7f:e2:21: 82:26:7e:91:00:00:65:d0:fd:4c:91:1b:cf:89:f7: 0c:ad:e3:e3:42:bd:f6:d0:b4:1c:3f:9c:15:b8:3f: fc:dc:a1:bb:58:f6:49:1f:26:de:da:98:27:d2:3b: 7a:ca:4c:27:2d:9b:e3:a2:01:3e:7f:57:17:ca:68: b9:ca:f7:58:2a:32:f0:2a:a9:30:0a:5f:c8:61:fc: 21:06:9b:84:ad:9a:18:ae:ed:7e:41:60:40:58:0b: d3:95:41:ac:32:4b:c3:15:5d:65:eb:ea:dd:a6:64: 4a:bd:ac:2f:23:40:63:97:03:47:52:fd:83:a0:f4: 61:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:39:BC:FD:87:62:7D:A0:60:E1:AC:2E:DB:D0:14:0B:B1:C1:0D:FC X509v3 Authority Key Identifier: keyid:39:2F:36:E0:A4:50:05:3C:3D:C6:6D:2E:38:94:E1:0C:A7:33:DD:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/OS824KRQBTw9xm0uOJThDKcz3aY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OS824KRQBTw9xm0uOJThDKcz3aY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C326F/7866F5305FC711EB8A69202EC4F9AE02/B9CCEC5A72E411ED833AE326C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.54.188.0/23 Signature Algorithm: sha256WithRSAEncryption c9:1b:3a:4d:c0:b2:1a:2e:6e:3e:28:d3:01:36:a0:ef:63:20: 6a:20:86:d4:d1:1b:51:d9:91:35:00:dd:2f:32:43:78:a5:ef: b7:7c:ee:28:74:a5:9b:d9:eb:09:00:b0:2d:14:c6:1e:c0:d3: a0:d7:5a:1d:94:e1:f7:53:23:ab:05:34:90:9d:8d:28:22:db: c9:cd:f2:93:27:27:b5:2d:62:2f:a9:01:68:6c:ae:2f:b8:74: 51:ae:e7:34:dd:7f:83:3a:c1:09:7d:bf:26:a7:77:03:91:17: 5f:f5:f8:8d:2f:23:80:29:41:43:fd:db:6f:de:97:69:1d:77: 08:b7:8c:b2:a7:00:39:78:96:7e:2d:53:c3:14:30:d2:8f:70: 24:f9:da:c1:9a:29:b9:ff:eb:4d:4b:7f:6f:fa:03:37:42:ab: 81:6d:dd:3f:22:64:4d:8f:5a:cc:8c:40:be:e2:6d:6e:7b:27: ae:2c:28:06:cf:78:86:5f:e5:fb:20:3c:75:0f:71:b8:c5:ee: 96:ab:3b:e1:d6:e4:29:68:1a:54:f7:8e:41:26:4d:9b:25:9f: 98:bc:79:06:db:e7:c8:e0:2d:7e:3c:be:f7:15:5f:35:fd:b6: 27:16:20:d8:3d:2e:11:3c:51:65:57:53:5f:fe:3b:f7:b2:fa: 74:ad:a5:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICByUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMyNkYxMTAvBgNVBAUTKDM5MkYzNkUwQTQ1MDA1M0MzREM2NkQyRTM4OTRFMTBD QTczM0REQTYwHhcNMjUwODMwMjI0NDM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIzN2VkNS1kMTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp3TauGZrNgiZQY3M7V8FznTIoxR4xPE6PAbWNt3mZvclfYBzIFI+LSEnhTD4 YiLXDSs54GK4f8rYxFEx4jgoaTK7HQNVMPoq08YSpyKmE1kkTBcrREtEBXfm4/p8 8S4dwYNWxtH2zouZxEZWVvRgpTitx6UqgQi3z+v8uls+K0pv04Z/4iGCJn6RAABl 0P1MkRvPifcMrePjQr320LQcP5wVuD/83KG7WPZJHybe2pgn0jt6ykwnLZvjogE+ f1cXymi5yvdYKjLwKqkwCl/IYfwhBpuErZoYru1+QWBAWAvTlUGsMkvDFV1l6+rd pmRKvawvI0BjlwNHUv2DoPRhjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD45vP2H Yn2gYOGsLtvQFAuxwQ38MB8GA1UdIwQYMBaAFDkvNuCkUAU8PcZtLjiU4QynM92m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzI2Ri83ODY2RjUzMDVG QzcxMUVCOEE2OTIwMkVDNEY5QUUwMi9PUzgyNEtSUUJUdzl4bTB1T0pUaERLY3oz YVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09TODI0S1JRQlR3OXhtMHVPSlRoREtjejNhWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMyNkYvNzg2NkY1MzA1RkM3MTFFQjhBNjkyMDJFQzRGOUFFMDIvQjlDQ0VDNUE3 MkU0MTFFRDgzM0FFMzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF5NrwwDQYJKoZIhvcNAQELBQADggEBAMkbOk3Ashoubj4o 0wE2oO9jIGoghtTRG1HZkTUA3S8yQ3il77d87ih0pZvZ6wkAsC0Uxh7A06DXWh2U 4fdTI6sFNJCdjSgi28nN8pMnJ7UtYi+pAWhsri+4dFGu5zTdf4M6wQl9vyandwOR F1/1+I0vI4ApQUP922/el2kddwi3jLKnADl4ln4tU8MUMNKPcCT52sGaKbn/601L f2/6AzdCq4Ft3T8iZE2PWsyMQL7ibW57J64sKAbPeIZf5fsgPHUPcbjF7parO+HW 5CloGlT3jkEmTZsln5i8eQbb58jgLX48vvcVXzX9ticWINg9LhE8UWVXU1/+O/ey +nStpTw= -----END CERTIFICATE-----Generated at Fri Sep 5 08:53:42 2025 by rpki-client