$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/E5FC085A843011F0971BDC44C4F9AE02.roa File: E5FC085A843011F0971BDC44C4F9AE02.roa (raw, json) Hash identifier: TmQjJA9MkbzXubDuYe9ot48CH91CXeYRqJHt5RQNZcM= Subject key identifier: 8C:C5:6F:B3:61:8C:34:2E:6C:E1:5F:AA:0E:45:E8:C9:8D:60:9D:1A Certificate issuer: /CN=A91C8307/serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Certificate serial: 87 Authority key identifier: 4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/E5FC085A843011F0971BDC44C4F9AE02.roa Signing time: Thu 28 Aug 2025 17:03:20 +0000 ROA not before: Thu 28 Aug 2025 17:03:20 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 133496 IP address blocks: 161.248.6.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 07:05:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 135 (0x87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8307, serialNumber=4B092DF104280F45BC3F2796F401CC2B4C6144E9 Validity Not Before: Aug 28 17:03:20 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68b08bd8-b31d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:dd:8c:43:8f:e2:5e:60:b6:30:f9:44:05:b3: 48:5d:b6:a8:d8:a9:88:49:7c:97:e5:05:50:dd:52: 7b:6e:a5:2e:a0:37:2e:24:db:34:4f:cb:07:60:44: 4d:30:70:fa:8e:44:6c:29:a8:d6:79:da:4d:d8:cd: 62:ae:52:53:d4:37:74:3a:19:02:00:46:e2:26:56: cd:f6:34:88:aa:e6:b0:2b:13:a5:6e:58:78:2a:f1: 6c:7c:50:6e:86:f7:4c:5a:ce:10:da:d0:fd:be:3c: b8:27:8c:71:7f:bf:a3:7b:94:52:79:8d:84:02:83: 59:c9:40:7a:06:af:bf:7a:35:9b:af:be:8d:da:26: 16:b7:89:e3:e2:ed:53:6e:b4:61:02:cd:b5:35:11: 0a:1e:0e:b6:de:10:e4:5d:b5:31:fe:38:97:5f:29: 83:d8:70:e1:17:e6:5c:8d:47:64:01:5f:bc:28:98: 21:a9:2b:6a:8f:74:b8:6f:e0:fe:b7:89:15:77:8e: 72:0b:13:ff:34:56:62:80:3c:76:a1:da:db:f5:a1: 9f:d7:29:64:35:e4:2c:61:b5:f2:a2:3e:ec:48:f3: ac:13:de:95:db:87:c5:f4:d7:9e:b2:7a:b6:43:37: 7f:60:39:a9:5f:fe:0e:bc:ed:6f:d7:ca:1c:de:da: fb:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:C5:6F:B3:61:8C:34:2E:6C:E1:5F:AA:0E:45:E8:C9:8D:60:9D:1A X509v3 Authority Key Identifier: keyid:4B:09:2D:F1:04:28:0F:45:BC:3F:27:96:F4:01:CC:2B:4C:61:44:E9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/Swkt8QQoD0W8PyeW9AHMK0xhROk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Swkt8QQoD0W8PyeW9AHMK0xhROk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8307/2BC92450BECD11EF98C74132C4F9AE02/E5FC085A843011F0971BDC44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.6.0/23 Signature Algorithm: sha256WithRSAEncryption 77:c1:ea:13:ea:63:a2:af:33:e8:a3:38:a3:db:17:4b:ed:dd: ed:c7:8a:52:55:24:74:53:32:96:a3:a5:a5:c9:c4:5a:a9:4c: e0:74:42:d6:01:66:5c:f9:10:73:2b:2f:96:54:fd:7e:3d:b7: a5:14:78:58:32:9c:5f:1b:89:6b:f9:e2:9f:c2:62:a7:de:ba: f3:8c:00:89:72:01:8b:7b:13:13:ae:a9:e7:84:d2:54:f0:4e: df:34:33:aa:ef:68:28:71:31:5f:d7:be:b3:24:bb:5e:15:ff: 5c:b4:0c:f9:4f:27:e1:ad:3f:9e:b2:aa:a7:74:6b:13:b6:0a: 9f:6d:9e:bb:93:0c:10:67:88:b8:68:f2:bd:bc:01:ff:9f:ef: f9:da:1c:83:98:27:7c:c0:2f:5c:aa:30:8c:58:a6:70:30:07: d7:b6:58:41:c9:8b:b0:57:13:c4:49:1f:fa:19:1f:cc:73:20: d1:e2:cb:50:00:ad:ce:ab:b8:30:24:5f:82:f7:a3:07:b2:ca: 2a:dd:85:af:b5:f7:8a:18:b3:21:df:4a:2a:3e:37:80:9f:07: e0:1e:29:c4:da:77:16:33:e4:5c:67:0c:92:a5:3a:f6:ed:38: 3b:6a:f1:4b:43:7d:1c:83:c3:00:55:f1:62:67:bf:42:05:e6: 7a:e6:d7:59 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzMDcxMTAvBgNVBAUTKDRCMDkyREYxMDQyODBGNDVCQzNGMjc5NkY0MDFDQzJC NEM2MTQ0RTkwHhcNMjUwODI4MTcwMzIwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIwOGJkOC1iMzFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyt2MQ4/iXmC2MPlEBbNIXbao2KmISXyX5QVQ3VJ7bqUuoDcuJNs0T8sHYERN MHD6jkRsKajWedpN2M1irlJT1Dd0OhkCAEbiJlbN9jSIquawKxOlblh4KvFsfFBu hvdMWs4Q2tD9vjy4J4xxf7+je5RSeY2EAoNZyUB6Bq+/ejWbr76N2iYWt4nj4u1T brRhAs21NREKHg623hDkXbUx/jiXXymD2HDhF+ZcjUdkAV+8KJghqStqj3S4b+D+ t4kVd45yCxP/NFZigDx2odrb9aGf1ylkNeQsYbXyoj7sSPOsE96V24fF9Neesnq2 Qzd/YDmpX/4OvO1v18oc3tr7aQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIzFb7Nh jDQubOFfqg5F6MmNYJ0aMB8GA1UdIwQYMBaAFEsJLfEEKA9FvD8nlvQBzCtMYUTp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODMwNy8yQkM5MjQ1MEJF Q0QxMUVGOThDNzQxMzJDNEY5QUUwMi9Td2t0OFFRb0QwVzhQeWVXOUFITUsweGhS T2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1N3a3Q4UVFvRDBXOFB5ZVc5QUhNSzB4aFJPay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzgzMDcvMkJDOTI0NTBCRUNEMTFFRjk4Qzc0MTMyQzRGOUFFMDIvRTVGQzA4NUE4 NDMwMTFGMDk3MUJEQzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGh+AYwDQYJKoZIhvcNAQELBQADggEBAHfB6hPqY6KvM+ij OKPbF0vt3e3HilJVJHRTMpajpaXJxFqpTOB0QtYBZlz5EHMrL5ZU/X49t6UUeFgy nF8biWv54p/CYqfeuvOMAIlyAYt7ExOuqeeE0lTwTt80M6rvaChxMV/XvrMku14V /1y0DPlPJ+GtP56yqqd0axO2Cp9tnruTDBBniLho8r28Af+f7/naHIOYJ3zAL1yq MIxYpnAwB9e2WEHJi7BXE8RJH/oZH8xzINHiy1AArc6ruDAkX4L3oweyyirdha+1 94oYsyHfSio+N4CfB+AeKcTadxYz5FxnDJKlOvbtODtq8UtDfRyDwwBV8WJnv0IF 5nrm11k= -----END CERTIFICATE-----Generated at Sun Sep 7 00:28:04 2025 by rpki-client