$ rpki-client -vvf rpki.apnic.net/member_repository/A91CA58E/908DB4C88C6811F0BCEEB171C4F9AE02/3DC1FF148C6911F08611A235C4F9AE02.roa File: 3DC1FF148C6911F08611A235C4F9AE02.roa (raw, json) Hash identifier: fLngag0jvcUXsL/3ScrJd5vhIuo9JacsTzQUqtZ8EUg= Subject key identifier: F6:AB:E7:D7:F0:93:0C:FF:47:1B:28:47:F0:A9:1C:1A:FD:34:95:2A Certificate issuer: /CN=A91CA58E/serialNumber=3F727260B09494420DD67A7304D8205D42FF3FF1 Certificate serial: 02 Authority key identifier: 3F:72:72:60:B0:94:94:42:0D:D6:7A:73:04:D8:20:5D:42:FF:3F:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P3JyYLCUlEIN1npzBNggXUL_P_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CA58E/908DB4C88C6811F0BCEEB171C4F9AE02/3DC1FF148C6911F08611A235C4F9AE02.roa Signing time: Mon 08 Sep 2025 04:06:48 +0000 ROA not before: Mon 08 Sep 2025 04:06:48 +0000 ROA not after: Wed 30 Dec 2026 00:00:00 +0000 asID: 154204 IP address blocks: 203.28.57.0/24 maxlen: 24 2001:df6:1840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CA58E/908DB4C88C6811F0BCEEB171C4F9AE02/P3JyYLCUlEIN1npzBNggXUL_P_E.crl rsync://rpki.apnic.net/member_repository/A91CA58E/908DB4C88C6811F0BCEEB171C4F9AE02/P3JyYLCUlEIN1npzBNggXUL_P_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P3JyYLCUlEIN1npzBNggXUL_P_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 08:51:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CA58E, serialNumber=3F727260B09494420DD67A7304D8205D42FF3FF1 Validity Not Before: Sep 8 04:06:48 2025 GMT Not After : Dec 30 00:00:00 2026 GMT Subject: CN=68be5658-eed7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c5:e1:e4:e9:89:1e:dd:a4:50:60:15:1a:4d: 54:3f:4c:04:a5:de:7a:64:ce:b4:f9:db:f6:0d:34: a2:ad:54:69:a0:64:c5:37:c8:f6:37:9a:45:f1:c4: 35:be:2a:94:5b:49:d6:1a:e7:67:2f:fa:33:89:47: 49:12:07:bd:50:84:3c:8e:62:37:d2:3b:84:1b:ab: be:6a:89:83:de:a2:d5:60:9c:30:00:48:70:98:13: d1:cd:42:2a:80:99:9d:87:59:41:90:13:0b:be:3b: b0:ce:7f:f2:b2:1f:a5:7b:4d:53:35:4c:91:4f:5a: 0d:19:7c:de:b7:bb:95:55:03:f5:1f:d1:cb:1f:4e: 47:36:a8:e3:68:d0:04:fb:1d:da:75:ba:a6:2c:06: cb:60:08:93:6a:43:37:7d:44:2d:45:32:01:bd:09: 87:73:bf:b0:51:d1:2a:10:85:4e:7c:c7:4b:24:70: d5:4b:d9:a8:c6:46:b8:2b:4d:c7:a4:a1:a1:df:a7: d5:53:de:ce:83:2e:09:bf:ed:8e:78:1c:a2:6c:2d: a8:62:33:0c:36:a9:0c:3d:28:d9:6f:bf:ae:04:4d: 4e:5f:7c:4f:e4:c9:41:e4:02:11:3f:50:a3:48:40: 34:1f:d7:a5:b3:bd:b7:66:5f:98:55:09:99:ee:68: 50:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:AB:E7:D7:F0:93:0C:FF:47:1B:28:47:F0:A9:1C:1A:FD:34:95:2A X509v3 Authority Key Identifier: keyid:3F:72:72:60:B0:94:94:42:0D:D6:7A:73:04:D8:20:5D:42:FF:3F:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CA58E/908DB4C88C6811F0BCEEB171C4F9AE02/P3JyYLCUlEIN1npzBNggXUL_P_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/P3JyYLCUlEIN1npzBNggXUL_P_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CA58E/908DB4C88C6811F0BCEEB171C4F9AE02/3DC1FF148C6911F08611A235C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.28.57.0/24 IPv6: 2001:df6:1840::/48 Signature Algorithm: sha256WithRSAEncryption 30:06:73:df:4f:32:89:5f:ad:a7:a9:b2:02:c3:0f:0b:0b:0b: 55:0a:fb:6b:95:e8:e7:c1:6a:fc:be:98:0c:d5:26:35:45:a0: 22:4c:7c:32:f8:77:8c:09:2a:2e:5a:03:22:d0:97:58:9e:25: 5a:78:cc:6f:7b:55:01:25:e3:18:ad:c8:0c:d5:f1:b7:98:dc: 36:1e:7c:09:41:1d:a3:87:da:b4:7b:8d:cb:52:45:fd:f3:3b: 18:12:93:c3:c4:97:0a:e2:b1:47:c0:60:fd:7f:f6:ef:88:81: 38:10:86:a0:21:f0:07:05:ce:7f:2f:5e:4a:a3:21:f5:25:7c: 05:57:30:bc:80:e6:f2:c8:f5:2f:d8:a3:2e:c5:13:21:ef:c1: 13:0c:fe:56:54:e9:d8:59:49:b7:a7:be:cc:fa:d5:c3:2a:f4: d9:44:ed:df:e1:97:f1:e3:64:3c:db:9b:6d:6d:55:73:b0:b6: a6:a4:0a:41:78:92:04:ab:c0:9a:0a:34:ed:15:22:1a:02:b6: 53:d1:c0:34:77:65:72:78:e3:72:b4:5a:23:65:50:d1:b8:7d: cf:34:ad:d0:71:44:26:2c:21:cf:ad:3a:0c:24:8b:3c:97:3f: aa:30:35:0d:fb:e3:57:7e:17:9b:95:0a:e2:43:9b:f2:6e:ce: 40:24:c6:27 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QTU4RTExMC8GA1UEBRMoM0Y3MjcyNjBCMDk0OTQ0MjBERDY3QTczMDREODIwNUQ0 MkZGM0ZGMTAeFw0yNTA5MDgwNDA2NDhaFw0yNjEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YmU1NjU4LWVlZDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDdxeHk6Yke3aRQYBUaTVQ/TASl3npkzrT52/YNNKKtVGmgZMU3yPY3mkXxxDW+ KpRbSdYa52cv+jOJR0kSB71QhDyOYjfSO4Qbq75qiYPeotVgnDAASHCYE9HNQiqA mZ2HWUGQEwu+O7DOf/KyH6V7TVM1TJFPWg0ZfN63u5VVA/Uf0csfTkc2qONo0AT7 Hdp1uqYsBstgCJNqQzd9RC1FMgG9CYdzv7BR0SoQhU58x0skcNVL2ajGRrgrTcek oaHfp9VT3s6DLgm/7Y54HKJsLahiMww2qQw9KNlvv64ETU5ffE/kyUHkAhE/UKNI QDQf16WzvbdmX5hVCZnuaFABAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU9qvn1/CT DP9HGyhH8KkcGv00lSowHwYDVR0jBBgwFoAUP3JyYLCUlEIN1npzBNggXUL/P/Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNBNThFLzkwOERCNEM4OEM2 ODExRjBCQ0VFQjE3MUM0RjlBRTAyL1AzSnlZTENVbEVJTjFucHpCTmdnWFVMX1Bf RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUDNKeVlMQ1VsRUlOMW5wekJOZ2dYVUxfUF9FLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QTU4RS85MDhEQjRDODhDNjgxMUYwQkNFRUIxNzFDNEY5QUUwMi8zREMxRkYxNDhD NjkxMUYwODYxMUEyMzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAMscOTAPBAIAAjAJAwcAIAEN9hhAMA0GCSqGSIb3DQEBCwUA A4IBAQAwBnPfTzKJX62nqbICww8LCwtVCvtrlejnwWr8vpgM1SY1RaAiTHwy+HeM CSouWgMi0JdYniVaeMxve1UBJeMYrcgM1fG3mNw2HnwJQR2jh9q0e43LUkX98zsY EpPDxJcK4rFHwGD9f/bviIE4EIagIfAHBc5/L15KoyH1JXwFVzC8gObyyPUv2KMu xRMh78ETDP5WVOnYWUm3p77M+tXDKvTZRO3f4Zfx42Q825ttbVVzsLampApBeJIE q8CaCjTtFSIaArZT0cA0d2VyeONytFojZVDRuH3PNK3QcUQmLCHPrToMJIs8lz+q MDUN++NXfheblQriQ5vybs5AJMYn -----END CERTIFICATE-----Generated at Fri Sep 19 14:01:13 2025 by rpki-client