$ rpki-client -vvf rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/E969742CB33B11EEB4D87842C4F9AE02.roa File: E969742CB33B11EEB4D87842C4F9AE02.roa (raw, json) Hash identifier: oxmHGKf/WSOT7WzpjdLiOn3oXWfHw/6ypS3n/mBbPHA= Subject key identifier: 09:A5:45:4C:D8:26:84:53:39:21:80:8F:5A:A0:05:05:4F:29:E2:3A Certificate issuer: /CN=A91CD4E0/serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Certificate serial: 0684 Authority key identifier: D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/E969742CB33B11EEB4D87842C4F9AE02.roa Signing time: Tue 02 Sep 2025 15:01:07 +0000 ROA not before: Tue 02 Sep 2025 15:01:07 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24436 IP address blocks: 203.23.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:48:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1668 (0x684) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CD4E0, serialNumber=D3B4EEBC3D9F5A1EA20296699AE992881B1D8DFD Validity Not Before: Sep 2 15:01:07 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b706b3-be25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2d:f5:fe:36:00:03:b5:d5:22:1c:eb:8c:23: d8:20:c8:7c:b1:1c:b0:93:00:84:ab:91:fb:1d:1a: 95:52:2b:dc:72:a2:a3:57:a0:22:80:7e:1c:85:61: cd:37:76:ee:0e:e2:fd:47:00:3f:24:12:03:cf:96: 57:79:51:af:fe:3c:56:23:d7:09:93:60:7d:09:70: 34:49:bd:6c:84:29:01:0e:04:2e:10:20:a4:bf:92: cb:98:75:6b:0d:45:8d:aa:39:d2:c5:98:12:37:6c: 0b:fb:14:00:13:fa:91:03:aa:86:15:19:c0:72:54: 33:6e:da:e2:8f:db:6f:7c:8b:b3:be:50:20:3a:11: fd:e6:6a:01:be:13:11:27:1c:f1:a8:9e:7d:c7:3e: b1:4e:a3:f3:03:7b:57:2f:b2:d4:73:d2:0b:73:b4: a3:6e:d3:f9:7e:ac:02:f8:90:5a:29:ab:fa:ec:b8: 9b:c2:fc:a0:6f:bd:57:7c:3d:67:e8:ac:d5:52:4a: be:d5:b6:f2:08:1f:39:e4:fc:77:2f:df:74:9a:99: 39:e9:b9:4e:f1:94:43:55:8c:13:7b:0a:22:3e:92: 93:82:fe:65:e6:6d:bf:c2:aa:f9:b9:4f:68:36:7a: 8d:40:a7:1b:0a:46:62:51:0f:7b:42:2c:a7:60:73: 36:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:A5:45:4C:D8:26:84:53:39:21:80:8F:5A:A0:05:05:4F:29:E2:3A X509v3 Authority Key Identifier: keyid:D3:B4:EE:BC:3D:9F:5A:1E:A2:02:96:69:9A:E9:92:88:1B:1D:8D:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/07TuvD2fWh6iApZpmumSiBsdjf0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/07TuvD2fWh6iApZpmumSiBsdjf0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CD4E0/834571168D7B11EB8D8BD60BC4F9AE02/E969742CB33B11EEB4D87842C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.23.253.0/24 Signature Algorithm: sha256WithRSAEncryption bd:92:d1:2c:c8:4b:7c:25:20:72:64:c5:0e:12:15:de:ae:5b: 3c:1b:0d:25:5f:1e:ad:9a:54:7c:37:d7:5d:8b:57:33:d7:a0: 53:c3:f0:c4:47:82:e6:76:fe:f5:7f:91:c3:14:5a:87:96:4f: 7b:cc:88:67:26:6e:d7:1e:91:54:cd:ca:8c:36:76:d9:33:bb: 40:50:72:3b:bb:0a:fe:6d:94:cf:3b:ab:77:d0:e4:f2:58:47: df:9b:44:1d:c8:03:01:20:d7:26:f4:9b:48:44:5e:b5:56:1c: bc:9e:99:07:86:d2:ce:cc:a1:0d:63:a5:91:83:9c:80:ec:b6: 61:c9:1e:02:06:65:61:56:0e:04:7c:66:f6:c4:b3:c9:94:2e: 49:b7:0f:08:fc:79:d0:33:3b:6d:e8:26:62:d8:fc:5e:f7:78: b4:23:bf:fe:29:9c:43:fe:6a:24:42:25:03:e6:1f:28:57:41: 9e:24:34:84:e3:65:49:47:69:61:79:1a:62:05:fa:21:d2:73: 99:bd:75:76:ec:24:8b:1c:9f:c1:4c:40:84:2c:98:c0:e2:e1: 7c:3e:0f:35:60:2d:b9:09:f8:9d:f5:8a:1f:de:88:5e:c8:20: 83:1c:59:1f:fa:4f:ee:ea:cf:08:bd:6e:8d:99:29:26:59:03: e9:50:d4:3f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBoQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Q0RTAxMTAvBgNVBAUTKEQzQjRFRUJDM0Q5RjVBMUVBMjAyOTY2OTlBRTk5Mjg4 MUIxRDhERkQwHhcNMjUwOTAyMTUwMTA3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MDZiMy1iZTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvi31/jYAA7XVIhzrjCPYIMh8sRywkwCEq5H7HRqVUivccqKjV6AigH4chWHN N3buDuL9RwA/JBIDz5ZXeVGv/jxWI9cJk2B9CXA0Sb1shCkBDgQuECCkv5LLmHVr DUWNqjnSxZgSN2wL+xQAE/qRA6qGFRnAclQzbtrij9tvfIuzvlAgOhH95moBvhMR JxzxqJ59xz6xTqPzA3tXL7LUc9ILc7SjbtP5fqwC+JBaKav67Libwvygb71XfD1n 6KzVUkq+1bbyCB855Px3L990mpk56blO8ZRDVYwTewoiPpKTgv5l5m2/wqr5uU9o NnqNQKcbCkZiUQ97QiynYHM2awIDAQABo4IClTCCApEwHQYDVR0OBBYEFAmlRUzY JoRTOSGAj1qgBQVPKeI6MB8GA1UdIwQYMBaAFNO07rw9n1oeogKWaZrpkogbHY39 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRDRFMC84MzQ1NzExNjhE N0IxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8wN1R1dkQyZldoNmlBcFpwbXVtU2lCc2Rq ZjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzA3VHV2RDJmV2g2aUFwWnBtdW1TaUJzZGpmMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Q0RTAvODM0NTcxMTY4RDdCMTFFQjhEOEJENjBCQzRGOUFFMDIvRTk2OTc0MkNC MzNCMTFFRUI0RDg3ODQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLF/0wDQYJKoZIhvcNAQELBQADggEBAL2S0SzIS3wlIHJk xQ4SFd6uWzwbDSVfHq2aVHw3112LVzPXoFPD8MRHguZ2/vV/kcMUWoeWT3vMiGcm btcekVTNyow2dtkzu0BQcju7Cv5tlM87q3fQ5PJYR9+bRB3IAwEg1yb0m0hEXrVW HLyemQeG0s7MoQ1jpZGDnIDstmHJHgIGZWFWDgR8ZvbEs8mULkm3Dwj8edAzO23o JmLY/F73eLQjv/4pnEP+aiRCJQPmHyhXQZ4kNITjZUlHaWF5GmIF+iHSc5m9dXbs JIscn8FMQIQsmMDi4Xw+DzVgLbkJ+J31ih/eiF7IIIMcWR/6T+7qzwi9bo2ZKSZZ A+lQ1D8= -----END CERTIFICATE-----Generated at Mon Sep 8 14:24:01 2025 by rpki-client