$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/09F2A296A02E11F08BC71221C4F9AE02.roa File: 09F2A296A02E11F08BC71221C4F9AE02.roa (raw, json) Hash identifier: 6x2cZtG1O8RYzD8OGoXsH+NShNfzIbk96k46lysq5xU= Subject key identifier: 17:0D:66:90:C3:66:97:D2:63:E5:B6:C8:F7:FD:0E:8F:5C:F7:E9:66 Certificate issuer: /CN=A91CEE6D/serialNumber=224721876A11E2D3A4B98B21BC84F78E64FEC846 Certificate serial: 07 Authority key identifier: 22:47:21:87:6A:11:E2:D3:A4:B9:8B:21:BC:84:F7:8E:64:FE:C8:46 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/09F2A296A02E11F08BC71221C4F9AE02.roa Signing time: Fri 03 Oct 2025 07:53:24 +0000 ROA not before: Fri 03 Oct 2025 07:53:24 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 38083 IP address blocks: 134.7.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.crl rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 Oct 2025 11:48:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEE6D, serialNumber=224721876A11E2D3A4B98B21BC84F78E64FEC846 Validity Not Before: Oct 3 07:53:24 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68df80f4-750a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:18:3b:82:36:62:dd:12:2f:c3:be:4f:ff:b6: a7:fc:fb:cd:ec:16:2c:0a:ad:df:bd:19:91:f5:f9: fc:b0:47:ce:26:bd:07:89:1a:19:f5:80:80:5e:b1: 36:c9:07:54:10:51:74:ab:8e:f6:ee:20:a7:7b:3f: f7:f5:d4:65:26:5b:5b:06:a4:9b:b6:66:8c:0e:fe: 07:a9:a2:d2:41:54:55:e7:d5:f1:cc:20:16:86:10: 0c:63:f3:86:14:5e:77:94:5d:6f:90:44:32:a5:82: 6a:12:0e:01:38:93:5a:75:26:80:4f:68:5b:fa:0d: ce:f7:d3:bc:28:89:6d:ac:bf:43:c7:1c:90:f8:0e: d7:1e:1a:50:82:9c:52:3a:b2:f7:81:72:f6:51:59: 85:ea:48:84:03:3d:68:97:22:ff:8b:0e:83:fc:33: 95:4d:59:94:e6:b3:b4:51:f0:07:f9:60:c5:5b:8b: 18:ac:30:af:b7:4d:57:6b:c0:54:b3:64:31:51:7e: 27:42:eb:44:18:7c:d4:79:b0:3a:ee:75:e5:9a:1a: 75:ac:f1:3a:eb:e4:dd:7e:7f:9b:4b:43:aa:d3:0e: 6b:e9:01:88:15:23:bb:65:e5:fc:48:28:1e:29:0d: 39:aa:0e:85:a1:cb:77:eb:28:9d:86:32:3f:2d:24: 4d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:0D:66:90:C3:66:97:D2:63:E5:B6:C8:F7:FD:0E:8F:5C:F7:E9:66 X509v3 Authority Key Identifier: keyid:22:47:21:87:6A:11:E2:D3:A4:B9:8B:21:BC:84:F7:8E:64:FE:C8:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/Ikchh2oR4tOkuYshvIT3jmT-yEY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Ikchh2oR4tOkuYshvIT3jmT-yEY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEE6D/51110AFE976511F0923A670CC4F9AE02/09F2A296A02E11F08BC71221C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 134.7.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0b:27:03:78:00:9e:9a:fe:f4:87:1d:c6:f5:b1:dd:3a:1b:bd: ab:1f:24:7c:70:19:80:fd:73:02:2e:a8:d6:fe:2b:5c:d5:2e: 7e:20:a2:d2:d0:46:fb:af:4c:66:72:d8:33:2f:90:4d:73:d0: 16:4e:ff:58:4e:2c:57:8b:b1:59:b0:ee:4f:22:8a:cc:61:cf: 22:27:a8:25:c4:d7:18:c2:63:f0:bf:d7:05:1e:b8:2e:20:7b: c4:fe:b8:d5:75:9d:d0:f3:e6:cc:19:ea:34:af:58:22:f6:ab: 86:7f:0e:a5:f1:48:d8:29:2f:e1:17:ce:f6:3b:2b:47:64:fa: 26:9b:98:f0:ec:82:59:cb:33:a5:cf:15:75:a0:4c:47:77:eb: dc:54:31:0f:a4:28:22:7e:a3:f2:bd:b7:40:8d:3c:57:14:23: 7c:de:5e:d6:26:7e:1e:5a:00:63:b6:08:ea:a6:33:02:c8:83: fe:4e:3c:fd:27:ac:b5:2d:04:89:24:96:27:05:ce:a1:7f:df: 68:b4:e2:c5:f9:8a:2a:4d:26:f8:1e:7b:4c:98:0f:1b:95:34: 91:f5:01:a3:c5:d2:97:b0:73:a2:23:be:7e:e1:4e:63:ad:8d: 90:37:b3:5b:f5:ed:e4:3f:a8:d2:26:e2:2f:a8:86:72:d1:1f: 2a:69:27:a6 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RUU2RDExMC8GA1UEBRMoMjI0NzIxODc2QTExRTJEM0E0Qjk4QjIxQkM4NEY3OEU2 NEZFQzg0NjAeFw0yNTEwMDMwNzUzMjRaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZGY4MGY0LTc1MGEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTGDuCNmLdEi/Dvk//tqf8+83sFiwKrd+9GZH1+fywR84mvQeJGhn1gIBesTbJ B1QQUXSrjvbuIKd7P/f11GUmW1sGpJu2ZowO/gepotJBVFXn1fHMIBaGEAxj84YU XneUXW+QRDKlgmoSDgE4k1p1JoBPaFv6Dc7307woiW2sv0PHHJD4DtceGlCCnFI6 sveBcvZRWYXqSIQDPWiXIv+LDoP8M5VNWZTms7RR8Af5YMVbixisMK+3TVdrwFSz ZDFRfidC60QYfNR5sDrudeWaGnWs8Trr5N1+f5tLQ6rTDmvpAYgVI7tl5fxIKB4p DTmqDoWhy3frKJ2GMj8tJE2tAgMBAAGjggKUMIICkDAdBgNVHQ4EFgQUFw1mkMNm l9Jj5bbI9/0Oj1z36WYwHwYDVR0jBBgwFoAUIkchh2oR4tOkuYshvIT3jmT+yEYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFRTZELzUxMTEwQUZFOTc2 NTExRjA5MjNBNjcwQ0M0RjlBRTAyL0lrY2hoMm9SNHRPa3VZc2h2SVQzam1ULXlF WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvSWtjaGgyb1I0dE9rdVlzaHZJVDNqbVQteUVZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RUU2RC81MTExMEFGRTk3NjUxMUYwOTIzQTY3MENDNEY5QUUwMi8wOUYyQTI5NkEw MkUxMUYwOEJDNzEyMjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQP MA0wCwQCAAEwBQMDAIYHMA0GCSqGSIb3DQEBCwUAA4IBAQALJwN4AJ6a/vSHHcb1 sd06G72rHyR8cBmA/XMCLqjW/itc1S5+IKLS0Eb7r0xmctgzL5BNc9AWTv9YTixX i7FZsO5PIorMYc8iJ6glxNcYwmPwv9cFHrguIHvE/rjVdZ3Q8+bMGeo0r1gi9quG fw6l8UjYKS/hF872OytHZPomm5jw7IJZyzOlzxV1oExHd+vcVDEPpCgifqPyvbdA jTxXFCN83l7WJn4eWgBjtgjqpjMCyIP+Tjz9J6y1LQSJJJYnBc6hf99otOLF+Yoq TSb4HntMmA8blTSR9QGjxdKXsHOiI75+4U5jrY2QN7Nb9e3kP6jSJuIvqIZy0R8q aSem -----END CERTIFICATE-----Generated at Sun Oct 19 01:33:47 2025 by rpki-client