$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/40DFD5AC650711EFB94FD44FC4F9AE02.roa File: 40DFD5AC650711EFB94FD44FC4F9AE02.roa (raw, json) Hash identifier: zawwiUMAVIdG2bykFeNbnA88n/1gVRjEvWeHRre2uoI= Subject key identifier: 0E:C9:62:FC:62:0E:90:73:C8:B2:8C:62:AD:D1:61:7F:FA:85:48:B0 Certificate issuer: /CN=A91CF4FE/serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Certificate serial: 3557 Authority key identifier: 16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/40DFD5AC650711EFB94FD44FC4F9AE02.roa Signing time: Tue 02 Sep 2025 14:30:33 +0000 ROA not before: Tue 02 Sep 2025 14:30:33 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 131293 IP address blocks: 203.113.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 14:27:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13655 (0x3557) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF4FE, serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Validity Not Before: Sep 2 14:30:33 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b6ff89-a160 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:85:7a:82:59:f2:0c:36:c5:41:89:d3:5f:44: 7d:b6:59:8f:61:a3:cb:04:3a:a5:24:96:eb:5e:73: 56:29:93:60:b7:e3:63:04:6b:03:d3:bb:b4:dd:e7: 56:a5:c9:31:c9:59:14:ed:c5:6d:40:1d:b4:d9:7c: c4:ec:0d:45:a3:11:a4:72:cf:33:0b:ca:07:2e:c8: fb:19:fc:31:77:a4:79:c3:17:95:de:3b:4a:41:1e: 2e:96:26:c2:5a:16:09:57:28:2a:43:63:58:d7:a7: 7b:fa:5c:fa:16:7e:fd:22:9a:36:d2:02:76:9b:90: 67:89:29:88:22:1a:cf:da:45:51:bd:c6:0a:a8:4e: 55:83:1f:cc:99:2b:4f:19:f5:23:89:12:0d:65:ca: fb:6b:4c:c6:ea:0f:4b:81:c5:ec:f5:80:57:46:e7: 5f:e7:fa:94:b2:8e:61:98:05:cf:4e:da:96:b4:6b: 04:14:23:e4:71:19:9e:cf:9e:49:78:ec:51:92:e1: be:ab:2c:56:b6:65:1b:19:6d:28:37:c5:db:71:d0: 7c:63:a6:b3:a4:55:e9:68:e6:f7:2d:d5:0a:ae:71: 76:57:c8:2e:6a:21:f8:44:86:9a:c1:b9:7f:7b:01: ea:ae:5a:b3:d0:77:65:d2:23:7d:c9:2d:ec:07:4e: ad:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:C9:62:FC:62:0E:90:73:C8:B2:8C:62:AD:D1:61:7F:FA:85:48:B0 X509v3 Authority Key Identifier: keyid:16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/40DFD5AC650711EFB94FD44FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.113.124.0/24 Signature Algorithm: sha256WithRSAEncryption 33:98:db:53:1d:9c:d8:ec:50:9d:11:70:81:9c:29:89:46:10: 85:d5:26:1f:66:7b:e1:1a:31:8c:77:8e:3a:09:d4:a8:54:fd: 29:b6:fa:4a:85:c9:1d:76:5b:90:d2:07:e1:a8:9c:9f:9c:4a: db:45:d7:59:ee:fd:c6:5e:2c:b1:a1:9c:36:24:27:bd:00:e8: 31:2b:81:26:48:e6:3e:79:c6:3c:58:27:e5:dc:2d:bc:b0:90: 3f:67:20:6d:25:c3:03:50:2e:b4:81:dd:15:8e:f9:ed:75:ec: d1:60:13:ff:fe:87:15:10:45:a5:76:da:a7:ea:eb:dd:2f:c9: fb:4b:92:58:f8:1e:60:c9:2f:f9:6b:e6:60:c0:02:5d:d0:d1: 21:03:ac:65:5c:4c:6a:73:34:cb:1e:5d:2f:de:cc:34:89:dc: 8a:80:c7:2c:1c:24:f4:e6:59:cd:9c:76:91:82:e2:c7:3c:ec: c3:52:60:bb:62:b8:3c:e7:e0:5e:fa:39:70:da:ad:4f:e5:73: e2:74:57:cd:8f:af:8a:50:f1:5a:34:9d:3b:e8:03:51:a8:2e: 47:94:fe:b7:20:41:fe:e1:93:17:8d:c4:0e:81:0f:b0:a8:88: b2:a6:19:d6:45:3d:b3:76:5c:f8:92:3a:6f:43:d1:cb:98:54: a0:af:96:32 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNVcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y0RkUxMTAvBgNVBAUTKDE2QjU2NEI3NThERkNENTJDNUNFODkxMTkyRTMxQjcx NUIxQ0JGRTgwHhcNMjUwOTAyMTQzMDMzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI2ZmY4OS1hMTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAooV6glnyDDbFQYnTX0R9tlmPYaPLBDqlJJbrXnNWKZNgt+NjBGsD07u03edW pckxyVkU7cVtQB202XzE7A1FoxGkcs8zC8oHLsj7Gfwxd6R5wxeV3jtKQR4ulibC WhYJVygqQ2NY16d7+lz6Fn79Ipo20gJ2m5BniSmIIhrP2kVRvcYKqE5Vgx/MmStP GfUjiRINZcr7a0zG6g9LgcXs9YBXRudf5/qUso5hmAXPTtqWtGsEFCPkcRmez55J eOxRkuG+qyxWtmUbGW0oN8XbcdB8Y6azpFXpaOb3LdUKrnF2V8guaiH4RIaawbl/ ewHqrlqz0Hdl0iN9yS3sB06tyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFA7JYvxi DpBzyLKMYq3RYX/6hUiwMB8GA1UdIwQYMBaAFBa1ZLdY381Sxc6JEZLjG3FbHL/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjRGRS9CQTEzMTI0RTFE ODUxMUUyQTc3OTk5REMwOEIwMkNEMi9GclZrdDFqZnpWTEZ6b2tSa3VNYmNWc2N2 LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyVmt0MWpmelZMRnpva1JrdU1iY1ZzY3YtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y0RkUvQkExMzEyNEUxRDg1MTFFMkE3Nzk5OURDMDhCMDJDRDIvNDBERkQ1QUM2 NTA3MTFFRkI5NEZENDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLcXwwDQYJKoZIhvcNAQELBQADggEBADOY21MdnNjsUJ0R cIGcKYlGEIXVJh9me+EaMYx3jjoJ1KhU/Sm2+kqFyR12W5DSB+GonJ+cSttF11nu /cZeLLGhnDYkJ70A6DErgSZI5j55xjxYJ+XcLbywkD9nIG0lwwNQLrSB3RWO+e11 7NFgE//+hxUQRaV22qfq690vyftLklj4HmDJL/lr5mDAAl3Q0SEDrGVcTGpzNMse XS/ezDSJ3IqAxywcJPTmWc2cdpGC4sc87MNSYLtiuDzn4F76OXDarU/lc+J0V82P r4pQ8Vo0nTvoA1GoLkeU/rcgQf7hkxeNxA6BD7CoiLKmGdZFPbN2XPiSOm9D0cuY VKCvljI= -----END CERTIFICATE-----Generated at Sat Oct 25 15:24:41 2025 by rpki-client