$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/F6FAB490BB5811EF8C37CB81C4F9AE02.roa File: F6FAB490BB5811EF8C37CB81C4F9AE02.roa (raw, json) Hash identifier: 4h0iDWjsfa7NDKLfke8j7fgE3a1MCnkylqCcKoNifz0= Subject key identifier: 5A:29:F7:98:45:72:E7:3F:19:18:DA:CE:FC:F6:B2:09:93:1D:39:F8 Certificate issuer: /CN=A91CF4FE/serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Certificate serial: 355B Authority key identifier: 16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/F6FAB490BB5811EF8C37CB81C4F9AE02.roa Signing time: Tue 02 Sep 2025 14:30:37 +0000 ROA not before: Tue 02 Sep 2025 14:30:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 23974 IP address blocks: 101.51.0.0/20 maxlen: 20 101.51.16.0/21 maxlen: 21 101.51.152.0/21 maxlen: 21 182.52.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 14:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13659 (0x355b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF4FE, serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Validity Not Before: Sep 2 14:30:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b6ff8c-93d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f4:de:92:26:61:b7:8e:64:10:e3:13:e3:3f: a9:9f:79:e1:95:67:5b:ec:d9:a5:7b:56:9d:9c:96: 44:a2:87:06:7d:6c:97:66:8b:a4:d3:72:ea:5d:59: b2:79:4f:4a:8b:c4:fa:37:68:ef:5c:a1:50:d0:22: b6:af:3c:c0:6c:c3:54:b5:1d:2f:e5:9e:3f:fd:20: 32:0b:6c:45:fc:f1:bf:d2:2b:8e:eb:c9:78:45:5d: 46:cf:c3:db:14:b2:c1:e7:81:6b:5a:ec:b1:e2:bb: de:20:96:24:1a:cf:85:24:a7:ed:d4:a4:2c:59:26: bc:06:89:1b:7e:2c:eb:96:3d:bf:c0:12:fe:85:79: 17:3d:37:78:9b:73:9c:a2:c4:6a:a2:58:cf:77:fb: 66:55:86:7b:2a:ab:64:b0:52:c8:cc:0d:7b:c8:06: 9f:67:03:1d:88:97:73:e6:42:37:c1:fa:e3:b6:75: 3a:fb:8a:0e:f4:f3:3f:aa:5a:a7:e0:19:06:c2:46: 37:84:07:45:58:5f:0d:d9:eb:2d:d3:f8:50:11:24: 80:14:b4:4c:6e:0d:94:0f:22:ba:88:a0:03:bf:52: 02:b2:20:dc:f8:a2:5c:5a:55:b5:36:a1:61:93:7c: 53:f3:b6:dc:99:92:30:0b:9e:2d:e7:18:3d:18:06: 25:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:29:F7:98:45:72:E7:3F:19:18:DA:CE:FC:F6:B2:09:93:1D:39:F8 X509v3 Authority Key Identifier: keyid:16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/F6FAB490BB5811EF8C37CB81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.51.0.0-101.51.23.255 101.51.152.0/21 182.52.230.0/24 Signature Algorithm: sha256WithRSAEncryption 19:c5:22:29:91:92:26:e1:94:aa:d7:7d:3b:88:7c:30:93:e9: 47:23:15:40:30:c4:e9:e6:d5:07:5d:12:05:13:ed:8b:e6:99: 23:b3:ec:f5:ec:7c:0e:04:4b:55:3f:23:7b:6b:d9:e1:ec:cf: 4b:88:ca:f4:53:66:0f:91:dc:cb:76:c9:8e:85:93:8f:8c:c2: 4b:02:9c:fc:dc:8b:be:d2:6d:b7:1c:6e:fc:53:66:cb:8c:f3: 04:79:46:87:a5:3e:2c:87:54:b4:5b:0f:cd:5e:0c:b3:47:27: f9:ad:48:77:7b:85:d9:79:af:c8:54:8e:2a:57:74:2a:6b:45: 8b:c5:d4:8b:a5:14:79:ed:6a:73:81:be:23:c0:8a:04:a7:3e: a6:29:ca:f3:34:b8:92:7a:50:82:0b:95:2e:19:5e:7e:5d:43: f0:15:01:e0:93:98:35:cb:58:b1:71:d9:40:80:75:0c:4f:bb: 3f:a0:08:b4:73:1e:44:f0:bb:54:d6:6b:60:ee:02:4e:ed:a5: 2a:09:25:7f:9c:fb:ed:f5:c6:19:ba:4e:95:0d:01:02:60:2b: 8f:59:52:9c:17:31:04:bb:43:64:e2:99:bf:2c:6f:06:79:c4: c7:20:34:54:55:1f:31:9d:eb:1d:44:53:08:4a:69:7f:ae:b7: eb:d0:b5:b2 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y0RkUxMTAvBgNVBAUTKDE2QjU2NEI3NThERkNENTJDNUNFODkxMTkyRTMxQjcx NUIxQ0JGRTgwHhcNMjUwOTAyMTQzMDM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI2ZmY4Yy05M2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsvTekiZht45kEOMT4z+pn3nhlWdb7Nmle1adnJZEoocGfWyXZouk03LqXVmy eU9Ki8T6N2jvXKFQ0CK2rzzAbMNUtR0v5Z4//SAyC2xF/PG/0iuO68l4RV1Gz8Pb FLLB54FrWuyx4rveIJYkGs+FJKft1KQsWSa8Bokbfizrlj2/wBL+hXkXPTd4m3Oc osRqoljPd/tmVYZ7KqtksFLIzA17yAafZwMdiJdz5kI3wfrjtnU6+4oO9PM/qlqn 4BkGwkY3hAdFWF8N2est0/hQESSAFLRMbg2UDyK6iKADv1ICsiDc+KJcWlW1NqFh k3xT87bcmZIwC54t5xg9GAYl+QIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFFop95hF cuc/GRjazvz2sgmTHTn4MB8GA1UdIwQYMBaAFBa1ZLdY381Sxc6JEZLjG3FbHL/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjRGRS9CQTEzMTI0RTFE ODUxMUUyQTc3OTk5REMwOEIwMkNEMi9GclZrdDFqZnpWTEZ6b2tSa3VNYmNWc2N2 LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyVmt0MWpmelZMRnpva1JrdU1iY1ZzY3YtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y0RkUvQkExMzEyNEUxRDg1MTFFMkE3Nzk5OURDMDhCMDJDRDIvRjZGQUI0OTBC QjU4MTFFRjhDMzdDQjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMB8EAgABMBkwCwMDAGUzAwQDZTMQAwQDZTOYAwQAtjTmMA0GCSqGSIb3DQEB CwUAA4IBAQAZxSIpkZIm4ZSq1307iHwwk+lHIxVAMMTp5tUHXRIFE+2L5pkjs+z1 7HwOBEtVPyN7a9nh7M9LiMr0U2YPkdzLdsmOhZOPjMJLApz83Iu+0m23HG78U2bL jPMEeUaHpT4sh1S0Ww/NXgyzRyf5rUh3e4XZea/IVI4qV3Qqa0WLxdSLpRR57Wpz gb4jwIoEpz6mKcrzNLiSelCCC5UuGV5+XUPwFQHgk5g1y1ixcdlAgHUMT7s/oAi0 cx5E8LtU1mtg7gJO7aUqCSV/nPvt9cYZuk6VDQECYCuPWVKcFzEEu0Nk4pm/LG8G ecTHIDRUVR8xnesdRFMISml/rrfr0LWy -----END CERTIFICATE-----Generated at Sat Sep 6 14:26:06 2025 by rpki-client