$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/A8ED74B2677F11F0A8B65370C4F9AE02.roa File: A8ED74B2677F11F0A8B65370C4F9AE02.roa (raw, json) Hash identifier: Wp4WdYeftXiPfjW7HOoNIgzcAj0lp284UPmRoAoGjBI= Subject key identifier: D2:78:D7:67:83:26:90:D2:16:CF:C7:A9:89:BF:7E:9F:B5:A7:55:FA Certificate issuer: /CN=A91D1136/serialNumber=B7B73E89B621081609CD689AB0AEF7FAF148926C Certificate serial: 267E Authority key identifier: B7:B7:3E:89:B6:21:08:16:09:CD:68:9A:B0:AE:F7:FA:F1:48:92:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t7c-ibYhCBYJzWiasK73-vFIkmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/A8ED74B2677F11F0A8B65370C4F9AE02.roa Signing time: Tue 02 Sep 2025 16:04:14 +0000 ROA not before: Tue 02 Sep 2025 16:04:14 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 7470 IP address blocks: 111.84.0.0/16 maxlen: 24 115.67.0.0/16 maxlen: 24 2404:8d00::/29 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/t7c-ibYhCBYJzWiasK73-vFIkmw.crl rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/t7c-ibYhCBYJzWiasK73-vFIkmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t7c-ibYhCBYJzWiasK73-vFIkmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 15:46:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9854 (0x267e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1136, serialNumber=B7B73E89B621081609CD689AB0AEF7FAF148926C Validity Not Before: Sep 2 16:04:14 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b7157d-fd62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:de:b2:65:52:9b:0f:9b:f9:a1:18:08:08:d1: e7:e4:ac:7c:b9:17:e2:c0:57:b1:ff:d4:c3:0b:6f: c3:6e:34:b3:93:54:61:f9:4f:ef:3e:d6:56:47:21: 40:1f:df:04:c7:cf:a6:73:b2:08:1f:2d:3e:3e:46: 96:3c:b7:32:f4:d1:90:48:16:6d:fe:02:56:26:17: 0f:b3:8f:33:29:2d:74:e5:ab:10:50:c0:6d:71:d8: 1a:b0:5d:e3:0e:46:31:11:03:67:9b:57:62:fa:ea: 66:5c:b5:ea:7e:44:6e:8e:b7:4e:2f:84:6e:e7:55: 77:fd:82:63:8a:5e:29:01:aa:f0:ac:e5:a6:c0:ea: 51:2c:b7:a7:be:da:58:7e:64:be:09:36:a3:93:ad: 19:d9:8f:9a:8e:22:e6:ba:8c:a8:a3:11:17:4e:6f: b4:42:d7:b8:50:83:c4:73:07:9b:2f:71:95:0d:1d: 53:3e:53:41:3b:e9:d6:33:0b:90:1a:24:8f:55:bd: ae:3c:92:97:05:7a:a5:ca:04:03:50:a0:ca:be:be: ab:b6:97:11:82:7b:84:24:b0:d1:9f:aa:53:7b:68: 63:9d:f1:b4:5f:e0:8d:37:86:aa:51:79:7d:b0:66: 8f:66:ce:ca:70:a0:d0:b5:a3:5c:0a:33:10:f4:3e: 72:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:78:D7:67:83:26:90:D2:16:CF:C7:A9:89:BF:7E:9F:B5:A7:55:FA X509v3 Authority Key Identifier: keyid:B7:B7:3E:89:B6:21:08:16:09:CD:68:9A:B0:AE:F7:FA:F1:48:92:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/t7c-ibYhCBYJzWiasK73-vFIkmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t7c-ibYhCBYJzWiasK73-vFIkmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1136/CF3281C8215B11E5A7BF890EC4F9AE02/A8ED74B2677F11F0A8B65370C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.84.0.0/16 115.67.0.0/16 IPv6: 2404:8d00::/29 Signature Algorithm: sha256WithRSAEncryption 76:73:73:c2:66:d3:e9:70:21:bf:f2:a0:2a:3c:56:de:8e:36: 37:f5:0a:0d:03:29:d5:28:8d:94:19:9a:a4:c8:ef:ed:eb:c2: c5:8c:e4:9e:6a:9f:4b:e4:81:bc:53:76:0d:3a:bc:31:de:cc: 00:a6:1f:4c:5b:6b:b9:ec:b3:77:31:2c:8d:8f:84:b0:65:e8: 3a:18:65:ae:1e:96:1d:0f:6b:b7:ef:a8:82:31:cd:0c:41:67: d3:c2:0f:26:cf:a3:e9:cf:56:8a:c8:1a:9d:9b:1e:db:b7:af: a6:b0:1b:d7:a4:21:0b:90:5f:e7:88:49:ef:62:fa:a8:85:3b: f2:76:e3:fa:c2:b8:30:7c:d2:ef:74:95:43:ce:f9:fb:f5:6d: 38:7d:91:eb:93:82:21:50:df:9c:d8:62:c8:47:4c:1e:30:03: ad:8c:20:ec:56:c7:bc:57:65:ef:17:d1:22:12:b2:ce:c0:12: a1:50:df:a5:a6:0a:88:43:e2:71:91:b4:2e:01:89:d6:32:2c: e8:f4:4d:52:61:81:09:89:a8:3a:ed:ae:46:d3:30:10:8e:89: b8:49:cc:81:84:df:5b:f2:eb:5f:89:56:2c:0b:c3:ba:24:26: d1:3e:dc:92:b0:5d:16:7e:fd:34:f7:4f:78:29:fc:f8:e7:48: 3f:00:54:3c -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICJn4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDExMzYxMTAvBgNVBAUTKEI3QjczRTg5QjYyMTA4MTYwOUNENjg5QUIwQUVGN0ZB RjE0ODkyNkMwHhcNMjUwOTAyMTYwNDE0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MTU3ZC1mZDYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwN6yZVKbD5v5oRgICNHn5Kx8uRfiwFex/9TDC2/DbjSzk1Rh+U/vPtZWRyFA H98Ex8+mc7IIHy0+PkaWPLcy9NGQSBZt/gJWJhcPs48zKS105asQUMBtcdgasF3j DkYxEQNnm1di+upmXLXqfkRujrdOL4Ru51V3/YJjil4pAarwrOWmwOpRLLenvtpY fmS+CTajk60Z2Y+ajiLmuoyooxEXTm+0Qte4UIPEcwebL3GVDR1TPlNBO+nWMwuQ GiSPVb2uPJKXBXqlygQDUKDKvr6rtpcRgnuEJLDRn6pTe2hjnfG0X+CNN4aqUXl9 sGaPZs7KcKDQtaNcCjMQ9D5y7wIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFNJ412eD JpDSFs/HqYm/fp+1p1X6MB8GA1UdIwQYMBaAFLe3Pom2IQgWCc1omrCu9/rxSJJs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTEzNi9DRjMyODFDODIx NUIxMUU1QTdCRjg5MEVDNEY5QUUwMi90N2MtaWJZaENCWUp6V2lhc0s3My12Rklr bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q3Yy1pYlloQ0JZSnpXaWFzSzczLXZGSWttdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDExMzYvQ0YzMjgxQzgyMTVCMTFFNUE3QkY4OTBFQzRGOUFFMDIvQThFRDc0QjI2 NzdGMTFGMEE4QjY1MzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMBAEAgABMAoDAwBvVAMDAHNDMA0EAgACMAcDBQMkBI0AMA0GCSqGSIb3DQEB CwUAA4IBAQB2c3PCZtPpcCG/8qAqPFbejjY39QoNAynVKI2UGZqkyO/t68LFjOSe ap9L5IG8U3YNOrwx3swAph9MW2u57LN3MSyNj4SwZeg6GGWuHpYdD2u376iCMc0M QWfTwg8mz6Ppz1aKyBqdmx7bt6+msBvXpCELkF/niEnvYvqohTvyduP6wrgwfNLv dJVDzvn79W04fZHrk4IhUN+c2GLIR0weMAOtjCDsVse8V2XvF9EiErLOwBKhUN+l pgqIQ+JxkbQuAYnWMizo9E1SYYEJiag67a5G0zAQjom4ScyBhN9b8utfiVYsC8O6 JCbRPtySsF0Wfv009094Kfz450g/AFQ8 -----END CERTIFICATE-----Generated at Mon Sep 8 09:58:49 2025 by rpki-client