$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/AEA7C9C0818911EA81577016C4F9AE02.roa File: AEA7C9C0818911EA81577016C4F9AE02.roa (raw, json) Hash identifier: iFM56WrKeXwdoA2Uh6qPu0ZtIRkJDq6/ES1KC7jnXoA= Subject key identifier: 7C:68:A0:FA:84:F4:00:A3:0A:F3:22:BF:07:40:17:62:C9:15:A7:F6 Certificate issuer: /CN=A91D1691/serialNumber=DC04AF198C97F2582F15ADDEEE7C682611CADA51 Certificate serial: 18C1 Authority key identifier: DC:04:AF:19:8C:97:F2:58:2F:15:AD:DE:EE:7C:68:26:11:CA:DA:51 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/AEA7C9C0818911EA81577016C4F9AE02.roa Signing time: Tue 26 Aug 2025 16:23:20 +0000 ROA not before: Tue 26 Aug 2025 16:23:20 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 45352 IP address blocks: 212.8.230.0/24 maxlen: 24 212.8.231.0/24 maxlen: 24 212.8.254.0/24 maxlen: 24 212.8.255.0/24 maxlen: 24 212.92.102.0/24 maxlen: 24 212.92.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Sep 2025 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6337 (0x18c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1691, serialNumber=DC04AF198C97F2582F15ADDEEE7C682611CADA51 Validity Not Before: Aug 26 16:23:20 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68addf78-32e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:39:d4:88:59:31:62:4e:c4:f2:d1:0f:24:3f: ac:f3:a3:0a:21:f7:95:fb:e6:d3:f8:43:d5:01:eb: 7c:1b:8f:8e:48:d0:0d:39:d0:19:44:47:ab:a2:68: e4:21:d6:a1:7e:d0:86:21:ed:6d:78:e2:05:9a:16: eb:8b:b3:45:0d:f6:76:73:f1:34:20:02:73:9b:79: fe:b4:c4:7e:2d:32:4e:98:d1:99:69:50:97:c8:54: e8:ae:7b:72:cc:4d:34:90:0b:f7:39:9d:50:f2:3a: 49:fd:52:79:ff:bc:18:83:86:b1:d9:14:3a:3b:e4: 10:2f:5d:04:04:43:fc:9a:02:28:ca:9e:28:1a:96: 0d:d9:65:cf:bb:91:11:ba:58:eb:88:67:e9:e7:80: da:ea:39:e9:ac:12:9d:60:38:96:fc:20:d8:68:3f: 1b:64:4a:48:b7:1c:fe:35:46:bd:0a:6b:e7:40:c4: 7b:07:37:b4:cb:63:ca:22:a6:2c:e3:00:2a:cf:94: 76:77:29:95:2c:ae:81:48:e4:93:18:9a:9a:be:ab: 7a:1e:30:3f:93:35:0d:c6:51:80:01:0c:41:26:98: 19:1d:99:45:11:48:4f:76:4e:43:23:20:11:57:a3: 1f:ce:14:6d:50:94:13:37:f3:f3:0c:62:9c:e1:9a: e2:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:68:A0:FA:84:F4:00:A3:0A:F3:22:BF:07:40:17:62:C9:15:A7:F6 X509v3 Authority Key Identifier: keyid:DC:04:AF:19:8C:97:F2:58:2F:15:AD:DE:EE:7C:68:26:11:CA:DA:51 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/3ASvGYyX8lgvFa3e7nxoJhHK2lE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/3ASvGYyX8lgvFa3e7nxoJhHK2lE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1691/50C692929D2411E7861A226BC4F9AE02/AEA7C9C0818911EA81577016C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 212.8.230.0/23 212.8.254.0/23 212.92.102.0/23 Signature Algorithm: sha256WithRSAEncryption 15:32:ef:3a:a7:3c:4d:8e:aa:fd:23:01:bb:18:6b:95:30:a3: b2:09:b0:5e:5b:53:ff:fc:10:e6:14:8f:f8:5b:95:07:f9:af: bb:fc:0c:17:16:90:41:50:1c:42:a2:9a:04:3f:d6:ca:cd:8c: 27:13:1e:ef:a0:6e:65:7e:16:27:63:c1:37:0c:a6:02:77:86: 68:4a:a1:ff:1e:9d:91:19:da:85:34:63:02:19:f0:a0:16:16: 00:d9:1f:91:4b:23:c5:69:68:94:3d:e6:f6:59:4b:28:ff:e3: 31:e9:32:1b:3b:32:4c:dd:6b:da:4b:af:22:b0:79:f9:5f:ec: dd:28:e8:23:8e:c2:a2:b8:f1:31:d3:48:e2:87:b9:e1:59:0e: be:2e:64:70:88:48:62:8b:eb:2f:e3:b4:21:0e:4d:7b:4b:7a: d8:56:84:23:84:34:86:9b:61:63:e4:93:eb:93:f1:5f:fb:4b: 2a:31:6a:c3:58:f0:5c:3c:a1:19:10:dc:01:7c:70:94:c0:e7: 29:a7:23:f5:06:18:0b:46:b8:7c:d1:61:92:0f:cf:41:02:67: 08:3a:d0:ef:17:77:98:36:ed:42:af:c4:a0:31:0e:b5:53:ef: 45:59:aa:bd:34:2c:38:74:79:2a:63:1a:ae:3b:4d:1f:08:9b: 9f:d7:00:4f -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICGMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE2OTExMTAvBgNVBAUTKERDMDRBRjE5OEM5N0YyNTgyRjE1QURERUVFN0M2ODI2 MTFDQURBNTEwHhcNMjUwODI2MTYyMzIwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGFkZGY3OC0zMmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArznUiFkxYk7E8tEPJD+s86MKIfeV++bT+EPVAet8G4+OSNANOdAZREeromjk IdahftCGIe1teOIFmhbri7NFDfZ2c/E0IAJzm3n+tMR+LTJOmNGZaVCXyFTornty zE00kAv3OZ1Q8jpJ/VJ5/7wYg4ax2RQ6O+QQL10EBEP8mgIoyp4oGpYN2WXPu5ER uljriGfp54Da6jnprBKdYDiW/CDYaD8bZEpItxz+NUa9CmvnQMR7Bze0y2PKIqYs 4wAqz5R2dymVLK6BSOSTGJqavqt6HjA/kzUNxlGAAQxBJpgZHZlFEUhPdk5DIyAR V6MfzhRtUJQTN/PzDGKc4ZriRwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHxooPqE 9ACjCvMivwdAF2LJFaf2MB8GA1UdIwQYMBaAFNwErxmMl/JYLxWt3u58aCYRytpR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTY5MS81MEM2OTI5MjlE MjQxMUU3ODYxQTIyNkJDNEY5QUUwMi8zQVN2R1l5WDhsZ3ZGYTNlN254b0poSEsy bEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzNBU3ZHWXlYOGxndkZhM2U3bnhvSmhISzJsRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE2OTEvNTBDNjkyOTI5RDI0MTFFNzg2MUEyMjZCQzRGOUFFMDIvQUVBN0M5QzA4 MTg5MTFFQTgxNTc3MDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAHUCOYDBAHUCP4DBAHUXGYwDQYJKoZIhvcNAQELBQADggEB ABUy7zqnPE2Oqv0jAbsYa5Uwo7IJsF5bU//8EOYUj/hblQf5r7v8DBcWkEFQHEKi mgQ/1srNjCcTHu+gbmV+FidjwTcMpgJ3hmhKof8enZEZ2oU0YwIZ8KAWFgDZH5FL I8VpaJQ95vZZSyj/4zHpMhs7Mkzda9pLryKweflf7N0o6COOwqK48THTSOKHueFZ Dr4uZHCISGKL6y/jtCEOTXtLethWhCOENIabYWPkk+uT8V/7SyoxasNY8Fw8oRkQ 3AF8cJTA5ymnI/UGGAtGuHzRYZIPz0ECZwg60O8Xd5g27UKvxKAxDrVT70VZqr00 LDh0eSpjGq47TR8Im5/XAE8= -----END CERTIFICATE-----Generated at Mon Sep 8 17:39:44 2025 by rpki-client