$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/6E41DE08310A11F0AC8DF544C4F9AE02.roa File: 6E41DE08310A11F0AC8DF544C4F9AE02.roa (raw, json) Hash identifier: MdnsK78f+RePT5EKFxzpSrHG7P2t5sm3+YBB1dYO5+4= Subject key identifier: E8:24:55:64:13:F1:76:BF:8A:B2:39:90:34:B0:5D:A3:54:9C:83:7A Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 02B1 Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/6E41DE08310A11F0AC8DF544C4F9AE02.roa Signing time: Fri 29 Aug 2025 02:49:36 +0000 ROA not before: Fri 29 Aug 2025 02:49:36 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 58061 IP address blocks: 203.33.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 02:13:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 689 (0x2b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A, serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: Aug 29 02:49:36 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b1153f-04c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:12:55:77:a0:96:0a:ce:d3:15:6b:b0:c3:96: 47:51:9f:ec:da:5b:e7:be:8e:59:9a:a8:07:78:01: 0d:7c:ec:5a:0e:57:cc:99:86:96:54:24:82:86:ba: e3:15:dd:3b:87:f5:61:1c:1b:94:4a:fc:56:b1:88: 41:ee:e1:c9:12:8a:f1:57:fc:70:e0:e8:ad:0d:8c: 76:a5:0d:0e:1e:ec:75:3e:0f:ec:49:07:b7:d1:5b: a1:73:7e:08:60:90:53:e1:34:8c:bb:fd:4a:87:0f: f1:93:bf:ea:68:bc:b9:32:9d:19:67:a6:56:92:13: dc:22:c9:a4:ae:d1:f3:09:42:60:cc:b5:dc:e7:08: 0b:df:48:3c:80:c2:04:e9:18:fd:55:f5:41:71:66: bd:e8:08:a1:e9:47:a7:1b:68:b2:cc:06:b3:2b:67: 18:c8:cf:df:e4:56:6e:a2:06:92:7d:c5:f5:ac:23: 37:1b:71:bf:21:ca:cb:5c:48:c9:f9:c7:d3:24:dd: 7c:15:79:44:e5:c7:da:72:36:4e:28:7f:75:d5:63: 38:28:6c:71:d6:0c:43:d7:2f:d2:a9:46:2a:f4:63: 12:6c:6d:bc:48:14:bd:00:fc:8a:c2:49:92:a5:31: 11:9f:c2:72:6f:11:c1:e7:37:ee:56:cf:f6:ce:29: ba:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:24:55:64:13:F1:76:BF:8A:B2:39:90:34:B0:5D:A3:54:9C:83:7A X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/6E41DE08310A11F0AC8DF544C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.33.239.0/24 Signature Algorithm: sha256WithRSAEncryption 43:b4:83:12:82:ab:2e:a8:33:6c:e8:70:4b:bc:b0:ae:20:ff: aa:76:cd:74:a8:dd:44:c6:28:95:71:c0:00:f1:25:10:37:cd: 85:a3:61:9f:d7:3f:3b:f6:bf:ef:e4:33:fe:eb:be:24:7f:49: df:43:15:4b:c2:9c:f5:b3:55:fd:62:23:3f:04:8b:af:21:16: da:28:5a:8a:0d:70:d6:11:36:e8:5a:0d:32:0e:4b:41:a6:bc: 72:89:62:4b:5f:09:51:6a:72:b1:96:67:77:58:b5:51:23:ec: c3:4e:55:f8:29:2d:1d:46:9c:25:84:2d:b2:c2:42:46:62:c0: e5:23:3b:4a:10:10:e1:69:1d:19:9b:69:34:9b:ba:c3:23:7c: 60:4d:2c:96:09:45:1f:73:a4:23:5e:88:4c:19:3d:e3:6c:c1: c9:5c:49:e6:c1:e1:f1:ba:03:69:b8:41:fb:31:f5:89:e2:52: 52:ff:82:f8:aa:58:39:ef:49:85:57:8e:38:1d:d1:2a:8e:73: 88:5f:63:a8:93:08:fe:62:d4:a2:76:ae:96:88:c9:5e:b8:1d: b0:62:26:8c:88:47:f5:4b:7b:ae:22:3f:b6:63:35:50:6f:01: 45:e6:c1:78:8e:d0:87:c3:3d:9b:5a:d0:fe:4a:1e:dc:c7:24: 9a:16:ea:ef -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICArEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjUwODI5MDI0OTM2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMTUzZi0wNGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwxJVd6CWCs7TFWuww5ZHUZ/s2lvnvo5ZmqgHeAENfOxaDlfMmYaWVCSChrrj Fd07h/VhHBuUSvxWsYhB7uHJEorxV/xw4OitDYx2pQ0OHux1Pg/sSQe30Vuhc34I YJBT4TSMu/1Khw/xk7/qaLy5Mp0ZZ6ZWkhPcIsmkrtHzCUJgzLXc5wgL30g8gMIE 6Rj9VfVBcWa96Aih6UenG2iyzAazK2cYyM/f5FZuogaSfcX1rCM3G3G/IcrLXEjJ +cfTJN18FXlE5cfacjZOKH911WM4KGxx1gxD1y/SqUYq9GMSbG28SBS9APyKwkmS pTERn8JybxHB5zfuVs/2zim6rwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOgkVWQT 8Xa/irI5kDSwXaNUnIN6MB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM2NkEvRUMwOUFBNEEzMDdEMTFFREE2QzNBMjEyQzRGOUFFMDIvNkU0MURFMDgz MTBBMTFGMEFDOERGNTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLIe8wDQYJKoZIhvcNAQELBQADggEBAEO0gxKCqy6oM2zo cEu8sK4g/6p2zXSo3UTGKJVxwADxJRA3zYWjYZ/XPzv2v+/kM/7rviR/Sd9DFUvC nPWzVf1iIz8Ei68hFtooWooNcNYRNuhaDTIOS0GmvHKJYktfCVFqcrGWZ3dYtVEj 7MNOVfgpLR1GnCWELbLCQkZiwOUjO0oQEOFpHRmbaTSbusMjfGBNLJYJRR9zpCNe iEwZPeNswclcSebB4fG6A2m4Qfsx9YniUlL/gviqWDnvSYVXjjgd0SqOc4hfY6iT CP5i1KJ2rpaIyV64HbBiJoyIR/VLe64iP7ZjNVBvAUXmwXiO0IfDPZta0P5KHtzH JJoW6u8= -----END CERTIFICATE-----Generated at Tue Sep 9 00:15:08 2025 by rpki-client