$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/D6D1A360323911F0BDA2E834C4F9AE02.roa File: D6D1A360323911F0BDA2E834C4F9AE02.roa (raw, json) Hash identifier: 3S7sTHQwNR4M05c/J0LAnFvlwfRaJo13g2aipeOM4II= Subject key identifier: D7:6F:3A:8A:08:50:68:A8:3D:08:4D:5E:5D:38:AD:96:71:0A:49:97 Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 02B0 Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/D6D1A360323911F0BDA2E834C4F9AE02.roa Signing time: Fri 29 Aug 2025 02:49:35 +0000 ROA not before: Fri 29 Aug 2025 02:49:35 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 56971 IP address blocks: 203.18.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 02:13:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 688 (0x2b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A, serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: Aug 29 02:49:35 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b1153f-4d7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:50:61:3d:6a:c6:ea:ea:f8:91:26:99:67:52: 4f:7e:08:8c:2e:43:fd:40:7c:31:a6:a8:a4:3f:92: 2b:94:2f:00:2b:27:56:29:52:bb:46:ea:6f:98:89: bb:8d:db:ea:cf:34:90:4a:7f:13:2c:2f:61:de:86: 19:4d:83:8d:5a:e9:c6:6a:20:ee:30:3f:e8:69:1b: 61:f0:0c:62:5a:fe:42:df:5b:d2:1f:fc:2c:01:65: dd:9f:80:ef:cc:d4:4b:78:41:c1:6e:d3:c4:75:93: d6:d9:11:f6:58:32:37:e2:94:45:12:cc:7e:a7:99: 55:94:6b:eb:57:7d:0f:b1:ee:ab:99:ca:cf:8c:39: a8:14:ec:ea:be:a5:40:dc:43:3b:d0:33:09:51:1b: b2:01:16:7e:57:10:e9:91:c5:7b:1e:08:44:0d:13: 09:15:da:6b:b5:87:e5:40:97:5e:22:4a:92:35:3e: d5:bc:a6:f2:3d:21:67:5e:b1:07:ec:a1:be:da:88: 72:2b:ff:69:f0:82:3f:dc:35:5d:61:bf:1c:eb:87: c4:0c:84:22:6b:e7:1a:fa:db:a4:a0:f4:a6:2f:74: 86:c5:48:1d:70:5d:15:9c:95:48:08:3e:e6:33:49: 38:ca:90:59:37:6d:c9:3c:8a:71:f2:2a:56:93:9d: 3e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:6F:3A:8A:08:50:68:A8:3D:08:4D:5E:5D:38:AD:96:71:0A:49:97 X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/D6D1A360323911F0BDA2E834C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.18.98.0/24 Signature Algorithm: sha256WithRSAEncryption 95:a8:90:2f:b0:3e:32:44:68:11:ba:94:7a:2d:cd:3b:93:25: f8:22:ef:fa:b4:c8:e8:4e:c6:31:fa:77:a9:2f:0d:4f:54:f6: 31:da:78:12:28:03:a8:3c:3a:a8:1c:92:46:ae:41:94:62:72: ae:1a:36:55:ef:37:ce:da:5b:bc:96:f2:7b:54:cd:37:55:2f: af:40:b6:66:18:98:d9:4e:43:ab:72:ae:86:2a:f3:cd:90:8a: e8:fe:9e:20:dd:f5:19:d7:95:d9:54:d9:49:3b:8b:97:8d:5a: 84:1d:18:73:38:e7:4b:a3:37:72:06:e9:a2:b5:a6:e8:5a:e5: 9b:82:46:ec:6c:59:f2:c2:8e:62:6a:29:6a:81:51:1f:ae:07: 26:d1:c8:f9:a5:46:80:82:9c:86:29:b9:9c:d7:29:b9:3c:69: 25:b7:35:6f:ce:01:0a:45:45:23:bd:f4:e4:d2:43:f0:1b:2b: 5b:99:3d:12:6d:0c:c5:c6:6a:2b:72:41:1e:30:3c:0c:50:07: 82:e1:fb:ea:33:3d:47:87:43:5b:83:44:87:9f:25:da:e2:78: e0:c0:bb:72:45:e7:e2:0f:b5:f7:a7:ef:b0:44:c0:92:85:ce: f7:8d:b3:ea:e7:59:64:9b:b7:23:1f:97:7e:c9:02:34:b0:8c: b1:c1:45:aa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICArAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjUwODI5MDI0OTM1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGIxMTUzZi00ZDdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3VBhPWrG6ur4kSaZZ1JPfgiMLkP9QHwxpqikP5IrlC8AKydWKVK7RupvmIm7 jdvqzzSQSn8TLC9h3oYZTYONWunGaiDuMD/oaRth8AxiWv5C31vSH/wsAWXdn4Dv zNRLeEHBbtPEdZPW2RH2WDI34pRFEsx+p5lVlGvrV30Pse6rmcrPjDmoFOzqvqVA 3EM70DMJURuyARZ+VxDpkcV7HghEDRMJFdprtYflQJdeIkqSNT7VvKbyPSFnXrEH 7KG+2ohyK/9p8II/3DVdYb8c64fEDIQia+ca+tukoPSmL3SGxUgdcF0VnJVICD7m M0k4ypBZN23JPIpx8ipWk50+yQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNdvOooI UGioPQhNXl04rZZxCkmXMB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM2NkEvRUMwOUFBNEEzMDdEMTFFREE2QzNBMjEyQzRGOUFFMDIvRDZEMUEzNjAz MjM5MTFGMEJEQTJFODM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLEmIwDQYJKoZIhvcNAQELBQADggEBAJWokC+wPjJEaBG6 lHotzTuTJfgi7/q0yOhOxjH6d6kvDU9U9jHaeBIoA6g8OqgckkauQZRicq4aNlXv N87aW7yW8ntUzTdVL69AtmYYmNlOQ6tyroYq882Qiuj+niDd9RnXldlU2Uk7i5eN WoQdGHM450ujN3IG6aK1puha5ZuCRuxsWfLCjmJqKWqBUR+uBybRyPmlRoCCnIYp uZzXKbk8aSW3NW/OAQpFRSO99OTSQ/AbK1uZPRJtDMXGaityQR4wPAxQB4Lh++oz PUeHQ1uDRIefJdrieODAu3JF5+IPtfen77BEwJKFzveNs+rnWWSbtyMfl37JAjSw jLHBRao= -----END CERTIFICATE-----Generated at Mon Sep 8 04:17:29 2025 by rpki-client