$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/DF9C04F4897811F08A9D002AC4F9AE02.roa File: DF9C04F4897811F08A9D002AC4F9AE02.roa (raw, json) Hash identifier: XfF79hvTmc8NMCL/hID++kJM7536Tc7Eia39Bf3yFuA= Subject key identifier: 65:67:56:96:FF:27:2C:D4:7D:AE:3D:F0:25:9B:E2:5D:B8:60:1A:41 Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 02BB Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/DF9C04F4897811F08A9D002AC4F9AE02.roa Signing time: Thu 04 Sep 2025 10:21:09 +0000 ROA not before: Thu 04 Sep 2025 10:21:09 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 395793 IP address blocks: 203.21.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 02:13:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 699 (0x2bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A, serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: Sep 4 10:21:09 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b96815-2e77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:fa:f7:cd:60:5d:fa:c1:d5:c2:fe:a5:13:03: f2:fc:40:8c:f6:b6:13:77:0a:be:06:f9:00:3c:22: b8:35:71:dd:35:bc:39:7b:7d:e7:8a:c4:26:3a:7e: 70:2f:3d:25:f3:d3:3e:4a:0d:ff:4a:67:2c:66:fd: 18:42:17:49:6f:a4:23:3e:3b:95:b7:1d:df:1e:d5: 7b:66:78:af:ac:4e:6f:d2:d4:03:f9:e2:32:62:da: 2e:bc:f5:0f:17:2b:5b:3f:ac:7b:50:d5:79:b3:b2: a3:68:48:89:b6:ce:0a:dd:41:66:16:e0:c6:00:01: a0:93:23:5a:8e:54:94:66:4c:58:fd:26:0f:97:05: 5f:c7:07:9e:e5:e5:27:07:b3:e4:22:7b:98:17:df: 23:0d:01:99:32:6d:d3:83:8a:af:06:9c:35:53:53: c3:46:73:59:63:05:91:6f:24:2a:04:bf:e0:28:e0: 9e:81:19:39:75:ca:ee:d9:1c:c2:97:d9:42:df:d7: bb:fc:ef:3c:72:dd:cd:a0:a2:8f:53:7a:45:65:ff: 51:08:eb:cc:b7:7e:68:05:fb:7e:81:28:9d:76:52: fe:04:25:33:99:ac:0f:e1:27:71:a3:f8:fd:a4:63: 7d:05:ad:9f:70:4f:f0:6b:6b:a8:1a:24:ba:9e:49: 3a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:67:56:96:FF:27:2C:D4:7D:AE:3D:F0:25:9B:E2:5D:B8:60:1A:41 X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/DF9C04F4897811F08A9D002AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.21.72.0/24 Signature Algorithm: sha256WithRSAEncryption ae:9e:d1:a9:d4:d1:62:82:eb:c1:82:47:c4:4d:7a:1c:e5:a1: 3e:c0:50:d8:35:2a:7d:fb:b7:a9:64:1d:68:1c:74:72:29:26: a8:f4:4c:fc:80:03:56:02:f7:f4:6c:9a:0a:af:5e:71:71:72: e7:95:c9:76:6c:f3:9e:e9:c8:6e:69:ef:af:69:36:78:c5:c5: 25:79:21:5b:5e:eb:a6:80:b8:e6:96:bf:fd:c3:9b:97:8f:50: fe:82:1b:18:25:a8:24:66:b5:05:4a:2c:4f:01:6f:ed:17:9c: 4e:37:33:a6:fb:2f:9a:8f:d2:6b:0b:99:82:2c:f2:c6:b1:f6: c1:62:57:10:e9:3f:6b:bd:bb:98:77:8e:5c:11:36:77:40:42: ef:a3:3a:6c:1f:ae:d6:ef:9e:ae:92:cb:18:7c:0d:96:99:18: 2a:6e:fc:a5:ba:f1:8e:15:3b:33:df:bd:af:4a:69:72:14:7a: eb:b9:2d:32:94:e0:2d:50:53:ac:23:27:5c:8e:7a:e4:f5:b7: 50:29:a7:40:9c:e4:61:df:de:10:92:d2:e6:58:e8:8b:98:d7: f2:22:6e:c5:04:d4:0f:65:48:6d:07:68:98:1f:c7:39:a4:d7: 22:54:de:97:05:62:1c:d9:c2:c6:45:b6:98:15:db:bd:58:20: 0f:f8:ea:77 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICArswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjUwOTA0MTAyMTA5WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI5NjgxNS0yZTc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Pr3zWBd+sHVwv6lEwPy/ECM9rYTdwq+BvkAPCK4NXHdNbw5e33nisQmOn5w Lz0l89M+Sg3/SmcsZv0YQhdJb6QjPjuVtx3fHtV7ZnivrE5v0tQD+eIyYtouvPUP FytbP6x7UNV5s7KjaEiJts4K3UFmFuDGAAGgkyNajlSUZkxY/SYPlwVfxwee5eUn B7PkInuYF98jDQGZMm3Tg4qvBpw1U1PDRnNZYwWRbyQqBL/gKOCegRk5dcru2RzC l9lC39e7/O88ct3NoKKPU3pFZf9RCOvMt35oBft+gSiddlL+BCUzmawP4Sdxo/j9 pGN9Ba2fcE/wa2uoGiS6nkk6AwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGVnVpb/ JyzUfa498CWb4l24YBpBMB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM2NkEvRUMwOUFBNEEzMDdEMTFFREE2QzNBMjEyQzRGOUFFMDIvREY5QzA0RjQ4 OTc4MTFGMDhBOUQwMDJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLFUgwDQYJKoZIhvcNAQELBQADggEBAK6e0anU0WKC68GC R8RNehzloT7AUNg1Kn37t6lkHWgcdHIpJqj0TPyAA1YC9/RsmgqvXnFxcueVyXZs 857pyG5p769pNnjFxSV5IVte66aAuOaWv/3Dm5ePUP6CGxglqCRmtQVKLE8Bb+0X nE43M6b7L5qP0msLmYIs8sax9sFiVxDpP2u9u5h3jlwRNndAQu+jOmwfrtbvnq6S yxh8DZaZGCpu/KW68Y4VOzPfva9KaXIUeuu5LTKU4C1QU6wjJ1yOeuT1t1App0Cc 5GHf3hCS0uZY6IuY1/IibsUE1A9lSG0HaJgfxzmk1yJU3pcFYhzZwsZFtpgV271Y IA/46nc= -----END CERTIFICATE-----Generated at Tue Sep 9 00:15:08 2025 by rpki-client