$ rpki-client -vvf rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/F0FCC9ECABF411F0B9E4F837C4F9AE02.roa File: F0FCC9ECABF411F0B9E4F837C4F9AE02.roa (raw, json) Hash identifier: kBaQGDaRm957tvzLCzGaAnm3IbVtZ/CNyACT06yHE1Y= Subject key identifier: EF:D3:C3:C4:92:2E:2C:2C:40:C4:83:62:A1:FF:50:66:DD:6C:0F:67 Certificate issuer: /CN=A91D824A/serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Certificate serial: EA Authority key identifier: 5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/F0FCC9ECABF411F0B9E4F837C4F9AE02.roa Signing time: Sat 18 Oct 2025 07:34:55 +0000 ROA not before: Sat 18 Oct 2025 07:34:55 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 26658 IP address blocks: 202.88.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Nov 2025 07:37:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 234 (0xea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D824A, serialNumber=5C722A26141C88F7CD40F39B374ADA7FBC1F9B1F Validity Not Before: Oct 18 07:34:55 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68f3431f-abe3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6c:9e:f8:b0:76:a6:f9:7d:d0:1a:f7:d3:4f: f8:87:49:a8:a7:11:dd:e5:54:d5:3e:1a:52:7b:71: 22:ed:04:19:b3:43:f4:e0:1f:77:99:66:63:0b:2f: 7d:ae:42:b2:e9:07:d6:26:82:5a:d4:a5:2a:a1:c6: 8a:e1:60:b8:ca:ce:71:56:55:a1:2e:2d:1f:29:0d: e5:1f:7e:bf:ee:58:7d:83:b8:d3:86:c4:4c:69:df: cb:ae:49:d5:a2:35:89:8e:79:a1:0d:c6:7f:38:b4: a1:00:93:13:47:e6:af:fa:14:73:8a:b6:70:97:05: 8c:35:75:56:db:ff:12:03:e7:63:05:f6:d8:79:44: a4:7a:2b:67:64:47:07:f5:e3:d6:78:1d:0d:b0:20: 86:a9:07:f9:10:41:82:b4:aa:f2:18:23:cf:70:b5: 50:75:eb:f4:51:bc:99:3d:ab:c0:cc:4d:d0:44:1a: d5:85:68:53:48:79:62:6d:ab:20:98:82:9e:5c:3b: 88:fe:c0:f4:8a:0a:5a:5d:78:a4:f6:01:0d:19:dc: 3f:54:5c:75:b7:e1:b8:71:ea:4c:64:61:57:55:b4: c4:34:58:cb:be:e1:2e:a3:a1:18:bf:bd:bf:3e:c9: 77:0b:ab:e0:3d:67:d6:b8:76:7d:95:40:ae:6c:67: 4f:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:D3:C3:C4:92:2E:2C:2C:40:C4:83:62:A1:FF:50:66:DD:6C:0F:67 X509v3 Authority Key Identifier: keyid:5C:72:2A:26:14:1C:88:F7:CD:40:F3:9B:37:4A:DA:7F:BC:1F:9B:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/XHIqJhQciPfNQPObN0raf7wfmx8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XHIqJhQciPfNQPObN0raf7wfmx8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D824A/4ADF33FC5B9A11EF8307F540C4F9AE02/F0FCC9ECABF411F0B9E4F837C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.88.36.0/22 Signature Algorithm: sha256WithRSAEncryption 83:23:1f:ec:35:4f:ba:2d:e8:c9:66:f6:f3:d3:ee:2e:a4:25: 0f:44:ba:97:ab:01:ae:31:fa:23:52:1f:79:51:31:e2:77:6b: 70:bc:bb:24:26:dd:38:a6:f3:be:a1:a3:84:d2:67:46:df:21: 29:2e:4e:31:a2:2b:52:f9:24:fb:a6:84:38:9f:4c:d2:5e:08: 1e:ba:da:eb:c5:f1:5f:d7:cf:e3:d2:7e:26:85:a6:85:01:0e: c3:f1:69:69:f5:73:b1:f0:80:fe:d9:30:3c:16:b8:a3:c0:d4: 56:81:e6:8c:64:06:5f:ce:cc:42:c4:e4:3b:15:86:35:ce:6b: ed:76:df:80:55:89:25:78:6d:c8:88:35:fe:9d:94:5c:c2:dc: 3a:74:4e:f9:50:ce:1b:ca:ac:60:d6:01:64:4a:8e:65:b0:47: de:14:0e:c9:cc:48:57:2d:e2:b5:55:b7:6d:7b:a6:78:c3:74: e2:5a:c2:4d:86:ad:12:dd:8c:01:e5:f5:bb:06:97:23:79:57: 6f:42:ee:4b:c0:c1:37:e7:33:67:c8:67:2e:34:76:29:2e:69: c9:03:b0:91:ce:66:21:55:c4:b4:b9:27:03:46:de:82:74:ad: da:83:47:87:c8:04:a2:fd:83:3e:f5:e7:dd:69:4e:02:fd:c5: 79:28:80:38 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgyNEExMTAvBgNVBAUTKDVDNzIyQTI2MTQxQzg4RjdDRDQwRjM5QjM3NEFEQTdG QkMxRjlCMUYwHhcNMjUxMDE4MDczNDU1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02OGYzNDMxZi1hYmUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy2ye+LB2pvl90Br300/4h0mopxHd5VTVPhpSe3Ei7QQZs0P04B93mWZjCy99 rkKy6QfWJoJa1KUqocaK4WC4ys5xVlWhLi0fKQ3lH36/7lh9g7jThsRMad/LrknV ojWJjnmhDcZ/OLShAJMTR+av+hRzirZwlwWMNXVW2/8SA+djBfbYeUSkeitnZEcH 9ePWeB0NsCCGqQf5EEGCtKryGCPPcLVQdev0UbyZPavAzE3QRBrVhWhTSHlibasg mIKeXDuI/sD0igpaXXik9gENGdw/VFx1t+G4cepMZGFXVbTENFjLvuEuo6EYv72/ Psl3C6vgPWfWuHZ9lUCubGdPzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO/Tw8SS LiwsQMSDYqH/UGbdbA9nMB8GA1UdIwQYMBaAFFxyKiYUHIj3zUDzmzdK2n+8H5sf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODI0QS80QURGMzNGQzVC OUExMUVGODMwN0Y1NDBDNEY5QUUwMi9YSElxSmhRY2lQZk5RUE9iTjByYWY3d2Zt eDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hISXFKaFFjaVBmTlFQT2JOMHJhZjd3Zm14OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgyNEEvNEFERjMzRkM1QjlBMTFFRjgzMDdGNTQwQzRGOUFFMDIvRjBGQ0M5RUNB QkY0MTFGMEI5RTRGODM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKWCQwDQYJKoZIhvcNAQELBQADggEBAIMjH+w1T7ot6Mlm 9vPT7i6kJQ9EuperAa4x+iNSH3lRMeJ3a3C8uyQm3Tim876ho4TSZ0bfISkuTjGi K1L5JPumhDifTNJeCB662uvF8V/Xz+PSfiaFpoUBDsPxaWn1c7HwgP7ZMDwWuKPA 1FaB5oxkBl/OzELE5DsVhjXOa+1234BViSV4bciINf6dlFzC3Dp0TvlQzhvKrGDW AWRKjmWwR94UDsnMSFct4rVVt217pnjDdOJawk2GrRLdjAHl9bsGlyN5V29C7kvA wTfnM2fIZy40dikuackDsJHOZiFVxLS5JwNG3oJ0rdqDR4fIBKL9gz71591pTgL9 xXkogDg= -----END CERTIFICATE-----Generated at Mon Oct 27 20:44:27 2025 by rpki-client