$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/76817340537011EEB43BD523C4F9AE02.roa File: 76817340537011EEB43BD523C4F9AE02.roa (raw, json) Hash identifier: DsEQaxFrrc5xgpPNa4O7R4/eOV3VnFZzLIxDWSYq7YI= Subject key identifier: 9D:E4:5E:86:CF:27:C6:F2:0F:EB:79:EB:4C:F8:F3:23:90:7B:30:40 Certificate issuer: /CN=A91DA5FD/serialNumber=0760CAEF5B72DFE5B04B76DADFFAB867C30A98C7 Certificate serial: 017B Authority key identifier: 07:60:CA:EF:5B:72:DF:E5:B0:4B:76:DA:DF:FA:B8:67:C3:0A:98:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/76817340537011EEB43BD523C4F9AE02.roa Signing time: Mon 01 Sep 2025 04:21:55 +0000 ROA not before: Mon 01 Sep 2025 04:21:55 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 4768 IP address blocks: 202.36.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Sep 2025 04:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 379 (0x17b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA5FD, serialNumber=0760CAEF5B72DFE5B04B76DADFFAB867C30A98C7 Validity Not Before: Sep 1 04:21:55 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b51f63-b3c0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b3:33:34:48:55:82:de:93:2e:de:d2:c9:f5: b8:53:f2:e8:56:00:4e:df:a9:2b:23:46:2f:59:41: 21:f8:1b:08:5b:00:bc:fa:11:69:e7:37:23:6c:e9: c7:38:63:ab:3f:51:9b:e0:98:f6:58:52:d7:17:88: bc:23:66:ef:c9:74:03:82:1f:54:0f:ea:77:21:02: e2:a1:82:9c:ac:41:bc:ce:d6:1a:03:71:44:7d:0d: d4:16:5e:63:9f:63:f3:d2:43:d9:29:eb:5a:e6:34: ee:03:52:3c:4c:a6:e7:3f:e0:08:f8:92:6c:55:10: d4:fd:d0:ea:25:b3:cd:e3:32:7b:2f:b7:92:bb:4a: fe:3c:9e:ef:e9:d1:9a:85:9a:cd:0c:3c:68:0d:26: b5:5f:cd:ff:5e:06:e3:41:20:ab:51:fb:31:76:88: 73:7c:ad:d8:b3:53:e9:85:08:2b:ff:70:0c:be:f5: 13:59:65:1f:be:1b:35:9a:2d:1b:53:2d:18:75:4b: 81:fd:bd:75:20:37:4c:6f:80:ac:8c:22:81:fb:47: 87:14:1e:fc:18:a4:c7:ca:9f:13:a0:42:46:92:01: 1a:fe:94:7e:53:f5:34:cf:8c:72:53:21:ee:38:85: 24:71:5f:48:9a:17:f6:5e:59:57:87:dd:27:cc:3f: dd:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:E4:5E:86:CF:27:C6:F2:0F:EB:79:EB:4C:F8:F3:23:90:7B:30:40 X509v3 Authority Key Identifier: keyid:07:60:CA:EF:5B:72:DF:E5:B0:4B:76:DA:DF:FA:B8:67:C3:0A:98:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/B2DK71ty3-WwS3ba3_q4Z8MKmMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B2DK71ty3-WwS3ba3_q4Z8MKmMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA5FD/8BDAFEF4528611EE89B00D87C4F9AE02/76817340537011EEB43BD523C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.231.0/24 Signature Algorithm: sha256WithRSAEncryption ba:7c:a5:eb:b5:08:17:0d:84:f1:64:77:2c:f3:53:a0:27:fa: bc:a0:4f:ec:13:d3:80:57:7d:a5:99:11:42:c5:65:bf:0b:33: 95:b0:05:68:43:88:1c:50:cd:7d:6c:32:df:8a:4b:bd:c5:bc: b4:00:1d:ec:30:53:88:5e:41:7f:f0:74:68:ce:36:ac:da:94: 32:c7:35:96:3b:2e:de:20:04:55:62:00:db:dd:c0:ab:9a:d5: 49:a7:af:a6:3c:fc:4f:e2:60:62:a3:14:96:11:20:a0:e4:6d: 0d:95:b3:cc:ef:6f:69:6f:b8:a7:92:b2:a2:58:63:5b:cb:be: b1:fb:6f:c1:60:80:5a:a2:58:43:a8:a6:18:0f:16:e4:55:9c: c0:6c:24:8f:b9:cf:6c:1b:4c:29:48:5f:8f:25:22:c6:65:fe: 0f:70:1e:1f:7a:54:66:44:dc:f3:6c:87:43:bf:6d:a3:a4:81: 79:4d:a7:3e:e7:36:cb:cc:90:08:01:9b:36:35:b0:34:f3:72: 4b:fa:3b:f6:57:18:b6:22:a6:3c:50:00:99:a0:3c:3c:c5:13: 1d:b7:0d:a6:28:1c:53:8a:07:62:ba:ad:77:3d:10:c4:b1:24: e1:6e:58:bb:54:1a:8b:88:59:d2:a3:f0:14:17:98:9c:c2:1f: 34:4f:67:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REE1RkQxMTAvBgNVBAUTKDA3NjBDQUVGNUI3MkRGRTVCMDRCNzZEQURGRkFCODY3 QzMwQTk4QzcwHhcNMjUwOTAxMDQyMTU1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI1MWY2My1iM2MwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArbMzNEhVgt6TLt7SyfW4U/LoVgBO36krI0YvWUEh+BsIWwC8+hFp5zcjbOnH OGOrP1Gb4Jj2WFLXF4i8I2bvyXQDgh9UD+p3IQLioYKcrEG8ztYaA3FEfQ3UFl5j n2Pz0kPZKeta5jTuA1I8TKbnP+AI+JJsVRDU/dDqJbPN4zJ7L7eSu0r+PJ7v6dGa hZrNDDxoDSa1X83/XgbjQSCrUfsxdohzfK3Ys1PphQgr/3AMvvUTWWUfvhs1mi0b Uy0YdUuB/b11IDdMb4CsjCKB+0eHFB78GKTHyp8ToEJGkgEa/pR+U/U0z4xyUyHu OIUkcV9Imhf2XllXh90nzD/dsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ3kXobP J8byD+t560z48yOQezBAMB8GA1UdIwQYMBaAFAdgyu9bct/lsEt22t/6uGfDCpjH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTVGRC84QkRBRkVGNDUy ODYxMUVFODlCMDBEODdDNEY5QUUwMi9CMkRLNzF0eTMtV3dTM2JhM19xNFo4TUtt TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0IyREs3MXR5My1Xd1MzYmEzX3E0WjhNS21NYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REE1RkQvOEJEQUZFRjQ1Mjg2MTFFRTg5QjAwRDg3QzRGOUFFMDIvNzY4MTczNDA1 MzcwMTFFRUI0M0JENTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJOcwDQYJKoZIhvcNAQELBQADggEBALp8peu1CBcNhPFk dyzzU6An+rygT+wT04BXfaWZEULFZb8LM5WwBWhDiBxQzX1sMt+KS73FvLQAHeww U4heQX/wdGjONqzalDLHNZY7Lt4gBFViANvdwKua1Umnr6Y8/E/iYGKjFJYRIKDk bQ2Vs8zvb2lvuKeSsqJYY1vLvrH7b8FggFqiWEOophgPFuRVnMBsJI+5z2wbTClI X48lIsZl/g9wHh96VGZE3PNsh0O/baOkgXlNpz7nNsvMkAgBmzY1sDTzckv6O/ZX GLYipjxQAJmgPDzFEx23DaYoHFOKB2K6rXc9EMSxJOFuWLtUGouIWdKj8BQXmJzC HzRPZwc= -----END CERTIFICATE-----Generated at Sat Sep 6 11:40:29 2025 by rpki-client