$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/50992BCE687511ECB6E9CC6FC4F9AE02.roa File: 50992BCE687511ECB6E9CC6FC4F9AE02.roa (raw, json) Hash identifier: rNQ7TBOm+03fUlBnIQ19FSSPOo9O/7pALLtCkZYt8x0= Subject key identifier: 69:3C:EA:BE:A5:17:4B:86:63:09:58:A8:10:CE:1E:77:FE:D2:4C:C5 Certificate issuer: /CN=A91DC75C/serialNumber=A536A54DB41E441DE74C33F6F736C5AD7A6685C6 Certificate serial: 0460 Authority key identifier: A5:36:A5:4D:B4:1E:44:1D:E7:4C:33:F6:F7:36:C5:AD:7A:66:85:C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTalTbQeRB3nTDP29zbFrXpmhcY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/50992BCE687511ECB6E9CC6FC4F9AE02.roa Signing time: Sat 13 Sep 2025 00:36:23 +0000 ROA not before: Sat 13 Sep 2025 00:36:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 9653 IP address blocks: 202.3.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/pTalTbQeRB3nTDP29zbFrXpmhcY.crl rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/pTalTbQeRB3nTDP29zbFrXpmhcY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTalTbQeRB3nTDP29zbFrXpmhcY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Sep 2025 00:35:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1120 (0x460) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC75C, serialNumber=A536A54DB41E441DE74C33F6F736C5AD7A6685C6 Validity Not Before: Sep 13 00:36:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c4bc86-9cd2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2b:ef:6c:57:93:8a:3c:ae:90:47:e2:17:a6: a8:fa:c1:ff:53:b6:35:c5:29:87:19:08:e8:fa:20: 76:5b:4f:64:23:38:a2:2f:d6:c6:d0:cc:44:5a:90: 8e:b8:f7:74:0c:4b:8e:29:3e:2c:12:79:8c:db:fd: 84:21:8f:18:98:0c:6e:23:51:b0:f2:f3:e8:bd:bb: 64:51:b4:f5:55:02:49:f9:8d:b2:93:2a:67:15:19: 1d:91:9b:f0:2f:b8:a4:a5:a3:92:e6:cc:d7:c1:68: 11:d1:a7:24:a9:d7:56:d8:3b:c8:d5:bf:a4:d6:15: 9b:69:b1:80:eb:fb:b8:68:fd:a5:0f:50:62:9b:04: 67:a2:aa:a6:78:7e:db:ed:f4:14:46:8f:35:ac:92: 19:9f:aa:cf:b0:6a:3a:f7:31:2a:33:de:f4:e0:02: 54:b7:fc:d7:bc:28:5e:a5:b5:97:f2:8f:e9:87:a3: c6:76:9f:5d:8d:aa:70:7d:4b:3e:3b:18:22:d6:86: e0:95:b5:4b:5e:63:2f:69:0f:b9:fd:90:2c:7f:a3: 8c:c8:80:b5:6c:00:aa:97:1b:0a:45:4c:61:64:46: 29:56:5d:84:cf:4c:e7:3c:d6:8c:e5:b4:63:63:fd: e9:49:b8:3b:bf:db:4d:bb:a9:c0:3f:5d:f8:b9:af: b8:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:3C:EA:BE:A5:17:4B:86:63:09:58:A8:10:CE:1E:77:FE:D2:4C:C5 X509v3 Authority Key Identifier: keyid:A5:36:A5:4D:B4:1E:44:1D:E7:4C:33:F6:F7:36:C5:AD:7A:66:85:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/pTalTbQeRB3nTDP29zbFrXpmhcY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pTalTbQeRB3nTDP29zbFrXpmhcY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC75C/ACAC39BE687111EC8BDB346BC4F9AE02/50992BCE687511ECB6E9CC6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.3.64.0/24 Signature Algorithm: sha256WithRSAEncryption ad:74:60:9a:90:91:cb:a4:c4:eb:e6:06:9f:ea:27:6d:2e:89: 5f:bb:d3:75:55:d8:be:d5:6b:73:ca:57:04:74:10:7f:14:1b: 99:3c:de:d6:44:73:f5:0a:49:5e:5d:47:0b:a8:51:f6:da:0d: cd:ac:9e:aa:e1:c0:a2:2b:40:62:c1:ed:83:bb:95:0f:20:1a: 19:3a:74:f4:ab:15:50:65:21:d1:d1:f5:9e:31:b0:c4:ec:9c: b9:85:41:fa:16:aa:ab:16:f9:14:dc:84:1a:44:eb:2a:f6:20: c3:72:d9:2e:b2:b2:78:aa:e9:de:24:54:e8:bd:f3:42:ed:a9: 95:9a:8c:05:8b:86:18:42:86:43:bf:01:17:b2:8b:ad:a4:31: 58:b4:fe:92:87:d0:30:fe:fd:ea:5d:54:3d:b3:a4:42:d2:67: 38:c5:7c:de:dd:35:2c:7a:47:e1:63:a1:6d:7c:ae:18:9e:b6: b9:86:15:9f:6e:88:c2:ff:35:f1:34:1d:dc:0f:e4:c3:24:30: 33:a4:f4:54:d0:65:a1:19:d5:db:df:3f:56:16:61:f3:2a:e9: 71:2d:8d:97:f7:9c:5a:31:0b:a1:ee:49:ea:f2:92:f9:eb:da: 85:3d:c8:c5:69:21:a2:4d:6b:25:c2:24:1f:1f:94:79:cb:2b: df:31:fb:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBGAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM3NUMxMTAvBgNVBAUTKEE1MzZBNTREQjQxRTQ0MURFNzRDMzNGNkY3MzZDNUFE N0E2Njg1QzYwHhcNMjUwOTEzMDAzNjIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM0YmM4Ni05Y2QyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzivvbFeTijyukEfiF6ao+sH/U7Y1xSmHGQjo+iB2W09kIziiL9bG0MxEWpCO uPd0DEuOKT4sEnmM2/2EIY8YmAxuI1Gw8vPovbtkUbT1VQJJ+Y2ykypnFRkdkZvw L7ikpaOS5szXwWgR0ackqddW2DvI1b+k1hWbabGA6/u4aP2lD1BimwRnoqqmeH7b 7fQURo81rJIZn6rPsGo69zEqM9704AJUt/zXvChepbWX8o/ph6PGdp9djapwfUs+ Oxgi1obglbVLXmMvaQ+5/ZAsf6OMyIC1bACqlxsKRUxhZEYpVl2Ez0znPNaM5bRj Y/3pSbg7v9tNu6nAP134ua+4rwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGk86r6l F0uGYwlYqBDOHnf+0kzFMB8GA1UdIwQYMBaAFKU2pU20HkQd50wz9vc2xa16ZoXG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzc1Qy9BQ0FDMzlCRTY4 NzExMUVDOEJEQjM0NkJDNEY5QUUwMi9wVGFsVGJRZVJCM25URFAyOXpiRnJYcG1o Y1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BUYWxUYlFlUkIzblREUDI5emJGclhwbWhjWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM3NUMvQUNBQzM5QkU2ODcxMTFFQzhCREIzNDZCQzRGOUFFMDIvNTA5OTJCQ0U2 ODc1MTFFQ0I2RTlDQzZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKA0AwDQYJKoZIhvcNAQELBQADggEBAK10YJqQkcukxOvm Bp/qJ20uiV+703VV2L7Va3PKVwR0EH8UG5k83tZEc/UKSV5dRwuoUfbaDc2snqrh wKIrQGLB7YO7lQ8gGhk6dPSrFVBlIdHR9Z4xsMTsnLmFQfoWqqsW+RTchBpE6yr2 IMNy2S6ysniq6d4kVOi980LtqZWajAWLhhhChkO/AReyi62kMVi0/pKH0DD+/epd VD2zpELSZzjFfN7dNSx6R+FjoW18rhietrmGFZ9uiML/NfE0HdwP5MMkMDOk9FTQ ZaEZ1dvfP1YWYfMq6XEtjZf3nFoxC6HuSerykvnr2oU9yMVpIaJNayXCJB8flHnL K98x+/U= -----END CERTIFICATE-----Generated at Fri Sep 19 15:10:57 2025 by rpki-client