$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/17CEC2168E0C11F084AC6A2FC4F9AE02.roa File: 17CEC2168E0C11F084AC6A2FC4F9AE02.roa (raw, json) Hash identifier: prtwURTQgX1YWKu7I215Q9W3Xbs+MErGuennP44/iWQ= Subject key identifier: A7:51:04:A6:48:6E:D4:0F:7E:A3:CF:4B:01:23:98:B4:27:88:AF:4E Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 29B0 Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/17CEC2168E0C11F084AC6A2FC4F9AE02.roa Signing time: Wed 10 Sep 2025 06:05:04 +0000 ROA not before: Wed 10 Sep 2025 06:05:04 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 29802 IP address blocks: 113.203.227.0/24 maxlen: 24 115.167.118.0/24 maxlen: 24 115.167.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Sep 2025 14:32:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10672 (0x29b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Validity Not Before: Sep 10 06:05:04 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68c11510-299f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:78:db:2d:a4:1d:a3:ae:cc:46:56:fd:34:13: 4e:8e:1c:4f:a5:17:ee:eb:d9:78:21:6f:ab:eb:12: d1:3a:02:9d:4f:13:5b:8c:d1:10:c4:84:c8:a7:7a: 11:13:38:56:4d:7b:0f:9d:78:cb:20:a3:c5:a1:df: 9b:4a:b7:49:70:cf:51:ab:2c:d4:d6:84:9c:5a:4f: 89:d1:bf:cf:c4:ff:cd:e7:bd:4a:b4:44:af:55:dd: 7e:44:69:fb:c3:db:79:2e:45:0b:f7:bc:d9:1d:ca: 98:ca:20:3b:f8:d4:ab:3e:55:b1:63:7e:cd:18:06: d0:2a:18:fc:01:7d:6c:6f:74:52:33:fb:86:ad:c7: f9:4c:e0:4a:0a:d6:96:2f:0e:8a:20:f8:6a:ff:5a: 4f:b0:e7:bd:cd:8b:31:53:fe:02:80:25:bf:8c:0d: 08:d2:e4:01:36:15:22:d4:8b:45:54:af:28:f5:32: 7b:fd:84:ac:5e:29:61:34:21:5c:73:8b:9f:08:37: b0:7c:b1:20:a2:de:63:c6:18:83:99:46:04:f9:e9: 91:55:b8:37:e0:1c:bf:1c:3b:94:66:a1:a5:bc:e8: 55:a9:00:87:ee:ec:6f:f4:46:73:8f:93:33:7b:b4: ef:64:ae:5c:7b:df:49:d3:6c:55:20:81:c0:80:73: 2f:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:51:04:A6:48:6E:D4:0F:7E:A3:CF:4B:01:23:98:B4:27:88:AF:4E X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/17CEC2168E0C11F084AC6A2FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.203.227.0/24 115.167.118.0/23 Signature Algorithm: sha256WithRSAEncryption 37:2a:de:2a:ef:5d:8d:ef:27:cb:7f:e0:ce:0e:5c:2e:05:c4: 5d:64:b4:26:97:c3:be:9c:4e:1f:fc:e5:68:e6:06:80:fe:58: ad:55:ca:c8:dd:22:c9:4b:28:f6:09:fe:70:66:29:04:6b:4a: f0:3d:de:03:71:18:bd:e6:5c:36:c6:96:d0:3e:8a:fe:4a:d8: 72:0d:74:32:c0:06:93:2f:19:e0:b0:d9:e0:96:b3:2d:d8:2c: 98:ee:9c:70:86:fa:4c:bc:48:70:31:2b:c8:8a:3c:64:d8:17: 73:dc:c8:87:62:17:3b:f8:9a:e1:f5:3a:ca:12:39:8f:af:4b: ac:6d:5c:79:c3:20:74:83:56:99:15:15:e0:c7:4b:a5:a6:8e: 88:0b:de:b6:ec:a1:a6:b5:d7:46:e9:4e:a9:56:29:96:cc:02: 8d:58:eb:60:1b:9b:bd:3b:2c:cd:3c:64:b9:e2:b9:e1:c8:ed: 29:32:21:21:be:88:4b:7a:9a:8e:c0:cc:3c:ab:fd:7a:cf:12: f0:60:e9:ee:de:1f:b3:e2:25:60:68:92:a5:d6:7a:d8:24:ca: 7c:9d:19:d8:aa:6e:59:a7:46:0d:10:0b:1e:af:ac:44:9f:6c: ce:58:d9:88:32:09:d8:e0:44:a1:14:2e:a7:f1:d4:85:5d:4a: 3d:0d:e8:39 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICKbAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjUwOTEwMDYwNTA0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMxMTUxMC0yOTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXjbLaQdo67MRlb9NBNOjhxPpRfu69l4IW+r6xLROgKdTxNbjNEQxITIp3oR EzhWTXsPnXjLIKPFod+bSrdJcM9RqyzU1oScWk+J0b/PxP/N571KtESvVd1+RGn7 w9t5LkUL97zZHcqYyiA7+NSrPlWxY37NGAbQKhj8AX1sb3RSM/uGrcf5TOBKCtaW Lw6KIPhq/1pPsOe9zYsxU/4CgCW/jA0I0uQBNhUi1ItFVK8o9TJ7/YSsXilhNCFc c4ufCDewfLEgot5jxhiDmUYE+emRVbg34By/HDuUZqGlvOhVqQCH7uxv9EZzj5Mz e7TvZK5ce99J02xVIIHAgHMvNQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFKdRBKZI btQPfqPPSwEjmLQniK9OMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvMTdDRUMyMTY4 RTBDMTFGMDg0QUM2QTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABxy+MDBAFzp3YwDQYJKoZIhvcNAQELBQADggEBADcq3irv XY3vJ8t/4M4OXC4FxF1ktCaXw76cTh/85WjmBoD+WK1VysjdIslLKPYJ/nBmKQRr SvA93gNxGL3mXDbGltA+iv5K2HINdDLABpMvGeCw2eCWsy3YLJjunHCG+ky8SHAx K8iKPGTYF3PcyIdiFzv4muH1OsoSOY+vS6xtXHnDIHSDVpkVFeDHS6WmjogL3rbs oaa110bpTqlWKZbMAo1Y62Abm707LM08ZLniueHI7SkyISG+iEt6mo7AzDyr/XrP EvBg6e7eH7PiJWBokqXWetgkynydGdiqblmnRg0QCx6vrESfbM5Y2YgyCdjgRKEU Lqfx1IVdSj0N6Dk= -----END CERTIFICATE-----Generated at Thu Sep 18 17:28:46 2025 by rpki-client