$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/3D57CE0A738711F0B8F64625C4F9AE02.roa File: 3D57CE0A738711F0B8F64625C4F9AE02.roa (raw, json) Hash identifier: SsjfPy3285cqZnwOkAHIiuBOBs1QjnEnU6GLjCGa8oY= Subject key identifier: 34:10:D1:57:00:A9:7B:0E:0E:C9:45:5B:50:D1:26:01:E6:59:50:C3 Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 360B Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/3D57CE0A738711F0B8F64625C4F9AE02.roa Signing time: Thu 07 Aug 2025 12:08:34 +0000 ROA not before: Thu 07 Aug 2025 12:08:34 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 152868 IP address blocks: 182.54.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Aug 2025 14:49:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13835 (0x360b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90, serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Aug 7 12:08:34 2025 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=68949741-2b85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:b5:e1:3e:0d:be:6c:4d:9f:6a:05:47:69:68: a4:30:7b:2b:1c:9c:dc:ab:3a:bd:92:a5:fa:ae:73: 6d:5d:a9:2b:16:1a:6e:04:bf:2b:09:cd:14:41:86: 87:ea:0b:eb:b6:8b:3e:d4:85:3a:67:e5:da:dd:f2: 21:85:94:c1:37:c8:4b:55:26:15:1c:4b:55:00:63: 5c:b6:35:4b:0b:6c:8e:6e:4f:48:4c:4a:5d:45:7b: 4a:24:a4:d4:fe:a7:59:30:cc:a0:67:76:44:46:f3: 5e:73:52:ec:b6:63:86:fe:23:6c:3a:45:6a:74:38: 1d:7f:dd:a9:c9:09:59:a9:74:38:51:e9:0b:c2:4c: ae:7c:2e:54:9b:f9:ee:b0:93:19:60:96:cc:e1:c4: c4:de:7e:14:1a:72:12:c6:76:68:2a:50:03:fc:13: 42:3b:b6:74:cc:86:d6:d3:aa:10:85:d4:46:d6:74: 91:a2:d1:31:88:d3:83:0c:1e:b3:c7:1c:08:b4:68: e6:41:d4:b0:28:a4:85:8c:67:ce:78:d5:6a:54:e7: 3b:a9:a7:f7:ce:ca:b0:b5:93:14:95:35:6e:63:51: 34:42:12:1b:2d:a3:09:f2:22:a5:18:cb:24:40:e9: 2d:0e:bb:26:f3:1c:c8:66:d9:7f:de:42:10:7e:47: 87:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:10:D1:57:00:A9:7B:0E:0E:C9:45:5B:50:D1:26:01:E6:59:50:C3 X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/3D57CE0A738711F0B8F64625C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 182.54.238.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:28:55:54:a1:39:ea:d0:f6:e2:b8:22:ef:e5:31:d9:ff:df: ca:6f:73:81:4f:05:24:e1:af:08:59:1c:94:10:53:3c:c7:1e: bd:7a:db:e9:46:81:a4:a4:95:0a:4d:41:61:1f:80:51:94:b2: e2:ef:d0:0e:68:44:0e:8e:88:60:a1:1e:67:4a:a2:01:31:a6: 72:07:42:67:16:d1:bf:8d:1b:68:c1:7b:dd:bc:12:c7:3b:a1: c6:d5:3d:25:53:03:c7:ad:8b:2c:b4:f8:4f:cd:82:75:9e:96: eb:42:3b:80:58:e5:40:b1:54:50:a4:4a:97:91:13:ec:33:10: af:f0:dc:53:e7:ff:0b:a5:f6:67:ed:e7:b9:64:08:02:96:49: f6:eb:2c:8e:30:3f:06:0b:40:d4:bd:27:1a:1f:b7:2b:ef:bb: 00:aa:a4:38:30:5c:d0:f5:20:77:a6:ae:b4:00:48:97:40:dc: 5e:03:9d:fe:ad:ab:a3:8a:79:99:ad:36:1f:02:2c:d7:f9:1b: 0a:a4:67:45:66:e2:c4:b3:a5:1f:b4:93:2b:31:15:0d:44:44: 09:8f:40:56:ce:84:a1:20:15:f5:c9:34:35:a1:9b:f7:16:d2: 64:1e:c8:9a:44:11:1b:6f:22:d0:70:42:55:7d:eb:7d:dc:77: 74:ac:80:e1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjUwODA3MTIwODM0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk0OTc0MS0yYjg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9bXhPg2+bE2fagVHaWikMHsrHJzcqzq9kqX6rnNtXakrFhpuBL8rCc0UQYaH 6gvrtos+1IU6Z+Xa3fIhhZTBN8hLVSYVHEtVAGNctjVLC2yObk9ITEpdRXtKJKTU /qdZMMygZ3ZERvNec1LstmOG/iNsOkVqdDgdf92pyQlZqXQ4UekLwkyufC5Um/nu sJMZYJbM4cTE3n4UGnISxnZoKlAD/BNCO7Z0zIbW06oQhdRG1nSRotExiNODDB6z xxwItGjmQdSwKKSFjGfOeNVqVOc7qaf3zsqwtZMUlTVuY1E0QhIbLaMJ8iKlGMsk QOktDrsm8xzIZtl/3kIQfkeHAwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDQQ0VcA qXsODslFW1DRJgHmWVDDMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvM0Q1N0NFMEE3 Mzg3MTFGMEI4RjY0NjI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAC2Nu4wDQYJKoZIhvcNAQELBQADggEBAIwoVVShOerQ9uK4 Iu/lMdn/38pvc4FPBSThrwhZHJQQUzzHHr162+lGgaSklQpNQWEfgFGUsuLv0A5o RA6OiGChHmdKogExpnIHQmcW0b+NG2jBe928Esc7ocbVPSVTA8etiyy0+E/NgnWe lutCO4BY5UCxVFCkSpeRE+wzEK/w3FPn/wul9mft57lkCAKWSfbrLI4wPwYLQNS9 JxoftyvvuwCqpDgwXND1IHemrrQASJdA3F4Dnf6tq6OKeZmtNh8CLNf5GwqkZ0Vm 4sSzpR+0kysxFQ1ERAmPQFbOhKEgFfXJNDWhm/cW0mQeyJpEERtvItBwQlV9633c d3SsgOE= -----END CERTIFICATE-----Generated at Wed Aug 20 22:21:50 2025 by rpki-client