$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5C5998765AD611EFA2E29C7BC4F9AE02.roa File: 5C5998765AD611EFA2E29C7BC4F9AE02.roa (raw, json) Hash identifier: I3gilpNI/WjtxsTD/w6Z3Y+IRfSXnYHa5irJjXL586Y= Subject key identifier: 09:FA:B6:DD:D7:43:12:E4:29:83:32:3A:1F:05:D5:E4:08:BB:7F:3E Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 362F Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5C5998765AD611EFA2E29C7BC4F9AE02.roa Signing time: Tue 02 Sep 2025 15:01:27 +0000 ROA not before: Tue 02 Sep 2025 15:01:27 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 31715 IP address blocks: 117.121.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:49:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13871 (0x362f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90, serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 2 15:01:27 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b706c6-1c29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:69:2a:7f:32:65:97:3a:4b:54:5c:dc:ba:8e: 4e:a3:22:2f:fa:e0:7d:66:aa:90:30:c1:57:ad:a5: 32:bf:6f:cb:95:06:1e:18:d9:81:fc:89:80:48:47: 03:f9:10:85:15:98:ce:4f:96:70:3e:df:e4:9e:a4: f2:b5:7f:6b:06:3b:e7:b2:19:2e:da:42:71:01:f5: 00:6d:88:ca:f8:73:d8:18:ea:4c:8a:24:74:d0:8f: d0:34:47:39:0e:e9:d4:86:de:90:17:f9:e4:2c:a2: d1:05:d6:29:a0:e7:90:a4:52:93:ad:b2:4b:b1:03: 44:66:1c:d6:cf:69:66:80:ea:d6:66:19:a4:ec:d6: 71:7f:45:03:75:61:3b:14:f7:99:56:85:22:10:63: 12:1d:d2:ea:f3:ea:35:36:2e:20:83:0b:64:ee:ce: c5:a0:73:bd:6a:56:95:93:22:b3:7a:82:9c:68:8a: c1:ae:3f:90:80:3e:b3:31:96:8f:41:03:58:ed:36: 02:cb:68:42:41:76:9c:66:8d:5c:a2:e5:90:d0:9d: 9d:c4:95:fe:ca:50:41:4c:45:8d:46:30:b9:cf:cb: bb:db:e7:ec:53:b3:38:64:4c:11:2b:30:57:66:39: 82:94:b7:4a:09:6b:07:f3:ff:be:fa:f8:a9:ee:09: 29:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:FA:B6:DD:D7:43:12:E4:29:83:32:3A:1F:05:D5:E4:08:BB:7F:3E X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/5C5998765AD611EFA2E29C7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.121.245.0/24 Signature Algorithm: sha256WithRSAEncryption 16:7d:dc:4d:e5:30:30:6d:64:97:9c:fc:28:94:24:68:1b:a1: 2c:0e:63:8b:5e:e7:36:9c:bc:9a:25:73:75:99:f1:16:d6:9f: dd:9b:e4:39:07:3a:22:34:ff:a1:2c:99:f7:24:95:fc:34:e7: eb:c1:54:6d:3f:e2:c8:8c:db:55:89:37:df:aa:5f:bd:81:8b: 32:c5:8c:e1:13:cf:3c:6d:78:0f:ab:2d:2c:c2:36:8f:2d:50: 66:68:40:7f:9e:51:4d:fd:a9:0e:b0:5d:8f:78:77:93:2a:5b: 31:de:75:21:4d:8a:c7:53:11:89:b4:90:80:4b:42:12:b4:fa: 54:dc:63:9b:0e:06:9d:a7:7d:54:e9:7f:2b:27:b0:dd:d5:57: da:87:e2:ac:35:17:77:9f:fd:ba:95:a4:4e:5c:dc:19:63:01: ea:79:4d:de:53:eb:47:cf:21:e5:76:fd:2a:2a:74:22:76:56: 76:15:52:dd:bf:8b:ab:94:e5:18:a7:2e:a9:bf:7a:d0:0d:0d: 3c:0f:64:94:f7:43:a8:17:1f:2a:e1:6f:95:47:22:cb:24:50: a7:3e:12:23:72:24:36:1a:84:86:f6:fe:43:5e:4f:e9:d1:de: d8:52:af:da:1c:f8:ef:4e:7a:d3:c4:a7:3a:b7:11:0e:38:62: cf:9d:00:b9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNi8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjUwOTAyMTUwMTI3WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MDZjNi0xYzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0WkqfzJllzpLVFzcuo5OoyIv+uB9ZqqQMMFXraUyv2/LlQYeGNmB/ImASEcD +RCFFZjOT5ZwPt/knqTytX9rBjvnshku2kJxAfUAbYjK+HPYGOpMiiR00I/QNEc5 DunUht6QF/nkLKLRBdYpoOeQpFKTrbJLsQNEZhzWz2lmgOrWZhmk7NZxf0UDdWE7 FPeZVoUiEGMSHdLq8+o1Ni4ggwtk7s7FoHO9alaVkyKzeoKcaIrBrj+QgD6zMZaP QQNY7TYCy2hCQXacZo1couWQ0J2dxJX+ylBBTEWNRjC5z8u72+fsU7M4ZEwRKzBX ZjmClLdKCWsH8/+++vip7gkp2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFAn6tt3X QxLkKYMyOh8F1eQIu38+MB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvNUM1OTk4NzY1 QUQ2MTFFRkEyRTI5QzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB1efUwDQYJKoZIhvcNAQELBQADggEBABZ93E3lMDBtZJec /CiUJGgboSwOY4te5zacvJolc3WZ8RbWn92b5DkHOiI0/6Esmfcklfw05+vBVG0/ 4siM21WJN9+qX72BizLFjOETzzxteA+rLSzCNo8tUGZoQH+eUU39qQ6wXY94d5Mq WzHedSFNisdTEYm0kIBLQhK0+lTcY5sOBp2nfVTpfysnsN3VV9qH4qw1F3ef/bqV pE5c3BljAep5Td5T60fPIeV2/SoqdCJ2VnYVUt2/i6uU5RinLqm/etANDTwPZJT3 Q6gXHyrhb5VHIsskUKc+EiNyJDYahIb2/kNeT+nR3thSr9oc+O9OetPEpzq3EQ44 Ys+dALk= -----END CERTIFICATE-----Generated at Sun Sep 7 16:21:31 2025 by rpki-client