$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/F097E10C5C7311EF9CC47281C4F9AE02.roa File: F097E10C5C7311EF9CC47281C4F9AE02.roa (raw, json) Hash identifier: 7CjS9ffPyOrzJz1ZAktWX3KaOjOKC/5jGyfAIJ4BJyo= Subject key identifier: B9:54:84:9D:C9:45:8D:6B:87:98:36:14:2E:27:09:39:E5:02:4D:AA Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 362A Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/F097E10C5C7311EF9CC47281C4F9AE02.roa Signing time: Tue 02 Sep 2025 15:01:23 +0000 ROA not before: Tue 02 Sep 2025 15:01:23 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 16509 IP address blocks: 117.121.247.0/24 maxlen: 24 182.54.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Sep 2025 14:49:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13866 (0x362a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90, serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 2 15:01:23 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b706c3-2c94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:23:df:25:3c:8b:18:8d:85:94:ed:8a:4e:3f: 19:56:34:fc:a9:5b:10:7b:4a:6f:bd:bb:c9:2c:50: 39:d0:f1:08:cc:6e:01:bd:c1:c7:4f:d9:ad:22:63: 60:ae:c0:d6:31:0a:ff:18:9a:83:95:d4:ec:64:7c: 7b:75:96:60:d1:e7:42:bc:4a:8e:0c:1e:d8:4a:81: 61:04:ff:b0:e1:45:63:a6:fb:47:6e:e8:83:b2:a7: 21:c3:fd:98:da:06:3e:59:8e:01:3a:15:fb:12:3b: b1:ef:52:66:41:f7:06:43:d9:0e:aa:4b:f2:ce:e5: b7:08:65:21:54:0a:da:63:1d:0a:25:78:77:16:e1: 45:0e:da:b4:55:1c:90:65:39:de:d7:0d:68:27:99: a3:d6:9d:5d:51:af:74:61:22:97:a0:f5:51:6f:56: 28:41:f3:ac:fc:e5:96:76:20:d4:9d:17:f1:6a:5a: 17:cf:99:25:4f:f4:f9:bb:7f:68:49:a3:7b:48:41: 33:60:00:3d:11:a7:c7:4a:3b:67:a0:ab:43:ef:fd: 19:5d:62:e6:81:13:e5:c6:e0:d5:08:8f:27:f0:6e: 1b:3e:2a:c1:9d:ae:87:bf:52:a8:5f:f4:50:7b:ba: f0:2e:cc:e4:2f:d0:80:3c:2c:8d:f0:52:a1:7c:34: ba:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:54:84:9D:C9:45:8D:6B:87:98:36:14:2E:27:09:39:E5:02:4D:AA X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/F097E10C5C7311EF9CC47281C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.121.247.0/24 182.54.239.0/24 Signature Algorithm: sha256WithRSAEncryption 47:bb:f8:50:a9:d6:d9:72:c2:2b:01:45:1e:70:d3:97:0f:b7: 91:b0:07:a5:a6:0e:0a:f8:53:d2:82:9e:52:43:2d:48:87:1b: 9a:82:e6:ba:2f:95:a2:e2:32:8f:b0:1c:0f:42:66:0d:37:0f: a9:1b:f9:f6:d3:e7:99:1b:72:40:1d:b3:dc:a9:27:03:84:b8: c1:df:56:3b:95:82:ab:62:a6:f9:4b:90:a2:5c:6d:c5:19:c3: 87:c5:8e:6c:ae:ad:56:94:04:86:d8:43:f6:c5:be:3f:84:23: c4:da:40:44:72:ab:a3:27:6a:b4:9e:06:a5:10:bc:41:91:26: f4:c2:4c:ac:67:d9:b4:c6:2d:f9:76:77:b4:4f:97:71:e1:eb: bd:57:c6:76:25:46:a3:85:39:02:8a:7e:87:e9:22:6e:27:06: 43:db:45:04:ce:44:58:00:47:7c:4a:8b:4d:82:14:e6:e8:84: c7:85:c7:95:aa:30:fd:75:8b:4e:d1:d9:0b:1e:ad:4f:05:e3: 68:3a:f6:fd:14:91:5c:22:c9:b4:81:5b:e7:4a:b1:b4:34:4b: d6:11:08:35:5c:c9:3d:40:43:26:c4:bc:e7:d5:be:87:f2:0d: c5:6e:68:87:be:05:89:ea:f4:b3:ad:df:b9:15:67:45:96:d8: a6:1e:18:2a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNiowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjUwOTAyMTUwMTIzWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MDZjMy0yYzk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAviPfJTyLGI2FlO2KTj8ZVjT8qVsQe0pvvbvJLFA50PEIzG4BvcHHT9mtImNg rsDWMQr/GJqDldTsZHx7dZZg0edCvEqODB7YSoFhBP+w4UVjpvtHbuiDsqchw/2Y 2gY+WY4BOhX7Ejux71JmQfcGQ9kOqkvyzuW3CGUhVAraYx0KJXh3FuFFDtq0VRyQ ZTne1w1oJ5mj1p1dUa90YSKXoPVRb1YoQfOs/OWWdiDUnRfxaloXz5klT/T5u39o SaN7SEEzYAA9EafHSjtnoKtD7/0ZXWLmgRPlxuDVCI8n8G4bPirBna6Hv1KoX/RQ e7rwLszkL9CAPCyN8FKhfDS6uwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLlUhJ3J RY1rh5g2FC4nCTnlAk2qMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvRjA5N0UxMEM1 QzczMTFFRjlDQzQ3MjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB1efcDBAC2Nu8wDQYJKoZIhvcNAQELBQADggEBAEe7+FCp 1tlywisBRR5w05cPt5GwB6WmDgr4U9KCnlJDLUiHG5qC5rovlaLiMo+wHA9CZg03 D6kb+fbT55kbckAds9ypJwOEuMHfVjuVgqtipvlLkKJcbcUZw4fFjmyurVaUBIbY Q/bFvj+EI8TaQERyq6MnarSeBqUQvEGRJvTCTKxn2bTGLfl2d7RPl3Hh671XxnYl RqOFOQKKfofpIm4nBkPbRQTORFgAR3xKi02CFObohMeFx5WqMP11i07R2QserU8F 42g69v0UkVwiybSBW+dKsbQ0S9YRCDVcyT1AQybEvOfVvofyDcVuaIe+BYnq9LOt 37kVZ0WW2KYeGCo= -----END CERTIFICATE-----Generated at Sun Sep 7 16:18:25 2025 by rpki-client