$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/F1120B125C7311EF9CC47281C4F9AE02.roa File: F1120B125C7311EF9CC47281C4F9AE02.roa (raw, json) Hash identifier: lWRvTuPg6LzSZBPd+6lJM0jAzSYZ9gW7/FAk9bnrczc= Subject key identifier: F2:2D:B7:12:B9:8D:46:77:AD:76:67:21:FF:47:AB:BE:81:91:10:7E Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 3638 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/F1120B125C7311EF9CC47281C4F9AE02.roa Signing time: Tue 02 Sep 2025 15:01:34 +0000 ROA not before: Tue 02 Sep 2025 15:01:34 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 8075 IP address blocks: 117.121.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Sep 2025 15:01:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13880 (0x3638) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90, serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 2 15:01:34 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b706ce-6ebd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d9:71:2c:53:32:f2:b2:bf:59:78:95:d5:44: 8d:21:a8:ab:43:db:a8:40:36:8d:57:79:9d:b7:ea: 97:55:73:84:6a:f9:63:45:5f:8b:c4:48:e6:de:af: 17:94:5d:7d:2a:4c:19:3b:e9:ba:c0:b6:b6:db:e9: f1:31:4b:29:e2:19:22:20:97:8b:45:21:95:29:bc: ae:72:68:67:e9:24:2e:e9:34:9f:6a:cd:46:4d:e7: 34:80:80:e3:c7:d0:b1:1b:2a:77:98:76:a2:df:ec: 0b:a9:b3:18:e3:15:4a:f1:fd:f9:60:fd:8b:d5:e6: cc:d5:f5:9d:4b:73:13:31:85:10:54:e1:28:a5:0a: f1:60:c8:d0:ae:7a:48:c2:00:22:bd:5c:9e:0b:9f: cc:81:4b:2e:e6:3e:8b:8b:06:18:84:0d:02:fb:f0: 4f:02:99:8b:0e:cc:ce:b6:a5:27:a5:2e:b8:4f:26: 3c:64:c5:db:76:b4:2d:ab:6f:18:00:7c:83:34:16: 67:0b:2e:c6:6c:57:b5:4c:05:c8:c4:04:63:ed:de: 0b:4f:ee:85:b9:09:75:a0:f7:f7:c4:ea:b8:2b:3f: ee:17:bf:d8:b5:20:83:41:fb:f9:79:27:f7:e1:c5: a7:4e:ca:90:27:68:32:37:e3:18:32:43:1f:e3:ff: 0b:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:2D:B7:12:B9:8D:46:77:AD:76:67:21:FF:47:AB:BE:81:91:10:7E X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/F1120B125C7311EF9CC47281C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.121.247.0/24 Signature Algorithm: sha256WithRSAEncryption 36:07:7a:8d:69:d0:51:be:ff:f5:2a:b9:ad:7d:79:e3:fa:fb: 25:cf:62:35:4a:be:5f:ee:53:4d:3d:75:29:14:51:37:46:a3: 99:6f:39:7c:77:b1:8e:8a:1b:31:82:c9:8f:2d:80:17:00:1b: 66:cc:51:24:46:96:d8:b6:64:68:7b:8c:49:4a:9b:5d:94:9f: 84:fa:3d:68:7e:d8:fa:c3:93:b8:1a:0d:d6:bb:3d:97:89:cc: b5:a6:2e:ea:85:23:6c:d4:19:00:17:f2:50:d8:69:f5:d9:ce: b0:c7:1b:42:22:aa:09:1f:fb:6d:9a:26:ec:06:ea:b9:b1:b0: cc:f6:73:a1:35:56:76:9d:2f:ea:e4:70:ed:ef:d1:0e:00:ed: f2:12:c7:f2:a6:c0:d5:67:b1:71:1c:67:cb:d5:22:25:18:aa: d5:3f:b1:eb:49:2b:4f:24:36:ed:fa:88:ad:28:95:6f:1e:49: 56:4d:e8:d1:70:06:b6:8a:37:59:1a:56:7e:92:b0:6f:aa:91: c9:0b:bd:1c:e8:a8:71:61:2e:1c:12:1c:a8:a8:61:75:14:3e: 19:78:38:05:48:cb:2c:08:a9:ea:37:60:f9:09:5c:c1:05:d1: b0:62:cd:a0:c9:de:e8:62:ee:db:94:aa:7c:9b:f8:10:b3:64: d5:6e:4b:96 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNjgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjUwOTAyMTUwMTM0WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3MDZjZS02ZWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNlxLFMy8rK/WXiV1USNIairQ9uoQDaNV3mdt+qXVXOEavljRV+LxEjm3q8X lF19KkwZO+m6wLa22+nxMUsp4hkiIJeLRSGVKbyucmhn6SQu6TSfas1GTec0gIDj x9CxGyp3mHai3+wLqbMY4xVK8f35YP2L1ebM1fWdS3MTMYUQVOEopQrxYMjQrnpI wgAivVyeC5/MgUsu5j6LiwYYhA0C+/BPApmLDszOtqUnpS64TyY8ZMXbdrQtq28Y AHyDNBZnCy7GbFe1TAXIxARj7d4LT+6FuQl1oPf3xOq4Kz/uF7/YtSCDQfv5eSf3 4cWnTsqQJ2gyN+MYMkMf4/8LCwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPIttxK5 jUZ3rXZnIf9Hq76BkRB+MB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvRjExMjBCMTI1 QzczMTFFRjlDQzQ3MjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB1efcwDQYJKoZIhvcNAQELBQADggEBADYHeo1p0FG+//Uq ua19eeP6+yXPYjVKvl/uU009dSkUUTdGo5lvOXx3sY6KGzGCyY8tgBcAG2bMUSRG lti2ZGh7jElKm12Un4T6PWh+2PrDk7gaDda7PZeJzLWmLuqFI2zUGQAX8lDYafXZ zrDHG0Iiqgkf+22aJuwG6rmxsMz2c6E1VnadL+rkcO3v0Q4A7fISx/KmwNVnsXEc Z8vVIiUYqtU/setJK08kNu36iK0olW8eSVZN6NFwBraKN1kaVn6SsG+qkckLvRzo qHFhLhwSHKioYXUUPhl4OAVIyywIqeo3YPkJXMEF0bBizaDJ3uhi7tuUqnyb+BCz ZNVuS5Y= -----END CERTIFICATE-----Generated at Thu Sep 4 00:00:18 2025 by rpki-client