$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA0F7/0D8CC9D6766C11F09FCA192DC4F9AE02/497E9FBC7ECF11F0A0322F2AC4F9AE02.roa File: 497E9FBC7ECF11F0A0322F2AC4F9AE02.roa (raw, json) Hash identifier: RHFtdnekcstpEtN6ZAsNZ6W9WthtuUvhXeY1YuxQUSY= Subject key identifier: E7:98:97:5F:C4:20:61:65:D9:53:16:8E:B2:44:A8:22:80:02:73:B3 Certificate issuer: /CN=A91EA0F7/serialNumber=82CA104DC5F2AFF533FBF68CF298F40FBD481F04 Certificate serial: 26 Authority key identifier: 82:CA:10:4D:C5:F2:AF:F5:33:FB:F6:8C:F2:98:F4:0F:BD:48:1F:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gsoQTcXyr_Uz-_aM8pj0D71IHwQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA0F7/0D8CC9D6766C11F09FCA192DC4F9AE02/497E9FBC7ECF11F0A0322F2AC4F9AE02.roa Signing time: Thu 21 Aug 2025 20:42:29 +0000 ROA not before: Thu 21 Aug 2025 20:42:29 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134186 IP address blocks: 202.12.123.0/24 maxlen: 24 2001:df5:f640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA0F7/0D8CC9D6766C11F09FCA192DC4F9AE02/gsoQTcXyr_Uz-_aM8pj0D71IHwQ.crl rsync://rpki.apnic.net/member_repository/A91EA0F7/0D8CC9D6766C11F09FCA192DC4F9AE02/gsoQTcXyr_Uz-_aM8pj0D71IHwQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gsoQTcXyr_Uz-_aM8pj0D71IHwQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 20:43:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38 (0x26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA0F7, serialNumber=82CA104DC5F2AFF533FBF68CF298F40FBD481F04 Validity Not Before: Aug 21 20:42:29 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68a784b5-ed8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:45:26:1f:42:3a:ed:bf:7f:6c:7a:b7:8e:35: 0c:a9:b3:22:a2:91:50:47:f8:2b:dc:b6:fd:1e:44: 84:29:72:5e:65:0b:fa:e4:c6:05:0f:10:12:9e:be: 5e:29:78:b9:cc:4f:d5:fc:6a:37:57:4f:f6:1f:a7: ec:e3:a2:b8:b2:4b:4d:7c:32:05:cd:3a:c9:09:4c: d8:8d:ff:16:8e:09:93:42:20:c3:82:bc:d1:28:9b: 36:60:24:f5:ff:9e:44:98:ea:eb:47:82:3f:e7:d1: e6:2f:dd:8c:3f:f2:74:a7:c2:32:cf:84:b0:86:35: 53:f7:3c:30:0e:67:79:38:ef:92:6d:01:4a:ff:ce: b5:a2:9e:d6:29:1c:f9:ee:d4:e1:f0:aa:e7:b9:62: f5:4c:aa:02:cd:f5:7c:3a:37:92:24:dd:a6:cc:bd: fb:eb:ac:8f:5a:7f:cb:1b:1c:7f:0a:d0:fe:b9:0e: 97:81:ac:9d:32:a1:c3:43:7e:e5:06:31:a1:30:12: 96:32:a0:ae:d3:4d:dd:e0:e8:e8:c5:34:06:96:ad: 73:46:08:b6:cc:06:f5:b5:33:c1:de:cb:00:04:58: 9a:c4:da:89:49:f6:f3:dc:7d:b4:7f:e5:66:e1:08: bd:79:86:91:3e:58:5e:90:6f:ce:40:f3:7c:e9:b5: 8f:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:98:97:5F:C4:20:61:65:D9:53:16:8E:B2:44:A8:22:80:02:73:B3 X509v3 Authority Key Identifier: keyid:82:CA:10:4D:C5:F2:AF:F5:33:FB:F6:8C:F2:98:F4:0F:BD:48:1F:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA0F7/0D8CC9D6766C11F09FCA192DC4F9AE02/gsoQTcXyr_Uz-_aM8pj0D71IHwQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gsoQTcXyr_Uz-_aM8pj0D71IHwQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA0F7/0D8CC9D6766C11F09FCA192DC4F9AE02/497E9FBC7ECF11F0A0322F2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.12.123.0/24 IPv6: 2001:df5:f640::/48 Signature Algorithm: sha256WithRSAEncryption e0:48:05:f2:e7:6e:7e:ff:ea:4d:bb:96:54:79:43:67:3e:00: 8a:b7:34:60:72:1f:f0:36:c0:fc:01:04:ed:b3:3e:09:32:fb: 9c:13:52:33:d4:4f:5a:38:90:91:28:0f:6b:a2:aa:69:21:1d: bf:06:7a:4c:79:58:c3:9d:ac:5a:3d:85:81:87:24:69:35:e0: 6c:1f:0a:3b:49:4b:d2:69:4a:66:ec:45:26:ff:2a:ff:37:ee: 75:f6:ed:80:cd:23:99:72:3c:3b:cd:f4:11:d5:2f:de:68:80: ee:06:90:7d:1f:76:b6:47:a4:c6:56:75:23:a5:f6:a1:3d:da: 8b:3a:c9:4b:e8:30:9a:d9:6b:0a:06:e1:81:35:22:50:3c:f9: 17:2a:e8:86:fe:6a:ee:87:5e:35:86:c0:df:c5:ec:48:1a:e1: ef:7d:4a:88:7d:24:7f:7e:de:b9:34:18:0c:74:c6:05:0f:31: 16:3e:70:76:e6:5c:b5:97:34:13:21:1e:f2:64:04:e8:f2:a3: 0a:9d:59:2b:e0:00:b9:99:9b:4b:71:dd:3f:5b:ef:66:25:58: 0a:02:00:4f:d5:78:14:5c:7a:25:e7:b1:cc:fd:16:81:e0:a8: b1:ae:5d:28:50:1d:b7:e6:49:ee:3c:d6:02:79:27:89:b7:b5: c2:52:05:35 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBJjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTBGNzExMC8GA1UEBRMoODJDQTEwNERDNUYyQUZGNTMzRkJGNjhDRjI5OEY0MEZC RDQ4MUYwNDAeFw0yNTA4MjEyMDQyMjlaFw0yNjEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4YTc4NGI1LWVkOGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKRSYfQjrtv39sereONQypsyKikVBH+Cvctv0eRIQpcl5lC/rkxgUPEBKevl4p eLnMT9X8ajdXT/Yfp+zjoriyS018MgXNOskJTNiN/xaOCZNCIMOCvNEomzZgJPX/ nkSY6utHgj/n0eYv3Yw/8nSnwjLPhLCGNVP3PDAOZ3k475JtAUr/zrWintYpHPnu 1OHwque5YvVMqgLN9Xw6N5Ik3abMvfvrrI9af8sbHH8K0P65DpeBrJ0yocNDfuUG MaEwEpYyoK7TTd3g6OjFNAaWrXNGCLbMBvW1M8HeywAEWJrE2olJ9vPcfbR/5Wbh CL15hpE+WF6Qb85A83zptY9xAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU55iXX8Qg YWXZUxaOskSoIoACc7MwHwYDVR0jBBgwFoAUgsoQTcXyr/Uz+/aM8pj0D71IHwQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBMEY3LzBEOENDOUQ2NzY2 QzExRjA5RkNBMTkyREM0RjlBRTAyL2dzb1FUY1h5cl9Vei1fYU04cGowRDcxSUh3 US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ3NvUVRjWHlyX1V6LV9hTThwajBENzFJSHdRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTBGNy8wRDhDQzlENjc2NkMxMUYwOUZDQTE5MkRDNEY5QUUwMi80OTdFOUZCQzdF Q0YxMUYwQTAzMjJGMkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAMoMezAPBAIAAjAJAwcAIAEN9fZAMA0GCSqGSIb3DQEBCwUA A4IBAQDgSAXy525+/+pNu5ZUeUNnPgCKtzRgch/wNsD8AQTtsz4JMvucE1Iz1E9a OJCRKA9roqppIR2/BnpMeVjDnaxaPYWBhyRpNeBsHwo7SUvSaUpm7EUm/yr/N+51 9u2AzSOZcjw7zfQR1S/eaIDuBpB9H3a2R6TGVnUjpfahPdqLOslL6DCa2WsKBuGB NSJQPPkXKuiG/mruh141hsDfxexIGuHvfUqIfSR/ft65NBgMdMYFDzEWPnB25ly1 lzQTIR7yZATo8qMKnVkr4AC5mZtLcd0/W+9mJVgKAgBP1XgUXHol57HM/RaB4Kix rl0oUB235knuPNYCeSeJt7XCUgU1 -----END CERTIFICATE-----Generated at Fri Aug 22 18:22:44 2025 by rpki-client