$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/B6B70B6AB04E11EE91ED6854C4F9AE02.roa File: B6B70B6AB04E11EE91ED6854C4F9AE02.roa (raw, json) Hash identifier: mEF7JateSy3RscUMCTWWAeINu85ELRdCr9AgRU1Mit8= Subject key identifier: 87:4B:81:9D:8B:42:97:D3:BD:37:74:38:0A:C6:81:21:28:D0:DD:2E Certificate issuer: /CN=A91ED2BB/serialNumber=A6FF381A2AEBEA6DCCFE0DE65D4196040271FE94 Certificate serial: 0B59 Authority key identifier: A6:FF:38:1A:2A:EB:EA:6D:CC:FE:0D:E6:5D:41:96:04:02:71:FE:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pv84Girr6m3M_g3mXUGWBAJx_pQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/B6B70B6AB04E11EE91ED6854C4F9AE02.roa Signing time: Tue 02 Sep 2025 19:39:19 +0000 ROA not before: Tue 02 Sep 2025 19:39:19 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 2519 IP address blocks: 203.78.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/pv84Girr6m3M_g3mXUGWBAJx_pQ.crl rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/pv84Girr6m3M_g3mXUGWBAJx_pQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pv84Girr6m3M_g3mXUGWBAJx_pQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 19:22:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2905 (0xb59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED2BB, serialNumber=A6FF381A2AEBEA6DCCFE0DE65D4196040271FE94 Validity Not Before: Sep 2 19:39:19 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68b747e6-d1cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:64:8f:6a:40:2e:9c:76:0a:fe:3e:bf:d5:9a: 19:f0:24:d5:d0:59:da:44:ba:9b:0f:d4:4c:b5:10: 39:e9:60:49:11:50:87:8d:96:86:12:2c:27:69:23: 67:18:10:b1:ae:8a:1d:99:0a:23:06:08:7e:f5:1e: 0f:31:fe:ae:c2:4c:a2:c0:e0:2a:8a:c4:ad:95:16: f1:52:b7:55:c0:02:c2:c1:b7:30:d6:42:fb:bc:20: a5:64:56:3f:7c:5c:7b:af:f5:c0:cb:ea:9d:05:c7: 54:a3:91:75:7c:87:5f:ea:45:db:be:1d:72:ed:d3: aa:36:ea:02:fe:0f:8a:63:18:ca:14:23:63:68:d4: b7:94:14:e7:7e:b2:29:6b:25:51:a7:31:7b:b0:da: a8:80:93:e1:3a:91:d1:a7:ab:12:76:bd:bc:e0:65: 14:6e:39:e9:30:51:e9:38:7b:58:fa:f1:3e:05:32: 68:fc:81:45:e5:bd:4a:b6:22:01:ee:36:88:76:41: 39:d2:b6:ed:1b:38:b1:7e:ed:f1:09:5e:a0:61:a0: 5e:84:71:79:19:80:6b:b5:68:f8:02:3d:33:43:fc: 3c:8c:82:87:f6:43:b7:65:8a:bd:0b:c1:4a:bf:7f: 39:8e:b9:a1:72:be:e8:0f:5b:d5:c4:08:fb:4a:4c: ca:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:4B:81:9D:8B:42:97:D3:BD:37:74:38:0A:C6:81:21:28:D0:DD:2E X509v3 Authority Key Identifier: keyid:A6:FF:38:1A:2A:EB:EA:6D:CC:FE:0D:E6:5D:41:96:04:02:71:FE:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/pv84Girr6m3M_g3mXUGWBAJx_pQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pv84Girr6m3M_g3mXUGWBAJx_pQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED2BB/57D647FA417111EA91495B6BC4F9AE02/B6B70B6AB04E11EE91ED6854C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.78.132.0/22 Signature Algorithm: sha256WithRSAEncryption 56:fe:4b:8c:bf:4b:66:93:ee:b0:70:63:ad:77:9f:5e:5b:a8: 17:be:63:20:06:37:1a:c1:ce:00:27:f3:c8:19:3b:77:d1:5b: c9:de:f4:1f:c6:d6:33:80:f8:71:cb:d4:c8:8a:ab:d5:49:ce: f2:e6:8e:e9:18:80:e0:05:b3:78:b0:37:35:1d:c4:a8:d7:5b: f9:a1:ad:54:39:8a:47:04:1d:2e:cd:86:6b:73:33:ba:27:a8: de:fc:31:81:27:b3:45:3f:05:f5:6f:22:d3:cc:65:69:16:38: 34:5f:71:bc:fa:10:1f:22:75:ae:f6:c6:ae:93:b9:8c:eb:62: 78:4b:7b:77:31:e7:de:b1:ce:8f:b4:d9:39:26:dd:11:e7:50: ee:3e:e0:04:25:d3:e1:8e:a6:df:6d:4f:b4:96:ce:d0:2d:5f: 1b:11:95:c4:e0:99:3b:25:16:98:f5:2e:2b:40:fe:98:de:1c: a2:0f:40:be:db:1c:7b:1b:e8:b4:7a:da:d0:0c:4f:46:7a:8e: 38:24:c3:9d:dd:29:37:54:a8:b4:03:27:17:d7:de:bb:b4:33: 64:c7:ad:74:08:3b:f6:de:6a:05:39:8f:58:7a:a0:09:7f:cf: 9a:5d:dc:1f:7a:5e:df:9d:5f:f1:d5:2b:43:ad:92:39:56:e5: ab:b1:32:85 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQyQkIxMTAvBgNVBAUTKEE2RkYzODFBMkFFQkVBNkRDQ0ZFMERFNjVENDE5NjA0 MDI3MUZFOTQwHhcNMjUwOTAyMTkzOTE5WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI3NDdlNi1kMWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwGSPakAunHYK/j6/1ZoZ8CTV0FnaRLqbD9RMtRA56WBJEVCHjZaGEiwnaSNn GBCxroodmQojBgh+9R4PMf6uwkyiwOAqisStlRbxUrdVwALCwbcw1kL7vCClZFY/ fFx7r/XAy+qdBcdUo5F1fIdf6kXbvh1y7dOqNuoC/g+KYxjKFCNjaNS3lBTnfrIp ayVRpzF7sNqogJPhOpHRp6sSdr284GUUbjnpMFHpOHtY+vE+BTJo/IFF5b1KtiIB 7jaIdkE50rbtGzixfu3xCV6gYaBehHF5GYBrtWj4Aj0zQ/w8jIKH9kO3ZYq9C8FK v385jrmhcr7oD1vVxAj7SkzKLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIdLgZ2L QpfTvTd0OArGgSEo0N0uMB8GA1UdIwQYMBaAFKb/OBoq6+ptzP4N5l1BlgQCcf6U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDJCQi81N0Q2NDdGQTQx NzExMUVBOTE0OTVCNkJDNEY5QUUwMi9wdjg0R2lycjZtM01fZzNtWFVHV0JBSnhf cFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3B2ODRHaXJyNm0zTV9nM21YVUdXQkFKeF9wUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQyQkIvNTdENjQ3RkE0MTcxMTFFQTkxNDk1QjZCQzRGOUFFMDIvQjZCNzBCNkFC MDRFMTFFRTkxRUQ2ODU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALLToQwDQYJKoZIhvcNAQELBQADggEBAFb+S4y/S2aT7rBw Y613n15bqBe+YyAGNxrBzgAn88gZO3fRW8ne9B/G1jOA+HHL1MiKq9VJzvLmjukY gOAFs3iwNzUdxKjXW/mhrVQ5ikcEHS7NhmtzM7onqN78MYEns0U/BfVvItPMZWkW ODRfcbz6EB8ida72xq6TuYzrYnhLe3cx596xzo+02Tkm3RHnUO4+4AQl0+GOpt9t T7SWztAtXxsRlcTgmTslFpj1LitA/pjeHKIPQL7bHHsb6LR62tAMT0Z6jjgkw53d KTdUqLQDJxfX3ru0M2THrXQIO/beagU5j1h6oAl/z5pd3B96Xt+dX/HVK0OtkjlW 5auxMoU= -----END CERTIFICATE-----Generated at Sat Sep 6 11:50:01 2025 by rpki-client