$ rpki-client -vvf rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/40838EC01EDA11ED90A3A71FC4F9AE02.roa File: 40838EC01EDA11ED90A3A71FC4F9AE02.roa (raw, json) Hash identifier: 0wTMHozntDRRL6WlF/g074Q+r6/Lm6ac7roKHdDstY4= Subject key identifier: 64:4B:88:67:13:AB:95:5D:0F:DF:06:7B:C7:F6:93:1D:A9:E9:D7:51 Certificate issuer: /CN=A91F33A5/serialNumber=C4F638C09E372046C01DF4604C281164F6AC1622 Certificate serial: 0364 Authority key identifier: C4:F6:38:C0:9E:37:20:46:C0:1D:F4:60:4C:28:11:64:F6:AC:16:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPY4wJ43IEbAHfRgTCgRZPasFiI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/40838EC01EDA11ED90A3A71FC4F9AE02.roa Signing time: Fri 05 Sep 2025 01:37:55 +0000 ROA not before: Fri 05 Sep 2025 01:37:55 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 134111 IP address blocks: 202.8.32.0/21 maxlen: 24 202.9.8.0/22 maxlen: 24 202.9.12.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/xPY4wJ43IEbAHfRgTCgRZPasFiI.crl rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/xPY4wJ43IEbAHfRgTCgRZPasFiI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPY4wJ43IEbAHfRgTCgRZPasFiI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 01:09:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 868 (0x364) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F33A5, serialNumber=C4F638C09E372046C01DF4604C281164F6AC1622 Validity Not Before: Sep 5 01:37:55 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ba3ef3-c5f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:52:a0:22:13:f6:d2:2e:75:83:11:71:d4:e1: cf:49:2a:cd:7c:d8:99:70:6b:1c:14:e1:cd:7c:ec: d6:a3:36:58:20:4a:b0:de:8c:87:4d:35:a2:20:27: cd:f8:bb:d1:f4:4a:8f:6d:29:0e:b2:cb:8e:b1:08: 6b:2b:e9:9e:5a:e4:f3:4d:b4:33:7f:94:aa:65:98: 0e:d6:61:12:44:12:50:da:6b:61:3d:12:38:da:06: bc:de:e6:b6:67:8b:fc:a4:2f:ae:f3:df:0d:6f:13: a1:44:24:23:39:4c:84:4a:dd:a0:a2:e8:9b:6b:b1: 1d:a8:5c:10:b1:d9:ca:bc:a9:02:01:fe:3b:e1:e3: 37:63:c0:08:6a:ec:d4:e2:cc:bc:21:93:ac:f2:5f: 9b:6b:33:ae:4c:7a:ef:50:3f:f7:23:7b:63:26:77: 97:be:5c:ef:c7:0e:4f:73:c0:dd:0a:bd:b7:28:48: 7a:eb:ba:3d:97:a9:c4:6a:3c:c0:93:27:79:30:9c: 86:3c:94:8f:6e:2b:0d:7c:a1:28:7e:92:fb:0f:c9: 76:7e:dc:22:77:1a:62:26:62:65:b4:26:4b:67:9b: 34:01:c4:76:78:f5:ba:a0:a1:60:a9:31:f3:dd:b9: 4b:e2:0b:eb:96:fc:b8:a5:f1:3d:21:73:f9:4d:ab: 31:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:4B:88:67:13:AB:95:5D:0F:DF:06:7B:C7:F6:93:1D:A9:E9:D7:51 X509v3 Authority Key Identifier: keyid:C4:F6:38:C0:9E:37:20:46:C0:1D:F4:60:4C:28:11:64:F6:AC:16:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/xPY4wJ43IEbAHfRgTCgRZPasFiI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPY4wJ43IEbAHfRgTCgRZPasFiI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/40838EC01EDA11ED90A3A71FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.8.32.0/21 202.9.8.0-202.9.13.255 Signature Algorithm: sha256WithRSAEncryption 62:f9:43:c0:6a:5d:35:f0:7f:c5:79:12:f0:54:a7:4d:c4:bf: 5f:91:85:02:97:26:b7:03:60:d9:63:c9:cb:ee:14:81:2f:33: c9:61:7d:6c:89:1d:d3:8e:10:9c:43:7b:a8:5e:8d:a4:29:ff: a8:91:d8:63:72:8b:e3:a3:2f:c9:e1:66:68:d8:9f:49:97:c6: c7:8f:3b:b2:68:33:f1:92:9d:61:57:85:63:1e:4e:ff:e9:bb: e7:da:5e:da:3f:ed:07:5e:84:1a:be:4b:ec:38:7d:74:7e:42: 81:ee:c3:5f:e7:34:87:be:a0:04:41:3f:d4:99:b2:c5:54:05: 62:4f:2e:a1:c8:1c:8b:ef:7b:c1:ef:ee:84:a4:b3:7b:0a:57: a2:53:f3:1d:28:a4:7a:f0:69:27:76:bf:00:1a:e9:b6:39:45: 09:f2:4a:a6:97:3e:27:36:7c:f8:08:ac:38:c7:d9:9b:65:43: d3:0f:51:97:28:02:77:c1:20:80:1f:df:4d:38:72:1b:81:aa: ae:ab:7c:a5:fe:94:cc:19:d9:8f:03:12:5f:7f:ae:75:b6:41: dc:30:34:c2:d6:60:21:f3:b3:3c:bc:d3:02:fb:5a:94:88:9e: 91:96:2d:5d:c5:e9:4b:d0:96:23:40:a0:6a:86:be:8d:13:4b: 07:7d:84:98 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICA2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMzQTUxMTAvBgNVBAUTKEM0RjYzOEMwOUUzNzIwNDZDMDFERjQ2MDRDMjgxMTY0 RjZBQzE2MjIwHhcNMjUwOTA1MDEzNzU1WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJhM2VmMy1jNWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzlKgIhP20i51gxFx1OHPSSrNfNiZcGscFOHNfOzWozZYIEqw3oyHTTWiICfN +LvR9EqPbSkOssuOsQhrK+meWuTzTbQzf5SqZZgO1mESRBJQ2mthPRI42ga83ua2 Z4v8pC+u898NbxOhRCQjOUyESt2gouiba7EdqFwQsdnKvKkCAf474eM3Y8AIauzU 4sy8IZOs8l+bazOuTHrvUD/3I3tjJneXvlzvxw5Pc8DdCr23KEh667o9l6nEajzA kyd5MJyGPJSPbisNfKEofpL7D8l2ftwidxpiJmJltCZLZ5s0AcR2ePW6oKFgqTHz 3blL4gvrlvy4pfE9IXP5Tasx/wIDAQABo4ICozCCAp8wHQYDVR0OBBYEFGRLiGcT q5VdD98Ge8f2kx2p6ddRMB8GA1UdIwQYMBaAFMT2OMCeNyBGwB30YEwoEWT2rBYi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzNBNS8xQzBFNzA2QUQ0 RDgxMUVDQTQyNDVGMTBDNEY5QUUwMi94UFk0d0o0M0lFYkFIZlJnVENnUlpQYXNG aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQWTR3SjQzSUViQUhmUmdUQ2dSWlBhc0ZpSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjMzQTUvMUMwRTcwNkFENEQ4MTFFQ0E0MjQ1RjEwQzRGOUFFMDIvNDA4MzhFQzAx RURBMTFFRDkwQTNBNzFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAPKCCAwDAMEA8oJCAMEAcoJDDANBgkqhkiG9w0BAQsFAAOC AQEAYvlDwGpdNfB/xXkS8FSnTcS/X5GFApcmtwNg2WPJy+4UgS8zyWF9bIkd044Q nEN7qF6NpCn/qJHYY3KL46MvyeFmaNifSZfGx487smgz8ZKdYVeFYx5O/+m759pe 2j/tB16EGr5L7Dh9dH5Cge7DX+c0h76gBEE/1JmyxVQFYk8uocgci+97we/uhKSz ewpXolPzHSikevBpJ3a/ABrptjlFCfJKppc+JzZ8+AisOMfZm2VD0w9RlygCd8Eg gB/fTThyG4Gqrqt8pf6UzBnZjwMSX3+udbZB3DA0wtZgIfOzPLzTAvtalIiekZYt XcXpS9CWI0Cgaoa+jRNLB32EmA== -----END CERTIFICATE-----Generated at Tue Sep 9 10:12:09 2025 by rpki-client