$ rpki-client -vvf rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/5E967DEE1ED711EDBD936A15C4F9AE02.roa File: 5E967DEE1ED711EDBD936A15C4F9AE02.roa (raw, json) Hash identifier: 4/rySl/r5Eo+RCE6z8XYayPr6ezbIDIspCcJrRM4VBA= Subject key identifier: AD:92:F0:97:86:A7:7B:C9:8E:2F:E6:77:DE:5D:95:74:17:DE:0C:3D Certificate issuer: /CN=A91F33A5/serialNumber=C4F638C09E372046C01DF4604C281164F6AC1622 Certificate serial: 0366 Authority key identifier: C4:F6:38:C0:9E:37:20:46:C0:1D:F4:60:4C:28:11:64:F6:AC:16:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPY4wJ43IEbAHfRgTCgRZPasFiI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/5E967DEE1ED711EDBD936A15C4F9AE02.roa Signing time: Fri 05 Sep 2025 01:37:58 +0000 ROA not before: Fri 05 Sep 2025 01:37:58 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 7575 IP address blocks: 203.6.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/xPY4wJ43IEbAHfRgTCgRZPasFiI.crl rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/xPY4wJ43IEbAHfRgTCgRZPasFiI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPY4wJ43IEbAHfRgTCgRZPasFiI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 01:28:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 870 (0x366) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F33A5, serialNumber=C4F638C09E372046C01DF4604C281164F6AC1622 Validity Not Before: Sep 5 01:37:58 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68ba3ef5-929d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:51:23:9d:e8:22:a7:f9:c1:2e:37:06:ad:dc: 74:8c:b1:92:d0:2a:fe:40:aa:48:e4:e5:f4:11:ce: 28:99:c4:a9:24:b9:71:f8:07:7c:27:35:8c:93:3d: 3f:5a:df:2c:ca:1f:be:04:6d:4c:11:dc:16:91:88: 72:02:31:37:20:18:65:6f:2f:27:a3:e6:28:27:f2: c6:69:c2:ce:6f:67:4a:12:ef:05:b5:4a:98:99:19: 37:75:1c:6f:de:6d:5a:8b:fa:53:e8:9c:d0:1c:5f: 87:1f:37:95:c9:d8:bf:5c:09:e6:25:63:33:a6:52: e6:8c:5c:42:4a:b9:67:55:1b:bc:a8:1a:32:03:1e: f2:11:fb:fd:0c:de:65:f4:5a:df:14:08:44:35:ad: 20:db:40:4d:8f:cb:38:f4:94:e4:5c:e8:41:3d:cc: 8f:a1:d8:da:2e:fa:04:b0:95:54:f6:7a:26:92:b5: 5b:66:15:fc:29:fd:86:bd:03:22:8d:bb:63:58:6a: dc:80:d9:8c:39:7d:04:56:79:d3:03:44:10:ee:ad: 0a:74:27:52:4d:1f:80:34:e1:a6:f8:03:4a:e1:72: f4:2d:dc:cc:a7:d5:6d:ba:24:56:1e:ed:d7:2f:eb: 6e:2a:b4:c4:5d:69:81:bc:6d:35:82:85:32:3d:90: ca:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:92:F0:97:86:A7:7B:C9:8E:2F:E6:77:DE:5D:95:74:17:DE:0C:3D X509v3 Authority Key Identifier: keyid:C4:F6:38:C0:9E:37:20:46:C0:1D:F4:60:4C:28:11:64:F6:AC:16:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/xPY4wJ43IEbAHfRgTCgRZPasFiI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xPY4wJ43IEbAHfRgTCgRZPasFiI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F33A5/1C0E706AD4D811ECA4245F10C4F9AE02/5E967DEE1ED711EDBD936A15C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.6.255.0/24 Signature Algorithm: sha256WithRSAEncryption 34:d9:70:a0:b5:37:cf:26:e7:d6:8f:a4:d1:af:ce:50:3e:c0: fb:05:74:06:1c:fa:76:f3:5c:51:1b:81:59:21:a7:24:2b:c8: 85:59:b4:eb:24:3f:5f:1d:97:44:c6:17:3a:22:90:dc:f4:fb: ff:97:02:9e:a0:72:e2:9e:31:a6:67:65:a9:cd:48:e2:07:7f: 70:50:d3:07:85:a9:4a:a4:8c:7e:8f:6b:ff:92:c9:6f:b3:56: db:f6:76:31:d7:3b:12:26:2a:97:f5:55:1b:fa:ae:98:e1:8e: 09:b7:89:40:57:63:53:71:ea:40:7f:98:b9:c0:d1:08:24:8e: 8a:0a:75:3c:fb:f9:01:32:43:11:eb:26:34:b7:8c:bb:04:84: 5f:47:e0:4a:1a:0c:77:f2:60:55:f5:bd:7c:f3:f0:bc:8c:e2: 7c:19:4a:6d:5f:3b:aa:4b:f4:62:32:90:74:a7:75:57:3e:79: ae:e2:1c:ee:ba:d2:4f:53:01:f4:b6:55:a5:5a:a1:33:1b:68: b3:ef:88:6b:de:27:75:d2:73:63:ba:f3:9c:62:53:43:d0:6b: e9:ef:e9:09:ec:75:20:1c:06:93:74:d7:d5:5b:b0:a6:dd:ac: 48:19:67:41:61:b3:96:25:f3:b4:59:d0:7a:95:82:df:00:6e: f4:66:bc:6f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjMzQTUxMTAvBgNVBAUTKEM0RjYzOEMwOUUzNzIwNDZDMDFERjQ2MDRDMjgxMTY0 RjZBQzE2MjIwHhcNMjUwOTA1MDEzNzU4WhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJhM2VmNS05MjlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7FEjnegip/nBLjcGrdx0jLGS0Cr+QKpI5OX0Ec4omcSpJLlx+Ad8JzWMkz0/ Wt8syh++BG1MEdwWkYhyAjE3IBhlby8no+YoJ/LGacLOb2dKEu8FtUqYmRk3dRxv 3m1ai/pT6JzQHF+HHzeVydi/XAnmJWMzplLmjFxCSrlnVRu8qBoyAx7yEfv9DN5l 9FrfFAhENa0g20BNj8s49JTkXOhBPcyPodjaLvoEsJVU9nomkrVbZhX8Kf2GvQMi jbtjWGrcgNmMOX0EVnnTA0QQ7q0KdCdSTR+ANOGm+ANK4XL0LdzMp9VtuiRWHu3X L+tuKrTEXWmBvG01goUyPZDKeQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK2S8JeG p3vJji/md95dlXQX3gw9MB8GA1UdIwQYMBaAFMT2OMCeNyBGwB30YEwoEWT2rBYi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzNBNS8xQzBFNzA2QUQ0 RDgxMUVDQTQyNDVGMTBDNEY5QUUwMi94UFk0d0o0M0lFYkFIZlJnVENnUlpQYXNG aUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hQWTR3SjQzSUViQUhmUmdUQ2dSWlBhc0ZpSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjMzQTUvMUMwRTcwNkFENEQ4MTFFQ0E0MjQ1RjEwQzRGOUFFMDIvNUU5NjdERUUx RUQ3MTFFREJEOTM2QTE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLBv8wDQYJKoZIhvcNAQELBQADggEBADTZcKC1N88m59aP pNGvzlA+wPsFdAYc+nbzXFEbgVkhpyQryIVZtOskP18dl0TGFzoikNz0+/+XAp6g cuKeMaZnZanNSOIHf3BQ0weFqUqkjH6Pa/+SyW+zVtv2djHXOxImKpf1VRv6rpjh jgm3iUBXY1Nx6kB/mLnA0QgkjooKdTz7+QEyQxHrJjS3jLsEhF9H4EoaDHfyYFX1 vXzz8LyM4nwZSm1fO6pL9GIykHSndVc+ea7iHO660k9TAfS2VaVaoTMbaLPviGve J3XSc2O685xiU0PQa+nv6QnsdSAcBpN019VbsKbdrEgZZ0Fhs5Yl87RZ0HqVgt8A bvRmvG8= -----END CERTIFICATE-----Generated at Mon Sep 8 05:54:24 2025 by rpki-client