$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/6549AD3EAC1011ED8592693FC4F9AE02.roa File: 6549AD3EAC1011ED8592693FC4F9AE02.roa (raw, json) Hash identifier: V+A9+3TWv6PDJfONkiYGSLwYtuk75uf9VZIwDYRykJo= Subject key identifier: 42:9E:20:34:3D:F9:04:80:28:9C:D2:5A:1A:D9:98:9A:CD:BE:1F:29 Certificate issuer: /CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Certificate serial: 0202 Authority key identifier: 44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/6549AD3EAC1011ED8592693FC4F9AE02.roa Signing time: Fri 05 Sep 2025 03:08:54 +0000 ROA not before: Fri 05 Sep 2025 03:08:54 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24324 IP address blocks: 202.160.48.0/21 maxlen: 21 202.160.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 02:53:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E9B, serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Validity Not Before: Sep 5 03:08:54 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ba5446-cb1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:7f:dc:06:45:a9:a7:2d:8b:5f:b6:42:d7:cd: a3:cd:08:11:e5:3a:ff:7b:34:9c:4e:b2:3e:30:ca: a3:01:90:2f:48:b6:e0:a5:3c:a1:fa:72:39:67:e9: b4:8a:fc:dc:7d:b2:96:54:c6:d9:2e:72:a9:50:b9: 0b:ad:a7:3e:da:70:f2:e5:4e:f8:e9:70:83:40:44: fb:29:6a:fe:a2:6f:14:05:1e:a5:b8:f4:a2:6a:71: ae:5e:68:be:75:2c:b7:6d:0e:af:f0:15:c6:b4:92: df:87:b7:24:a7:1b:f9:86:14:f8:d3:6a:de:0c:3c: ec:e2:70:74:02:63:07:b9:28:6c:8b:8b:5b:fc:60: 54:f0:d2:eb:06:d7:5e:62:32:e0:a5:fc:6a:de:fc: ff:ac:15:ea:f5:2f:e9:c4:14:0b:e9:6d:50:ad:ee: 17:82:6d:d3:81:f4:7b:43:79:e0:ee:f7:3c:db:0e: 76:50:14:ed:d3:7a:0e:ee:6d:73:1b:ed:45:3f:59: 2f:29:e4:96:f6:98:ec:e8:10:89:73:10:9a:54:62: 04:ba:d5:dc:47:75:8a:98:ee:22:a5:d5:9c:ea:d0: 2f:64:e2:f3:92:03:76:ae:81:cb:c6:87:d0:43:8b: 09:16:b6:a3:91:7c:79:05:6f:05:6e:ae:ab:d5:28: c5:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:9E:20:34:3D:F9:04:80:28:9C:D2:5A:1A:D9:98:9A:CD:BE:1F:29 X509v3 Authority Key Identifier: keyid:44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/6549AD3EAC1011ED8592693FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.160.48.0/20 Signature Algorithm: sha256WithRSAEncryption 13:57:8b:8b:b0:90:bf:3f:ee:fd:69:af:b1:b6:f5:6b:81:f6: cd:33:a8:10:36:9a:5b:d1:d5:a2:59:58:d4:a4:e1:08:1b:fd: b4:7d:0a:a2:93:12:b4:4c:aa:68:55:41:90:5a:3a:ea:70:67: 9f:3a:ab:c5:06:2b:d8:20:b9:68:31:7d:43:42:cc:68:f2:3e: 66:aa:bd:44:16:38:37:8d:53:ee:df:d4:df:6a:56:6a:8c:81: e6:4c:87:d7:8b:b1:88:5e:08:d5:34:67:02:2e:bf:28:1a:bc: 6c:ac:be:33:03:c5:17:4d:30:ce:a1:d0:9b:1d:60:81:30:90: 9e:49:82:32:67:92:1a:76:bb:79:f3:55:26:fb:80:b6:7c:10: ad:e1:19:73:4e:68:16:ee:f4:13:c6:78:da:57:d4:ed:77:5e: a0:07:70:84:6b:f4:c2:cc:51:2b:83:c7:be:8b:b8:70:e5:d9: 9e:cd:bf:0d:ad:10:23:c1:4c:a7:ff:71:47:f5:e0:5d:4d:11: 9b:d8:12:80:1b:3a:a6:b9:88:37:5e:bf:2f:52:e8:c7:3b:e0: 00:c8:22:e6:e0:65:e5:bd:c6:fd:4f:29:01:84:78:cf:14:ac: 25:91:fa:32:48:35:e3:c3:7b:94:d3:8d:71:2e:cf:39:9e:2e: 29:f7:3b:2b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFOUIxMTAvBgNVBAUTKDQ0Njc5MjQzOTI1ODE4MkE3QTFFNERBNEIyQzA2RkFE MkFBRUU0QjkwHhcNMjUwOTA1MDMwODU0WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJhNTQ0Ni1jYjFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtH/cBkWppy2LX7ZC182jzQgR5Tr/ezScTrI+MMqjAZAvSLbgpTyh+nI5Z+m0 ivzcfbKWVMbZLnKpULkLrac+2nDy5U746XCDQET7KWr+om8UBR6luPSianGuXmi+ dSy3bQ6v8BXGtJLfh7ckpxv5hhT402reDDzs4nB0AmMHuShsi4tb/GBU8NLrBtde YjLgpfxq3vz/rBXq9S/pxBQL6W1Qre4Xgm3TgfR7Q3ng7vc82w52UBTt03oO7m1z G+1FP1kvKeSW9pjs6BCJcxCaVGIEutXcR3WKmO4ipdWc6tAvZOLzkgN2roHLxofQ Q4sJFrajkXx5BW8Fbq6r1SjFowIDAQABo4IClTCCApEwHQYDVR0OBBYEFEKeIDQ9 +QSAKJzSWhrZmJrNvh8pMB8GA1UdIwQYMBaAFERnkkOSWBgqeh5NpLLAb60qruS5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEU5Qi82OUVCNDJDMDk2 MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdDcDZIazJrc3NCdnJTcXU1 TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JHZVNRNUpZR0NwNkhrMmtzc0J2clNxdTVMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhFOUIvNjlFQjQyQzA5NjBFMTFFRDlBNENFQTY1QzRGOUFFMDIvNjU0OUFEM0VB QzEwMTFFRDg1OTI2OTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATKoDAwDQYJKoZIhvcNAQELBQADggEBABNXi4uwkL8/7v1p r7G29WuB9s0zqBA2mlvR1aJZWNSk4Qgb/bR9CqKTErRMqmhVQZBaOupwZ586q8UG K9gguWgxfUNCzGjyPmaqvUQWODeNU+7f1N9qVmqMgeZMh9eLsYheCNU0ZwIuvyga vGysvjMDxRdNMM6h0JsdYIEwkJ5JgjJnkhp2u3nzVSb7gLZ8EK3hGXNOaBbu9BPG eNpX1O13XqAHcIRr9MLMUSuDx76LuHDl2Z7Nvw2tECPBTKf/cUf14F1NEZvYEoAb Oqa5iDdevy9S6Mc74ADIIubgZeW9xv1PKQGEeM8UrCWR+jJINePDe5TTjXEuzzme Lin3Oys= -----END CERTIFICATE-----Generated at Mon Sep 8 13:35:19 2025 by rpki-client