$ rpki-client -vvf rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/665497A2AC1011ED8592693FC4F9AE02.roa File: 665497A2AC1011ED8592693FC4F9AE02.roa (raw, json) Hash identifier: GzbxM9C1MjlQY8/LbZ9rlFb8KN037sgMyJVoACbdjQg= Subject key identifier: 9F:2D:52:26:F8:68:16:C5:86:0D:E5:89:28:46:41:D3:BC:A1:0D:FB Certificate issuer: /CN=A91F8E9B/serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Certificate serial: 0200 Authority key identifier: 44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/665497A2AC1011ED8592693FC4F9AE02.roa Signing time: Fri 05 Sep 2025 03:08:52 +0000 ROA not before: Fri 05 Sep 2025 03:08:52 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 24006 IP address blocks: 202.160.48.0/21 maxlen: 21 202.160.56.0/21 maxlen: 21 2400:b400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 02:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 512 (0x200) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F8E9B, serialNumber=446792439258182A7A1E4DA4B2C06FAD2AAEE4B9 Validity Not Before: Sep 5 03:08:52 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68ba5444-adbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b8:92:26:9b:13:4d:9f:f5:ce:b8:44:32:c0: 84:47:be:d0:68:08:33:eb:8a:8c:0d:ca:54:31:98: 09:06:0f:1e:4c:d7:4f:a9:20:36:60:89:f8:bb:0c: 98:a2:99:30:67:6b:e3:db:79:2d:f3:f8:8e:6d:9e: 08:fc:c3:a8:90:7b:a7:a9:fa:6c:59:70:a9:f2:41: 15:b5:12:27:fa:7e:d2:a7:36:a8:17:51:63:dd:22: 15:f7:08:d6:ca:da:2b:38:5e:b1:e3:7a:21:3c:fb: d1:25:8c:76:c5:b8:fe:52:be:52:8c:67:02:db:73: 3b:56:8c:ac:2f:c5:85:a8:dc:50:fb:ad:ec:ea:7a: 77:cd:12:2a:32:d9:b1:af:1d:c0:d9:92:07:4b:27: 1b:2b:00:cb:98:d9:78:55:47:e3:b9:d4:78:89:e9: 8e:1e:c4:fa:fc:c3:73:13:51:e0:64:92:f5:84:da: 4f:eb:a2:24:31:8e:26:70:74:80:a1:17:f0:85:da: 17:5d:0c:05:6f:2e:8d:10:9f:6a:4d:13:23:fd:89: 76:43:64:2b:03:e5:0a:ea:1d:04:4a:5f:d2:6c:a1: 63:4f:27:8e:55:ef:80:79:7f:0b:c5:e9:6d:3a:b6: 44:d4:3e:a5:c4:9e:d0:72:04:17:4b:e9:cb:6d:f0: e9:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:2D:52:26:F8:68:16:C5:86:0D:E5:89:28:46:41:D3:BC:A1:0D:FB X509v3 Authority Key Identifier: keyid:44:67:92:43:92:58:18:2A:7A:1E:4D:A4:B2:C0:6F:AD:2A:AE:E4:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RGeSQ5JYGCp6Hk2kssBvrSqu5Lk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F8E9B/69EB42C0960E11ED9A4CEA65C4F9AE02/665497A2AC1011ED8592693FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.160.48.0/20 IPv6: 2400:b400::/32 Signature Algorithm: sha256WithRSAEncryption 90:88:e9:6a:3b:cd:23:dc:67:a9:a4:02:99:7a:2a:73:60:ba: 09:b4:49:7e:ea:ce:04:78:8f:e4:5c:2e:10:c2:b5:b8:31:d3: 0a:44:7b:4b:39:07:b9:2f:97:41:f0:8f:8b:b5:96:80:2b:67: f0:01:0c:8f:31:ef:64:ce:ed:67:39:83:27:75:31:59:54:af: 9b:14:dd:ff:4b:75:aa:16:68:2c:f1:94:ec:b4:d2:5f:01:45: bc:8d:20:83:6d:11:d0:9a:cf:d2:61:54:cb:8b:61:53:db:24: 5e:6f:8e:31:71:15:b9:9e:1a:de:9c:8b:9d:ff:13:6c:a3:3d: 5c:91:a0:61:a4:ef:23:8c:62:0d:3e:ad:2e:3c:b0:fd:79:d4: 86:54:ca:57:30:fd:75:46:f1:72:75:ab:29:88:ac:76:97:96: f8:c7:c8:f6:fe:f4:9a:a5:2f:e6:9f:c8:bd:46:ca:0f:59:55: de:04:5a:ff:b9:a8:5f:6c:4f:a9:6c:69:bb:95:82:9b:76:6a: e0:0d:79:e3:0e:cb:bf:e0:a8:2a:69:06:db:76:dc:4b:67:df: 76:b3:f0:93:1c:0e:c8:e8:f0:3c:4c:a1:6d:4a:4d:3d:03:35: e5:94:de:ba:a4:0b:88:49:69:c0:9b:6b:92:d3:e3:db:67:90: e4:81:73:47 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAgAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjhFOUIxMTAvBgNVBAUTKDQ0Njc5MjQzOTI1ODE4MkE3QTFFNERBNEIyQzA2RkFE MkFBRUU0QjkwHhcNMjUwOTA1MDMwODUyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGJhNTQ0NC1hZGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApLiSJpsTTZ/1zrhEMsCER77QaAgz64qMDcpUMZgJBg8eTNdPqSA2YIn4uwyY opkwZ2vj23kt8/iObZ4I/MOokHunqfpsWXCp8kEVtRIn+n7SpzaoF1Fj3SIV9wjW ytorOF6x43ohPPvRJYx2xbj+Ur5SjGcC23M7VoysL8WFqNxQ+63s6np3zRIqMtmx rx3A2ZIHSycbKwDLmNl4VUfjudR4iemOHsT6/MNzE1HgZJL1hNpP66IkMY4mcHSA oRfwhdoXXQwFby6NEJ9qTRMj/Yl2Q2QrA+UK6h0ESl/SbKFjTyeOVe+AeX8Lxelt OrZE1D6lxJ7QcgQXS+nLbfDpTwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJ8tUib4 aBbFhg3liShGQdO8oQ37MB8GA1UdIwQYMBaAFERnkkOSWBgqeh5NpLLAb60qruS5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOEU5Qi82OUVCNDJDMDk2 MEUxMUVEOUE0Q0VBNjVDNEY5QUUwMi9SR2VTUTVKWUdDcDZIazJrc3NCdnJTcXU1 TGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JHZVNRNUpZR0NwNkhrMmtzc0J2clNxdTVMay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjhFOUIvNjlFQjQyQzA5NjBFMTFFRDlBNENFQTY1QzRGOUFFMDIvNjY1NDk3QTJB QzEwMTFFRDg1OTI2OTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBATKoDAwDQQCAAIwBwMFACQAtAAwDQYJKoZIhvcNAQELBQAD ggEBAJCI6Wo7zSPcZ6mkApl6KnNgugm0SX7qzgR4j+RcLhDCtbgx0wpEe0s5B7kv l0Hwj4u1loArZ/ABDI8x72TO7Wc5gyd1MVlUr5sU3f9LdaoWaCzxlOy00l8BRbyN IINtEdCaz9JhVMuLYVPbJF5vjjFxFbmeGt6ci53/E2yjPVyRoGGk7yOMYg0+rS48 sP151IZUylcw/XVG8XJ1qymIrHaXlvjHyPb+9JqlL+afyL1Gyg9ZVd4EWv+5qF9s T6lsabuVgpt2auANeeMOy7/gqCppBtt23Etn33az8JMcDsjo8DxMoW1KTT0DNeWU 3rqkC4hJacCba5LT49tnkOSBc0c= -----END CERTIFICATE-----Generated at Tue Sep 9 13:21:26 2025 by rpki-client