$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/3CFFB50C8E0E11F0BA4BBC76C4F9AE02.roa File: 3CFFB50C8E0E11F0BA4BBC76C4F9AE02.roa (raw, json) Hash identifier: ob6LTMrD+JVfoIQ/uSt3zi99wEqn+nvTyjd+ajn1nEQ= Subject key identifier: 3C:F0:96:B6:DB:00:EF:3C:54:54:75:53:03:32:57:33:C2:DD:B8:D2 Certificate issuer: /CN=A91FE7DF/serialNumber=E7F7DD40928298EC9ECA6446A184A359A3ED5DFE Certificate serial: 027D Authority key identifier: E7:F7:DD:40:92:82:98:EC:9E:CA:64:46:A1:84:A3:59:A3:ED:5D:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5_fdQJKCmOyeymRGoYSjWaPtXf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/3CFFB50C8E0E11F0BA4BBC76C4F9AE02.roa Signing time: Wed 10 Sep 2025 06:20:25 +0000 ROA not before: Wed 10 Sep 2025 06:20:25 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137443 IP address blocks: 115.42.60.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/5_fdQJKCmOyeymRGoYSjWaPtXf4.crl rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/5_fdQJKCmOyeymRGoYSjWaPtXf4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5_fdQJKCmOyeymRGoYSjWaPtXf4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Sep 2025 02:06:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 637 (0x27d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE7DF, serialNumber=E7F7DD40928298EC9ECA6446A184A359A3ED5DFE Validity Not Before: Sep 10 06:20:25 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68c118a9-50e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:39:3f:ac:a6:7d:e9:6e:1c:0b:96:6d:d6:6d: 01:86:a1:b5:96:79:96:65:c1:8d:c2:2b:ae:9b:92: 5b:f4:27:5d:8a:6d:6a:42:41:aa:98:31:3a:4e:ae: 7d:5c:9e:46:ea:61:c1:d9:48:9d:f3:2c:23:03:da: 1d:03:af:a4:07:98:47:48:1e:48:4a:89:45:4e:73: f4:59:d8:68:d7:92:ed:5b:8d:af:bf:7e:3a:7e:23: 42:b8:50:e1:ce:55:15:10:31:b0:db:c2:76:3a:66: 14:17:71:c2:ce:55:b2:c9:25:c0:ab:8c:b7:d5:8c: 39:11:2c:68:ad:1a:06:92:a3:ef:17:d9:35:d2:0c: 87:64:01:ef:99:5d:e7:93:c7:34:03:b2:ea:df:f3: 05:70:ce:c5:f1:c8:ba:62:1b:8f:bb:f9:c8:4e:fe: 5a:5d:12:71:80:c8:c5:f0:78:3b:80:a9:cf:34:bf: 29:9b:2f:69:67:6a:7b:f3:41:9c:d9:be:c0:30:6e: 7b:07:26:07:54:4e:b8:4f:86:82:d7:ea:ea:16:6b: 8b:e3:02:94:b7:c0:b9:a3:f4:f1:ac:26:47:de:9c: e5:ad:37:80:5f:38:f6:d7:29:67:6e:5c:db:19:4c: fc:e1:19:a0:31:c8:e7:f9:f5:ad:54:35:04:9b:44: 56:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F0:96:B6:DB:00:EF:3C:54:54:75:53:03:32:57:33:C2:DD:B8:D2 X509v3 Authority Key Identifier: keyid:E7:F7:DD:40:92:82:98:EC:9E:CA:64:46:A1:84:A3:59:A3:ED:5D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/5_fdQJKCmOyeymRGoYSjWaPtXf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5_fdQJKCmOyeymRGoYSjWaPtXf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE7DF/6D552D70277A11EDA6B1A826C4F9AE02/3CFFB50C8E0E11F0BA4BBC76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.42.60.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:5d:27:ee:95:cb:40:15:b9:8f:fd:7c:33:e1:15:0a:0e:df: 0e:51:f2:25:25:ed:ec:a6:21:96:58:3e:d3:eb:d2:87:25:8f: 3b:97:f1:a3:9a:9d:b2:75:cb:5a:65:b9:f0:86:98:49:1a:a7: 44:26:ab:ff:fb:ad:46:91:36:67:51:ad:5a:77:75:4f:1f:83: c1:9b:57:21:b8:53:57:4d:bc:4a:b9:59:4b:f2:2c:fb:47:87: be:f0:b8:7e:ba:2d:f8:2b:76:0e:9a:db:6d:89:b6:6e:8a:c5: 78:84:68:e5:ec:f6:3f:b0:6b:45:df:e7:4d:3f:86:5a:fc:a0: 08:98:15:3c:b9:8d:28:cd:eb:b3:cd:05:1f:17:43:f9:2b:be: d1:46:5d:75:bf:d9:54:fe:3a:54:a9:a0:48:77:7b:df:3d:2c: f0:f7:58:7a:9f:50:e6:3f:5c:3e:76:33:c0:9a:6e:22:f9:07: ca:70:83:20:85:84:69:d7:69:01:6b:e9:b9:29:e3:50:08:98: 1f:42:79:7e:b1:14:ae:8b:d2:57:4e:56:a6:93:12:ec:4d:fd: bb:03:fd:c9:d5:ce:66:7c:57:1a:db:c5:ac:77:c1:ca:66:aa: 4a:a3:21:af:82:a2:17:97:6f:b8:a6:ec:d0:a4:0b:3f:24:32: cc:48:89:3a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkU3REYxMTAvBgNVBAUTKEU3RjdERDQwOTI4Mjk4RUM5RUNBNjQ0NkExODRBMzU5 QTNFRDVERkUwHhcNMjUwOTEwMDYyMDI1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGMxMThhOS01MGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Tk/rKZ96W4cC5Zt1m0BhqG1lnmWZcGNwiuum5Jb9Cddim1qQkGqmDE6Tq59 XJ5G6mHB2Uid8ywjA9odA6+kB5hHSB5ISolFTnP0Wdho15LtW42vv346fiNCuFDh zlUVEDGw28J2OmYUF3HCzlWyySXAq4y31Yw5ESxorRoGkqPvF9k10gyHZAHvmV3n k8c0A7Lq3/MFcM7F8ci6YhuPu/nITv5aXRJxgMjF8Hg7gKnPNL8pmy9pZ2p780Gc 2b7AMG57ByYHVE64T4aC1+rqFmuL4wKUt8C5o/TxrCZH3pzlrTeAXzj21ylnblzb GUz84RmgMcjn+fWtVDUEm0RWIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDzwlrbb AO88VFR1UwMyVzPC3bjSMB8GA1UdIwQYMBaAFOf33UCSgpjsnspkRqGEo1mj7V3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRTdERi82RDU1MkQ3MDI3 N0ExMUVEQTZCMUE4MjZDNEY5QUUwMi81X2ZkUUpLQ21PeWV5bVJHb1lTaldhUHRY ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVfZmRRSktDbU95ZXltUkdvWVNqV2FQdFhmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkU3REYvNkQ1NTJENzAyNzdBMTFFREE2QjFBODI2QzRGOUFFMDIvM0NGRkI1MEM4 RTBFMTFGMEJBNEJCQzc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABzKjwwDQYJKoZIhvcNAQELBQADggEBAD9dJ+6Vy0AVuY/9 fDPhFQoO3w5R8iUl7eymIZZYPtPr0ocljzuX8aOanbJ1y1plufCGmEkap0Qmq//7 rUaRNmdRrVp3dU8fg8GbVyG4U1dNvEq5WUvyLPtHh77wuH66Lfgrdg6a222Jtm6K xXiEaOXs9j+wa0Xf500/hlr8oAiYFTy5jSjN67PNBR8XQ/krvtFGXXW/2VT+OlSp oEh3e989LPD3WHqfUOY/XD52M8CabiL5B8pwgyCFhGnXaQFr6bkp41AImB9CeX6x FK6L0ldOVqaTEuxN/bsD/cnVzmZ8Vxrbxax3wcpmqkqjIa+CoheXb7im7NCkCz8k MsxIiTo= -----END CERTIFICATE-----Generated at Tue Sep 16 01:38:56 2025 by rpki-client