$ rpki-client -vvf rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/8ED301D0782011F0BDB6E683C4F9AE02.roa File: 8ED301D0782011F0BDB6E683C4F9AE02.roa (raw, json) Hash identifier: qjBtyTQ/dYsRebIp6ZkwlHiVqfqKITocMEosdGcOqv0= Subject key identifier: 88:28:C2:46:D8:B9:7F:EA:DB:D8:5A:55:BF:7A:DB:40:F1:B0:DD:C9 Certificate issuer: /CN=A91127C1/serialNumber=55FB7BCCA740285FC81AA360F02CE32F95816DB6 Certificate serial: 0208 Authority key identifier: 55:FB:7B:CC:A7:40:28:5F:C8:1A:A3:60:F0:2C:E3:2F:95:81:6D:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Vft7zKdAKF_IGqNg8CzjL5WBbbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/8ED301D0782011F0BDB6E683C4F9AE02.roa Signing time: Wed 13 Aug 2025 08:44:55 +0000 ROA not before: Wed 13 Aug 2025 08:44:55 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 681 IP address blocks: 192.73.21.0/24 maxlen: 24 192.107.171.0/24 maxlen: 24 192.107.172.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/Vft7zKdAKF_IGqNg8CzjL5WBbbY.crl rsync://rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/Vft7zKdAKF_IGqNg8CzjL5WBbbY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Vft7zKdAKF_IGqNg8CzjL5WBbbY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 21 Aug 2025 20:17:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 520 (0x208) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91127C1, serialNumber=55FB7BCCA740285FC81AA360F02CE32F95816DB6 Validity Not Before: Aug 13 08:44:55 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689c5087-cf83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:dd:53:5e:ad:df:67:52:06:b2:ad:85:fd:49: cd:cf:39:07:53:2b:77:ad:e5:b2:e7:d8:80:06:91: cc:7f:98:b9:1b:79:67:e8:2c:2b:fc:59:5f:1b:57: dc:bb:02:cb:fa:21:ae:cb:40:6f:1f:c8:50:a9:64: e4:b3:17:41:ba:1a:d0:42:2a:f2:88:aa:66:57:93: 43:9c:c1:4c:0e:51:7b:b0:b4:13:09:ad:2a:05:a7: 60:b4:50:ac:f2:d8:7a:9a:2f:7a:1c:73:3d:40:c5: f7:63:f2:7e:df:47:95:7a:de:5a:92:b6:f1:a2:dc: b2:a0:03:d9:92:98:94:68:b8:ef:74:6f:6f:f8:ca: fc:c4:93:c3:fe:c1:13:e0:a4:89:41:87:e8:0a:d0: 69:2d:29:1a:3e:ed:76:10:35:c1:af:03:6e:3f:f2: 11:32:0e:2a:c2:0a:60:f9:f7:94:76:e3:d1:59:8a: 38:a1:00:1d:5c:90:ea:36:9c:d0:ad:58:1f:8e:e4: de:f1:5a:d1:10:bb:27:e2:c0:24:9c:8f:65:62:8d: c7:5c:1c:c4:25:dd:fc:f9:c6:08:db:41:f5:a0:a5: 92:56:7b:a2:e7:b6:66:7a:50:b5:ae:7e:42:ef:49: 48:52:79:fe:fc:7c:eb:e3:9c:f8:28:58:5b:7b:39: fd:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:28:C2:46:D8:B9:7F:EA:DB:D8:5A:55:BF:7A:DB:40:F1:B0:DD:C9 X509v3 Authority Key Identifier: keyid:55:FB:7B:CC:A7:40:28:5F:C8:1A:A3:60:F0:2C:E3:2F:95:81:6D:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/Vft7zKdAKF_IGqNg8CzjL5WBbbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Vft7zKdAKF_IGqNg8CzjL5WBbbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91127C1/DCF98A16778111ED96B36464C4F9AE02/8ED301D0782011F0BDB6E683C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.73.21.0/24 192.107.171.0-192.107.172.255 Signature Algorithm: sha256WithRSAEncryption 7c:66:85:76:d1:7d:ab:01:4d:77:9c:7d:f9:5f:57:c5:cd:18: 4b:35:42:fd:ee:3b:63:72:9a:91:60:2f:54:20:b3:97:17:7c: ac:6c:8c:02:7f:59:7c:5e:08:30:28:d2:0d:ef:c6:81:c4:7c: ca:6b:51:70:71:75:86:d3:3e:78:e7:13:9e:90:a2:6d:bb:83: 60:4c:8b:5d:c3:36:2d:3e:51:e9:1b:45:96:5c:4c:f0:2d:88: 42:70:75:03:f8:dc:4d:7c:b7:e8:fe:b9:3b:87:8a:be:16:55: 7e:e6:38:1e:b2:32:b5:dc:8e:4c:b4:2a:c3:75:fa:6f:8e:fc: 9a:9a:57:f3:ed:5e:35:1b:75:d0:d4:f7:85:b2:9f:d7:fc:ca: 49:1e:35:39:14:c7:3b:0c:eb:92:14:d6:25:b7:7f:80:ee:60: 69:c8:f4:f2:01:ae:5b:8a:a0:76:94:97:da:bd:3f:6d:b7:6c: df:0a:30:b5:c0:e0:fb:8d:ec:5f:46:f7:a7:c7:5e:63:77:1b: 3c:e3:9f:b6:31:13:c5:15:0c:a5:7a:4a:3c:ed:85:0a:36:9f: 61:58:7a:d1:8b:8f:d2:47:c7:f4:83:84:c2:44:64:8f:cd:cc: b9:71:8f:2e:18:2b:d6:fb:be:25:82:17:e5:b5:45:b3:5e:3d: 82:9f:1b:98 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAggwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTI3QzExMTAvBgNVBAUTKDU1RkI3QkNDQTc0MDI4NUZDODFBQTM2MEYwMkNFMzJG OTU4MTZEQjYwHhcNMjUwODEzMDg0NDU1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODljNTA4Ny1jZjgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArt1TXq3fZ1IGsq2F/UnNzzkHUyt3reWy59iABpHMf5i5G3ln6Cwr/FlfG1fc uwLL+iGuy0BvH8hQqWTksxdBuhrQQiryiKpmV5NDnMFMDlF7sLQTCa0qBadgtFCs 8th6mi96HHM9QMX3Y/J+30eVet5akrbxotyyoAPZkpiUaLjvdG9v+Mr8xJPD/sET 4KSJQYfoCtBpLSkaPu12EDXBrwNuP/IRMg4qwgpg+feUduPRWYo4oQAdXJDqNpzQ rVgfjuTe8VrRELsn4sAknI9lYo3HXBzEJd38+cYI20H1oKWSVnui57ZmelC1rn5C 70lIUnn+/Hzr45z4KFhbezn9cwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFIgowkbY uX/q29haVb9620DxsN3JMB8GA1UdIwQYMBaAFFX7e8ynQChfyBqjYPAs4y+VgW22 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMjdDMS9EQ0Y5OEExNjc3 ODExMUVEOTZCMzY0NjRDNEY5QUUwMi9WZnQ3ektkQUtGX0lHcU5nOEN6akw1V0Ji YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1ZmdDd6S2RBS0ZfSUdxTmc4Q3pqTDVXQmJiWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTI3QzEvRENGOThBMTY3NzgxMTFFRDk2QjM2NDY0QzRGOUFFMDIvOEVEMzAxRDA3 ODIwMTFGMEJEQjZFNjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBADASRUwDAMEAMBrqwMEAMBrrDANBgkqhkiG9w0BAQsFAAOC AQEAfGaFdtF9qwFNd5x9+V9Xxc0YSzVC/e47Y3KakWAvVCCzlxd8rGyMAn9ZfF4I MCjSDe/GgcR8ymtRcHF1htM+eOcTnpCibbuDYEyLXcM2LT5R6RtFllxM8C2IQnB1 A/jcTXy36P65O4eKvhZVfuY4HrIytdyOTLQqw3X6b478mppX8+1eNRt10NT3hbKf 1/zKSR41ORTHOwzrkhTWJbd/gO5gacj08gGuW4qgdpSX2r0/bbds3wowtcDg+43s X0b3p8deY3cbPOOftjETxRUMpXpKPO2FCjafYVh60YuP0kfH9IOEwkRkj83MuXGP Lhgr1vu+JYIX5bVFs149gp8bmA== -----END CERTIFICATE-----Generated at Fri Aug 15 00:18:59 2025 by rpki-client