$ rpki-client -vvf rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/BDBFFB867D5411EB8CBE5B57C4F9AE02.roa File: BDBFFB867D5411EB8CBE5B57C4F9AE02.roa (raw, json) Hash identifier: rBuNfeeoduUd1I0NoD4IRcILjNn1S7GUQ8XAggSqgBo= Subject key identifier: 64:1F:17:01:15:A4:6F:44:D7:6F:B0:34:52:2D:9A:C0:E1:00:9F:C1 Certificate issuer: /CN=A91673ED/serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Certificate serial: 067B Authority key identifier: 39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/BDBFFB867D5411EB8CBE5B57C4F9AE02.roa Signing time: Thu 22 May 2025 22:22:28 +0000 ROA not before: Thu 22 May 2025 22:22:28 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9790 IP address blocks: 202.3.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:07:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1659 (0x67b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91673ED, serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Validity Not Before: May 22 22:22:28 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682fa3a4-dd89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:e1:fc:3a:1c:a5:89:e4:66:47:29:fd:2e:a6: 0e:78:8a:71:1c:91:bf:76:d0:10:dc:95:d0:ea:32: cf:d0:96:d3:ab:2e:55:ac:71:c1:d9:0b:fb:1a:90: 87:c4:fb:3d:83:34:f5:53:69:d4:06:d3:74:df:b5: 20:3f:b0:f2:03:62:9f:1d:a6:bb:6b:0e:cf:16:54: 73:8f:4c:9d:20:37:df:37:f0:97:10:fe:35:05:1b: 3f:51:e2:a9:20:2a:b0:f6:fa:00:e4:38:67:be:62: a5:b0:6c:46:0d:4f:ed:0e:d8:ca:8a:b9:60:3c:ea: 06:a3:94:23:b8:6d:65:f1:1e:98:ec:01:1e:d0:e1: 96:08:de:29:8c:12:72:cc:5a:37:b4:ee:86:55:85: 16:d8:0c:1b:39:b0:0f:0a:39:8c:29:0a:9a:de:a0: 93:1a:e3:12:25:9f:f3:9e:93:d1:08:74:43:b0:45: 66:05:40:75:cf:db:35:38:87:a4:b2:39:d8:4f:37: 4c:a4:89:9e:ca:91:38:9e:43:22:f3:fd:e3:fb:da: 9d:a7:40:f4:2a:1f:4a:21:d9:7f:e2:25:c1:89:1f: e4:5c:d6:6f:9e:c1:4a:9a:4a:8b:0c:e5:c7:11:89: 59:34:9b:13:5e:35:62:23:c5:cc:eb:cb:b9:9f:1c: cc:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:1F:17:01:15:A4:6F:44:D7:6F:B0:34:52:2D:9A:C0:E1:00:9F:C1 X509v3 Authority Key Identifier: keyid:39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/BDBFFB867D5411EB8CBE5B57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.3.88.0/21 Signature Algorithm: sha256WithRSAEncryption 22:fe:7e:30:e9:6c:28:3e:d8:d9:90:c8:8e:f0:c8:87:43:5f: bb:73:fa:d4:cd:0b:fe:04:e1:01:25:24:80:f6:8b:be:94:30: 3a:31:34:8a:0c:08:ca:bc:8f:99:90:72:a2:bc:a0:4d:6c:0d: 21:fd:ec:7e:9d:26:e3:c1:15:d3:85:dc:99:b3:9b:0b:32:59: ee:e9:59:b2:a9:c7:14:e6:74:4f:96:87:8d:e0:42:e4:41:3f: 50:e3:25:36:06:14:98:4b:a7:a2:58:a5:f1:24:2a:4a:76:af: dd:56:c8:7a:18:fd:2d:18:3f:48:13:e4:42:c1:4a:f8:3e:03: e8:aa:f7:f7:5f:d6:b8:ad:85:9a:39:11:e9:08:c9:a8:30:57: 3d:8f:41:62:67:d3:6f:4d:2e:e2:70:8f:57:fe:99:bf:e7:86: 37:e0:8e:1a:ca:f7:81:a2:b9:43:9c:40:ea:f8:4e:da:3a:5a: 26:b8:fb:94:b6:59:b2:27:e8:ce:c0:87:3d:95:cc:36:fb:cc: b8:26:ff:2c:31:0d:30:46:d3:5e:e8:fd:8d:12:c2:87:74:e3: 66:05:59:5f:5e:4f:dd:d7:7e:c1:df:ac:97:21:92:0a:21:44: c1:82:b0:79:f6:f1:77:1c:94:e1:bf:27:5c:59:d1:8b:09:f2: e8:46:22:5f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBnswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjczRUQxMTAvBgNVBAUTKDM5MzU2NkY0NDE3ODZEOTU4RDhBNzkxMThFOEVGNTZG Qzg3MkU1QzUwHhcNMjUwNTIyMjIyMjI4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmYTNhNC1kZDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwOH8OhylieRmRyn9LqYOeIpxHJG/dtAQ3JXQ6jLP0JbTqy5VrHHB2Qv7GpCH xPs9gzT1U2nUBtN037UgP7DyA2KfHaa7aw7PFlRzj0ydIDffN/CXEP41BRs/UeKp ICqw9voA5DhnvmKlsGxGDU/tDtjKirlgPOoGo5QjuG1l8R6Y7AEe0OGWCN4pjBJy zFo3tO6GVYUW2AwbObAPCjmMKQqa3qCTGuMSJZ/znpPRCHRDsEVmBUB1z9s1OIek sjnYTzdMpImeypE4nkMi8/3j+9qdp0D0Kh9KIdl/4iXBiR/kXNZvnsFKmkqLDOXH EYlZNJsTXjViI8XM68u5nxzM+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGQfFwEV pG9E12+wNFItmsDhAJ/BMB8GA1UdIwQYMBaAFDk1ZvRBeG2VjYp5EY6O9W/IcuXF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzNFRC80RDhGQTIwRTdE NDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJaV05pbmtSam83MWI4aHk1 Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09UVm05RUY0YlpXTmlua1JqbzcxYjhoeTVjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjczRUQvNEQ4RkEyMEU3RDQ5MTFFQkExNjU3MzdCQzRGOUFFMDIvQkRCRkZCODY3 RDU0MTFFQjhDQkU1QjU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKA1gwDQYJKoZIhvcNAQELBQADggEBACL+fjDpbCg+2NmQ yI7wyIdDX7tz+tTNC/4E4QElJID2i76UMDoxNIoMCMq8j5mQcqK8oE1sDSH97H6d JuPBFdOF3JmzmwsyWe7pWbKpxxTmdE+Wh43gQuRBP1DjJTYGFJhLp6JYpfEkKkp2 r91WyHoY/S0YP0gT5ELBSvg+A+iq9/df1rithZo5EekIyagwVz2PQWJn029NLuJw j1f+mb/nhjfgjhrK94GiuUOcQOr4Tto6Wia4+5S2WbIn6M7Ahz2VzDb7zLgm/ywx DTBG017o/Y0Swod042YFWV9eT93XfsHfrJchkgohRMGCsHn28XcclOG/J1xZ0YsJ 8uhGIl8= -----END CERTIFICATE-----Generated at Tue Nov 4 17:00:14 2025 by rpki-client