$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/A3601D70C2A511EBB2025B36C4F9AE02.roa File: A3601D70C2A511EBB2025B36C4F9AE02.roa (raw, json) Hash identifier: 2vo94c8bhE/vlqMz+w1F2CTUOl+XnRdJZlNw0Ckqzz8= Subject key identifier: 82:13:54:58:6C:69:7B:15:67:98:B9:53:DF:E6:56:B0:34:8A:67:0F Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 35DF Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/A3601D70C2A511EBB2025B36C4F9AE02.roa Signing time: Thu 24 Jul 2025 14:50:40 +0000 ROA not before: Thu 24 Jul 2025 14:50:40 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 55760 IP address blocks: 203.188.16.0/20 maxlen: 21 203.188.48.0/20 maxlen: 22 203.209.48.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13791 (0x35df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA, serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Validity Not Before: Jul 24 14:50:40 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=6882483f-353f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:bb:ef:db:52:18:d4:12:76:f9:66:31:31:62: cb:fc:d6:02:47:90:9e:c9:0c:58:8f:08:d9:18:be: e8:e1:dc:67:b7:b1:a9:06:8c:72:2a:e0:b1:37:fc: b8:c1:e9:1a:8b:c9:c2:fe:58:d3:1a:75:6e:86:54: e3:5e:1f:cf:5a:3d:59:5d:99:e7:77:5d:19:83:35: be:4d:f0:38:a1:8a:59:09:ec:30:5d:96:31:9e:0a: ed:d5:91:75:ba:d5:7c:6e:a3:ab:5a:cf:d4:60:16: 28:f9:fe:e7:2a:bf:85:58:70:af:1e:d2:91:52:fa: 79:fc:97:e0:46:95:07:71:93:f2:c0:d4:b3:9c:c7: 59:44:19:c1:ff:bb:27:72:af:2a:96:ad:b9:c3:ef: 3d:62:13:93:fc:4a:8c:9f:d6:c5:73:57:db:9f:56: c8:2d:44:d5:cf:1f:16:09:41:7d:a8:91:a5:62:90: 8c:79:12:57:f5:f1:28:8c:58:35:5c:c2:2e:5b:cd: 26:05:6b:2d:aa:31:91:b4:ba:f4:63:20:9e:dc:78: 0b:82:0d:ee:e1:47:4a:bc:99:4a:09:04:f3:de:1f: 1a:81:70:db:c5:5e:a9:a6:35:a6:26:a0:f6:af:01: 4e:58:0f:d1:18:b5:df:bb:84:b4:e1:19:53:50:67: 23:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:13:54:58:6C:69:7B:15:67:98:B9:53:DF:E6:56:B0:34:8A:67:0F X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/A3601D70C2A511EBB2025B36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.188.16.0/20 203.188.48.0/20 203.209.48.0/21 Signature Algorithm: sha256WithRSAEncryption b1:b2:9e:91:0c:ff:08:aa:73:cc:c4:95:1e:a5:d9:f7:12:68: 96:c4:8d:f1:d4:f9:8f:61:7d:e9:0e:e6:75:65:b1:13:51:0e: 73:f2:15:17:00:65:2b:ac:d2:94:5b:95:ab:fc:06:c3:54:88: ee:3e:bb:88:85:6d:6b:2f:bd:ae:6f:02:a2:db:a2:8b:79:1c: 3a:36:4e:54:4a:61:45:72:da:10:ce:97:26:30:ea:1f:6a:6d: 7d:e4:c6:2b:d0:01:dd:7b:39:3f:ac:68:58:f3:35:1c:15:0f: df:0a:a1:f1:a2:b9:5e:b4:72:54:b0:de:b1:48:75:8a:df:fb: 3f:bb:67:ea:46:4b:7f:07:72:b7:6d:ff:5a:8e:b4:a8:f6:a2: 45:57:a1:8c:a1:12:8d:f9:04:fa:5f:8f:be:29:8f:4c:3b:ea: e2:f3:33:1e:bf:9a:18:06:d6:6e:41:64:a7:9b:72:75:7c:20: b1:84:cf:e4:4b:24:ea:4c:df:54:ba:9b:b0:2f:ec:30:5e:e1: c0:2d:ee:df:93:da:4d:e8:1c:af:b5:da:b4:d4:15:a3:86:1a: b0:f1:70:af:f9:85:0a:e5:74:21:5a:15:a2:75:0e:4a:7c:fb: d8:c0:6f:5e:62:ee:c8:5e:bf:b5:c6:a3:96:89:b9:e3:67:98: 30:df:f8:09 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICNd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjUwNzI0MTQ1MDQwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgyNDgzZi0zNTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Lvv21IY1BJ2+WYxMWLL/NYCR5CeyQxYjwjZGL7o4dxnt7GpBoxyKuCxN/y4 wekai8nC/ljTGnVuhlTjXh/PWj1ZXZnnd10ZgzW+TfA4oYpZCewwXZYxngrt1ZF1 utV8bqOrWs/UYBYo+f7nKr+FWHCvHtKRUvp5/JfgRpUHcZPywNSznMdZRBnB/7sn cq8qlq25w+89YhOT/EqMn9bFc1fbn1bILUTVzx8WCUF9qJGlYpCMeRJX9fEojFg1 XMIuW80mBWstqjGRtLr0YyCe3HgLgg3u4UdKvJlKCQTz3h8agXDbxV6ppjWmJqD2 rwFOWA/RGLXfu4S04RlTUGcjGQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFIITVFhs aXsVZ5i5U9/mVrA0imcPMB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk3RkEvMjdGODNCNzAxRDgzMTFFMjkzMjkyMUQ4MDhCMDJDRDIvQTM2MDFENzBD MkE1MTFFQkIyMDI1QjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBATLvBADBATLvDADBAPL0TAwDQYJKoZIhvcNAQELBQADggEB ALGynpEM/wiqc8zElR6l2fcSaJbEjfHU+Y9hfekO5nVlsRNRDnPyFRcAZSus0pRb lav8BsNUiO4+u4iFbWsvva5vAqLboot5HDo2TlRKYUVy2hDOlyYw6h9qbX3kxivQ Ad17OT+saFjzNRwVD98KofGiuV60clSw3rFIdYrf+z+7Z+pGS38Hcrdt/1qOtKj2 okVXoYyhEo35BPpfj74pj0w76uLzMx6/mhgG1m5BZKebcnV8ILGEz+RLJOpM31S6 m7Av7DBe4cAt7t+T2k3oHK+12rTUFaOGGrDxcK/5hQrldCFaFaJ1Dkp8+9jAb15i 7shev7XGo5aJueNnmDDf+Ak= -----END CERTIFICATE-----Generated at Mon Aug 11 04:14:21 2025 by rpki-client