$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/EC8209420EB411EFAE1CF63BC4F9AE02.roa File: EC8209420EB411EFAE1CF63BC4F9AE02.roa (raw, json) Hash identifier: vcrOZBXHjq3K5b9IM2tb0fFhXmrTMImV0akcYw7Q7n0= Subject key identifier: C1:C4:A5:73:EB:36:FA:10:6C:D4:0A:EC:9C:B3:B1:40:2D:7A:DA:86 Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 35D6 Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/EC8209420EB411EFAE1CF63BC4F9AE02.roa Signing time: Thu 24 Jul 2025 14:50:33 +0000 ROA not before: Thu 24 Jul 2025 14:50:33 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 38599 IP address blocks: 58.181.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13782 (0x35d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA, serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Validity Not Before: Jul 24 14:50:33 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68824839-f1c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:ba:4a:fc:a3:af:34:31:06:c7:eb:3c:e2:07: c8:1c:02:23:0b:bb:5e:3c:39:8b:8c:34:02:eb:4f: 24:23:c7:82:29:3b:40:1d:d0:28:25:14:28:d4:f1: 9d:be:8e:86:a0:3d:7e:a8:e4:7b:c8:95:d2:a9:b4: 03:1f:45:47:b6:27:cf:df:7a:5c:6a:bc:52:d6:74: cd:f0:0c:4b:71:e0:00:50:ea:30:ee:d5:be:01:d2: 2f:39:fd:91:11:0e:f1:55:25:ca:17:90:d4:a2:ae: 1e:33:80:f9:78:eb:83:77:12:5a:67:ac:99:16:2b: 0d:5c:bd:74:94:ff:57:01:76:13:de:96:ff:76:40: ba:48:7d:a4:83:59:56:39:1d:e3:0d:e4:5e:0c:52: 92:65:ae:60:40:c7:1d:5e:2e:23:e8:81:3c:48:25: da:f2:a1:3d:8f:33:89:c0:5f:42:03:ae:23:41:af: 43:a6:12:19:21:ce:f9:c2:c4:da:6d:b9:bf:75:ec: 2b:0e:7b:5a:04:ef:b0:a0:e6:1f:fd:9e:7a:a1:68: 19:1c:35:26:35:fb:96:50:00:f5:e0:3b:0f:da:e4: 19:03:c8:a3:30:ec:75:43:21:9d:23:89:bf:03:5e: f2:82:39:c6:77:76:c4:44:5c:9a:bb:b4:e8:2b:f4: 72:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:C4:A5:73:EB:36:FA:10:6C:D4:0A:EC:9C:B3:B1:40:2D:7A:DA:86 X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/EC8209420EB411EFAE1CF63BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.181.209.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:36:99:f9:33:f0:aa:63:a7:4c:ff:13:de:8f:0c:ab:f5:09: 42:2e:93:05:83:a5:37:7c:25:69:3f:67:5d:36:e1:ea:4a:ab: a9:ae:e1:9f:d8:17:e4:98:f6:8e:b5:6c:d9:18:ab:1d:e0:d2: 12:c5:e2:74:67:c2:96:ff:ad:5f:8c:0c:fe:29:f6:75:f6:12: a2:d3:f0:21:b7:d1:6f:4d:cb:43:b4:a8:04:d1:d0:f3:7e:6a: 5a:25:81:17:fe:9a:20:49:38:d2:82:e4:03:a4:23:15:77:1f: 52:78:a7:4a:81:44:40:e8:d5:e3:b2:ab:2c:5e:95:87:15:4e: 17:26:16:42:68:2d:3a:5d:07:94:03:0a:aa:48:ff:c1:13:67: 59:ba:96:15:7a:32:55:42:db:5c:7e:e5:99:2a:03:a0:1c:9d: 39:5b:a0:ac:16:5d:92:95:23:a3:60:f0:5d:d6:be:e7:fe:1b: ec:90:1b:2f:d3:bf:f2:0a:38:08:d8:87:1b:af:f4:1c:be:d7: 02:d0:93:c4:bb:3b:e8:77:10:51:18:04:c9:e8:09:d3:65:22: 55:80:c7:db:02:79:90:19:6f:f1:d5:1c:c2:cb:5a:c9:0d:2e: 97:09:d0:f5:9a:ac:66:8f:e4:2a:a9:52:b4:cd:97:c6:54:85: 7f:3b:b2:28 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNdYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjUwNzI0MTQ1MDMzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgyNDgzOS1mMWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LpK/KOvNDEGx+s84gfIHAIjC7tePDmLjDQC608kI8eCKTtAHdAoJRQo1PGd vo6GoD1+qOR7yJXSqbQDH0VHtifP33pcarxS1nTN8AxLceAAUOow7tW+AdIvOf2R EQ7xVSXKF5DUoq4eM4D5eOuDdxJaZ6yZFisNXL10lP9XAXYT3pb/dkC6SH2kg1lW OR3jDeReDFKSZa5gQMcdXi4j6IE8SCXa8qE9jzOJwF9CA64jQa9DphIZIc75wsTa bbm/dewrDntaBO+woOYf/Z56oWgZHDUmNfuWUAD14DsP2uQZA8ijMOx1QyGdI4m/ A17ygjnGd3bERFyau7ToK/RyyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMHEpXPr NvoQbNQK7JyzsUAtetqGMB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk3RkEvMjdGODNCNzAxRDgzMTFFMjkzMjkyMUQ4MDhCMDJDRDIvRUM4MjA5NDIw RUI0MTFFRkFFMUNGNjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6tdEwDQYJKoZIhvcNAQELBQADggEBAB42mfkz8Kpjp0z/ E96PDKv1CUIukwWDpTd8JWk/Z1024epKq6mu4Z/YF+SY9o61bNkYqx3g0hLF4nRn wpb/rV+MDP4p9nX2EqLT8CG30W9Ny0O0qATR0PN+alolgRf+miBJONKC5AOkIxV3 H1J4p0qBREDo1eOyqyxelYcVThcmFkJoLTpdB5QDCqpI/8ETZ1m6lhV6MlVC21x+ 5ZkqA6AcnTlboKwWXZKVI6Ng8F3Wvuf+G+yQGy/Tv/IKOAjYhxuv9By+1wLQk8S7 O+h3EFEYBMnoCdNlIlWAx9sCeZAZb/HVHMLLWskNLpcJ0PWarGaP5CqpUrTNl8ZU hX87sig= -----END CERTIFICATE-----Generated at Sun Aug 10 21:01:07 2025 by rpki-client