$ rpki-client -vvf rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/D9D9E8C0191511F092B86383C4F9AE02.roa File: D9D9E8C0191511F092B86383C4F9AE02.roa (raw, json) Hash identifier: gLLXVBbnqOuYpmPZP1sg2HQN+ZDT78K787nO1Ano868= Subject key identifier: 86:41:D4:DB:DB:C1:FD:32:08:32:88:BD:2B:21:BF:C5:7A:8F:72:19 Certificate issuer: /CN=A91820CC/serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Certificate serial: 36 Authority key identifier: 24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/D9D9E8C0191511F092B86383C4F9AE02.roa Signing time: Tue 01 Jul 2025 08:43:07 +0000 ROA not before: Tue 01 Jul 2025 08:43:07 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 30967 IP address blocks: 188.95.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 07:52:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91820CC, serialNumber=2453CE7C4253DBB2C7AC3D29013E90D5F53C5D09 Validity Not Before: Jul 1 08:43:07 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68639f9b-fdd5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:a4:0b:7e:bc:6a:9a:4b:c9:fc:15:0e:00:b1: 65:b8:8d:e3:6d:e3:56:e2:8e:c8:77:3f:1c:20:8c: af:7b:e9:94:a5:fc:b0:77:36:6f:46:6b:8f:37:4c: ca:40:6e:65:ec:0c:67:26:4c:a0:7c:20:74:0d:cd: 21:d2:88:b7:d0:e2:4a:9b:71:34:7a:59:1a:5a:ee: 7a:44:26:c6:af:f3:f5:2e:bf:70:3c:36:13:8d:25: ef:c2:a5:88:72:0d:d7:70:0c:c1:2d:9f:45:9c:14: 3f:61:1f:d2:f8:ba:8e:4d:5d:5f:e0:34:01:54:25: 97:17:64:3d:6a:ea:e8:64:8f:72:ca:64:06:67:10: 03:c8:4d:5c:18:04:bd:5c:cd:10:7d:d8:6f:cf:a5: 1a:80:f2:34:ea:1e:c6:a1:27:09:ce:39:65:dd:6e: d5:a9:a9:ac:e4:d3:42:eb:2e:f9:88:de:a0:72:4b: 52:c3:a2:c6:62:c2:97:7d:0f:8f:aa:88:78:79:0d: 30:97:16:ee:1a:8a:ef:ad:7a:7f:cb:c9:4a:f3:28: 53:a6:a6:94:bc:da:b9:aa:95:d7:1a:5b:df:19:cd: 34:de:74:c1:ff:56:ae:96:b9:86:72:fd:6b:b4:fa: e1:ca:87:f0:e6:18:1a:b3:3a:aa:3e:a0:07:e0:5b: 65:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:41:D4:DB:DB:C1:FD:32:08:32:88:BD:2B:21:BF:C5:7A:8F:72:19 X509v3 Authority Key Identifier: keyid:24:53:CE:7C:42:53:DB:B2:C7:AC:3D:29:01:3E:90:D5:F5:3C:5D:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/JFPOfEJT27LHrD0pAT6Q1fU8XQk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/JFPOfEJT27LHrD0pAT6Q1fU8XQk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91820CC/BDD4AF3C0BD911F08C607F87C4F9AE02/D9D9E8C0191511F092B86383C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 188.95.8.0/22 Signature Algorithm: sha256WithRSAEncryption c6:24:91:c0:39:06:57:67:14:41:35:ae:a4:2f:58:08:d8:c9: fd:a9:bb:55:e3:00:8a:0f:2b:ce:f2:0f:b5:f0:df:d8:39:7c: 2d:f8:96:e2:7a:24:21:ce:a8:59:48:64:f7:32:80:f1:fb:11: ac:45:4e:c9:6a:c4:40:11:c0:84:72:1d:b0:fe:e9:20:1e:05: 93:c0:1c:78:d9:92:73:d2:ea:5b:f2:d5:8c:23:e3:92:b5:0e: bb:05:66:44:52:53:52:6f:e2:eb:35:95:fa:45:ab:2f:0c:48: 23:ae:d3:9b:11:b1:bb:dc:47:3d:59:bb:6e:ee:79:cf:6e:2a: 94:8c:8c:64:00:e6:c5:7b:83:ac:df:93:de:2f:0a:7b:f4:a1: 29:88:87:13:2c:fa:f7:60:99:61:b6:67:a8:04:dc:19:70:ae: 64:7a:6e:51:b4:bd:a7:40:74:5e:d7:19:f9:01:a0:3c:a4:28: c0:b5:8b:f2:ef:58:4d:c8:3a:a7:55:e2:6f:1b:ff:3a:47:40: ef:8e:dc:98:80:93:d9:be:14:46:1e:65:58:fc:9c:bd:1b:c2: 7a:13:88:1b:65:fd:9f:9d:53:46:05:29:f3:2b:ae:df:aa:d5: 86:38:48:f0:57:4b:16:fa:85:9a:f2:d4:f3:9e:2c:be:40:f0: 37:be:3f:9f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MjBDQzExMC8GA1UEBRMoMjQ1M0NFN0M0MjUzREJCMkM3QUMzRDI5MDEzRTkwRDVG NTNDNUQwOTAeFw0yNTA3MDEwODQzMDdaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjM5ZjliLWZkZDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCjpAt+vGqaS8n8FQ4AsWW4jeNt41bijsh3PxwgjK976ZSl/LB3Nm9Ga483TMpA bmXsDGcmTKB8IHQNzSHSiLfQ4kqbcTR6WRpa7npEJsav8/Uuv3A8NhONJe/CpYhy DddwDMEtn0WcFD9hH9L4uo5NXV/gNAFUJZcXZD1q6uhkj3LKZAZnEAPITVwYBL1c zRB92G/PpRqA8jTqHsahJwnOOWXdbtWpqazk00LrLvmI3qByS1LDosZiwpd9D4+q iHh5DTCXFu4aiu+ten/LyUrzKFOmppS82rmqldcaW98ZzTTedMH/Vq6WuYZy/Wu0 +uHKh/DmGBqzOqo+oAfgW2WHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUhkHU29vB /TIIMoi9KyG/xXqPchkwHwYDVR0jBBgwFoAUJFPOfEJT27LHrD0pAT6Q1fU8XQkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgyMENDL0JERDRBRjNDMEJE OTExRjA4QzYwN0Y4N0M0RjlBRTAyL0pGUE9mRUpUMjdMSHJEMHBBVDZRMWZVOFhR ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvSkZQT2ZFSlQyN0xIckQwcEFUNlExZlU4WFFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MjBDQy9CREQ0QUYzQzBCRDkxMUYwOEM2MDdGODdDNEY5QUUwMi9EOUQ5RThDMDE5 MTUxMUYwOTJCODYzODNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEArxfCDANBgkqhkiG9w0BAQsFAAOCAQEAxiSRwDkGV2cUQTWu pC9YCNjJ/am7VeMAig8rzvIPtfDf2Dl8LfiW4nokIc6oWUhk9zKA8fsRrEVOyWrE QBHAhHIdsP7pIB4Fk8AceNmSc9LqW/LVjCPjkrUOuwVmRFJTUm/i6zWV+kWrLwxI I67TmxGxu9xHPVm7bu55z24qlIyMZADmxXuDrN+T3i8Ke/ShKYiHEyz692CZYbZn qATcGXCuZHpuUbS9p0B0XtcZ+QGgPKQowLWL8u9YTcg6p1Xibxv/OkdA747cmICT 2b4URh5lWPycvRvCehOIG2X9n51TRgUp8yuu36rVhjhI8FdLFvqFmvLU854svkDw N74/nw== -----END CERTIFICATE-----Generated at Mon Aug 4 22:25:12 2025 by rpki-client