$ rpki-client -vvf rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/52A1A77A6ECF11F0B2785815C4F9AE02.roa File: 52A1A77A6ECF11F0B2785815C4F9AE02.roa (raw, json) Hash identifier: ZDRfk70st2kL6l3vbu2GItPWm8/EuvkzaT+2ep7EeqM= Subject key identifier: 3B:25:AF:34:FB:69:92:41:63:F6:2A:58:19:C0:67:04:8C:20:24:C6 Certificate issuer: /CN=A91853D3/serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Certificate serial: 0565 Authority key identifier: FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/52A1A77A6ECF11F0B2785815C4F9AE02.roa Signing time: Fri 01 Aug 2025 12:01:57 +0000 ROA not before: Fri 01 Aug 2025 12:01:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 4755 IP address blocks: 202.41.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 23:18:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1381 (0x565) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91853D3, serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Validity Not Before: Aug 1 12:01:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=688cacb5-ac0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:8a:b5:d2:c8:95:de:09:78:e4:12:7e:01:29: 7f:17:46:5d:27:d5:2e:08:4b:05:89:e7:b2:29:5e: 57:19:c4:3f:6d:00:ed:57:9a:25:06:82:14:da:77: 27:46:2a:b6:cc:51:47:bf:5f:66:3d:ce:5e:37:1b: ed:d4:c6:2e:c8:ae:a1:72:35:14:7f:27:e1:7a:0f: 07:f9:3c:23:d5:8a:69:58:54:9f:59:38:d8:8d:27: d7:f1:a4:4c:dd:3d:c0:09:7d:6c:44:ce:b5:12:c3: 38:df:52:d8:89:0b:30:08:d3:c8:48:c4:c2:a0:f0: a9:1a:11:8b:76:d0:60:fa:d8:27:2d:86:c5:8d:3b: f2:14:34:2f:4b:71:c6:c8:20:e7:28:3b:f5:4d:fa: c5:77:5c:21:ae:f6:e1:79:3b:b8:1b:4b:97:56:67: 97:6c:67:db:8d:af:16:0e:ce:cf:b8:4b:52:86:26: 9d:5b:69:83:95:e2:f6:6a:af:2e:9a:03:73:46:fa: f0:bd:d4:0f:79:ad:e2:7d:ba:f5:9d:db:1e:b1:86: 2e:ed:2b:f9:dd:7c:57:32:8a:53:90:ef:f0:73:16: 7a:86:f1:7c:37:6f:bf:98:16:a0:1f:80:93:65:25: 87:4f:40:dd:d3:57:b0:93:79:4f:54:ad:ff:28:b6: b5:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:25:AF:34:FB:69:92:41:63:F6:2A:58:19:C0:67:04:8C:20:24:C6 X509v3 Authority Key Identifier: keyid:FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/52A1A77A6ECF11F0B2785815C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.41.94.0/24 Signature Algorithm: sha256WithRSAEncryption 80:08:46:95:cb:df:cf:0e:aa:af:c2:30:65:da:e1:af:3b:54: 02:c6:ff:00:c2:0b:53:6a:82:87:cc:cf:46:76:ba:0d:51:84: ca:0d:d3:7d:c3:a7:2b:00:ae:cb:34:a8:1d:42:3d:67:17:1e: c6:94:e8:90:14:7d:a8:6b:f4:22:64:ba:f4:3b:8e:92:23:3e: 88:e3:17:0a:af:a6:58:97:0c:02:c4:86:76:67:04:14:62:0c: f0:b1:e6:2f:4c:c8:08:e3:73:cd:b9:94:8e:4e:86:80:bb:44: ee:16:ff:8d:4a:cb:8c:8d:9e:4d:57:e8:c2:35:93:83:b2:e4: cb:13:b5:64:51:da:75:b3:ed:26:31:6f:3a:20:70:62:03:91: 01:7e:0a:73:ca:b2:e9:92:b9:c9:6b:42:e1:6a:2b:ac:65:56: 58:a9:c4:67:dc:c8:db:be:f1:7e:1e:99:d1:11:d2:69:7b:47: a0:a8:c3:7b:79:c0:2a:61:7d:dd:77:1f:90:8d:4c:ca:5a:0c: fc:57:3a:2d:a2:e5:8d:c1:bc:71:1c:d5:78:2c:58:70:3b:0a: 3e:a7:d5:20:88:05:15:01:82:71:82:40:e9:ec:ac:27:7d:52: 37:c0:1c:d7:90:97:9f:b7:7d:e4:71:3d:5f:2e:04:1f:2c:f1: 98:e0:7d:c1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBWUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUzRDMxMTAvBgNVBAUTKEZBMDQ1QzYzMDJCODczRTg4MzY1RkE5QTAyMTQ5OUI0 RjNDNTg2ODgwHhcNMjUwODAxMTIwMTU3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhjYWNiNS1hYzBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Iq10siV3gl45BJ+ASl/F0ZdJ9UuCEsFieeyKV5XGcQ/bQDtV5olBoIU2ncn Riq2zFFHv19mPc5eNxvt1MYuyK6hcjUUfyfheg8H+Twj1YppWFSfWTjYjSfX8aRM 3T3ACX1sRM61EsM431LYiQswCNPISMTCoPCpGhGLdtBg+tgnLYbFjTvyFDQvS3HG yCDnKDv1TfrFd1whrvbheTu4G0uXVmeXbGfbja8WDs7PuEtShiadW2mDleL2aq8u mgNzRvrwvdQPea3ifbr1ndsesYYu7Sv53XxXMopTkO/wcxZ6hvF8N2+/mBagH4CT ZSWHT0Dd01ewk3lPVK3/KLa1DwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDslrzT7 aZJBY/YqWBnAZwSMICTGMB8GA1UdIwQYMBaAFPoEXGMCuHPog2X6mgIUmbTzxYaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTNEMy82RUMwRTM2ODAw MEExMUVDOEMyODcyNTJDNEY5QUUwMi8tZ1JjWXdLNGMtaURaZnFhQWhTWnRQUEZo b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nUmNZd0s0Yy1pRFpmcWFBaFNadFBQRmhvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODUzRDMvNkVDMEUzNjgwMDBBMTFFQzhDMjg3MjUyQzRGOUFFMDIvNTJBMUE3N0E2 RUNGMTFGMEIyNzg1ODE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKKV4wDQYJKoZIhvcNAQELBQADggEBAIAIRpXL388Oqq/C MGXa4a87VALG/wDCC1NqgofMz0Z2ug1RhMoN033DpysArss0qB1CPWcXHsaU6JAU fahr9CJkuvQ7jpIjPojjFwqvpliXDALEhnZnBBRiDPCx5i9MyAjjc825lI5OhoC7 RO4W/41Ky4yNnk1X6MI1k4Oy5MsTtWRR2nWz7SYxbzogcGIDkQF+CnPKsumSuclr QuFqK6xlVlipxGfcyNu+8X4emdER0ml7R6Cow3t5wCphfd13H5CNTMpaDPxXOi2i 5Y3BvHEc1XgsWHA7Cj6n1SCIBRUBgnGCQOnsrCd9UjfAHNeQl5+3feRxPV8uBB8s 8ZjgfcE= -----END CERTIFICATE-----Generated at Tue Nov 4 17:01:53 2025 by rpki-client