$ rpki-client -vvf rpki.apnic.net/member_repository/A9193F42/800ED9CCA2B311F09466E235C4F9AE02/E8D991EAA2B311F09C429E36C4F9AE02.roa File: E8D991EAA2B311F09C429E36C4F9AE02.roa (raw, json) Hash identifier: Hrz6E8zGVE7+V0nQ5qUnfosiDutsahGCdlw2tJNUEv8= Subject key identifier: 2D:98:24:D4:36:76:44:F3:19:09:4D:08:31:D9:49:C3:82:7E:08:98 Certificate issuer: /CN=A9193F42/serialNumber=B41D3600AF2609930E82F09600C7AF98F2DD6C9F Certificate serial: 06 Authority key identifier: B4:1D:36:00:AF:26:09:93:0E:82:F0:96:00:C7:AF:98:F2:DD:6C:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tB02AK8mCZMOgvCWAMevmPLdbJ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193F42/800ED9CCA2B311F09466E235C4F9AE02/E8D991EAA2B311F09C429E36C4F9AE02.roa Signing time: Fri 10 Oct 2025 07:32:34 +0000 ROA not before: Fri 10 Oct 2025 07:32:34 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 24443 IP address blocks: 202.72.32.0/24 maxlen: 24 202.72.33.0/24 maxlen: 24 202.72.34.0/24 maxlen: 24 202.72.35.0/24 maxlen: 24 202.72.36.0/24 maxlen: 24 202.72.37.0/24 maxlen: 24 202.72.38.0/24 maxlen: 24 202.72.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193F42/800ED9CCA2B311F09466E235C4F9AE02/tB02AK8mCZMOgvCWAMevmPLdbJ8.crl rsync://rpki.apnic.net/member_repository/A9193F42/800ED9CCA2B311F09466E235C4F9AE02/tB02AK8mCZMOgvCWAMevmPLdbJ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tB02AK8mCZMOgvCWAMevmPLdbJ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193F42, serialNumber=B41D3600AF2609930E82F09600C7AF98F2DD6C9F Validity Not Before: Oct 10 07:32:34 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68e8b692-356c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:f6:17:9d:90:7b:83:89:12:37:b1:73:c1:ee: 64:71:a7:dc:ee:bc:18:2e:4c:22:c2:0e:d6:84:37: 04:4c:82:18:dc:16:94:dc:be:9b:f6:d6:06:21:d6: bb:71:77:ba:02:30:10:c4:d4:70:7d:74:25:1e:59: b5:8e:13:54:e6:1a:84:64:ee:6c:ff:e1:a8:50:4c: 5e:32:f3:b1:88:f5:e0:f5:7f:b8:5f:b2:00:54:8c: 4a:46:e5:7f:97:7f:67:cc:82:8f:cb:34:00:5e:7e: b0:f8:af:cc:a5:45:46:92:d8:8f:d7:6f:ae:16:c9: 3a:6a:6a:48:18:ff:3a:4e:b2:02:c1:98:82:88:3e: 8a:f3:17:b5:44:58:13:75:a1:48:8c:05:35:8d:cb: d5:77:04:11:25:15:29:5f:dc:97:5d:11:3d:c7:d4: 2c:f4:f3:d3:01:18:78:25:d9:15:a2:56:67:04:d2: 11:42:65:c9:84:ac:0a:f1:26:49:78:9a:38:2c:e1: 20:ab:48:a3:8d:0b:1d:dd:7c:e7:b3:22:2e:19:56: 50:cd:8d:aa:63:a0:06:58:5a:ef:71:ee:24:4c:e0: 44:c1:81:24:e9:be:c2:65:1f:36:4c:f2:ca:01:83: 3d:bc:96:0c:a1:bd:43:33:1b:a5:5c:a5:22:d7:c7: b3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:98:24:D4:36:76:44:F3:19:09:4D:08:31:D9:49:C3:82:7E:08:98 X509v3 Authority Key Identifier: keyid:B4:1D:36:00:AF:26:09:93:0E:82:F0:96:00:C7:AF:98:F2:DD:6C:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193F42/800ED9CCA2B311F09466E235C4F9AE02/tB02AK8mCZMOgvCWAMevmPLdbJ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tB02AK8mCZMOgvCWAMevmPLdbJ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193F42/800ED9CCA2B311F09466E235C4F9AE02/E8D991EAA2B311F09C429E36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.72.32.0/21 Signature Algorithm: sha256WithRSAEncryption 68:72:e9:f1:05:73:4a:f2:9e:ab:51:d3:d9:1f:14:8c:50:61: f1:a5:59:41:af:58:95:61:d5:4e:4b:d0:13:08:84:5e:ae:46: 43:f6:83:e1:a8:02:35:be:35:a8:e8:a5:9e:9a:34:7f:ea:35: 4e:0d:a1:5a:88:8d:2c:ae:60:c4:9c:8b:d7:22:bb:cd:b6:23: 83:a5:4e:c7:a0:e4:3b:27:bf:63:e7:89:52:c7:14:20:7f:59: eb:ed:cc:fb:5b:68:e5:62:11:ed:b0:7f:b0:87:a2:10:1c:7b: 10:af:1a:fa:36:31:75:2f:8d:6e:a6:8b:18:39:07:c5:37:35: 30:78:e3:fc:89:2b:51:80:4f:47:a8:92:b6:06:0c:93:7e:e5: df:ee:32:94:df:28:f6:39:d6:75:f0:72:bb:43:47:bc:30:fa: e5:a4:92:da:e7:ed:6d:01:7f:28:22:64:8a:87:3c:19:07:cc: a9:d4:43:b9:0f:51:dc:6b:88:0a:1a:31:9c:bd:97:39:2d:a0: 8f:a2:71:8d:12:03:0a:a1:33:7d:97:5f:a1:3b:65:51:51:cc: 72:c7:54:28:5b:a0:94:77:0f:21:03:6c:e1:00:02:14:0d:08: 5d:36:05:31:ef:fe:95:a6:57:1f:52:40:80:5f:c4:df:45:c1: 8b:43:a6:16 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 M0Y0MjExMC8GA1UEBRMoQjQxRDM2MDBBRjI2MDk5MzBFODJGMDk2MDBDN0FGOThG MkRENkM5RjAeFw0yNTEwMTAwNzMyMzRaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ZThiNjkyLTM1NmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDO9hedkHuDiRI3sXPB7mRxp9zuvBguTCLCDtaENwRMghjcFpTcvpv21gYh1rtx d7oCMBDE1HB9dCUeWbWOE1TmGoRk7mz/4ahQTF4y87GI9eD1f7hfsgBUjEpG5X+X f2fMgo/LNABefrD4r8ylRUaS2I/Xb64WyTpqakgY/zpOsgLBmIKIPorzF7VEWBN1 oUiMBTWNy9V3BBElFSlf3JddET3H1Cz089MBGHgl2RWiVmcE0hFCZcmErArxJkl4 mjgs4SCrSKONCx3dfOezIi4ZVlDNjapjoAZYWu9x7iRM4ETBgSTpvsJlHzZM8soB gz28lgyhvUMzG6VcpSLXx7PZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQULZgk1DZ2 RPMZCU0IMdlJw4J+CJgwHwYDVR0jBBgwFoAUtB02AK8mCZMOgvCWAMevmPLdbJ8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzRjQyLzgwMEVEOUNDQTJC MzExRjA5NDY2RTIzNUM0RjlBRTAyL3RCMDJBSzhtQ1pNT2d2Q1dBTWV2bVBMZGJK OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdEIwMkFLOG1DWk1PZ3ZDV0FNZXZtUExkYko4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0Y0Mi84MDBFRDlDQ0EyQjMxMUYwOTQ2NkUyMzVDNEY5QUUwMi9FOEQ5OTFFQUEy QjMxMUYwOUM0MjlFMzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEA8pIIDANBgkqhkiG9w0BAQsFAAOCAQEAaHLp8QVzSvKeq1HT 2R8UjFBh8aVZQa9YlWHVTkvQEwiEXq5GQ/aD4agCNb41qOilnpo0f+o1Tg2hWoiN LK5gxJyL1yK7zbYjg6VOx6DkOye/Y+eJUscUIH9Z6+3M+1to5WIR7bB/sIeiEBx7 EK8a+jYxdS+NbqaLGDkHxTc1MHjj/IkrUYBPR6iStgYMk37l3+4ylN8o9jnWdfBy u0NHvDD65aSS2uftbQF/KCJkioc8GQfMqdRDuQ9R3GuIChoxnL2XOS2gj6JxjRID CqEzfZdfoTtlUVHMcsdUKFuglHcPIQNs4QACFA0IXTYFMe/+laZXH1JAgF/E30XB i0OmFg== -----END CERTIFICATE-----Generated at Wed Nov 5 07:42:45 2025 by rpki-client