$ rpki-client -vvf rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/3F5C47A0531411F0B5969F4DC4F9AE02.roa File: 3F5C47A0531411F0B5969F4DC4F9AE02.roa (raw, json) Hash identifier: pI4dJTsbs9JXYEo3FapSXoRmDXBH5lTYniw+sL2h9gQ= Subject key identifier: 1E:AB:1B:F4:41:E9:23:15:E0:FB:84:6C:CA:25:DD:11:17:E7:CD:F1 Certificate issuer: /CN=A91A54FE/serialNumber=6FC70906FBA6F4539452091932C45FFA4D8572B8 Certificate serial: 010B Authority key identifier: 6F:C7:09:06:FB:A6:F4:53:94:52:09:19:32:C4:5F:FA:4D:85:72:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8cJBvum9FOUUgkZMsRf-k2Fcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/3F5C47A0531411F0B5969F4DC4F9AE02.roa Signing time: Sat 09 Aug 2025 05:42:44 +0000 ROA not before: Sat 09 Aug 2025 05:42:44 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 2764 IP address blocks: 203.20.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/b8cJBvum9FOUUgkZMsRf-k2Fcrg.crl rsync://rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/b8cJBvum9FOUUgkZMsRf-k2Fcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8cJBvum9FOUUgkZMsRf-k2Fcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 267 (0x10b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A54FE, serialNumber=6FC70906FBA6F4539452091932C45FFA4D8572B8 Validity Not Before: Aug 9 05:42:44 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6896dfd4-69a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:12:ed:bf:48:d8:78:af:21:bc:59:92:f6:f6: c3:19:e3:93:82:7c:08:3a:e4:69:5f:4b:1d:98:c7: 1d:1e:e7:56:6d:cb:ea:f3:0f:02:db:50:9f:87:9e: 29:5a:ee:3d:3a:22:cd:e4:6e:91:e1:a8:97:ff:71: ee:43:44:5f:75:60:f8:59:5f:a1:30:87:a0:c5:9f: 2e:34:20:9c:a1:7f:13:f7:d8:a4:a4:b2:d3:b1:c7: 3a:e0:81:c6:61:a7:cb:61:39:48:79:b4:01:ac:5f: c8:74:19:2d:44:47:05:03:83:b5:4f:37:3b:e9:70: 6d:64:15:5a:fc:df:e1:e6:74:52:97:8d:aa:b5:a4: 5c:64:7d:6e:07:df:ca:fc:e7:66:ef:ef:4e:9e:83: 75:7d:a7:24:e3:4e:f3:36:97:20:db:2e:c2:ef:ba: fb:70:c1:9f:7b:36:2d:e3:b7:65:6d:92:e4:94:e4: 5f:bc:fc:e7:72:a3:29:e5:41:2e:18:91:ee:0f:33: 5a:76:d9:f0:21:8c:0e:ba:b3:c4:65:7b:f6:82:25: 2e:ec:f7:71:0f:ca:c9:6b:d6:93:78:a7:ab:59:95: bf:d2:cf:8b:37:39:b1:fb:e8:7c:39:f8:c2:b0:eb: 30:aa:8d:a2:76:2c:fd:fc:b6:78:3d:29:78:d4:f6: f6:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:AB:1B:F4:41:E9:23:15:E0:FB:84:6C:CA:25:DD:11:17:E7:CD:F1 X509v3 Authority Key Identifier: keyid:6F:C7:09:06:FB:A6:F4:53:94:52:09:19:32:C4:5F:FA:4D:85:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/b8cJBvum9FOUUgkZMsRf-k2Fcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8cJBvum9FOUUgkZMsRf-k2Fcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/3F5C47A0531411F0B5969F4DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.114.0/24 Signature Algorithm: sha256WithRSAEncryption a1:7e:7f:f3:07:43:cc:10:16:64:b5:e9:15:14:5b:e2:73:b2: 0b:4d:59:d0:99:24:67:62:5d:33:33:50:bd:a7:48:8d:6f:bf: a6:19:f9:e9:2d:0b:58:e6:b4:1d:9f:f8:4b:58:06:70:48:4d: 9d:66:ec:1f:55:ba:82:8c:45:01:99:d7:5a:56:df:30:6d:23: f8:16:95:a2:ac:8a:ea:97:96:62:2f:4a:5f:b1:97:70:d5:83: d2:71:8c:93:74:2b:45:67:3a:ad:62:d8:42:95:45:be:04:02: e1:b9:24:e8:11:3b:8e:31:39:24:18:40:fe:40:c5:7d:32:dd: f1:aa:20:79:08:52:d5:ad:70:41:76:4d:da:9e:d2:2c:89:90: 1d:8a:b0:94:a1:9b:f9:1f:65:46:3e:56:b6:bb:34:cd:93:4e: e5:1d:db:63:77:27:4e:ea:b7:ed:d0:27:29:3e:09:0d:01:56: 5f:15:93:86:40:80:30:b0:fa:5c:ec:54:25:99:a3:5c:60:41: 26:c2:d8:27:20:4d:26:4e:a4:60:87:b6:54:f4:75:88:1c:3f: 3b:46:2c:a2:ad:57:b6:10:69:85:22:48:7d:9e:0b:7a:91:85: b0:fd:2f:95:27:ba:f1:6a:ab:5e:d0:4a:67:e7:2b:59:36:a3: 8c:fe:2e:57 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU0RkUxMTAvBgNVBAUTKDZGQzcwOTA2RkJBNkY0NTM5NDUyMDkxOTMyQzQ1RkZB NEQ4NTcyQjgwHhcNMjUwODA5MDU0MjQ0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2ZGZkNC02OWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApRLtv0jYeK8hvFmS9vbDGeOTgnwIOuRpX0sdmMcdHudWbcvq8w8C21Cfh54p Wu49OiLN5G6R4aiX/3HuQ0RfdWD4WV+hMIegxZ8uNCCcoX8T99ikpLLTscc64IHG YafLYTlIebQBrF/IdBktREcFA4O1Tzc76XBtZBVa/N/h5nRSl42qtaRcZH1uB9/K /Odm7+9OnoN1fack407zNpcg2y7C77r7cMGfezYt47dlbZLklORfvPzncqMp5UEu GJHuDzNadtnwIYwOurPEZXv2giUu7PdxD8rJa9aTeKerWZW/0s+LNzmx++h8OfjC sOswqo2idiz9/LZ4PSl41Pb2bQIDAQABo4IClTCCApEwHQYDVR0OBBYEFB6rG/RB 6SMV4PuEbMol3REX583xMB8GA1UdIwQYMBaAFG/HCQb7pvRTlFIJGTLEX/pNhXK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTRGRS9ENjExN0RGNkY2 RTkxMUVFQURCRkZCNTJDNEY5QUUwMi9iOGNKQnZ1bTlGT1VVZ2taTXNSZi1rMkZj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4Y0pCdnVtOUZPVVVna1pNc1JmLWsyRmNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU0RkUvRDYxMTdERjZGNkU5MTFFRUFEQkZGQjUyQzRGOUFFMDIvM0Y1QzQ3QTA1 MzE0MTFGMEI1OTY5RjREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLFHIwDQYJKoZIhvcNAQELBQADggEBAKF+f/MHQ8wQFmS1 6RUUW+JzsgtNWdCZJGdiXTMzUL2nSI1vv6YZ+ektC1jmtB2f+EtYBnBITZ1m7B9V uoKMRQGZ11pW3zBtI/gWlaKsiuqXlmIvSl+xl3DVg9JxjJN0K0VnOq1i2EKVRb4E AuG5JOgRO44xOSQYQP5AxX0y3fGqIHkIUtWtcEF2Tdqe0iyJkB2KsJShm/kfZUY+ Vra7NM2TTuUd22N3J07qt+3QJyk+CQ0BVl8Vk4ZAgDCw+lzsVCWZo1xgQSbC2Ccg TSZOpGCHtlT0dYgcPztGLKKtV7YQaYUiSH2eC3qRhbD9L5UnuvFqq17QSmfnK1k2 o4z+Llc= -----END CERTIFICATE-----Generated at Mon Aug 11 04:14:38 2025 by rpki-client