$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/5B196FD80A4611ECAE818D54C4F9AE02.roa File: 5B196FD80A4611ECAE818D54C4F9AE02.roa (raw, json) Hash identifier: WyH0ZPwbZvNsL+0AKk2f+JuP3I7jSQdqDW08OMuOOTM= Subject key identifier: 7C:34:CA:39:30:5F:25:B7:E7:42:57:BC:06:AB:C9:B1:5B:79:DA:65 Certificate issuer: /CN=A91A5F82/serialNumber=7447B2835EACB88AC48727CB726BB87B97BA778A Certificate serial: 080C Authority key identifier: 74:47:B2:83:5E:AC:B8:8A:C4:87:27:CB:72:6B:B8:7B:97:BA:77:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEeyg16suIrEhyfLcmu4e5e6d4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/5B196FD80A4611ECAE818D54C4F9AE02.roa Signing time: Tue 16 Sep 2025 21:32:12 +0000 ROA not before: Tue 16 Sep 2025 21:32:12 +0000 ROA not after: Tue 01 Dec 2026 00:00:00 +0000 asID: 7473 IP address blocks: 202.165.128.0/19 maxlen: 19 202.165.128.0/20 maxlen: 24 202.165.144.0/20 maxlen: 24 2400:7000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/dEeyg16suIrEhyfLcmu4e5e6d4o.crl rsync://rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/dEeyg16suIrEhyfLcmu4e5e6d4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEeyg16suIrEhyfLcmu4e5e6d4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 20:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2060 (0x80c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5F82, serialNumber=7447B2835EACB88AC48727CB726BB87B97BA778A Validity Not Before: Sep 16 21:32:12 2025 GMT Not After : Dec 1 00:00:00 2026 GMT Subject: CN=68c9d75c-372b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c7:7e:e0:20:1d:d0:12:2d:e2:41:77:9d:b2: 65:a6:e1:20:ec:7e:3f:ee:47:72:49:a9:cf:f9:d2: 78:7c:7d:fe:9e:20:cc:25:b9:d9:14:63:07:20:f5: 26:08:6a:fb:95:0f:94:01:c1:aa:4f:b1:51:05:4d: 72:b6:96:88:32:fe:1b:65:8e:a2:2d:c3:da:2b:67: 23:57:25:ff:e3:93:9b:c6:e6:cd:1f:9f:30:39:9b: 9c:23:9f:95:91:3d:d7:16:80:eb:7a:c5:86:c3:36: e2:68:9c:85:40:a5:48:0d:15:e7:d0:1b:68:8a:ec: ea:b7:e5:a8:2b:13:92:58:db:df:77:35:a7:d1:31: 58:25:a8:21:a2:f0:11:2c:3a:3a:4c:0d:32:4d:79: fe:0b:11:a0:db:2d:03:52:7f:6f:0c:80:e7:17:5f: 79:20:32:d1:ed:1f:a5:e0:07:f6:cb:10:52:69:c8: da:67:36:92:c0:2f:c3:ea:a9:96:1a:1a:61:e4:46: 15:96:7a:ac:25:a7:f4:56:e6:1d:cc:ba:ab:e7:fb: 58:52:2b:fc:d7:c2:5e:6c:b8:aa:64:a7:1b:1d:46: 02:a0:e6:1b:92:76:0e:14:8a:95:c1:cf:ea:fd:d9: 13:30:ac:a9:47:61:11:10:5c:ab:89:cc:73:42:03: 04:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:34:CA:39:30:5F:25:B7:E7:42:57:BC:06:AB:C9:B1:5B:79:DA:65 X509v3 Authority Key Identifier: keyid:74:47:B2:83:5E:AC:B8:8A:C4:87:27:CB:72:6B:B8:7B:97:BA:77:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/dEeyg16suIrEhyfLcmu4e5e6d4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEeyg16suIrEhyfLcmu4e5e6d4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5F82/3107B3ECF7C511EABC34950AC4F9AE02/5B196FD80A4611ECAE818D54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.165.128.0/19 IPv6: 2400:7000::/32 Signature Algorithm: sha256WithRSAEncryption af:5a:45:f7:c7:4e:ff:fa:fc:2b:f2:1f:81:09:20:3a:cd:b0: 15:aa:58:ca:7a:d2:03:bc:f1:d4:d1:76:74:4f:68:60:3b:dc: 88:e5:fa:ae:96:12:37:d8:78:c4:44:fb:7b:e8:01:76:1f:e5: 03:5f:ff:06:0a:2d:b3:2c:da:da:46:4f:30:0b:0d:fb:5a:64: de:05:85:91:76:52:c6:dd:0d:ec:f3:b4:33:ad:cc:e6:ca:72: e2:1a:b4:f4:44:ec:9f:50:cf:20:24:55:b5:3f:25:7d:bf:c0: 43:0e:e4:8d:33:fc:78:53:b2:ae:3f:fb:9d:d6:06:38:8e:5a: 48:9f:2c:17:bf:35:ea:0c:4b:d0:a7:af:c6:2d:c4:34:c3:0f: 7e:41:df:90:22:f3:4e:e1:66:b7:fa:7c:63:2b:23:d2:f9:1b: d5:26:41:68:b1:d7:cb:26:d2:53:c8:4a:23:40:1b:c6:b9:b2: 05:f3:87:bb:b1:f6:3d:fb:c5:fb:17:66:53:98:01:90:d7:e0: 33:7c:84:dd:de:66:79:b8:92:4f:6b:12:8a:25:8c:f8:da:fb: 22:f2:60:87:fc:b9:31:75:e5:e6:ab:5c:e7:96:82:06:c4:ba: 9d:8c:af:74:7a:5c:6e:09:07:bb:55:ed:ca:23:73:3a:a2:f3: 7f:8f:8c:09 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCAwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTVGODIxMTAvBgNVBAUTKDc0NDdCMjgzNUVBQ0I4OEFDNDg3MjdDQjcyNkJCODdC OTdCQTc3OEEwHhcNMjUwOTE2MjEzMjEyWhcNMjYxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGM5ZDc1Yy0zNzJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8d+4CAd0BIt4kF3nbJlpuEg7H4/7kdySanP+dJ4fH3+niDMJbnZFGMHIPUm CGr7lQ+UAcGqT7FRBU1ytpaIMv4bZY6iLcPaK2cjVyX/45ObxubNH58wOZucI5+V kT3XFoDresWGwzbiaJyFQKVIDRXn0Btoiuzqt+WoKxOSWNvfdzWn0TFYJaghovAR LDo6TA0yTXn+CxGg2y0DUn9vDIDnF195IDLR7R+l4Af2yxBSacjaZzaSwC/D6qmW Ghph5EYVlnqsJaf0VuYdzLqr5/tYUiv818JebLiqZKcbHUYCoOYbknYOFIqVwc/q /dkTMKypR2EREFyricxzQgMEHwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHw0yjkw XyW350JXvAarybFbedplMB8GA1UdIwQYMBaAFHRHsoNerLiKxIcny3JruHuXuneK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNUY4Mi8zMTA3QjNFQ0Y3 QzUxMUVBQkMzNDk1MEFDNEY5QUUwMi9kRWV5ZzE2c3VJckVoeWZMY211NGU1ZTZk NG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RFZXlnMTZzdUlyRWh5ZkxjbXU0ZTVlNmQ0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTVGODIvMzEwN0IzRUNGN0M1MTFFQUJDMzQ5NTBBQzRGOUFFMDIvNUIxOTZGRDgw QTQ2MTFFQ0FFODE4RDU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAXKpYAwDQQCAAIwBwMFACQAcAAwDQYJKoZIhvcNAQELBQAD ggEBAK9aRffHTv/6/CvyH4EJIDrNsBWqWMp60gO88dTRdnRPaGA73Ijl+q6WEjfY eMRE+3voAXYf5QNf/wYKLbMs2tpGTzALDftaZN4FhZF2UsbdDezztDOtzObKcuIa tPRE7J9QzyAkVbU/JX2/wEMO5I0z/HhTsq4/+53WBjiOWkifLBe/NeoMS9Cnr8Yt xDTDD35B35Ai807hZrf6fGMrI9L5G9UmQWix18sm0lPISiNAG8a5sgXzh7ux9j37 xfsXZlOYAZDX4DN8hN3eZnm4kk9rEooljPja+yLyYIf8uTF15earXOeWggbEup2M r3R6XG4JB7tV7cojczqi83+PjAk= -----END CERTIFICATE-----Generated at Wed Nov 5 13:36:59 2025 by rpki-client