$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/2732E7CE940C11EE9B034255C4F9AE02.roa File: 2732E7CE940C11EE9B034255C4F9AE02.roa (raw, json) Hash identifier: DDHSWZe791uy4+U5yKnw8zBiUtA+w+RcnsWDB5ybRyQ= Subject key identifier: 71:12:8A:55:02:EA:0B:D2:E8:F3:4A:04:6F:38:18:C5:12:ED:FC:4C Certificate issuer: /CN=A91A7B94/serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Certificate serial: 018E Authority key identifier: 31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/2732E7CE940C11EE9B034255C4F9AE02.roa Signing time: Sun 03 Aug 2025 04:10:38 +0000 ROA not before: Sun 03 Aug 2025 04:10:38 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 139076 IP address blocks: 116.204.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7B94, serialNumber=3126F4EF05E3AE75A09144B667D39347D4DAA890 Validity Not Before: Aug 3 04:10:38 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688ee13e-5242 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:fd:90:36:44:e3:6b:c2:ef:d7:04:f0:85:4e: 53:03:10:8e:8a:3b:d6:e4:82:15:07:6a:6b:dd:15: 17:3d:5a:02:d9:10:84:03:1a:f9:20:1a:69:1c:7a: a4:80:4d:d5:e9:51:f3:5b:0d:89:c9:8c:e7:65:a4: 7a:ca:82:40:69:50:90:4c:62:de:c6:66:fb:65:cb: e8:a8:72:c1:51:24:5c:a2:58:7c:97:a8:c9:64:a9: c2:fe:74:1a:2e:ab:ff:c8:d5:38:61:ed:1f:38:07: 67:c3:5f:40:80:c5:34:b9:00:35:f7:e9:f0:0e:2a: b8:91:f0:14:e2:60:3d:3e:c5:46:d7:9c:4c:11:c7: 8b:25:b9:a7:2b:5c:38:2a:c4:53:56:f3:2b:9f:a2: c6:69:8e:c1:50:13:89:72:d7:5f:06:d2:12:ed:43: 4f:c9:d4:c7:49:b2:58:44:67:2f:a7:b0:80:3c:c7: 8a:d6:1b:63:fa:9f:26:ae:ed:45:73:1f:bd:27:c7: ed:34:4e:4d:d7:2e:af:c4:4b:67:00:d4:62:8c:42: 4c:3a:d7:f5:d9:b6:b5:e2:b3:7b:ed:ae:96:ae:4d: 67:71:4b:04:23:56:50:58:97:2d:19:46:f0:53:fe: 4e:39:c0:a8:ce:fe:a7:f9:46:b1:9a:a2:38:f4:35: 64:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:12:8A:55:02:EA:0B:D2:E8:F3:4A:04:6F:38:18:C5:12:ED:FC:4C X509v3 Authority Key Identifier: keyid:31:26:F4:EF:05:E3:AE:75:A0:91:44:B6:67:D3:93:47:D4:DA:A8:90 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/MSb07wXjrnWgkUS2Z9OTR9TaqJA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MSb07wXjrnWgkUS2Z9OTR9TaqJA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7B94/CC741BB6377011EE8DC8BB34C4F9AE02/2732E7CE940C11EE9B034255C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.204.235.0/24 Signature Algorithm: sha256WithRSAEncryption eb:3d:af:37:03:12:08:38:fa:af:19:c7:b5:5d:a5:5a:10:a0: 27:61:37:f9:1d:c8:85:0f:6f:03:97:49:7f:a5:71:97:c0:a5: ea:bc:fc:23:60:a9:1a:66:c5:29:7d:7a:02:fa:86:37:c4:42: 4e:aa:9c:ba:a7:85:b8:17:0d:8e:2c:3c:c8:fe:d3:84:96:04: 01:6c:82:77:15:fe:bf:b2:4e:c4:b0:97:5e:7a:55:f6:b8:81: 82:d4:71:a1:c4:03:0a:25:76:48:62:44:88:73:b8:5f:27:e4: b1:1b:1a:eb:42:f3:2b:4a:34:e9:8f:d1:b5:bc:e0:33:70:af: c9:f1:16:2d:96:08:08:7c:35:11:23:9e:66:be:01:0f:84:dd: 90:f6:ea:33:af:f5:d6:fd:3b:27:1a:6c:c7:0c:29:e6:74:59: 22:dd:80:1b:e0:40:aa:28:f8:31:06:f9:de:86:7f:a4:52:8c: a7:6d:17:9a:3a:b9:01:8e:2a:1e:5f:eb:ce:62:26:e9:b3:39: 76:b5:93:4f:93:24:1b:ce:b1:44:c3:47:a3:fa:f1:2d:20:0b: ec:c7:89:d9:6b:36:32:f8:28:90:00:cf:c1:2f:82:64:5f:2d: 7e:06:6d:b0:9c:0d:74:c5:86:7b:31:1b:e5:7e:f6:9d:a5:b8: 0b:fb:92:49 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTdCOTQxMTAvBgNVBAUTKDMxMjZGNEVGMDVFM0FFNzVBMDkxNDRCNjY3RDM5MzQ3 RDREQUE4OTAwHhcNMjUwODAzMDQxMDM4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlZTEzZS01MjQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2P2QNkTja8Lv1wTwhU5TAxCOijvW5IIVB2pr3RUXPVoC2RCEAxr5IBppHHqk gE3V6VHzWw2JyYznZaR6yoJAaVCQTGLexmb7ZcvoqHLBUSRcolh8l6jJZKnC/nQa Lqv/yNU4Ye0fOAdnw19AgMU0uQA19+nwDiq4kfAU4mA9PsVG15xMEceLJbmnK1w4 KsRTVvMrn6LGaY7BUBOJctdfBtIS7UNPydTHSbJYRGcvp7CAPMeK1htj+p8mru1F cx+9J8ftNE5N1y6vxEtnANRijEJMOtf12ba14rN77a6Wrk1ncUsEI1ZQWJctGUbw U/5OOcCozv6n+UaxmqI49DVkhQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHESilUC 6gvS6PNKBG84GMUS7fxMMB8GA1UdIwQYMBaAFDEm9O8F4651oJFEtmfTk0fU2qiQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBN0I5NC9DQzc0MUJCNjM3 NzAxMUVFOERDOEJCMzRDNEY5QUUwMi9NU2IwN3dYanJuV2drVVMyWjlPVFI5VGFx SkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01TYjA3d1hqcm5XZ2tVUzJaOU9UUjlUYXFKQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTdCOTQvQ0M3NDFCQjYzNzcwMTFFRThEQzhCQjM0QzRGOUFFMDIvMjczMkU3Q0U5 NDBDMTFFRTlCMDM0MjU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0zOswDQYJKoZIhvcNAQELBQADggEBAOs9rzcDEgg4+q8Z x7VdpVoQoCdhN/kdyIUPbwOXSX+lcZfApeq8/CNgqRpmxSl9egL6hjfEQk6qnLqn hbgXDY4sPMj+04SWBAFsgncV/r+yTsSwl156Vfa4gYLUcaHEAwoldkhiRIhzuF8n 5LEbGutC8ytKNOmP0bW84DNwr8nxFi2WCAh8NREjnma+AQ+E3ZD26jOv9db9Oyca bMcMKeZ0WSLdgBvgQKoo+DEG+d6Gf6RSjKdtF5o6uQGOKh5f685iJumzOXa1k0+T JBvOsUTDR6P68S0gC+zHidlrNjL4KJAAz8EvgmRfLX4GbbCcDXTFhnsxG+V+9p2l uAv7kkk= -----END CERTIFICATE-----Generated at Sun Aug 10 19:01:49 2025 by rpki-client