$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9C62/0AEAACD66B6611F0B7F8EB40C4F9AE02/08EAF5106C2111F0B46AAC57C4F9AE02.roa File: 08EAF5106C2111F0B46AAC57C4F9AE02.roa (raw, json) Hash identifier: WDMb5z1Oep3KObXAq9yk+eELcjcBrGqtQZEb/aGlqi4= Subject key identifier: 1E:60:B9:85:6E:A5:EA:B7:67:61:27:28:69:C9:F7:2E:CC:6E:55:EC Certificate issuer: /CN=A91A9C62/serialNumber=21C8F2B6E01D0A82D13C35188C3C93E6F514BA94 Certificate serial: 03 Authority key identifier: 21:C8:F2:B6:E0:1D:0A:82:D1:3C:35:18:8C:3C:93:E6:F5:14:BA:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcjytuAdCoLRPDUYjDyT5vUUupQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9C62/0AEAACD66B6611F0B7F8EB40C4F9AE02/08EAF5106C2111F0B46AAC57C4F9AE02.roa Signing time: Tue 29 Jul 2025 02:09:19 +0000 ROA not before: Tue 29 Jul 2025 02:09:19 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 8075 IP address blocks: 202.27.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9C62/0AEAACD66B6611F0B7F8EB40C4F9AE02/IcjytuAdCoLRPDUYjDyT5vUUupQ.crl rsync://rpki.apnic.net/member_repository/A91A9C62/0AEAACD66B6611F0B7F8EB40C4F9AE02/IcjytuAdCoLRPDUYjDyT5vUUupQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcjytuAdCoLRPDUYjDyT5vUUupQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9C62, serialNumber=21C8F2B6E01D0A82D13C35188C3C93E6F514BA94 Validity Not Before: Jul 29 02:09:19 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68882d4f-5d2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:dc:47:0a:33:d2:96:ff:c0:7d:81:5f:85:9a: 4f:15:93:46:ce:ff:d0:3b:33:75:73:03:c2:84:d0: fd:86:9e:42:e6:b9:36:d6:7e:75:41:48:28:f3:c8: 31:90:9b:a2:10:4a:d3:f2:a0:51:be:60:49:87:e0: 40:fa:09:13:bf:c0:3e:8e:f1:40:9d:56:e8:1c:b6: a4:3d:67:fb:f0:86:3b:7a:bc:f6:f3:09:cc:c5:3f: d8:18:d8:a4:94:a9:45:0f:25:c7:b3:52:c8:7e:f2: 8d:40:e8:23:ed:9c:ae:82:e0:63:72:27:f0:06:9d: 5f:81:69:ee:2f:99:73:d3:2b:d7:1b:07:99:e9:af: a0:ec:7b:1d:58:8d:ba:ef:a0:80:b8:38:b8:ac:e5: 6d:d5:de:11:7b:e5:47:da:72:26:6f:34:fc:74:c3: 80:24:eb:f3:0b:2c:0e:1b:23:ba:fd:42:d9:f5:fe: 15:ee:31:da:a9:66:d3:32:6e:bf:85:47:fb:8a:cb: 22:0d:d6:56:df:34:05:70:3b:f9:d8:8f:23:06:a6: 59:1c:a5:5f:3f:f1:e6:12:dc:4d:8b:c5:4f:33:c5: fc:b8:4a:e9:9c:3e:d6:4f:db:a1:64:ef:3e:a6:5c: 9a:ea:f6:24:23:d3:aa:17:d7:a9:16:5a:2c:28:1b: a2:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:60:B9:85:6E:A5:EA:B7:67:61:27:28:69:C9:F7:2E:CC:6E:55:EC X509v3 Authority Key Identifier: keyid:21:C8:F2:B6:E0:1D:0A:82:D1:3C:35:18:8C:3C:93:E6:F5:14:BA:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9C62/0AEAACD66B6611F0B7F8EB40C4F9AE02/IcjytuAdCoLRPDUYjDyT5vUUupQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IcjytuAdCoLRPDUYjDyT5vUUupQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9C62/0AEAACD66B6611F0B7F8EB40C4F9AE02/08EAF5106C2111F0B46AAC57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.27.49.0/24 Signature Algorithm: sha256WithRSAEncryption 53:0f:d2:8a:0e:1a:f1:b6:c9:2e:01:94:2e:62:ff:c6:8e:33: b0:ea:96:be:4f:9f:63:3e:0b:00:e0:85:22:e4:7f:20:e9:e9: 77:a6:36:e3:d5:40:de:22:73:6c:d8:36:ef:dc:62:ad:7e:0c: 34:79:b7:7e:57:d3:c8:2f:67:1a:07:6d:27:d0:e5:4c:25:2d: 8e:6c:b1:97:86:13:53:a5:30:cf:d6:b4:20:7b:b5:a7:35:7e: e6:d6:a3:f1:ac:50:b5:f4:ec:fc:50:fd:1b:33:3f:2e:77:7b: 7f:aa:3c:e8:6f:03:3e:28:09:a1:b9:06:57:36:3e:3f:75:6a: be:bf:cc:9b:96:4b:ec:1d:bd:99:6f:ed:26:e1:0c:71:0c:fb: 1b:8b:0d:02:3d:68:8d:d0:48:3e:86:a2:2d:21:1a:78:63:e2: 67:33:3f:a4:47:b5:8a:4f:cf:3e:8a:37:a8:86:62:0c:a6:9d: 0f:29:17:42:15:50:2b:cb:6d:0a:8f:d1:7d:19:72:50:27:10: 49:53:12:05:85:d2:95:1a:b5:40:4b:2c:a3:64:45:e7:a3:1a: ef:71:a6:3c:c7:0b:5e:b7:93:b2:f1:b4:d6:53:b5:5c:18:58: da:cb:50:c5:17:01:30:1b:b2:a2:4f:4d:ad:a1:c5:3d:0c:6a: 84:5c:8d:88 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OUM2MjExMC8GA1UEBRMoMjFDOEYyQjZFMDFEMEE4MkQxM0MzNTE4OEMzQzkzRTZG NTE0QkE5NDAeFw0yNTA3MjkwMjA5MTlaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ODgyZDRmLTVkMmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDT3EcKM9KW/8B9gV+Fmk8Vk0bO/9A7M3VzA8KE0P2GnkLmuTbWfnVBSCjzyDGQ m6IQStPyoFG+YEmH4ED6CRO/wD6O8UCdVugctqQ9Z/vwhjt6vPbzCczFP9gY2KSU qUUPJcezUsh+8o1A6CPtnK6C4GNyJ/AGnV+Bae4vmXPTK9cbB5npr6Dsex1Yjbrv oIC4OLis5W3V3hF75UfaciZvNPx0w4Ak6/MLLA4bI7r9Qtn1/hXuMdqpZtMybr+F R/uKyyIN1lbfNAVwO/nYjyMGplkcpV8/8eYS3E2LxU8zxfy4SumcPtZP26Fk7z6m XJrq9iQj06oX16kWWiwoG6IJAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHmC5hW6l 6rdnYScoacn3LsxuVewwHwYDVR0jBBgwFoAUIcjytuAdCoLRPDUYjDyT5vUUupQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5QzYyLzBBRUFBQ0Q2NkI2 NjExRjBCN0Y4RUI0MEM0RjlBRTAyL0ljanl0dUFkQ29MUlBEVVlqRHlUNXZVVXVw US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSWNqeXR1QWRDb0xSUERVWWpEeVQ1dlVVdXBRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OUM2Mi8wQUVBQUNENjZCNjYxMUYwQjdGOEVCNDBDNEY5QUUwMi8wOEVBRjUxMDZD MjExMUYwQjQ2QUFDNTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMobMTANBgkqhkiG9w0BAQsFAAOCAQEAUw/Sig4a8bbJLgGU LmL/xo4zsOqWvk+fYz4LAOCFIuR/IOnpd6Y249VA3iJzbNg279xirX4MNHm3flfT yC9nGgdtJ9DlTCUtjmyxl4YTU6Uwz9a0IHu1pzV+5taj8axQtfTs/FD9GzM/Lnd7 f6o86G8DPigJobkGVzY+P3Vqvr/Mm5ZL7B29mW/tJuEMcQz7G4sNAj1ojdBIPoai LSEaeGPiZzM/pEe1ik/PPoo3qIZiDKadDykXQhVQK8ttCo/RfRlyUCcQSVMSBYXS lRq1QEsso2RF56Ma73GmPMcLXreTsvG01lO1XBhY2stQxRcBMBuyok9NraHFPQxq hFyNiA== -----END CERTIFICATE-----Generated at Mon Aug 11 04:17:59 2025 by rpki-client