$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/D4A8FF0273ED11F08E63C02DC4F9AE02.roa File: D4A8FF0273ED11F08E63C02DC4F9AE02.roa (raw, json) Hash identifier: FLmPrtdNYA1lyMt3p7VIue3hrg8ncz0b4EpnqmxQ4Fc= Subject key identifier: B3:E5:B2:A6:D6:F4:B1:9C:73:DC:4B:BC:A5:AE:C6:5B:BD:3C:15:A9 Certificate issuer: /CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Certificate serial: 34CE Authority key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/D4A8FF0273ED11F08E63C02DC4F9AE02.roa Signing time: Fri 08 Aug 2025 00:22:56 +0000 ROA not before: Fri 08 Aug 2025 00:22:56 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 131248 IP address blocks: 203.20.74.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 14:30:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13518 (0x34ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9EE2, serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Validity Not Before: Aug 8 00:22:56 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68954360-fb74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ac:dc:c1:5c:d3:b9:90:9c:32:52:7e:7e:14: 88:45:c3:17:07:d3:95:0b:93:ab:5c:3e:e1:14:7d: e8:51:71:fd:6d:da:ad:a1:b9:44:01:38:0c:1b:85: 51:96:05:92:18:b7:36:27:a2:32:10:2c:c3:98:3f: d7:b6:74:14:fb:46:e8:92:e4:4b:5c:75:1b:7d:62: 27:15:47:af:79:4a:88:17:f7:a9:2a:9a:e1:b3:a6: 6e:74:36:3c:d8:89:dc:cf:ce:3d:47:a8:bf:5d:16: ba:b7:e8:f0:9d:d8:68:b5:3d:88:e0:cd:46:af:d5: ad:b2:cc:3a:51:dc:30:c3:88:f0:6c:3a:07:0c:d0: b0:69:6b:92:db:3f:ae:a8:08:e3:e5:01:da:d2:c3: d6:57:d0:0a:8c:a6:a9:1f:77:8b:59:d0:19:55:73: 05:26:9e:90:82:5f:ca:b6:48:66:f9:48:e9:64:63: 5c:b0:01:51:3b:01:3c:e5:74:dd:d2:a8:2d:b8:eb: c1:64:68:ee:fa:d6:ab:67:36:b5:47:dd:35:23:4d: dc:90:f2:c7:0f:76:76:f4:e7:4c:58:a4:34:04:98: a2:c1:69:30:cb:70:8f:06:4a:78:f4:09:c2:10:b0: 6d:f2:a8:ad:42:12:89:cb:04:98:cd:9b:14:ad:01: 86:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:E5:B2:A6:D6:F4:B1:9C:73:DC:4B:BC:A5:AE:C6:5B:BD:3C:15:A9 X509v3 Authority Key Identifier: keyid:BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/D4A8FF0273ED11F08E63C02DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.74.0/23 Signature Algorithm: sha256WithRSAEncryption b1:35:2c:b0:0a:99:6f:31:c4:80:4a:f8:c5:87:2b:0c:52:f3: f6:7d:07:13:e4:9f:07:b5:1a:1b:42:bd:99:d9:e4:85:18:c5: 19:13:7c:a3:22:64:5b:bf:e3:d1:de:05:43:22:c0:7d:1b:40: 01:3e:d9:f4:12:78:83:9e:39:ab:42:0d:f3:79:a5:18:da:90: e1:b6:61:64:dc:25:9e:be:c4:03:5a:0b:e3:84:af:6c:a6:8b: d2:d2:83:33:42:f4:a3:2b:89:a0:13:18:e2:0d:0a:2e:34:d5: 6d:52:73:bb:a4:05:15:13:40:43:9c:5b:81:01:a2:78:ad:17: c3:7c:38:9e:99:32:d7:80:78:82:80:95:fe:4b:48:b0:9c:49: 54:7f:75:3d:a4:cf:d9:6e:da:e9:4d:5c:cc:c7:f7:4a:32:a1: c6:7a:42:20:e3:69:fe:8f:eb:e2:e9:cc:a4:7d:8a:e2:9a:9b: 3d:c0:00:7c:80:64:90:db:34:78:2b:ba:eb:9b:42:68:25:f3: f8:52:d6:77:4c:ad:55:de:ae:7a:4d:59:eb:d0:f6:93:85:4b: 38:56:10:65:35:e2:69:b1:ce:7d:00:44:3e:15:e8:b4:f2:90: 68:38:aa:61:93:bc:3d:df:41:5d:95:fd:6f:83:ab:ce:01:8c: d0:b3:80:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFRTIxMTAvBgNVBAUTKEJBOUQyQkFEQTgyNjg3ODRGMDBBRTg1ODcwMkVGOEUy OUU3MkI0QkMwHhcNMjUwODA4MDAyMjU2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk1NDM2MC1mYjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqzcwVzTuZCcMlJ+fhSIRcMXB9OVC5OrXD7hFH3oUXH9bdqtoblEATgMG4VR lgWSGLc2J6IyECzDmD/XtnQU+0bokuRLXHUbfWInFUeveUqIF/epKprhs6ZudDY8 2Incz849R6i/XRa6t+jwndhotT2I4M1Gr9Wtssw6Udwww4jwbDoHDNCwaWuS2z+u qAjj5QHa0sPWV9AKjKapH3eLWdAZVXMFJp6Qgl/Ktkhm+UjpZGNcsAFROwE85XTd 0qgtuOvBZGju+tarZza1R901I03ckPLHD3Z29OdMWKQ0BJiiwWkwy3CPBkp49AnC ELBt8qitQhKJywSYzZsUrQGG6wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLPlsqbW 9LGcc9xLvKWuxlu9PBWpMB8GA1UdIwQYMBaAFLqdK62oJoeE8AroWHAu+OKecrS8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUVFMi82NDMyNEREODFE ODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0VHdDdWhZY0M3NDRwNXl0 THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMHJyYWdtaDRUd0N1aFljQzc0NHA1eXRMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTlFRTIvNjQzMjRERDgxRDg4MTFFMkJERUYxNEUxMDhCMDJDRDIvRDRBOEZGMDI3 M0VEMTFGMDhFNjNDMDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLFEowDQYJKoZIhvcNAQELBQADggEBALE1LLAKmW8xxIBK +MWHKwxS8/Z9BxPknwe1GhtCvZnZ5IUYxRkTfKMiZFu/49HeBUMiwH0bQAE+2fQS eIOeOatCDfN5pRjakOG2YWTcJZ6+xANaC+OEr2ymi9LSgzNC9KMriaATGOINCi40 1W1Sc7ukBRUTQEOcW4EBonitF8N8OJ6ZMteAeIKAlf5LSLCcSVR/dT2kz9lu2ulN XMzH90oyocZ6QiDjaf6P6+LpzKR9iuKamz3AAHyAZJDbNHgruuubQmgl8/hS1ndM rVXernpNWevQ9pOFSzhWEGU14mmxzn0ARD4V6LTykGg4qmGTvD3fQV2V/W+Dq84B jNCzgKA= -----END CERTIFICATE-----Generated at Wed Aug 13 08:46:23 2025 by rpki-client