$ rpki-client -vvf rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/5E5DF206BCA411EDBD39730EC4F9AE02.roa File: 5E5DF206BCA411EDBD39730EC4F9AE02.roa (raw, json) Hash identifier: 285R3oYGxnsmMAJjm1+eYdJApQO5EQQ/gOWcq+lr5pI= Subject key identifier: 7B:9A:E4:43:17:9F:76:13:77:32:D4:69:31:7A:CF:60:34:F4:2A:2E Certificate issuer: /CN=A91B19F8/serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Certificate serial: 01C3 Authority key identifier: 76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/5E5DF206BCA411EDBD39730EC4F9AE02.roa Signing time: Sun 27 Jul 2025 03:38:39 +0000 ROA not before: Sun 27 Jul 2025 03:38:39 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9738 IP address blocks: 203.9.64.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 18 Aug 2025 03:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 451 (0x1c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B19F8, serialNumber=764BB8478BFF8CC8BFF14E8FB6AADC28ED5E4864 Validity Not Before: Jul 27 03:38:39 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68859f3e-df29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:56:3e:65:d1:0c:36:98:2b:e8:21:12:17:33: 7d:e9:f8:3f:00:75:c8:d7:ea:92:30:9a:4f:84:5e: 0d:fe:77:ee:86:a7:43:d4:46:1b:5a:4d:6c:67:4d: c6:8a:68:4d:83:9d:eb:07:80:fc:1e:9e:d1:32:f3: 98:61:54:da:f3:27:a7:5c:04:5e:bc:29:0d:b7:ac: de:4c:d7:06:ed:ca:a1:89:54:85:30:2a:24:a9:f3: 89:af:6f:3b:23:f8:d9:76:03:7e:d2:b9:1f:87:33: 6e:5c:77:1e:fa:07:de:5a:67:5b:83:c8:79:08:8d: 91:a9:4f:34:36:4c:cb:dc:89:c2:fd:e2:64:28:4f: a2:05:3a:6d:44:a2:6c:f4:93:22:3d:d8:1a:c2:a5: ba:19:c7:28:1b:21:14:75:1e:da:e2:dd:57:7b:b5: f6:dd:71:70:fa:89:ad:10:44:be:95:9a:a8:e4:8c: 9d:ad:3c:ac:cb:cf:ef:ff:75:f3:26:4b:37:df:07: 22:9f:04:5f:0a:3e:d8:65:ad:6e:19:33:f5:f4:4d: 94:28:b9:8d:4b:28:81:c5:67:14:b1:aa:da:47:06: 9b:d6:03:67:1c:e2:f8:c3:6a:68:50:35:aa:f1:31: 7f:0b:07:40:b9:14:43:cb:b4:86:1f:d3:e7:17:31: e0:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:9A:E4:43:17:9F:76:13:77:32:D4:69:31:7A:CF:60:34:F4:2A:2E X509v3 Authority Key Identifier: keyid:76:4B:B8:47:8B:FF:8C:C8:BF:F1:4E:8F:B6:AA:DC:28:ED:5E:48:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/dku4R4v_jMi_8U6PtqrcKO1eSGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dku4R4v_jMi_8U6PtqrcKO1eSGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B19F8/CAE6B4CEBCA111EDA370780DC4F9AE02/5E5DF206BCA411EDBD39730EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.9.64.0/24 Signature Algorithm: sha256WithRSAEncryption 39:47:50:2e:13:e7:14:52:51:d5:1d:2a:49:55:98:a9:8f:77: 27:89:74:d5:94:45:bf:6b:e4:50:ef:a5:59:bb:fa:bf:2d:16: a3:57:dd:94:3c:06:ad:f1:56:9c:df:a2:0d:94:ea:a7:a6:66: 2f:4c:c1:9b:7b:d9:11:56:e7:ad:3a:68:79:6b:df:93:46:28: b5:37:28:78:47:6e:4d:f2:3e:3e:13:1b:52:de:3f:3c:4e:68: 4d:a2:2e:9a:cc:f4:77:53:29:5e:96:94:4f:ba:55:e6:1c:de: dd:b6:c8:39:24:e3:80:86:8b:74:e3:6f:cb:6f:71:1e:61:15: bc:d3:05:d5:2b:f3:19:4a:e9:91:11:61:db:f5:75:b1:69:c7: ce:37:2b:b8:fb:27:2b:17:e1:26:25:a4:d9:75:aa:03:b1:5a: cf:a4:14:4b:96:e0:8b:f1:99:3f:28:e8:dd:4d:b3:89:8a:77: 55:09:6e:d3:69:9d:ab:49:cc:0a:c5:55:a1:dd:c4:4e:52:fb: 89:6d:3a:fa:4a:ee:89:b2:9d:2b:98:62:de:52:e3:e8:3b:ae: c6:e7:dc:3f:62:27:3a:d3:f0:79:44:0f:59:f4:f4:dc:19:d7: 7c:f8:ae:c8:de:9c:30:42:a0:08:41:f7:af:e7:e1:33:82:49: 08:0e:59:92 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAcMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjE5RjgxMTAvBgNVBAUTKDc2NEJCODQ3OEJGRjhDQzhCRkYxNEU4RkI2QUFEQzI4 RUQ1RTQ4NjQwHhcNMjUwNzI3MDMzODM5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg1OWYzZS1kZjI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3FY+ZdEMNpgr6CESFzN96fg/AHXI1+qSMJpPhF4N/nfuhqdD1EYbWk1sZ03G imhNg53rB4D8Hp7RMvOYYVTa8yenXARevCkNt6zeTNcG7cqhiVSFMCokqfOJr287 I/jZdgN+0rkfhzNuXHce+gfeWmdbg8h5CI2RqU80NkzL3InC/eJkKE+iBTptRKJs 9JMiPdgawqW6GccoGyEUdR7a4t1Xe7X23XFw+omtEES+lZqo5IydrTysy8/v/3Xz Jks33wcinwRfCj7YZa1uGTP19E2UKLmNSyiBxWcUsaraRwab1gNnHOL4w2poUDWq 8TF/CwdAuRRDy7SGH9PnFzHgOwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHua5EMX n3YTdzLUaTF6z2A09CouMB8GA1UdIwQYMBaAFHZLuEeL/4zIv/FOj7aq3CjtXkhk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTlGOC9DQUU2QjRDRUJD QTExMUVEQTM3MDc4MERDNEY5QUUwMi9ka3U0UjR2X2pNaV84VTZQdHFyY0tPMWVT R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RrdTRSNHZfak1pXzhVNlB0cXJjS08xZVNHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjE5RjgvQ0FFNkI0Q0VCQ0ExMTFFREEzNzA3ODBEQzRGOUFFMDIvNUU1REYyMDZC Q0E0MTFFREJEMzk3MzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLCUAwDQYJKoZIhvcNAQELBQADggEBADlHUC4T5xRSUdUd KklVmKmPdyeJdNWURb9r5FDvpVm7+r8tFqNX3ZQ8Bq3xVpzfog2U6qemZi9MwZt7 2RFW5606aHlr35NGKLU3KHhHbk3yPj4TG1LePzxOaE2iLprM9HdTKV6WlE+6VeYc 3t22yDkk44CGi3Tjb8tvcR5hFbzTBdUr8xlK6ZERYdv1dbFpx843K7j7JysX4SYl pNl1qgOxWs+kFEuW4IvxmT8o6N1Ns4mKd1UJbtNpnatJzArFVaHdxE5S+4ltOvpK 7omynSuYYt5S4+g7rsbn3D9iJzrT8HlED1n09NwZ13z4rsjenDBCoAhB96/n4TOC SQgOWZI= -----END CERTIFICATE-----Generated at Wed Aug 13 04:23:11 2025 by rpki-client