$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/E83E047071F111F0BBD1B63FC4F9AE02.roa File: E83E047071F111F0BBD1B63FC4F9AE02.roa (raw, json) Hash identifier: vqgqViMpJQbvpRF0eRLHvKsvOmM8OQ5c7Ho2iOiRHUM= Subject key identifier: D3:A7:1D:F4:F4:88:63:44:B0:39:0D:B4:8E:54:3D:4C:BE:8C:B7:2B Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 3642 Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/E83E047071F111F0BBD1B63FC4F9AE02.roa Signing time: Tue 05 Aug 2025 11:47:05 +0000 ROA not before: Tue 05 Aug 2025 11:47:05 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 55154 IP address blocks: 116.90.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13890 (0x3642) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E, serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Validity Not Before: Aug 5 11:47:05 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6891ef38-c513 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d1:cb:70:a0:a2:2e:12:1b:57:2a:49:35:69: e6:97:33:41:ec:ab:ed:13:52:24:31:78:46:a7:04: 37:9d:47:85:5b:2c:03:9d:3d:09:9b:ba:6d:98:3d: 12:dc:0b:dc:9b:e9:39:c5:73:92:1e:ec:10:f6:62: 0d:21:8f:a6:c7:8c:7d:f0:dc:40:0c:55:1a:b2:73: 7d:ee:be:57:fb:9b:a3:c6:38:49:6a:de:09:a5:e2: fe:76:c8:33:6f:37:97:43:b4:f1:a2:e5:2b:d4:18: b7:61:12:a9:01:0d:d0:6c:9f:7e:66:e4:fd:73:02: 06:a8:e0:a5:4b:db:8e:21:c4:c9:2a:d3:6f:28:bd: bc:6a:b7:a9:59:17:cd:62:3c:ab:1a:e9:91:0b:a6: f5:2d:c7:fc:15:6c:be:fb:ab:53:97:83:0c:18:f1: 2c:c0:17:52:4b:ae:71:08:d5:36:ec:75:79:a7:6b: 5c:ee:b5:09:2d:95:8f:95:d3:b7:c4:e2:ed:10:1b: 54:fa:43:b6:f5:bb:75:a4:3e:a8:40:f8:e1:a5:56: d8:d9:8b:d6:17:07:7a:cf:84:64:b5:57:0a:14:05: 30:8c:8d:31:1d:72:98:91:52:a0:ca:30:4a:f6:dc: 86:be:df:ea:be:6e:00:89:6a:0f:2c:2c:9d:f7:e9: 76:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:A7:1D:F4:F4:88:63:44:B0:39:0D:B4:8E:54:3D:4C:BE:8C:B7:2B X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/E83E047071F111F0BBD1B63FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.90.115.0/24 Signature Algorithm: sha256WithRSAEncryption 94:a5:14:65:92:c8:e8:9e:4f:36:f6:c9:bb:40:c2:2d:88:83: fa:01:88:ca:84:da:06:fc:3c:e1:31:24:f9:e9:93:f3:34:e2: 0d:d6:f4:84:05:c6:b2:49:16:7d:15:b2:b2:b3:9e:4a:c2:2e: e1:61:d2:44:dd:9e:9d:2b:e2:68:7b:0a:13:f4:b5:96:f7:62: c7:34:d3:9f:67:40:a4:d2:bf:23:c7:86:1c:90:39:9a:36:78: ef:b4:9a:77:97:b4:d2:14:9c:b3:a2:e4:66:d3:27:eb:4e:6b: 90:5b:4a:25:95:3f:8d:67:8d:89:db:e9:80:cb:b4:47:48:d2: 34:85:66:7f:fc:8c:dc:e3:dd:bf:2b:c0:13:41:4b:be:60:37: 4f:8b:c5:cf:20:03:14:b5:bf:fc:54:0f:1a:c4:36:c1:bb:e5: 49:2d:1b:b1:1f:40:c2:90:c4:8c:4e:b2:d8:31:6a:40:78:f4: e0:51:8a:6c:b6:9f:28:7b:59:71:1d:5b:9b:8e:1c:29:5d:78: f2:3f:3c:3d:02:8c:e9:89:31:ca:b6:97:2f:07:3a:a2:aa:25: 05:d6:c9:d3:03:14:dd:5c:80:a3:f2:e9:92:66:9a:f7:cc:d9: 8c:2a:11:11:bd:38:46:df:51:a2:4a:c2:eb:32:10:39:3c:30: d1:a8:f8:02 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjUwODA1MTE0NzA1WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkxZWYzOC1jNTEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdHLcKCiLhIbVypJNWnmlzNB7KvtE1IkMXhGpwQ3nUeFWywDnT0Jm7ptmD0S 3Avcm+k5xXOSHuwQ9mINIY+mx4x98NxADFUasnN97r5X+5ujxjhJat4JpeL+dsgz bzeXQ7TxouUr1Bi3YRKpAQ3QbJ9+ZuT9cwIGqOClS9uOIcTJKtNvKL28arepWRfN YjyrGumRC6b1Lcf8FWy++6tTl4MMGPEswBdSS65xCNU27HV5p2tc7rUJLZWPldO3 xOLtEBtU+kO29bt1pD6oQPjhpVbY2YvWFwd6z4RktVcKFAUwjI0xHXKYkVKgyjBK 9tyGvt/qvm4AiWoPLCyd9+l25QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNOnHfT0 iGNEsDkNtI5UPUy+jLcrMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVEN0UvRUNBNjgyMzQxRDg3MTFFMjk4MzIyREUwMDhCMDJDRDIvRTgzRTA0NzA3 MUYxMTFGMEJCRDFCNjNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0WnMwDQYJKoZIhvcNAQELBQADggEBAJSlFGWSyOieTzb2 ybtAwi2Ig/oBiMqE2gb8POExJPnpk/M04g3W9IQFxrJJFn0VsrKznkrCLuFh0kTd np0r4mh7ChP0tZb3Ysc0059nQKTSvyPHhhyQOZo2eO+0mneXtNIUnLOi5GbTJ+tO a5BbSiWVP41njYnb6YDLtEdI0jSFZn/8jNzj3b8rwBNBS75gN0+Lxc8gAxS1v/xU DxrENsG75UktG7EfQMKQxIxOstgxakB49OBRimy2nyh7WXEdW5uOHCldePI/PD0C jOmJMcq2ly8HOqKqJQXWydMDFN1cgKPy6ZJmmvfM2YwqERG9OEbfUaJKwusyEDk8 MNGo+AI= -----END CERTIFICATE-----Generated at Sat Aug 9 10:34:16 2025 by rpki-client