$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/7BFDDDB8D42E11EB8E13801EC4F9AE02.roa File: 7BFDDDB8D42E11EB8E13801EC4F9AE02.roa (raw, json) Hash identifier: rMIZrcp78OdFGxAyj3EoE0LyB7/Lf2gRKvh+qENZ2aU= Subject key identifier: AC:A7:B4:4F:25:80:42:C3:F0:49:43:54:AD:8A:05:1F:60:D4:22:21 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2788 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/7BFDDDB8D42E11EB8E13801EC4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:35 +0000 ROA not before: Tue 08 Apr 2025 15:53:35 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 141238 IP address blocks: 203.213.192.0/24 maxlen: 24 203.213.193.0/24 maxlen: 24 203.213.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10120 (0x2788) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:35 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f5467f-5755 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8e:bf:1a:df:33:25:85:30:3f:e8:f6:90:3a: 39:04:d6:fa:f7:fe:a7:b5:08:ac:30:5a:f8:f2:36: f3:c0:03:b1:17:1e:6e:ef:f2:89:a3:a4:d9:c3:9d: 60:d6:12:c7:3c:c4:7e:4d:e4:06:20:98:15:5a:93: b4:a8:81:8a:b5:48:a4:dc:8d:ba:36:b3:04:72:ed: 33:87:5a:7e:5a:70:e6:7d:5f:4b:65:ce:c3:83:65: aa:7d:3e:aa:c4:fc:f1:19:e5:2d:26:76:37:ef:7c: 2c:c8:1a:8e:e4:f8:07:3f:d4:f5:21:c0:e7:da:82: f7:00:d9:b3:0c:67:b0:fc:7f:af:c9:0e:74:b1:d1: 0c:69:28:e1:99:24:60:27:1e:f4:71:86:22:4a:1d: ff:49:11:2b:9f:f2:d1:3d:30:a7:b9:c1:ec:d5:05: fa:4a:ec:a1:25:b1:1d:d0:c5:8a:fd:db:6b:64:96: 14:05:ba:2a:1a:fa:78:b0:2f:22:25:7a:bf:3f:54: 2e:5b:5b:fa:85:40:05:d8:63:14:08:03:56:da:32: a4:21:26:bc:33:c2:32:50:21:63:86:71:97:95:cb: 9d:e0:af:e0:c1:d5:bf:a1:1a:a1:3e:02:a4:89:0a: a5:77:3e:56:51:b2:5f:2a:89:72:1e:0e:12:0f:2c: d4:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:A7:B4:4F:25:80:42:C3:F0:49:43:54:AD:8A:05:1F:60:D4:22:21 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/7BFDDDB8D42E11EB8E13801EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.213.192.0-203.213.194.255 Signature Algorithm: sha256WithRSAEncryption cb:40:a0:b7:53:68:2e:3e:0a:26:a3:6a:f3:97:14:82:93:98: 65:62:ba:05:95:41:c7:ae:4d:5a:dc:02:c1:f5:e4:0a:6a:e1: 84:96:58:ee:21:87:ca:12:1d:ef:cc:25:5d:70:50:d5:22:9f: 13:03:2e:c6:f8:e9:18:e5:46:5e:c7:a9:fc:b3:a5:2f:b2:c3: a5:27:5a:94:b4:79:34:71:d5:b8:8a:3e:10:23:25:44:67:32: 66:66:91:b9:a9:9a:74:66:33:c0:a1:c9:ea:d9:3e:ba:49:df: c5:fa:81:73:2d:e5:f4:2c:68:6c:27:dc:ed:d5:00:87:92:a1: 3e:e7:7d:dc:0d:ef:af:52:78:52:97:fb:e4:e0:04:60:67:c3: c5:04:74:4c:16:ea:1c:7a:21:62:3c:c4:81:29:b3:a7:54:4f: f7:91:54:b5:af:75:e6:49:27:6b:15:a4:40:c4:9f:11:6a:21: f2:e5:f9:20:e0:f4:81:cb:a0:99:71:1c:f2:13:34:d8:27:8e: 08:52:74:c8:a8:4b:25:a7:7d:6e:8d:cd:72:d5:46:c7:b8:d0: 15:a9:a3:34:d9:c9:89:50:96:49:47:b9:b0:45:05:d1:c0:42: 47:3a:99:3d:01:13:e4:1f:4a:52:cc:b3:d8:03:d0:c0:05:cd: 9f:76:ea:99 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICJ4gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzM1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY3Zi01NzU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvI6/Gt8zJYUwP+j2kDo5BNb69/6ntQisMFr48jbzwAOxFx5u7/KJo6TZw51g 1hLHPMR+TeQGIJgVWpO0qIGKtUik3I26NrMEcu0zh1p+WnDmfV9LZc7Dg2WqfT6q xPzxGeUtJnY373wsyBqO5PgHP9T1IcDn2oL3ANmzDGew/H+vyQ50sdEMaSjhmSRg Jx70cYYiSh3/SRErn/LRPTCnucHs1QX6SuyhJbEd0MWK/dtrZJYUBboqGvp4sC8i JXq/P1QuW1v6hUAF2GMUCANW2jKkISa8M8IyUCFjhnGXlcud4K/gwdW/oRqhPgKk iQqldz5WUbJfKolyHg4SDyzUwwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFKyntE8l gELD8ElDVK2KBR9g1CIhMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvN0JGREREQjhE NDJFMTFFQjhFMTM4MDFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEBsvVwAMEAMvVwjANBgkqhkiG9w0BAQsFAAOCAQEAy0Cg t1NoLj4KJqNq85cUgpOYZWK6BZVBx65NWtwCwfXkCmrhhJZY7iGHyhId78wlXXBQ 1SKfEwMuxvjpGOVGXsep/LOlL7LDpSdalLR5NHHVuIo+ECMlRGcyZmaRuamadGYz wKHJ6tk+uknfxfqBcy3l9CxobCfc7dUAh5KhPud93A3vr1J4Upf75OAEYGfDxQR0 TBbqHHohYjzEgSmzp1RP95FUta915kknaxWkQMSfEWoh8uX5IOD0gcugmXEc8hM0 2CeOCFJ0yKhLJad9bo3NctVGx7jQFamjNNnJiVCWSUe5sEUF0cBCRzqZPQET5B9K Usyz2APQwAXNn3bqmQ== -----END CERTIFICATE-----Generated at Wed Nov 5 15:04:34 2025 by rpki-client