$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/CAC3390AD30E11EB98AEFF45C4F9AE02.roa File: CAC3390AD30E11EB98AEFF45C4F9AE02.roa (raw, json) Hash identifier: arhZFiziS+sBDNkkd9ApjM4qRhUdC/BiQCxwPWquNA0= Subject key identifier: 85:21:2C:78:FA:E1:0D:0A:81:EB:1D:CF:3C:61:B3:36:0E:BE:51:B6 Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 278F Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/CAC3390AD30E11EB98AEFF45C4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:42 +0000 ROA not before: Tue 08 Apr 2025 15:53:42 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 16625 IP address blocks: 202.138.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10127 (0x278f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:42 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f54685-f9d7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:51:60:a7:f4:1b:03:ce:ac:19:0f:73:45:7c: f9:43:dd:da:b7:85:54:87:a1:12:e8:0f:51:de:8b: 76:75:59:46:e4:b9:5b:5f:cb:57:79:f2:e5:ac:f0: ec:33:67:6a:e8:17:6a:75:f0:1e:87:6a:af:b6:b7: 3b:08:50:8f:f9:80:a6:3d:eb:3e:72:c9:00:1d:8e: a9:6d:7e:5e:8b:fe:b5:b9:f7:ce:cc:0f:ea:c2:fb: 0d:52:c0:c4:00:8b:d2:38:78:8b:f5:57:dc:d0:6a: 5b:8b:86:a0:3b:2e:4a:66:a8:1f:b3:b1:1f:bd:ae: fd:26:de:b6:05:de:1c:bd:9f:9b:69:98:45:61:8e: 9f:84:f7:f1:4a:96:27:b9:51:a8:da:b4:f9:f2:dd: d6:03:de:5a:c7:8f:e7:0f:f3:4a:b8:ea:9f:8e:a8: 8c:b5:c7:f4:0b:ae:a2:df:6b:91:01:af:29:37:47: 03:ed:2f:13:0c:62:89:e7:a1:b4:b8:e1:bf:d9:f6: da:aa:1a:d6:44:29:eb:ef:30:a7:cc:cd:8a:01:72: cb:7c:03:ef:b0:45:e2:62:55:dc:55:b8:80:4e:2c: b5:50:c2:f3:ba:2a:48:70:7d:ac:e4:64:a7:a0:35: 7c:7b:bc:8e:98:b8:9f:c9:ed:e1:4e:53:bc:2c:a7: 29:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:21:2C:78:FA:E1:0D:0A:81:EB:1D:CF:3C:61:B3:36:0E:BE:51:B6 X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/CAC3390AD30E11EB98AEFF45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.138.164.0/22 Signature Algorithm: sha256WithRSAEncryption 07:de:a8:37:0a:ac:54:93:3b:b4:b0:b6:cb:8d:01:16:b0:1c: 22:a8:b7:10:30:37:86:bd:3d:86:cd:2c:0c:b4:ed:c1:31:b2: ca:58:ec:01:c9:f8:cc:d9:ed:6e:87:b7:61:3c:56:6c:2f:a2: df:12:bd:95:25:48:72:ee:2c:1d:9b:2f:5b:05:8a:3f:57:95: df:bb:44:46:db:db:e3:04:ad:b0:4e:80:30:59:b3:83:b7:9e: 8a:65:4e:e4:8e:60:22:d3:ca:31:78:40:cc:a1:cc:be:36:91: 68:86:9c:c9:f3:d1:ae:6e:c0:57:e4:82:eb:60:b8:47:e9:dc: e0:b7:fb:a2:73:b3:d0:b2:8b:20:c1:5a:53:4f:eb:48:ef:9b: ee:89:f5:b9:17:da:b4:76:5a:e6:68:e4:4f:b1:18:97:9d:20: f2:a1:9f:12:76:ac:ea:6f:36:6c:73:cf:a3:02:71:1d:b3:b3: b4:1e:8f:de:7b:cf:22:1f:4c:e9:df:42:1e:1d:c6:60:44:a3: 5f:09:26:f0:96:46:f4:62:b1:01:01:55:04:45:e8:2c:ba:74: 6b:8f:1a:37:b9:b1:f4:34:f0:f2:64:e4:91:b8:45:fe:24:e4: bd:f4:95:1f:55:2e:47:57:f7:80:cc:d8:f2:fa:ad:e7:de:06: 6e:55:2c:d4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ48wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzQyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY4NS1mOWQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7FFgp/QbA86sGQ9zRXz5Q93at4VUh6ES6A9R3ot2dVlG5LlbX8tXefLlrPDs M2dq6BdqdfAeh2qvtrc7CFCP+YCmPes+cskAHY6pbX5ei/61uffOzA/qwvsNUsDE AIvSOHiL9Vfc0Gpbi4agOy5KZqgfs7Efva79Jt62Bd4cvZ+baZhFYY6fhPfxSpYn uVGo2rT58t3WA95ax4/nD/NKuOqfjqiMtcf0C66i32uRAa8pN0cD7S8TDGKJ56G0 uOG/2fbaqhrWRCnr7zCnzM2KAXLLfAPvsEXiYlXcVbiATiy1UMLzuipIcH2s5GSn oDV8e7yOmLifye3hTlO8LKcpgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIUhLHj6 4Q0KgesdzzxhszYOvlG2MB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvQ0FDMzM5MEFE MzBFMTFFQjk4QUVGRjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKiqQwDQYJKoZIhvcNAQELBQADggEBAAfeqDcKrFSTO7Sw tsuNARawHCKotxAwN4a9PYbNLAy07cExsspY7AHJ+MzZ7W6Ht2E8Vmwvot8SvZUl SHLuLB2bL1sFij9Xld+7REbb2+MErbBOgDBZs4O3noplTuSOYCLTyjF4QMyhzL42 kWiGnMnz0a5uwFfkgutguEfp3OC3+6Jzs9CyiyDBWlNP60jvm+6J9bkX2rR2WuZo 5E+xGJedIPKhnxJ2rOpvNmxzz6MCcR2zs7Qej957zyIfTOnfQh4dxmBEo18JJvCW RvRisQEBVQRF6Cy6dGuPGje5sfQ08PJk5JG4Rf4k5L30lR9VLkdX94DM2PL6refe Bm5VLNQ= -----END CERTIFICATE-----Generated at Wed Nov 5 02:03:50 2025 by rpki-client