$ rpki-client -vvf rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/3773AC0C8B6111EFA3A49037C4F9AE02.roa File: 3773AC0C8B6111EFA3A49037C4F9AE02.roa (raw, json) Hash identifier: Ijy1uWFshu2uXbMSDNdrdIor4pwld2OcIkcbdYGoQws= Subject key identifier: C9:B0:53:B8:24:8F:8C:96:BF:58:D9:46:B9:E2:58:79:0B:8E:99:0E Certificate issuer: /CN=A91E689D/serialNumber=40B8D22EF23B37B0B9E53F3C4E10D6AE3EB8A99F Certificate serial: 3496 Authority key identifier: 40:B8:D2:2E:F2:3B:37:B0:B9:E5:3F:3C:4E:10:D6:AE:3E:B8:A9:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLjSLvI7N7C55T88ThDWrj64qZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/3773AC0C8B6111EFA3A49037C4F9AE02.roa Signing time: Mon 16 Jun 2025 15:10:55 +0000 ROA not before: Mon 16 Jun 2025 15:10:55 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 45810 IP address blocks: 203.217.128.0/22 maxlen: 22 203.217.128.0/23 maxlen: 23 203.217.130.0/24 maxlen: 24 203.217.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.crl rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLjSLvI7N7C55T88ThDWrj64qZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13462 (0x3496) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E689D, serialNumber=40B8D22EF23B37B0B9E53F3C4E10D6AE3EB8A99F Validity Not Before: Jun 16 15:10:55 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=685033fe-3be6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f2:c2:11:be:47:98:f7:1b:d2:28:df:dd:27: 4b:76:5b:74:e3:21:fb:71:00:64:cf:1a:2a:54:e7: bd:a3:4f:07:8d:20:d9:89:c5:d7:e5:3e:33:c5:5a: ff:dd:d7:30:a2:ce:50:73:6b:dd:e9:cc:5a:8c:17: ae:6d:72:dd:49:2f:b0:51:68:26:74:c7:1d:1a:78: 72:f3:9c:8f:2e:e8:da:93:b1:81:b7:1d:cc:3f:a1: b2:e3:23:b8:6d:8c:8e:ea:a6:55:27:95:63:0a:e8: a7:67:52:f3:57:63:e5:8a:2f:12:d6:4a:46:9f:53: 6a:ec:bd:c6:a7:6b:9f:a1:10:7f:cf:bc:0d:d9:06: 7b:dd:9e:37:ba:d7:00:3c:e1:53:23:5a:f6:e9:84: b5:fa:59:3e:c4:71:ff:34:3a:08:50:95:93:8e:ff: a6:39:9e:32:6a:52:b1:53:6b:e8:67:fa:29:15:b2: 41:e7:09:00:e2:86:b0:8c:33:65:a0:fa:30:02:ea: 79:9f:60:3d:b6:c4:90:2d:c8:11:48:c5:c5:77:b2: a7:41:49:37:ce:4c:19:d5:91:4f:4a:35:24:3a:28: a6:2e:d6:5f:5a:56:7e:f7:d0:e4:49:15:e7:69:ed: 89:03:56:82:cd:00:27:54:bd:0d:9f:93:52:26:db: 5e:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:B0:53:B8:24:8F:8C:96:BF:58:D9:46:B9:E2:58:79:0B:8E:99:0E X509v3 Authority Key Identifier: keyid:40:B8:D2:2E:F2:3B:37:B0:B9:E5:3F:3C:4E:10:D6:AE:3E:B8:A9:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/QLjSLvI7N7C55T88ThDWrj64qZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QLjSLvI7N7C55T88ThDWrj64qZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E689D/C7C63DA81D9E11E283CEFA8E08B02CD2/3773AC0C8B6111EFA3A49037C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.217.128.0/22 Signature Algorithm: sha256WithRSAEncryption b1:7f:8b:0f:d0:2f:76:38:73:4e:96:4b:a1:42:6a:68:fd:19: 13:4e:ec:43:fd:cf:8d:b9:9c:0d:3b:d8:71:d1:a2:ef:19:ff: 92:da:c3:28:c1:a8:67:02:12:6a:89:36:62:5c:fc:0d:1f:c0: f7:75:00:95:f1:55:d6:6a:ac:bd:f9:20:ff:f8:e5:9f:c7:e5: 7c:78:03:37:b9:2a:58:3b:66:65:94:ca:41:0c:1e:8d:22:a2: ae:3f:6a:44:af:60:56:3b:20:0b:68:b7:06:10:50:8d:11:1a: eb:88:f7:68:0d:99:01:ca:cb:e4:77:b1:b3:31:60:6a:78:2c: ce:39:73:bf:b3:45:13:78:6f:ce:5f:bb:13:50:b3:22:0d:ec: 96:ec:e6:ef:de:fa:8c:80:b1:80:e1:95:b3:b2:da:e2:0d:e2: c8:30:2e:d7:17:c5:7f:ca:24:c9:fd:5b:11:83:39:99:ee:42: 3a:8a:8d:ab:35:a3:ed:0a:38:63:2b:69:f4:f8:35:27:de:91: 1e:5c:d9:52:2a:b2:44:1f:8e:d3:e2:2e:d5:b1:96:b7:43:29: dc:08:c2:51:95:01:5b:1a:9f:ce:fc:ef:4d:39:fc:bd:ab:ff: 0e:db:82:ca:c4:ec:ad:ec:f4:09:0c:3c:38:20:72:3c:d1:1b: 2d:2a:20:26 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4OUQxMTAvBgNVBAUTKDQwQjhEMjJFRjIzQjM3QjBCOUU1M0YzQzRFMTBENkFF M0VCOEE5OUYwHhcNMjUwNjE2MTUxMDU1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUwMzNmZS0zYmU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqPLCEb5HmPcb0ijf3SdLdlt04yH7cQBkzxoqVOe9o08HjSDZicXX5T4zxVr/ 3dcwos5Qc2vd6cxajBeubXLdSS+wUWgmdMcdGnhy85yPLujak7GBtx3MP6Gy4yO4 bYyO6qZVJ5VjCuinZ1LzV2Plii8S1kpGn1Nq7L3Gp2ufoRB/z7wN2QZ73Z43utcA POFTI1r26YS1+lk+xHH/NDoIUJWTjv+mOZ4yalKxU2voZ/opFbJB5wkA4oawjDNl oPowAup5n2A9tsSQLcgRSMXFd7KnQUk3zkwZ1ZFPSjUkOiimLtZfWlZ+99DkSRXn ae2JA1aCzQAnVL0Nn5NSJttezwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMmwU7gk j4yWv1jZRrniWHkLjpkOMB8GA1UdIwQYMBaAFEC40i7yOzewueU/PE4Q1q4+uKmf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg5RC9DN0M2M0RBODFE OUUxMUUyODNDRUZBOEUwOEIwMkNEMi9RTGpTTHZJN043QzU1VDg4VGhEV3JqNjRx WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FMalNMdkk3TjdDNTVUODhUaERXcmo2NHFaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTY4OUQvQzdDNjNEQTgxRDlFMTFFMjgzQ0VGQThFMDhCMDJDRDIvMzc3M0FDMEM4 QjYxMTFFRkEzQTQ5MDM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALL2YAwDQYJKoZIhvcNAQELBQADggEBALF/iw/QL3Y4c06W S6FCamj9GRNO7EP9z425nA072HHRou8Z/5LawyjBqGcCEmqJNmJc/A0fwPd1AJXx VdZqrL35IP/45Z/H5Xx4Aze5Klg7ZmWUykEMHo0ioq4/akSvYFY7IAtotwYQUI0R GuuI92gNmQHKy+R3sbMxYGp4LM45c7+zRRN4b85fuxNQsyIN7Jbs5u/e+oyAsYDh lbOy2uIN4sgwLtcXxX/KJMn9WxGDOZnuQjqKjas1o+0KOGMrafT4NSfekR5c2VIq skQfjtPiLtWxlrdDKdwIwlGVAVsan8787005/L2r/w7bgsrE7K3s9AkMPDggcjzR Gy0qICY= -----END CERTIFICATE-----Generated at Sun Aug 10 04:46:58 2025 by rpki-client