$ rpki-client -vvf rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/C006CA2248B311EFB8A4C178C4F9AE02.roa File: C006CA2248B311EFB8A4C178C4F9AE02.roa (raw, json) Hash identifier: BB5/p5ExgMeQd5Go8UNqIFMq/xQWZ4tohFPvDD4Zv98= Subject key identifier: C4:27:81:4E:EF:2C:3E:A7:7B:59:06:39:AF:C0:31:95:CE:5D:39:C4 Certificate issuer: /CN=A91E782F/serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Certificate serial: DB Authority key identifier: C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/C006CA2248B311EFB8A4C178C4F9AE02.roa Signing time: Tue 19 Aug 2025 06:15:08 +0000 ROA not before: Tue 19 Aug 2025 06:15:08 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 36224 IP address blocks: 192.8.188.0/24 maxlen: 24 192.8.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 05:22:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 219 (0xdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E782F, serialNumber=C8603657552448ED5BBAED71724D2220F03BF7C6 Validity Not Before: Aug 19 06:15:08 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68a4166c-67f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:c2:4d:98:8e:bb:be:82:5d:5f:5a:80:e9:ac: a9:5e:de:1a:7a:8a:63:40:4e:ac:64:50:b7:14:a0: 4c:08:ca:e7:1e:8c:a2:11:ab:22:bc:89:00:33:60: 7e:16:e6:21:53:f3:b8:73:34:d1:27:ca:64:c7:32: df:1c:fd:be:a1:f1:16:d5:de:92:28:2f:0b:8e:e2: 09:c4:b4:f3:35:df:38:54:b5:56:cf:07:fe:61:c9: 27:98:e3:52:4f:43:de:d7:f1:01:6d:5e:00:11:4b: ea:2c:0a:6b:c5:2f:0c:9e:77:ba:35:c8:59:52:70: 4c:4f:46:ac:e1:8a:e6:12:ce:44:ab:6e:4a:0b:c1: ff:77:e8:b7:a4:6d:83:24:da:b0:19:52:50:db:7a: a5:ae:a8:bd:f9:66:4f:27:73:a9:ba:8c:f2:03:15: 3e:4f:75:39:d3:88:4c:18:2c:77:bd:21:bb:6e:c3: 50:c2:17:2c:f1:23:4f:ac:0d:c8:e1:95:be:2b:06: 95:9d:16:68:0e:7d:79:b7:08:83:38:77:a8:ff:53: 0f:ee:e2:5f:f6:1a:56:72:42:a0:95:4e:6e:fc:01: 80:8c:54:83:2f:df:53:46:d9:f6:f5:00:47:24:dd: ac:d2:76:95:6c:e3:4f:8d:a6:ab:32:ba:c7:4d:c4: ad:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:27:81:4E:EF:2C:3E:A7:7B:59:06:39:AF:C0:31:95:CE:5D:39:C4 X509v3 Authority Key Identifier: keyid:C8:60:36:57:55:24:48:ED:5B:BA:ED:71:72:4D:22:20:F0:3B:F7:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/yGA2V1UkSO1buu1xck0iIPA798Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/yGA2V1UkSO1buu1xck0iIPA798Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E782F/6D2075F6407011EFBDA9D66FC4F9AE02/C006CA2248B311EFB8A4C178C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.8.188.0/24 192.8.238.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:e4:55:c1:de:f3:17:86:0e:35:52:39:70:30:90:21:0a:9c: 69:f8:6b:fe:48:2f:4a:69:9f:5e:b8:32:df:a8:8a:83:91:82: 4c:06:88:9e:33:63:9a:42:69:55:bb:c9:b2:99:83:e2:8e:49: 2f:88:5d:79:0b:ea:1a:52:c4:bd:78:4d:80:95:f9:d0:bd:be: 62:e5:5f:8e:ac:eb:bc:9f:3d:81:5a:5e:ab:6e:f9:30:5b:25: a1:ae:c0:14:ab:7a:de:d2:e2:77:dc:d8:52:f9:37:a1:5f:04: 26:c1:96:a9:64:52:be:49:48:47:b9:d4:f7:31:16:f9:c2:94: dd:68:16:56:4b:9f:06:78:d2:ea:91:8b:0c:ca:17:82:8f:f6: fd:b8:83:82:f8:41:70:db:8c:6b:b5:4f:e7:95:b2:33:f3:8d: b3:be:ec:17:30:7c:5a:20:4f:3f:f8:84:a6:c6:2f:9f:8a:95: 56:30:9a:f9:69:88:16:c3:dd:a7:1b:fc:3a:9c:85:9b:b8:03: 07:60:59:d9:3d:ed:5a:88:00:f9:f5:9d:74:99:29:84:a5:e6: b6:f2:cb:ad:6c:e8:85:31:23:09:50:31:a6:7d:de:b9:e4:50: ff:a3:a4:95:54:ad:18:54:13:ba:56:5e:e9:09:8d:04:5a:21: 88:74:bf:91 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICANswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc4MkYxMTAvBgNVBAUTKEM4NjAzNjU3NTUyNDQ4RUQ1QkJBRUQ3MTcyNEQyMjIw RjAzQkY3QzYwHhcNMjUwODE5MDYxNTA4WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE0MTY2Yy02N2Y4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAssJNmI67voJdX1qA6aypXt4aeopjQE6sZFC3FKBMCMrnHoyiEasivIkAM2B+ FuYhU/O4czTRJ8pkxzLfHP2+ofEW1d6SKC8LjuIJxLTzNd84VLVWzwf+YcknmONS T0Pe1/EBbV4AEUvqLAprxS8Mnne6NchZUnBMT0as4YrmEs5Eq25KC8H/d+i3pG2D JNqwGVJQ23qlrqi9+WZPJ3OpuozyAxU+T3U504hMGCx3vSG7bsNQwhcs8SNPrA3I 4ZW+KwaVnRZoDn15twiDOHeo/1MP7uJf9hpWckKglU5u/AGAjFSDL99TRtn29QBH JN2s0naVbONPjaarMrrHTcStjQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMQngU7v LD6ne1kGOa/AMZXOXTnEMB8GA1UdIwQYMBaAFMhgNldVJEjtW7rtcXJNIiDwO/fG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzgyRi82RDIwNzVGNjQw NzAxMUVGQkRBOUQ2NkZDNEY5QUUwMi95R0EyVjFVa1NPMWJ1dTF4Y2swaUlQQTc5 OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3lHQTJWMVVrU08xYnV1MXhjazBpSVBBNzk4WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc4MkYvNkQyMDc1RjY0MDcwMTFFRkJEQTlENjZGQzRGOUFFMDIvQzAwNkNBMjI0 OEIzMTFFRkI4QTRDMTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADACLwDBADACO4wDQYJKoZIhvcNAQELBQADggEBABvkVcHe 8xeGDjVSOXAwkCEKnGn4a/5IL0ppn164Mt+oioORgkwGiJ4zY5pCaVW7ybKZg+KO SS+IXXkL6hpSxL14TYCV+dC9vmLlX46s67yfPYFaXqtu+TBbJaGuwBSret7S4nfc 2FL5N6FfBCbBlqlkUr5JSEe51PcxFvnClN1oFlZLnwZ40uqRiwzKF4KP9v24g4L4 QXDbjGu1T+eVsjPzjbO+7BcwfFogTz/4hKbGL5+KlVYwmvlpiBbD3acb/DqchZu4 AwdgWdk97VqIAPn1nXSZKYSl5rbyy61s6IUxIwlQMaZ93rnkUP+jpJVUrRhUE7pW XukJjQRaIYh0v5E= -----END CERTIFICATE-----Generated at Wed Nov 5 17:07:49 2025 by rpki-client