$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7FA1/BF9074E22FA011F08A06C057C4F9AE02/292A3CF0376511F0A9D2D035C4F9AE02.roa File: 292A3CF0376511F0A9D2D035C4F9AE02.roa (raw, json) Hash identifier: qQ/o26aFQ3fCsqKdZcgYj7qgKbMCzj8e65hKr1gdKM8= Subject key identifier: B2:9D:46:D2:D6:A6:32:22:6A:F0:FA:25:50:2A:23:C5:B3:8D:06:AA Certificate issuer: /CN=A91E7FA1/serialNumber=FDE0D8AC88DBFC6ADE67DFFF5A3AC2EF266C5CDC Certificate serial: 09 Authority key identifier: FD:E0:D8:AC:88:DB:FC:6A:DE:67:DF:FF:5A:3A:C2:EF:26:6C:5C:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_eDYrIjb_GreZ9__WjrC7yZsXNw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7FA1/BF9074E22FA011F08A06C057C4F9AE02/292A3CF0376511F0A9D2D035C4F9AE02.roa Signing time: Fri 23 May 2025 05:54:16 +0000 ROA not before: Fri 23 May 2025 05:54:16 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 1221 IP address blocks: 203.3.100.0/24 maxlen: 24 203.3.101.0/24 maxlen: 24 203.3.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7FA1/BF9074E22FA011F08A06C057C4F9AE02/_eDYrIjb_GreZ9__WjrC7yZsXNw.crl rsync://rpki.apnic.net/member_repository/A91E7FA1/BF9074E22FA011F08A06C057C4F9AE02/_eDYrIjb_GreZ9__WjrC7yZsXNw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_eDYrIjb_GreZ9__WjrC7yZsXNw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 07:08:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7FA1, serialNumber=FDE0D8AC88DBFC6ADE67DFFF5A3AC2EF266C5CDC Validity Not Before: May 23 05:54:16 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68300d88-ca61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d7:12:bb:21:ce:e9:8f:59:8c:97:f0:2a:85: 06:f6:5f:a7:45:9e:45:da:5a:0e:e1:bc:24:5c:03: 4a:36:57:43:bb:10:e8:c2:8b:17:72:16:c0:ce:86: 74:70:5f:f1:d6:26:bd:b9:66:53:56:66:4d:91:dd: 2f:02:d5:54:50:36:cf:68:30:79:7d:ec:87:30:d0: 33:72:80:5f:af:71:80:f2:39:dc:4a:6a:3b:6d:38: a1:85:be:b7:bd:0c:9f:48:47:dd:bb:98:e0:9c:c5: 39:fb:60:c4:e1:83:bc:cf:43:fe:67:03:83:74:b2: 87:16:32:36:7d:55:2e:73:2d:5e:8c:a8:98:a0:34: 05:fa:fd:61:a2:ee:cc:36:c1:ba:9b:37:ad:74:8e: cd:63:a0:c3:6a:2b:fc:02:55:ab:04:3d:08:70:94: d6:c2:e6:44:cd:16:db:2d:00:83:7c:58:a2:fd:a1: a5:f6:9b:71:bc:4e:8d:09:21:30:99:b0:1e:11:83: 51:e8:86:f6:c9:21:76:20:01:79:4f:0b:39:1d:c0: 1d:6e:99:3c:9a:a7:b5:8c:a0:df:dd:d7:f8:d9:49: ce:76:c3:f9:9e:30:6d:68:c9:45:ac:98:2d:9c:13: 83:56:ef:73:28:94:14:10:ab:cc:83:ef:b7:95:79: 36:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:9D:46:D2:D6:A6:32:22:6A:F0:FA:25:50:2A:23:C5:B3:8D:06:AA X509v3 Authority Key Identifier: keyid:FD:E0:D8:AC:88:DB:FC:6A:DE:67:DF:FF:5A:3A:C2:EF:26:6C:5C:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7FA1/BF9074E22FA011F08A06C057C4F9AE02/_eDYrIjb_GreZ9__WjrC7yZsXNw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_eDYrIjb_GreZ9__WjrC7yZsXNw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7FA1/BF9074E22FA011F08A06C057C4F9AE02/292A3CF0376511F0A9D2D035C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.3.100.0-203.3.102.255 Signature Algorithm: sha256WithRSAEncryption 2f:93:2f:59:0d:a0:e6:f8:fa:94:a5:15:37:e5:df:b5:be:a3: b1:a4:3e:0e:04:06:eb:fd:b8:1a:cc:bd:76:18:de:ed:07:de: 1f:0a:44:4e:5e:b5:e0:3c:c8:fa:f8:06:53:ce:73:20:5d:ee: 38:f4:38:66:f0:96:40:fb:b0:2f:15:b0:fa:dd:7a:2e:7b:aa: f2:9f:db:d4:b8:1a:e9:a2:a3:87:8f:14:b1:4e:92:9e:f8:01: 48:6f:61:fa:83:2e:ae:d2:57:f0:58:6c:05:af:03:b8:36:9e: f2:86:ab:07:00:6b:18:d7:78:26:f7:c2:19:a1:27:e0:8a:2a: 43:de:8c:f8:e4:4d:68:0e:d3:48:4b:84:ba:de:3b:56:04:c9: 7c:5f:81:b9:45:e4:4b:1d:49:6b:ab:79:ff:51:a8:5b:16:28: 48:e5:bc:06:b1:60:0a:19:7e:b8:f2:d7:65:4b:8d:15:f1:b1: f6:8a:4e:67:c8:b5:c0:30:54:f8:4b:f4:41:5f:8b:c8:77:2d: 1d:9c:c4:44:c4:66:41:43:bc:94:7b:d1:59:ae:e0:62:40:0a: f3:f5:b8:ea:fd:51:cc:d8:b4:f3:c0:e6:2f:01:a6:66:2e:a5: cb:77:a2:56:47:89:56:30:a1:9a:63:1c:2e:5d:9a:34:09:b0: 25:80:50:04 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF N0ZBMTExMC8GA1UEBRMoRkRFMEQ4QUM4OERCRkM2QURFNjdERkZGNUEzQUMyRUYy NjZDNUNEQzAeFw0yNTA1MjMwNTU0MTZaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzAwZDg4LWNhNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCh1xK7Ic7pj1mMl/AqhQb2X6dFnkXaWg7hvCRcA0o2V0O7EOjCixdyFsDOhnRw X/HWJr25ZlNWZk2R3S8C1VRQNs9oMHl97Icw0DNygF+vcYDyOdxKajttOKGFvre9 DJ9IR927mOCcxTn7YMThg7zPQ/5nA4N0socWMjZ9VS5zLV6MqJigNAX6/WGi7sw2 wbqbN610js1joMNqK/wCVasEPQhwlNbC5kTNFtstAIN8WKL9oaX2m3G8To0JITCZ sB4Rg1HohvbJIXYgAXlPCzkdwB1umTyap7WMoN/d1/jZSc52w/meMG1oyUWsmC2c E4NW73MolBQQq8yD77eVeTbxAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQUsp1G0tam MiJq8PolUCojxbONBqowHwYDVR0jBBgwFoAU/eDYrIjb/GreZ9//WjrC7yZsXNww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3RkExL0JGOTA3NEUyMkZB MDExRjA4QTA2QzA1N0M0RjlBRTAyL19lRFlySWpiX0dyZVo5X19XanJDN3lac1hO dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvX2VEWXJJamJfR3JlWjlfX1dqckM3eVpzWE53LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0ZBMS9CRjkwNzRFMjJGQTAxMUYwOEEwNkMwNTdDNEY5QUUwMi8yOTJBM0NGMDM3 NjUxMUYwQTlEMkQwMzVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQCywNkAwQAywNmMA0GCSqGSIb3DQEBCwUAA4IBAQAvky9Z DaDm+PqUpRU35d+1vqOxpD4OBAbr/bgazL12GN7tB94fCkROXrXgPMj6+AZTznMg Xe449Dhm8JZA+7AvFbD63Xoue6ryn9vUuBrpoqOHjxSxTpKe+AFIb2H6gy6u0lfw WGwFrwO4Np7yhqsHAGsY13gm98IZoSfgiipD3oz45E1oDtNIS4S63jtWBMl8X4G5 ReRLHUlrq3n/UahbFihI5bwGsWAKGX648tdlS40V8bH2ik5nyLXAMFT4S/RBX4vI dy0dnMRExGZBQ7yUe9FZruBiQArz9bjq/VHM2LTzwOYvAaZmLqXLd6JWR4lWMKGa YxwuXZo0CbAlgFAE -----END CERTIFICATE-----Generated at Tue Nov 4 17:01:52 2025 by rpki-client