$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/311A9A8CDAAE11E9A0D2D77BC4F9AE02.roa File: 311A9A8CDAAE11E9A0D2D77BC4F9AE02.roa (raw, json) Hash identifier: ScHvXAz+0AzcbByuabRwjo1ALGYLXsL7ChKJXdiVk6g= Subject key identifier: 16:52:35:1E:E7:48:00:8F:C3:FE:F3:EA:1B:3A:97:94:8B:0A:C3:83 Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 1896 Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/311A9A8CDAAE11E9A0D2D77BC4F9AE02.roa Signing time: Tue 18 Feb 2025 17:35:30 +0000 ROA not before: Tue 18 Feb 2025 17:35:30 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 45167 IP address blocks: 203.18.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 16:59:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6294 (0x1896) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D, serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Feb 18 17:35:30 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67b4c4e2-f9d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:55:d8:3d:97:cc:36:71:53:dd:36:10:28:71: eb:29:06:dc:f0:35:f5:34:07:0e:5d:2d:41:9a:54: 66:1f:46:86:8e:43:57:dc:a0:af:76:8f:5c:72:d3: 19:82:02:fd:44:a9:1c:80:1f:cc:d3:c8:54:2e:7a: 00:fd:8c:e9:25:12:24:13:46:11:34:b9:48:98:37: 1a:11:bc:2f:04:46:eb:3e:18:7a:07:58:c4:c7:35: 9f:db:8b:d4:00:7e:b0:51:7b:8c:65:ee:85:ed:38: 6e:9d:6d:40:63:e2:f3:2a:c7:05:dc:00:c5:21:e3: 2b:7a:9a:42:79:ff:b4:97:f7:33:c2:d1:bb:63:c4: 7b:d5:af:c7:67:e4:f5:da:62:38:26:0c:d1:30:4d: 58:99:f8:55:92:79:18:13:60:6e:25:d9:c7:eb:ee: fa:32:da:ec:07:e9:3e:35:c1:ae:bb:86:22:ec:32: 22:44:d1:f3:69:52:c0:54:3e:ba:a5:1f:aa:a4:71: 46:d7:9e:b2:4f:0b:e6:f1:f0:7a:9b:e5:03:87:ac: f6:48:de:73:2b:31:31:db:92:9e:d8:aa:c4:4a:d7: f6:6d:e9:a3:cf:e3:c7:08:cf:98:61:89:ed:cf:a4: 56:59:bd:7e:64:fb:34:53:66:95:8f:23:e0:80:44: db:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:52:35:1E:E7:48:00:8F:C3:FE:F3:EA:1B:3A:97:94:8B:0A:C3:83 X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/311A9A8CDAAE11E9A0D2D77BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.18.213.0/24 Signature Algorithm: sha256WithRSAEncryption 10:23:8f:e8:ad:da:58:57:1c:fa:bd:3c:21:9d:a5:2d:dc:03: 59:55:a8:55:8d:c1:1b:1d:71:a8:da:85:c8:31:92:72:31:19: c3:ec:a0:5d:a2:86:d2:85:e7:d1:18:15:9b:be:c8:0d:7a:c6: 2f:a8:7e:7e:c8:b7:47:ed:59:8a:50:41:92:a1:69:f9:a5:d8: 7e:16:3e:00:0c:36:cd:77:7b:34:0a:74:fc:fc:5a:94:1e:a1: 81:6e:70:d1:5b:63:dc:0d:c3:0e:70:05:3c:04:2c:78:50:4d: 10:4f:eb:03:f9:c3:4f:f5:3b:24:38:bf:5c:90:95:8d:dd:b8: 81:e7:24:7c:cc:ff:fc:b3:8f:a6:16:d1:c9:9a:28:06:e8:d6: 73:ea:37:3b:5f:81:60:6b:7b:b9:3e:e3:0c:84:44:8e:a8:d1: 90:6c:e9:35:55:c7:19:1f:56:2e:e7:f3:0e:33:33:01:64:6c: a8:9e:47:43:24:61:b5:ee:87:4d:70:d8:8d:31:02:30:52:44: 86:7f:58:aa:60:3d:ff:66:44:0c:fd:14:51:0a:47:86:a4:4f: f9:74:41:a8:3d:2c:49:f5:07:46:39:62:19:3a:e9:b2:e3:43: cf:d8:2e:26:89:82:66:f2:1b:d4:be:d0:a5:f8:28:8a:6b:60: 13:09:47:a4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGJYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjUwMjE4MTczNTMwWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2I0YzRlMi1mOWQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFXYPZfMNnFT3TYQKHHrKQbc8DX1NAcOXS1BmlRmH0aGjkNX3KCvdo9cctMZ ggL9RKkcgB/M08hULnoA/YzpJRIkE0YRNLlImDcaEbwvBEbrPhh6B1jExzWf24vU AH6wUXuMZe6F7ThunW1AY+LzKscF3ADFIeMreppCef+0l/czwtG7Y8R71a/HZ+T1 2mI4JgzRME1YmfhVknkYE2BuJdnH6+76MtrsB+k+NcGuu4Yi7DIiRNHzaVLAVD66 pR+qpHFG156yTwvm8fB6m+UDh6z2SN5zKzEx25Ke2KrEStf2bemjz+PHCM+YYYnt z6RWWb1+ZPs0U2aVjyPggETbJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBZSNR7n SACPw/7z6hs6l5SLCsODMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvMzExQTlBOENE QUFFMTFFOUEwRDJENzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLEtUwDQYJKoZIhvcNAQELBQADggEBABAjj+it2lhXHPq9 PCGdpS3cA1lVqFWNwRsdcajahcgxknIxGcPsoF2ihtKF59EYFZu+yA16xi+ofn7I t0ftWYpQQZKhafml2H4WPgAMNs13ezQKdPz8WpQeoYFucNFbY9wNww5wBTwELHhQ TRBP6wP5w0/1OyQ4v1yQlY3duIHnJHzM//yzj6YW0cmaKAbo1nPqNztfgWBre7k+ 4wyERI6o0ZBs6TVVxxkfVi7n8w4zMwFkbKieR0MkYbXuh01w2I0xAjBSRIZ/WKpg Pf9mRAz9FFEKR4akT/l0Qag9LEn1B0Y5Yhk66bLjQ8/YLiaJgmbyG9S+0KX4KIpr YBMJR6Q= -----END CERTIFICATE-----Generated at Wed Nov 5 05:14:40 2025 by rpki-client