$ rpki-client -vvf rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/8CD64094BDFE11EBBBB16A42C4F9AE02.roa File: 8CD64094BDFE11EBBBB16A42C4F9AE02.roa (raw, json) Hash identifier: JYcdT8gc4SSOPp9mZ4cChcf87lzFLOtfwrJ4fYMBet4= Subject key identifier: C9:26:4F:BA:D4:67:1A:F1:6C:AB:EA:02:EE:B5:33:AF:CF:5F:F2:7D Certificate issuer: /CN=A91F731E/serialNumber=90603E354DB568B3CA42900E703011E79662892E Certificate serial: 0625 Authority key identifier: 90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/8CD64094BDFE11EBBBB16A42C4F9AE02.roa Signing time: Fri 08 Aug 2025 16:24:15 +0000 ROA not before: Fri 08 Aug 2025 16:24:15 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 17501 IP address blocks: 72.9.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1573 (0x625) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F731E, serialNumber=90603E354DB568B3CA42900E703011E79662892E Validity Not Before: Aug 8 16:24:15 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689624af-24a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5a:4c:db:52:03:a8:fe:a9:df:a7:63:02:c9: 2b:89:b0:15:88:14:a3:22:e1:6b:cf:6c:0c:64:3f: 5b:a2:4e:b5:5c:27:78:d4:a7:8e:00:5d:4f:1e:99: a0:44:19:ca:bb:c6:4a:23:da:50:99:9e:15:ec:d2: 87:b4:3c:85:b3:e1:cf:91:1e:50:01:08:d5:cd:66: 50:fd:7b:82:1b:dd:70:b9:7f:14:fe:1e:2b:cf:8c: d7:6d:fe:88:73:74:5b:f3:59:28:83:d0:b0:dd:52: ab:84:5a:f8:5c:db:6b:fa:fc:69:26:b4:69:ea:eb: 92:7a:07:8c:70:4e:13:bc:0c:77:ac:ca:9f:a6:f8: 9a:b9:75:cb:fe:51:ed:98:73:71:34:70:ec:17:30: 20:74:8f:1a:e0:d9:bb:94:37:67:52:95:e0:37:0f: 75:22:34:03:61:d6:8d:aa:cc:79:fe:77:75:02:24: 5a:be:fb:8d:02:56:74:bd:d3:21:e1:25:b4:eb:4c: c9:a3:4e:38:16:89:fd:30:c3:b1:48:75:a2:1a:3b: b0:1f:a1:4e:d5:1c:fc:ef:2c:6d:58:9a:78:3e:ff: 5b:1e:92:fa:50:18:85:89:76:f6:d2:71:aa:2e:ba: 20:73:a4:12:37:02:5f:36:7c:1c:01:ec:b0:b9:1f: c9:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:26:4F:BA:D4:67:1A:F1:6C:AB:EA:02:EE:B5:33:AF:CF:5F:F2:7D X509v3 Authority Key Identifier: keyid:90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/8CD64094BDFE11EBBBB16A42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 72.9.128.0/20 Signature Algorithm: sha256WithRSAEncryption 75:e2:3e:e6:d0:bf:65:ca:3f:bc:3a:1b:c4:ac:2f:8d:ba:46: 9d:a5:89:10:78:6e:4e:20:ca:47:b7:26:3e:47:bd:d0:ca:b4: 61:17:c2:72:11:58:b2:0d:16:27:04:f2:4f:9d:6a:04:74:90: 56:95:45:f8:f1:9e:1f:86:1a:73:fb:83:55:47:c6:25:76:4b: 8c:28:f5:5a:2a:aa:c3:76:db:ac:a5:82:c1:71:d8:d8:a5:70: 00:a4:b6:c0:bb:50:2e:c6:c4:85:d6:d7:2f:e5:3e:72:db:8f: da:68:34:0d:f4:77:d8:49:7c:9e:2e:f5:19:50:f9:c2:ec:73: 0a:2f:42:df:30:54:d0:34:ed:83:4a:d5:84:da:03:94:2e:14: fa:cf:8b:43:e4:ea:72:29:22:4c:f5:ad:62:b8:d9:a2:63:24: 20:4b:41:78:ed:a8:cb:d3:23:1f:70:e5:67:9e:82:48:4a:94: c4:0f:2d:2c:3d:ee:35:df:2e:ef:99:36:cb:f8:47:75:c2:f1: 50:69:a8:fe:3b:bb:de:01:34:b0:6f:5e:c4:31:f9:6c:77:93: 12:23:c1:be:dd:7b:ca:56:6f:80:63:c9:dd:e3:a8:cb:a4:44: 8c:83:b9:30:21:54:c9:a0:19:61:36:9c:71:ba:b9:62:1d:d9: 3a:f4:25:9c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMUUxMTAvBgNVBAUTKDkwNjAzRTM1NERCNTY4QjNDQTQyOTAwRTcwMzAxMUU3 OTY2Mjg5MkUwHhcNMjUwODA4MTYyNDE1WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2MjRhZi0yNGE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFpM21IDqP6p36djAskribAViBSjIuFrz2wMZD9bok61XCd41KeOAF1PHpmg RBnKu8ZKI9pQmZ4V7NKHtDyFs+HPkR5QAQjVzWZQ/XuCG91wuX8U/h4rz4zXbf6I c3Rb81kog9Cw3VKrhFr4XNtr+vxpJrRp6uuSegeMcE4TvAx3rMqfpviauXXL/lHt mHNxNHDsFzAgdI8a4Nm7lDdnUpXgNw91IjQDYdaNqsx5/nd1AiRavvuNAlZ0vdMh 4SW060zJo044Fon9MMOxSHWiGjuwH6FO1Rz87yxtWJp4Pv9bHpL6UBiFiXb20nGq Lrogc6QSNwJfNnwcAeywuR/JqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMkmT7rU ZxrxbKvqAu61M6/PX/J9MB8GA1UdIwQYMBaAFJBgPjVNtWizykKQDnAwEeeWYoku MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxRS9FQUExOUNCNEIy REMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFMUEtRcEFPY0RBUjU1Wmlp UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tHQS1OVTIxYUxQS1FwQU9jREFSNTVaaWlTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjczMUUvRUFBMTlDQjRCMkRDMTFFQjg2MjFDQjU2QzRGOUFFMDIvOENENjQwOTRC REZFMTFFQkJCQjE2QTQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBARICYAwDQYJKoZIhvcNAQELBQADggEBAHXiPubQv2XKP7w6 G8SsL426Rp2liRB4bk4gyke3Jj5HvdDKtGEXwnIRWLINFicE8k+dagR0kFaVRfjx nh+GGnP7g1VHxiV2S4wo9VoqqsN226ylgsFx2NilcACktsC7UC7GxIXW1y/lPnLb j9poNA30d9hJfJ4u9RlQ+cLscwovQt8wVNA07YNK1YTaA5QuFPrPi0Pk6nIpIkz1 rWK42aJjJCBLQXjtqMvTIx9w5WeegkhKlMQPLSw97jXfLu+ZNsv4R3XC8VBpqP47 u94BNLBvXsQx+Wx3kxIjwb7de8pWb4Bjyd3jqMukRIyDuTAhVMmgGWE2nHG6uWId 2Tr0JZw= -----END CERTIFICATE-----Generated at Sun Aug 10 16:04:47 2025 by rpki-client