$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD6A0/78DF607C6DB111F0AD4B5E5AC4F9AE02/39926F626DB211F0AC1D0420C4F9AE02.roa File: 39926F626DB211F0AC1D0420C4F9AE02.roa (raw, json) Hash identifier: kEFMUW+00UAEsPjX4mZ1eO2YdFDM6+IhBX5a3Q9IDw8= Subject key identifier: 1A:21:52:89:94:99:CD:44:18:91:A9:BC:8F:37:9B:B1:20:A3:88:50 Certificate issuer: /CN=A91FD6A0/serialNumber=D18D445D2657EAFDD4A66E75B0FBD60303F025FC Certificate serial: 04 Authority key identifier: D1:8D:44:5D:26:57:EA:FD:D4:A6:6E:75:B0:FB:D6:03:03:F0:25:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y1EXSZX6v3Upm51sPvWAwPwJfw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD6A0/78DF607C6DB111F0AD4B5E5AC4F9AE02/39926F626DB211F0AC1D0420C4F9AE02.roa Signing time: Thu 31 Jul 2025 02:01:08 +0000 ROA not before: Thu 31 Jul 2025 02:01:08 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 154099 IP address blocks: 202.1.26.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD6A0/78DF607C6DB111F0AD4B5E5AC4F9AE02/0Y1EXSZX6v3Upm51sPvWAwPwJfw.crl rsync://rpki.apnic.net/member_repository/A91FD6A0/78DF607C6DB111F0AD4B5E5AC4F9AE02/0Y1EXSZX6v3Upm51sPvWAwPwJfw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y1EXSZX6v3Upm51sPvWAwPwJfw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 08:37:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD6A0, serialNumber=D18D445D2657EAFDD4A66E75B0FBD60303F025FC Validity Not Before: Jul 31 02:01:08 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688ace64-a070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:72:16:c6:38:23:83:f3:3d:4f:70:93:fa:89: 5d:5d:68:08:8f:da:13:84:da:5a:fd:d7:cf:78:20: da:5c:50:21:6e:85:e0:2f:a6:8d:04:b7:b6:2d:83: 49:ee:2e:ea:44:31:dc:fd:ba:78:fb:60:c8:42:5c: a8:29:f0:90:ec:00:da:54:56:54:ec:19:dc:df:13: 38:b2:e6:39:54:11:fd:1b:3f:b9:cd:36:a5:1c:39: b2:39:ff:96:cc:28:c2:f7:72:0d:b1:cf:85:ca:37: d2:28:83:27:67:75:64:0e:c4:71:b2:94:02:e0:e1: 2f:c8:64:26:ab:4e:cb:e5:00:61:7a:1e:c5:46:da: fe:f6:77:27:c9:c7:ac:06:89:47:c5:1b:04:9d:4a: 58:4f:18:63:37:ca:fd:f3:c8:5d:11:18:ed:19:77: c7:e7:2e:6f:3b:ad:0a:4c:17:a2:44:33:96:68:59: 66:18:7b:93:51:a8:62:ac:b0:d1:21:7e:b1:31:3f: f8:c2:7e:6d:7d:16:68:7f:24:d5:83:69:f1:4f:13: c6:8f:1e:43:d8:0f:80:20:57:1e:fa:e2:fd:84:70: 6c:9d:a3:5d:60:c5:17:f5:6b:1b:a8:b6:6c:1b:24: be:d2:2e:ef:5a:38:d9:23:a0:ec:fd:58:15:6b:5b: 3a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:21:52:89:94:99:CD:44:18:91:A9:BC:8F:37:9B:B1:20:A3:88:50 X509v3 Authority Key Identifier: keyid:D1:8D:44:5D:26:57:EA:FD:D4:A6:6E:75:B0:FB:D6:03:03:F0:25:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD6A0/78DF607C6DB111F0AD4B5E5AC4F9AE02/0Y1EXSZX6v3Upm51sPvWAwPwJfw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0Y1EXSZX6v3Upm51sPvWAwPwJfw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD6A0/78DF607C6DB111F0AD4B5E5AC4F9AE02/39926F626DB211F0AC1D0420C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.1.26.0/23 Signature Algorithm: sha256WithRSAEncryption a6:dd:37:16:ca:7b:de:01:77:d0:b3:83:86:86:60:c2:57:68: 6c:4c:f1:83:c7:a2:55:2c:cf:9a:5d:e9:2f:cc:58:5e:68:93: 59:b5:e6:38:fc:2c:00:26:9d:8f:04:31:51:7b:94:48:16:a8: 0d:17:59:77:38:a8:5d:f7:4e:e6:01:78:cc:f6:57:f9:b6:b5: 37:62:b8:ab:11:20:eb:5b:16:6b:7d:7c:55:5b:2d:65:78:6d: 23:f7:3b:26:f5:da:71:74:4d:83:68:7b:63:ba:86:8f:0d:2d: e6:ef:ae:27:5f:18:a4:99:a8:75:ca:c4:db:02:1c:38:f6:cb: 7d:ed:32:bc:a2:d8:ce:25:f4:88:23:e3:3b:a8:a9:3b:bb:4b: c5:7f:6c:48:5b:1d:30:b8:59:f7:a9:96:cd:2c:24:30:5e:ec: e3:8a:c0:dd:eb:ff:40:f7:79:17:a2:2b:f8:4b:5f:54:ae:20: 56:15:cd:a5:30:3a:73:24:82:45:9e:c1:3c:8b:84:66:a5:f1: dc:31:17:a5:07:08:81:41:63:21:04:78:dd:ab:71:bb:37:36: c9:9b:69:09:18:1e:43:56:98:ff:6e:03:a5:c0:0f:db:61:16: e3:d4:48:23:78:14:72:06:80:83:04:a8:14:db:8f:e1:e2:fb: a8:bb:9b:4c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RDZBMDExMC8GA1UEBRMoRDE4RDQ0NUQyNjU3RUFGREQ0QTY2RTc1QjBGQkQ2MDMw M0YwMjVGQzAeFw0yNTA3MzEwMjAxMDhaFw0yNjEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OGFjZTY0LWEwNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKchbGOCOD8z1PcJP6iV1daAiP2hOE2lr91894INpcUCFuheAvpo0Et7Ytg0nu LupEMdz9unj7YMhCXKgp8JDsANpUVlTsGdzfEziy5jlUEf0bP7nNNqUcObI5/5bM KML3cg2xz4XKN9IogydndWQOxHGylALg4S/IZCarTsvlAGF6HsVG2v72dyfJx6wG iUfFGwSdSlhPGGM3yv3zyF0RGO0Zd8fnLm87rQpMF6JEM5ZoWWYYe5NRqGKssNEh frExP/jCfm19Fmh/JNWDafFPE8aPHkPYD4AgVx764v2EcGydo11gxRf1axuotmwb JL7SLu9aONkjoOz9WBVrWzq9AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUGiFSiZSZ zUQYkam8jzebsSCjiFAwHwYDVR0jBBgwFoAU0Y1EXSZX6v3Upm51sPvWAwPwJfww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZENkEwLzc4REY2MDdDNkRC MTExRjBBRDRCNUU1QUM0RjlBRTAyLzBZMUVYU1pYNnYzVXBtNTFzUHZXQXdQd0pm dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMFkxRVhTWlg2djNVcG01MXNQdldBd1B3SmZ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDZBMC83OERGNjA3QzZEQjExMUYwQUQ0QjVFNUFDNEY5QUUwMi8zOTkyNkY2MjZE QjIxMUYwQUMxRDA0MjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcoBGjANBgkqhkiG9w0BAQsFAAOCAQEApt03Fsp73gF30LOD hoZgwldobEzxg8eiVSzPml3pL8xYXmiTWbXmOPwsACadjwQxUXuUSBaoDRdZdzio XfdO5gF4zPZX+ba1N2K4qxEg61sWa318VVstZXhtI/c7JvXacXRNg2h7Y7qGjw0t 5u+uJ18YpJmodcrE2wIcOPbLfe0yvKLYziX0iCPjO6ipO7tLxX9sSFsdMLhZ96mW zSwkMF7s44rA3ev/QPd5F6Ir+EtfVK4gVhXNpTA6cySCRZ7BPIuEZqXx3DEXpQcI gUFjIQR43atxuzc2yZtpCRgeQ1aY/24DpcAP22EW49RII3gUcgaAgwSoFNuP4eL7 qLubTA== -----END CERTIFICATE-----Generated at Mon Aug 4 14:22:46 2025 by rpki-client