$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa File: 09182D38084E11EF89D29620C4F9AE02.roa (raw, json) Hash identifier: AT+phtZuztYQ/kTIycAX0X+A8CtwzmUr4SNp/POZyC4= Subject key identifier: BB:F0:D3:CB:CA:C4:52:D5:1A:F9:9C:94:C7:E1:54:EE:4B:50:4E:75 Certificate issuer: /CN=A91FF5E4/serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Certificate serial: 05A3 Authority key identifier: 85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa Signing time: Mon 04 Aug 2025 05:13:09 +0000 ROA not before: Mon 04 Aug 2025 05:13:09 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 45577 IP address blocks: 111.125.176.0/24 maxlen: 24 111.125.180.0/24 maxlen: 24 223.25.224.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 05:36:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1443 (0x5a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF5E4, serialNumber=85EE9038FFC3541ABDFB7DD9ED33F2AAE372E78C Validity Not Before: Aug 4 05:13:09 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=68904164-9641 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:05:72:f8:86:e5:00:7d:db:05:d3:ca:47:79: 66:51:70:59:19:23:e2:2a:a0:bc:4c:2a:54:30:b4: e9:ae:5b:5d:81:25:9b:7b:33:26:b3:24:16:08:6f: 92:8a:8c:77:21:b8:2d:15:c1:a7:57:9e:0d:48:ff: e6:d5:a9:f5:98:1e:85:0a:71:59:e9:f3:bc:52:22: ad:23:5c:f8:e7:f3:46:a9:60:92:63:fe:54:15:8a: 91:f5:6d:73:74:89:bc:ae:47:88:33:61:93:78:57: f5:9b:67:e8:0a:ac:24:89:57:c5:48:b3:94:a2:35: dd:41:d4:9f:f4:c5:38:15:42:de:9f:11:06:4b:d7: d1:ec:98:82:8e:c5:c8:61:a3:e0:5f:26:35:b4:b4: c5:fc:97:27:9a:d0:33:f1:4e:b9:59:12:2d:ac:1b: 0a:dc:c8:9a:1b:32:8e:92:3d:bc:0a:f6:a3:62:eb: 7d:62:af:ab:7d:47:5f:69:0f:1f:99:b4:78:3c:e6: db:84:b5:58:e4:86:d8:b3:7e:dd:39:5d:d4:c5:09: 61:d3:3c:f5:ea:2a:6c:f0:0d:24:ed:f0:de:c0:44: af:b9:4e:80:d6:24:bb:76:3b:8f:05:47:4e:93:42: f9:20:53:06:cd:6c:14:c5:e1:0d:a0:c2:ed:3e:9e: a6:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:F0:D3:CB:CA:C4:52:D5:1A:F9:9C:94:C7:E1:54:EE:4B:50:4E:75 X509v3 Authority Key Identifier: keyid:85:EE:90:38:FF:C3:54:1A:BD:FB:7D:D9:ED:33:F2:AA:E3:72:E7:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/he6QOP_DVBq9-33Z7TPyquNy54w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/he6QOP_DVBq9-33Z7TPyquNy54w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF5E4/ED079DFEE38411EBA8593B65C4F9AE02/09182D38084E11EF89D29620C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 111.125.176.0/24 111.125.180.0/24 223.25.224.0/22 Signature Algorithm: sha256WithRSAEncryption 67:e7:f8:8a:33:94:92:7f:87:9a:0b:eb:75:1b:58:28:ef:e1: d2:00:bc:2a:94:cb:4b:3f:d8:dd:2b:d2:63:bc:13:36:61:16: ea:4d:ee:a5:8c:00:e1:67:48:d3:15:63:cd:ba:63:34:e5:fe: 4e:90:d4:0d:bc:7d:25:d9:58:e0:4c:85:20:87:5a:53:78:e0: 0f:8f:44:6f:01:ca:48:8d:ec:6a:99:93:b1:d4:27:63:88:68: 3f:c6:fd:03:c6:6c:fa:1b:10:5c:cc:4e:16:93:48:9e:32:01: 8f:41:21:a4:92:41:ea:91:05:db:ae:b5:e3:a5:8d:15:99:ed: db:11:39:6e:41:be:98:a8:9e:24:2f:b7:db:e5:af:e4:15:2d: ab:ff:4c:56:21:8d:cc:12:2f:0f:47:bd:1d:a1:e7:00:01:8e: b6:41:e0:ff:7c:1b:c0:92:76:5a:ba:d7:74:59:f8:4a:88:d4: ae:bb:42:c6:46:e8:00:a5:b6:30:61:2d:54:13:11:fb:8d:ee: 03:65:38:d8:07:f0:89:98:ee:3d:f6:8a:49:29:7c:e4:d3:b9: e1:5d:90:f8:07:d5:4e:b1:cc:82:0b:75:0b:76:68:2b:e4:09: 33:47:fd:95:e5:8e:ad:3d:85:3b:e7:cc:19:70:31:62:83:50: 75:a9:b0:65 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBaMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY1RTQxMTAvBgNVBAUTKDg1RUU5MDM4RkZDMzU0MUFCREZCN0REOUVEMzNGMkFB RTM3MkU3OEMwHhcNMjUwODA0MDUxMzA5WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODkwNDE2NC05NjQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6gVy+IblAH3bBdPKR3lmUXBZGSPiKqC8TCpUMLTprltdgSWbezMmsyQWCG+S iox3IbgtFcGnV54NSP/m1an1mB6FCnFZ6fO8UiKtI1z45/NGqWCSY/5UFYqR9W1z dIm8rkeIM2GTeFf1m2foCqwkiVfFSLOUojXdQdSf9MU4FULenxEGS9fR7JiCjsXI YaPgXyY1tLTF/JcnmtAz8U65WRItrBsK3MiaGzKOkj28CvajYut9Yq+rfUdfaQ8f mbR4PObbhLVY5IbYs37dOV3UxQlh0zz16ips8A0k7fDewESvuU6A1iS7djuPBUdO k0L5IFMGzWwUxeENoMLtPp6mvwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLvw08vK xFLVGvmclMfhVO5LUE51MB8GA1UdIwQYMBaAFIXukDj/w1Qavft92e0z8qrjcueM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjVFNC9FRDA3OURGRUUz ODQxMUVCQTg1OTNCNjVDNEY5QUUwMi9oZTZRT1BfRFZCcTktMzNaN1RQeXF1Tnk1 NHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hlNlFPUF9EVkJxOS0zM1o3VFB5cXVOeTU0dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY1RTQvRUQwNzlERkVFMzg0MTFFQkE4NTkzQjY1QzRGOUFFMDIvMDkxODJEMzgw ODRFMTFFRjg5RDI5NjIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBABvfbADBABvfbQDBALfGeAwDQYJKoZIhvcNAQELBQADggEB AGfn+IozlJJ/h5oL63UbWCjv4dIAvCqUy0s/2N0r0mO8EzZhFupN7qWMAOFnSNMV Y826YzTl/k6Q1A28fSXZWOBMhSCHWlN44A+PRG8BykiN7GqZk7HUJ2OIaD/G/QPG bPobEFzMThaTSJ4yAY9BIaSSQeqRBduuteOljRWZ7dsROW5BvpioniQvt9vlr+QV Lav/TFYhjcwSLw9HvR2h5wABjrZB4P98G8CSdlq613RZ+EqI1K67QsZG6ACltjBh LVQTEfuN7gNlONgH8ImY7j32ikkpfOTTueFdkPgH1U6xzIILdQt2aCvkCTNH/ZXl jq09hTvnzBlwMWKDUHWpsGU= -----END CERTIFICATE-----Generated at Mon Aug 4 15:36:30 2025 by rpki-client