$ rpki-client -vvf rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/7970EAA266DA11F084325D42C4F9AE02.roa File: 7970EAA266DA11F084325D42C4F9AE02.roa (raw, json) Hash identifier: PikBYoAiLsYP3+Plkjib3H61VZb7HfjBFcsCC14z91s= Subject key identifier: 48:55:F7:BC:3F:BB:5B:7B:3C:7A:40:78:1C:E9:C1:2D:9F:80:9F:6C Certificate issuer: /CN=A91C09EA/serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Certificate serial: 5A Authority key identifier: 00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/7970EAA266DA11F084325D42C4F9AE02.roa Signing time: Tue 22 Jul 2025 09:01:38 +0000 ROA not before: Tue 22 Jul 2025 09:01:38 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 210000 IP address blocks: 163.61.42.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 03 Aug 2025 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C09EA, serialNumber=00FD31FD06B4204C3DDCB63507189533778CCCF8 Validity Not Before: Jul 22 09:01:38 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=687f5371-c369 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:5a:af:1f:35:6d:e7:0d:f2:ae:45:7f:0a:d7: 62:74:42:07:22:c5:62:be:29:e5:1b:bd:83:9a:ad: dc:12:f8:42:34:7e:4c:1f:66:da:3e:62:22:f5:31: ea:3f:62:1f:95:1c:06:a2:98:86:8c:0f:3e:4d:fc: 00:cc:f3:de:11:5a:d6:b7:10:b7:3f:68:81:43:1b: 1c:79:1f:21:f6:20:22:12:6d:7c:c6:82:23:73:e0: 30:52:89:6c:09:d4:23:5d:b8:a5:44:57:b8:78:10: 27:ae:7a:90:5f:7d:40:e9:ce:30:56:41:5c:44:d0: d1:4c:a5:a2:5f:1e:bc:3b:4d:ab:85:0b:3b:22:97: 8a:bc:95:b3:b8:db:c5:81:fa:a1:d6:79:98:bc:df: ab:03:ce:0f:f0:3c:2a:8b:d0:96:e7:1c:3e:71:f0: 52:04:d4:e5:20:a4:31:92:b6:c9:d1:bb:67:b4:94: 58:e3:b4:c0:c7:e8:bc:86:45:9f:f6:ce:b6:6f:e0: c1:73:0c:81:a4:8d:89:ac:8c:2a:41:65:d4:3c:1c: b2:c8:2a:0e:86:94:3c:41:47:02:5a:b9:c8:da:60: 72:6b:ec:81:df:79:80:b8:df:59:69:2d:fa:0a:79: 39:15:69:21:cd:83:9c:94:f8:32:1d:89:64:6a:da: 61:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:55:F7:BC:3F:BB:5B:7B:3C:7A:40:78:1C:E9:C1:2D:9F:80:9F:6C X509v3 Authority Key Identifier: keyid:00:FD:31:FD:06:B4:20:4C:3D:DC:B6:35:07:18:95:33:77:8C:CC:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/AP0x_Qa0IEw93LY1BxiVM3eMzPg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AP0x_Qa0IEw93LY1BxiVM3eMzPg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C09EA/8C5912FEE13B11EFBA7BDF3BC4F9AE02/7970EAA266DA11F084325D42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.42.0/23 Signature Algorithm: sha256WithRSAEncryption bc:bb:08:e6:7d:52:95:d8:f3:2b:0d:94:44:51:5a:ed:58:a2: 83:50:ec:51:75:f9:0a:61:7d:8d:70:e8:57:56:65:66:59:e5: d1:cb:f9:e0:f9:3d:12:be:38:ac:29:ae:26:f8:e8:4b:c0:ef: 65:b4:ed:06:4c:dc:f2:cd:f3:f8:5d:e2:49:cb:28:2d:44:43: d6:f1:10:cb:c5:64:df:9d:20:d8:aa:cb:54:ac:80:30:c4:26: 8e:40:cf:c1:51:15:76:33:81:4d:3b:47:b9:8d:50:af:6e:1d: 6d:d3:bd:92:68:a8:64:1e:3a:f9:2e:d4:49:83:71:02:e9:53: 80:a9:d7:d8:af:50:f6:98:64:5b:6c:b7:bd:45:8e:a0:5e:d9: f7:2d:f7:65:49:0d:e5:f2:e7:d1:84:a6:8e:79:99:5f:f3:85: d0:3a:d8:79:47:7a:a9:48:ea:c8:f5:a9:c9:db:c6:23:3a:42: 04:6a:fb:90:40:58:64:83:b6:bf:f1:de:c5:f9:af:db:10:88: bd:b8:8d:dc:84:9e:ba:f4:cb:7d:ce:6e:a4:44:48:9b:af:2d: 7b:b1:75:c4:9e:79:88:99:a8:6f:71:97:90:40:c4:c9:66:e0: 57:0d:7b:2e:6d:43:0a:0e:bf:63:c8:bf:fa:c4:72:54:bc:58: 8b:e7:df:2b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MDlFQTExMC8GA1UEBRMoMDBGRDMxRkQwNkI0MjA0QzNERENCNjM1MDcxODk1MzM3 NzhDQ0NGODAeFw0yNTA3MjIwOTAxMzhaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4N2Y1MzcxLWMzNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDTWq8fNW3nDfKuRX8K12J0QgcixWK+KeUbvYOardwS+EI0fkwfZto+YiL1Meo/ Yh+VHAaimIaMDz5N/ADM894RWta3ELc/aIFDGxx5HyH2ICISbXzGgiNz4DBSiWwJ 1CNduKVEV7h4ECeuepBffUDpzjBWQVxE0NFMpaJfHrw7TauFCzsil4q8lbO428WB +qHWeZi836sDzg/wPCqL0JbnHD5x8FIE1OUgpDGStsnRu2e0lFjjtMDH6LyGRZ/2 zrZv4MFzDIGkjYmsjCpBZdQ8HLLIKg6GlDxBRwJaucjaYHJr7IHfeYC431lpLfoK eTkVaSHNg5yU+DIdiWRq2mFFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUSFX3vD+7 W3s8ekB4HOnBLZ+An2wwHwYDVR0jBBgwFoAUAP0x/Qa0IEw93LY1BxiVM3eMzPgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMwOUVBLzhDNTkxMkZFRTEz QjExRUZCQTdCREYzQkM0RjlBRTAyL0FQMHhfUWEwSUV3OTNMWTFCeGlWTTNlTXpQ Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQVAweF9RYTBJRXc5M0xZMUJ4aVZNM2VNelBnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MDlFQS84QzU5MTJGRUUxM0IxMUVGQkE3QkRGM0JDNEY5QUUwMi83OTcwRUFBMjY2 REExMUYwODQzMjVENDJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaM9KjANBgkqhkiG9w0BAQsFAAOCAQEAvLsI5n1SldjzKw2U RFFa7Viig1DsUXX5CmF9jXDoV1ZlZlnl0cv54Pk9Er44rCmuJvjoS8DvZbTtBkzc 8s3z+F3iScsoLURD1vEQy8Vk350g2KrLVKyAMMQmjkDPwVEVdjOBTTtHuY1Qr24d bdO9kmioZB46+S7USYNxAulTgKnX2K9Q9phkW2y3vUWOoF7Z9y33ZUkN5fLn0YSm jnmZX/OF0DrYeUd6qUjqyPWpydvGIzpCBGr7kEBYZIO2v/Hexfmv2xCIvbiN3ISe uvTLfc5upERIm68te7F1xJ55iJmob3GXkEDEyWbgVw17Lm1DCg6/Y8i/+sRyVLxY i+ffKw== -----END CERTIFICATE-----Generated at Sun Jul 27 12:43:58 2025 by rpki-client