$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/0A9DA996655311EF8D61E41CC4F9AE02.roa File: 0A9DA996655311EF8D61E41CC4F9AE02.roa (raw, json) Hash identifier: YEePosDji6p318PSaVsMzMykST1cQDsNsrEk48Tp9ic= Subject key identifier: 9C:34:0C:80:D8:7D:4F:99:8C:B3:6D:92:CE:A7:FE:BD:14:39:78:D9 Certificate issuer: /CN=A91C6BB2/serialNumber=03BC749AC1682C4B46DA259AB7EB662AA225B0EE Certificate serial: 02B6 Authority key identifier: 03:BC:74:9A:C1:68:2C:4B:46:DA:25:9A:B7:EB:66:2A:A2:25:B0:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A7x0msFoLEtG2iWat-tmKqIlsO4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/0A9DA996655311EF8D61E41CC4F9AE02.roa Signing time: Wed 09 Jul 2025 02:38:30 +0000 ROA not before: Wed 09 Jul 2025 02:38:30 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 135341 IP address blocks: 45.117.62.0/23 maxlen: 23 45.117.62.0/24 maxlen: 24 45.117.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/A7x0msFoLEtG2iWat-tmKqIlsO4.crl rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/A7x0msFoLEtG2iWat-tmKqIlsO4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A7x0msFoLEtG2iWat-tmKqIlsO4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 01:58:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 694 (0x2b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6BB2, serialNumber=03BC749AC1682C4B46DA259AB7EB662AA225B0EE Validity Not Before: Jul 9 02:38:30 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686dd626-07a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:81:21:d0:8b:f9:67:db:ed:2b:3c:7a:18:63: c7:7b:50:db:7f:a5:ea:81:a1:fa:3c:b0:85:52:e2: ca:c2:29:76:bc:34:64:7c:2f:2b:f7:fe:e6:9d:32: c0:db:47:d1:b0:97:61:fa:15:c6:07:92:e0:1f:58: 2a:fe:a2:09:01:18:57:9a:b3:bf:a2:c7:cb:b1:2d: a9:dd:a5:74:d6:ae:86:54:ef:ee:82:2a:fe:c6:f3: 96:a6:cd:d4:11:e9:77:cc:ee:55:bc:ce:cb:7c:9b: 18:0d:92:77:6e:b5:b1:0f:1a:98:ff:d6:92:a5:c7: 9e:73:64:0a:22:00:27:17:a4:d1:7b:33:7f:65:fe: cd:c9:ff:9b:42:0b:8d:0c:5a:c2:43:9a:bc:d6:3d: 7f:79:22:bc:94:78:52:1b:5b:49:e4:f9:ca:b6:19: 55:95:99:20:61:6e:e5:b9:ae:c4:ad:bc:f4:ea:9a: 2b:4f:65:1f:c5:8d:5e:e9:01:1e:ac:a4:1f:d7:e1: 60:62:51:d5:4b:b6:6d:87:a2:31:47:0b:44:4c:6b: 8b:bf:17:50:c9:2f:7d:3f:a1:e4:0d:ee:f0:a0:04: 87:ef:e2:c7:6e:89:c7:a3:17:c8:e6:1b:9a:92:e4: 2b:e5:c2:99:16:c1:2a:1b:c3:a0:ff:a7:44:e6:37: 7f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:34:0C:80:D8:7D:4F:99:8C:B3:6D:92:CE:A7:FE:BD:14:39:78:D9 X509v3 Authority Key Identifier: keyid:03:BC:74:9A:C1:68:2C:4B:46:DA:25:9A:B7:EB:66:2A:A2:25:B0:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/A7x0msFoLEtG2iWat-tmKqIlsO4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A7x0msFoLEtG2iWat-tmKqIlsO4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6BB2/5D4CC2F608C811ED944F2566C4F9AE02/0A9DA996655311EF8D61E41CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.62.0/23 Signature Algorithm: sha256WithRSAEncryption 84:1b:fd:d1:ed:18:3b:40:70:11:b2:46:73:d4:58:67:a4:f0: 48:46:9b:8a:b1:f0:57:0d:ec:a4:04:8a:27:5e:2d:16:68:d2: 2b:d6:0e:4f:5c:a2:85:e9:cf:17:e1:e7:8e:d5:3c:26:30:76: 8e:55:10:70:82:ff:0c:76:80:64:53:11:bc:2b:31:7f:0a:59: 92:1e:84:73:b5:30:ba:b2:12:9b:17:b6:6f:5b:29:f7:4b:5b: e2:ed:51:d2:d3:d9:d8:47:d6:f3:02:26:94:22:97:38:be:f3: 68:92:7b:7b:05:b4:06:f4:d3:bf:a3:9e:50:7f:42:ac:20:29: 75:2b:37:bd:44:78:12:ac:a1:90:86:68:92:c4:9d:a5:e2:68: 54:d5:b8:6d:a5:ec:b3:1b:83:d5:2b:98:02:87:08:78:df:2f: cd:4e:c9:22:22:ef:e4:5b:41:f4:8f:28:86:c6:d6:0d:33:11: bc:d7:64:70:e0:ee:d2:82:74:c2:70:1b:5c:82:69:6a:0d:97: 36:fd:a8:64:49:26:ab:c6:b8:d2:bd:4e:9c:55:42:60:94:39: 37:bb:02:34:ac:a1:4d:3d:4f:4c:e7:a6:fe:7b:3b:a4:22:3f: 53:34:1a:e7:b2:62:78:51:03:85:71:72:ea:11:43:e0:85:ea: 15:f6:33:21 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICArYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzZCQjIxMTAvBgNVBAUTKDAzQkM3NDlBQzE2ODJDNEI0NkRBMjU5QUI3RUI2NjJB QTIyNUIwRUUwHhcNMjUwNzA5MDIzODMwWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkZDYyNi0wN2EzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA34Eh0Iv5Z9vtKzx6GGPHe1Dbf6XqgaH6PLCFUuLKwil2vDRkfC8r9/7mnTLA 20fRsJdh+hXGB5LgH1gq/qIJARhXmrO/osfLsS2p3aV01q6GVO/ugir+xvOWps3U Eel3zO5VvM7LfJsYDZJ3brWxDxqY/9aSpceec2QKIgAnF6TRezN/Zf7Nyf+bQguN DFrCQ5q81j1/eSK8lHhSG1tJ5PnKthlVlZkgYW7lua7Erbz06porT2UfxY1e6QEe rKQf1+FgYlHVS7Zth6IxRwtETGuLvxdQyS99P6HkDe7woASH7+LHbonHoxfI5hua kuQr5cKZFsEqG8Og/6dE5jd/+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJw0DIDY fU+ZjLNtks6n/r0UOXjZMB8GA1UdIwQYMBaAFAO8dJrBaCxLRtolmrfrZiqiJbDu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNkJCMi81RDRDQzJGNjA4 QzgxMUVEOTQ0RjI1NjZDNEY5QUUwMi9BN3gwbXNGb0xFdEcyaVdhdC10bUtxSWxz TzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E3eDBtc0ZvTEV0RzJpV2F0LXRtS3FJbHNPNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzZCQjIvNUQ0Q0MyRjYwOEM4MTFFRDk0NEYyNTY2QzRGOUFFMDIvMEE5REE5OTY2 NTUzMTFFRjhENjFFNDFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEtdT4wDQYJKoZIhvcNAQELBQADggEBAIQb/dHtGDtAcBGy RnPUWGek8EhGm4qx8FcN7KQEiideLRZo0ivWDk9cooXpzxfh547VPCYwdo5VEHCC /wx2gGRTEbwrMX8KWZIehHO1MLqyEpsXtm9bKfdLW+LtUdLT2dhH1vMCJpQilzi+ 82iSe3sFtAb007+jnlB/QqwgKXUrN71EeBKsoZCGaJLEnaXiaFTVuG2l7LMbg9Ur mAKHCHjfL81OySIi7+RbQfSPKIbG1g0zEbzXZHDg7tKCdMJwG1yCaWoNlzb9qGRJ JqvGuNK9TpxVQmCUOTe7AjSsoU09T0znpv57O6QiP1M0GueyYnhRA4VxcuoRQ+CF 6hX2MyE= -----END CERTIFICATE-----Generated at Sun Jul 20 07:49:37 2025 by rpki-client