$ rpki-client -vvf rpki.apnic.net/member_repository/A91CC564/4F29D0C4C40F11EA9C15B470C4F9AE02/74CCA13ADBE811EA8D063B7DC4F9AE02.roa File: 74CCA13ADBE811EA8D063B7DC4F9AE02.roa (raw, json) Hash identifier: Zy35shBaA7kL0uiX8MFYVjG3k67WMwjlOa39yPU2npo= Subject key identifier: 48:10:C6:3B:98:DF:8F:49:73:D9:2E:25:FA:A0:B1:C4:0C:A9:A7:B1 Certificate issuer: /CN=A91CC564/serialNumber=0015DBA038CBCCB152ED17113AA0A8D5D7488D21 Certificate serial: 0895 Authority key identifier: 00:15:DB:A0:38:CB:CC:B1:52:ED:17:11:3A:A0:A8:D5:D7:48:8D:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABXboDjLzLFS7RcROqCo1ddIjSE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CC564/4F29D0C4C40F11EA9C15B470C4F9AE02/74CCA13ADBE811EA8D063B7DC4F9AE02.roa Signing time: Thu 24 Jul 2025 21:00:44 +0000 ROA not before: Thu 24 Jul 2025 21:00:44 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 140989 IP address blocks: 103.152.144.0/23 maxlen: 24 2406:5740::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CC564/4F29D0C4C40F11EA9C15B470C4F9AE02/ABXboDjLzLFS7RcROqCo1ddIjSE.crl rsync://rpki.apnic.net/member_repository/A91CC564/4F29D0C4C40F11EA9C15B470C4F9AE02/ABXboDjLzLFS7RcROqCo1ddIjSE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABXboDjLzLFS7RcROqCo1ddIjSE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 21:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2197 (0x895) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CC564, serialNumber=0015DBA038CBCCB152ED17113AA0A8D5D7488D21 Validity Not Before: Jul 24 21:00:44 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68829efc-919a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ac:ae:b8:d3:64:44:9f:e0:f8:50:6c:f3:49: fc:c8:a1:22:23:46:d0:78:f4:d1:ce:3e:55:d2:39: 25:f8:ee:1f:2a:5a:ea:ea:94:e9:c4:c9:8d:0a:a1: ac:71:e3:5a:62:e7:9f:d7:71:90:36:43:17:be:42: 13:1c:a2:3e:6e:56:06:4e:85:0d:14:41:d2:bc:a4: b6:03:c4:2b:6d:c3:35:b4:d8:55:64:30:54:a1:ab: b6:51:eb:94:5b:e3:04:7a:4d:3c:06:19:06:54:55: 91:d8:f2:c6:23:b5:3c:4d:a6:68:0e:a1:0e:e4:61: 16:2a:dc:0b:6a:c9:fc:6d:ff:cf:44:39:92:d0:a5: 91:c3:7e:f3:56:fc:e1:e1:d4:dc:46:6c:21:c6:a4: 92:8f:17:46:eb:43:c1:55:b5:51:90:21:c9:1a:c6: 38:a8:12:19:54:e3:a3:1b:84:3c:b6:95:a7:e7:bf: f0:65:f3:d4:c4:e8:34:6b:5c:22:5c:0c:e6:ea:9d: b3:8a:fe:00:6e:64:0c:d5:02:28:a5:49:f1:c5:cf: 5e:51:fd:28:4f:ad:67:38:5e:71:49:39:c1:79:29: 45:ae:e7:78:93:3e:b2:5b:43:41:d1:59:17:78:9d: 58:44:b9:6c:27:12:60:7f:e4:30:a4:f1:c3:ab:f6: e1:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:10:C6:3B:98:DF:8F:49:73:D9:2E:25:FA:A0:B1:C4:0C:A9:A7:B1 X509v3 Authority Key Identifier: keyid:00:15:DB:A0:38:CB:CC:B1:52:ED:17:11:3A:A0:A8:D5:D7:48:8D:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CC564/4F29D0C4C40F11EA9C15B470C4F9AE02/ABXboDjLzLFS7RcROqCo1ddIjSE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ABXboDjLzLFS7RcROqCo1ddIjSE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CC564/4F29D0C4C40F11EA9C15B470C4F9AE02/74CCA13ADBE811EA8D063B7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.152.144.0/23 IPv6: 2406:5740::/32 Signature Algorithm: sha256WithRSAEncryption 10:56:1f:8e:a8:e6:9b:af:6e:04:61:4f:97:87:80:0d:4b:7d: 77:4f:48:ce:11:89:bb:00:4d:a7:15:d4:bf:bc:c6:46:9b:6e: 59:71:a4:13:28:c1:ac:0b:96:c4:73:b7:2d:dd:5f:4f:35:b8: e2:5c:91:4b:30:1d:99:d1:d5:b3:8d:0f:ae:61:79:c7:5b:c4: 9b:01:ba:6c:5c:9d:1d:96:14:ef:d9:cc:ae:44:e1:90:d4:8e: 92:94:7b:5d:55:21:fa:f4:63:fe:9b:d0:81:f9:32:a5:9b:1b: 78:64:b6:c5:cb:b1:04:88:da:ee:b2:b0:21:fc:b0:45:91:09: 17:f4:fb:ff:42:68:91:d3:7d:ad:0b:76:90:5c:43:c1:31:2f: 51:e2:10:90:af:00:9e:17:39:23:75:df:98:f4:4a:ff:41:52: a0:f2:c1:09:ca:9b:1f:a5:10:31:fd:20:01:0a:a2:7c:fb:24: 32:00:cf:bc:bb:4b:2c:b2:d0:b4:dd:d9:ec:65:fc:3a:9a:5f: b6:cb:6a:58:8b:9e:9a:d4:6a:66:bc:0b:76:2e:d3:58:dd:8e: 7a:49:01:d6:0a:82:61:67:ac:88:75:04:15:e4:f8:a0:83:6b: a6:27:bb:20:e0:ae:8f:cc:11:07:c9:d4:06:a1:0e:c3:15:67: 2b:0c:a8:d6 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCJUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0M1NjQxMTAvBgNVBAUTKDAwMTVEQkEwMzhDQkNDQjE1MkVEMTcxMTNBQTBBOEQ1 RDc0ODhEMjEwHhcNMjUwNzI0MjEwMDQ0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgyOWVmYy05MTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA06yuuNNkRJ/g+FBs80n8yKEiI0bQePTRzj5V0jkl+O4fKlrq6pTpxMmNCqGs ceNaYuef13GQNkMXvkITHKI+blYGToUNFEHSvKS2A8QrbcM1tNhVZDBUoau2UeuU W+MEek08BhkGVFWR2PLGI7U8TaZoDqEO5GEWKtwLasn8bf/PRDmS0KWRw37zVvzh 4dTcRmwhxqSSjxdG60PBVbVRkCHJGsY4qBIZVOOjG4Q8tpWn57/wZfPUxOg0a1wi XAzm6p2ziv4AbmQM1QIopUnxxc9eUf0oT61nOF5xSTnBeSlFrud4kz6yW0NB0VkX eJ1YRLlsJxJgf+QwpPHDq/bhVwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEgQxjuY 349Jc9kuJfqgscQMqaexMB8GA1UdIwQYMBaAFAAV26A4y8yxUu0XETqgqNXXSI0h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQzU2NC80RjI5RDBDNEM0 MEYxMUVBOUMxNUI0NzBDNEY5QUUwMi9BQlhib0RqTHpMRlM3UmNST3FDbzFkZElq U0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FCWGJvRGpMekxGUzdSY1JPcUNvMWRkSWpTRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0M1NjQvNEYyOUQwQzRDNDBGMTFFQTlDMTVCNDcwQzRGOUFFMDIvNzRDQ0ExM0FE QkU4MTFFQThEMDYzQjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnmJAwDQQCAAIwBwMFACQGV0AwDQYJKoZIhvcNAQELBQAD ggEBABBWH46o5puvbgRhT5eHgA1LfXdPSM4RibsATacV1L+8xkabbllxpBMowawL lsRzty3dX081uOJckUswHZnR1bOND65hecdbxJsBumxcnR2WFO/ZzK5E4ZDUjpKU e11VIfr0Y/6b0IH5MqWbG3hktsXLsQSI2u6ysCH8sEWRCRf0+/9CaJHTfa0LdpBc Q8ExL1HiEJCvAJ4XOSN135j0Sv9BUqDywQnKmx+lEDH9IAEKonz7JDIAz7y7Syyy 0LTd2exl/DqaX7bLaliLnprUama8C3Yu01jdjnpJAdYKgmFnrIh1BBXk+KCDa6Yn uyDgro/MEQfJ1AahDsMVZysMqNY= -----END CERTIFICATE-----Generated at Fri Jul 25 15:43:27 2025 by rpki-client