$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/FF1FE402898011EEB3403779C4F9AE02.roa File: FF1FE402898011EEB3403779C4F9AE02.roa (raw, json) Hash identifier: kfUd7cLCmHmQ/k7ENeRjEkFUrum5OXV/qc4Vt8EOcIQ= Subject key identifier: 6C:7E:6A:87:EB:05:E6:86:F4:94:6A:B2:FC:15:FE:5C:97:85:8D:51 Certificate issuer: /CN=A91CE524/serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Certificate serial: 0135 Authority key identifier: 63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/FF1FE402898011EEB3403779C4F9AE02.roa Signing time: Wed 09 Jul 2025 05:41:15 +0000 ROA not before: Wed 09 Jul 2025 05:41:15 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152106 IP address blocks: 202.36.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:32:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 309 (0x135) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE524, serialNumber=637902E1BA96881D472EECADFA45B5577E3C1C31 Validity Not Before: Jul 9 05:41:15 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686e00fb-604f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:02:eb:44:0e:bb:a4:32:34:31:fe:0f:cd:c1: 8c:f4:19:cc:a1:ba:72:6e:81:f6:4a:cd:cc:e2:d6: 58:a2:c2:fe:3f:43:04:f2:ba:7d:be:6f:1b:b6:20: 93:67:49:4d:5a:67:88:8c:c4:2e:c4:e6:d4:f8:a9: 59:08:19:6a:13:15:f2:ca:c2:b9:f4:e3:78:d0:16: f9:80:75:0f:d0:14:b7:18:41:3b:f1:f6:e8:09:ad: 3c:dc:96:b0:6c:f9:82:74:c8:6a:a3:1b:05:76:33: f9:43:a7:36:49:d5:70:28:45:bb:71:91:70:79:8f: d3:5c:28:1a:a6:55:bb:70:81:99:4c:5d:3a:f2:c9: be:d2:6b:58:01:47:4b:95:9d:84:8c:c5:3b:50:d2: 95:58:1e:ee:30:67:c8:4f:66:7d:27:06:28:53:1e: ec:88:22:94:e4:64:2e:40:85:97:5c:49:f3:be:1e: 70:2e:75:87:fe:8d:a1:56:69:8c:da:82:61:37:02: 9b:c2:a7:12:2b:a4:88:6d:1a:49:2a:7f:a0:15:75: 34:5a:5a:35:1d:14:d4:33:fe:8a:a0:a0:2e:8a:f4: 5c:7f:45:51:54:d8:f4:17:89:f4:b0:55:8a:f4:e7: 4c:da:94:69:6c:56:ab:79:1c:16:e5:ed:4e:01:5f: 33:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:7E:6A:87:EB:05:E6:86:F4:94:6A:B2:FC:15:FE:5C:97:85:8D:51 X509v3 Authority Key Identifier: keyid:63:79:02:E1:BA:96:88:1D:47:2E:EC:AD:FA:45:B5:57:7E:3C:1C:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/Y3kC4bqWiB1HLuyt-kW1V348HDE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Y3kC4bqWiB1HLuyt-kW1V348HDE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE524/0C2C2BD688C511EEA8311C71C4F9AE02/FF1FE402898011EEB3403779C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.228.0/24 Signature Algorithm: sha256WithRSAEncryption 88:b1:c8:3b:38:4f:67:10:69:cb:4d:25:e5:ee:8b:cc:0c:9c: d0:9a:de:28:33:8a:90:cf:86:b1:9f:17:1a:6a:39:2a:87:5a: 6f:c5:c5:f7:c1:c1:c6:76:4a:7b:cf:e1:8f:30:f9:b4:f5:18: 44:e4:b4:aa:78:a5:78:7d:1c:53:68:f0:b4:1f:d7:e7:ab:ed: b9:e7:44:91:45:9b:6b:cb:31:2e:94:46:d8:4f:8f:d7:10:f7: f7:e1:33:0f:1f:72:7e:a1:6b:de:89:23:69:07:5e:aa:a1:84: 0d:61:a9:44:0b:08:e3:08:bc:ed:7d:e0:5d:a7:d2:ee:36:75: 55:ea:de:bd:71:73:ff:1b:a6:a0:6c:25:7d:25:57:f4:98:c8: d2:4e:a6:ad:8f:9c:a4:1d:66:5b:11:2d:b1:43:fd:e6:9a:a9: 61:c2:84:c3:67:eb:a7:53:b4:9c:75:f8:84:cd:5e:2f:d7:61: 07:d6:6b:87:e6:19:93:dd:59:53:7f:d6:05:72:7e:f9:c1:ac: 4c:25:e0:dd:a3:ff:42:f0:cc:53:97:f6:6c:c7:82:9a:61:72: 33:4e:30:27:2e:74:46:2f:bd:49:ef:ef:94:36:2d:b8:d1:f1: 10:b9:e4:e4:c0:e9:45:27:23:aa:6b:32:94:1c:14:45:74:db: 20:3e:e9:b6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICATUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1MjQxMTAvBgNVBAUTKDYzNzkwMkUxQkE5Njg4MUQ0NzJFRUNBREZBNDVCNTU3 N0UzQzFDMzEwHhcNMjUwNzA5MDU0MTE1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZlMDBmYi02MDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2wLrRA67pDI0Mf4PzcGM9BnMobpyboH2Ss3M4tZYosL+P0ME8rp9vm8btiCT Z0lNWmeIjMQuxObU+KlZCBlqExXyysK59ON40Bb5gHUP0BS3GEE78fboCa083Jaw bPmCdMhqoxsFdjP5Q6c2SdVwKEW7cZFweY/TXCgaplW7cIGZTF068sm+0mtYAUdL lZ2EjMU7UNKVWB7uMGfIT2Z9JwYoUx7siCKU5GQuQIWXXEnzvh5wLnWH/o2hVmmM 2oJhNwKbwqcSK6SIbRpJKn+gFXU0Wlo1HRTUM/6KoKAuivRcf0VRVNj0F4n0sFWK 9OdM2pRpbFareRwW5e1OAV8zNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGx+aofr BeaG9JRqsvwV/lyXhY1RMB8GA1UdIwQYMBaAFGN5AuG6logdRy7srfpFtVd+PBwx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTUyNC8wQzJDMkJENjg4 QzUxMUVFQTgzMTFDNzFDNEY5QUUwMi9ZM2tDNGJxV2lCMUhMdXl0LWtXMVYzNDhI REUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1kza0M0YnFXaUIxSEx1eXQta1cxVjM0OEhERS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U1MjQvMEMyQzJCRDY4OEM1MTFFRUE4MzExQzcxQzRGOUFFMDIvRkYxRkU0MDI4 OTgwMTFFRUIzNDAzNzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJOQwDQYJKoZIhvcNAQELBQADggEBAIixyDs4T2cQactN JeXui8wMnNCa3igzipDPhrGfFxpqOSqHWm/FxffBwcZ2SnvP4Y8w+bT1GETktKp4 pXh9HFNo8LQf1+er7bnnRJFFm2vLMS6URthPj9cQ9/fhMw8fcn6ha96JI2kHXqqh hA1hqUQLCOMIvO194F2n0u42dVXq3r1xc/8bpqBsJX0lV/SYyNJOpq2PnKQdZlsR LbFD/eaaqWHChMNn66dTtJx1+ITNXi/XYQfWa4fmGZPdWVN/1gVyfvnBrEwl4N2j /0LwzFOX9mzHgpphcjNOMCcudEYvvUnv75Q2LbjR8RC55OTA6UUnI6prMpQcFEV0 2yA+6bY= -----END CERTIFICATE-----Generated at Mon Jul 21 07:08:55 2025 by rpki-client