$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/B390F78E5CB611EE97D70B78C4F9AE02.roa File: B390F78E5CB611EE97D70B78C4F9AE02.roa (raw, json) Hash identifier: xPqI8byEZA0kbH+t1Ot9il53KHXLD5VMa8Lng8oAAuU= Subject key identifier: 65:2C:70:2D:C9:F8:63:2C:E6:9C:F1:48:42:5E:F1:5F:9A:92:D0:E1 Certificate issuer: /CN=A91CFC1C/serialNumber=3645CD90E3F43C012DAB3BF3972E86BC94DDD454 Certificate serial: 0158 Authority key identifier: 36:45:CD:90:E3:F4:3C:01:2D:AB:3B:F3:97:2E:86:BC:94:DD:D4:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkXNkOP0PAEtqzvzly6GvJTd1FQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/B390F78E5CB611EE97D70B78C4F9AE02.roa Signing time: Sat 05 Jul 2025 04:40:28 +0000 ROA not before: Sat 05 Jul 2025 04:40:28 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 58421 IP address blocks: 202.49.208.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/NkXNkOP0PAEtqzvzly6GvJTd1FQ.crl rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/NkXNkOP0PAEtqzvzly6GvJTd1FQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkXNkOP0PAEtqzvzly6GvJTd1FQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 04:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 344 (0x158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFC1C, serialNumber=3645CD90E3F43C012DAB3BF3972E86BC94DDD454 Validity Not Before: Jul 5 04:40:28 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6868acbc-8ae5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8d:38:42:48:e8:a9:03:24:4c:8d:1b:d9:b7: 77:11:4c:23:88:21:d3:6e:d1:fe:c9:33:d9:4c:4a: f0:d9:de:ce:6e:87:c9:2d:4e:4d:18:88:8a:1b:96: f0:e9:16:54:3e:b5:ed:10:fd:d0:f2:a2:b8:92:1d: 8b:16:c2:cc:d2:9d:92:15:71:8c:b5:6d:02:8b:67: dd:4a:c0:2e:93:fb:a6:55:55:9a:36:42:47:35:a4: f8:01:a0:98:36:cd:88:54:bf:89:c4:ea:0a:7f:97: dd:1d:83:50:f6:03:52:ab:23:08:99:82:38:73:dc: d9:3e:ac:fc:9e:d2:c5:f2:f3:a9:3b:ea:90:cb:d4: b6:5a:90:2b:51:4b:c2:be:2b:e5:bc:20:22:30:d4: ef:ea:43:a0:a6:b3:21:05:5f:52:5a:3a:d0:81:38: 46:e0:d6:17:23:1d:a8:9e:3f:bf:83:c9:55:1f:98: 82:99:75:ab:ff:63:bc:b7:2c:25:07:e3:27:2d:e7: 6e:48:60:74:df:31:6c:20:5b:91:3a:36:f0:5a:fa: 07:90:7b:76:03:0d:9e:21:52:19:a8:de:03:6e:f8: f2:55:60:f0:a5:83:dc:f8:f5:60:fa:72:00:6f:0d: a8:92:9a:97:b8:60:f5:30:89:3d:3a:43:8f:e8:04: 22:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:2C:70:2D:C9:F8:63:2C:E6:9C:F1:48:42:5E:F1:5F:9A:92:D0:E1 X509v3 Authority Key Identifier: keyid:36:45:CD:90:E3:F4:3C:01:2D:AB:3B:F3:97:2E:86:BC:94:DD:D4:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/NkXNkOP0PAEtqzvzly6GvJTd1FQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkXNkOP0PAEtqzvzly6GvJTd1FQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/B390F78E5CB611EE97D70B78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.49.208.0/21 Signature Algorithm: sha256WithRSAEncryption a0:19:94:a8:e3:64:7a:eb:7f:a8:4c:4b:2e:0d:b0:85:3f:9c: 0f:57:ec:d3:aa:2e:71:4c:1e:be:48:e3:84:ac:14:d4:84:ee: d3:70:37:30:ce:cd:55:aa:f1:59:e3:50:b9:5a:2b:c4:1a:c7: a3:ca:76:5f:78:26:30:f9:66:64:67:68:bc:67:c4:05:c4:cb: e8:e8:49:6f:f0:0c:2f:b6:40:0e:50:66:a4:72:04:29:eb:96: 95:5f:2b:a7:21:7e:8c:45:2c:9d:b2:72:92:3e:63:5a:10:6a: 9e:a2:16:7c:7d:96:dc:4e:14:b6:96:95:ce:61:10:4f:e5:45: 59:b3:3e:70:05:7a:2f:5f:50:5a:99:a7:36:22:32:ce:dc:11: d9:fc:e7:c7:21:a7:4a:f4:46:f1:85:24:55:49:46:a1:dc:c6: 6e:42:6b:9a:c6:5a:a1:29:ef:be:ee:ee:79:99:1f:17:75:29: 0f:2b:ba:6a:5b:8a:43:97:fe:72:2b:fe:10:ee:c5:a1:26:28: 1e:27:2c:76:47:fe:76:3b:08:f6:99:46:a4:54:51:52:ef:1f: db:19:1c:dd:7f:4e:6b:4a:c7:6f:fb:f7:bf:f9:d1:f0:98:ad: 2b:14:09:4a:40:f4:9f:3a:df:67:44:6f:4f:53:ac:4c:d5:8c: c3:ca:cd:35 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAVgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZDMUMxMTAvBgNVBAUTKDM2NDVDRDkwRTNGNDNDMDEyREFCM0JGMzk3MkU4NkJD OTREREQ0NTQwHhcNMjUwNzA1MDQ0MDI4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY4YWNiYy04YWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvY04QkjoqQMkTI0b2bd3EUwjiCHTbtH+yTPZTErw2d7ObofJLU5NGIiKG5bw 6RZUPrXtEP3Q8qK4kh2LFsLM0p2SFXGMtW0Ci2fdSsAuk/umVVWaNkJHNaT4AaCY Ns2IVL+JxOoKf5fdHYNQ9gNSqyMImYI4c9zZPqz8ntLF8vOpO+qQy9S2WpArUUvC vivlvCAiMNTv6kOgprMhBV9SWjrQgThG4NYXIx2onj+/g8lVH5iCmXWr/2O8tywl B+MnLeduSGB03zFsIFuROjbwWvoHkHt2Aw2eIVIZqN4DbvjyVWDwpYPc+PVg+nIA bw2okpqXuGD1MIk9OkOP6AQi5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGUscC3J +GMs5pzxSEJe8V+aktDhMB8GA1UdIwQYMBaAFDZFzZDj9DwBLas785cuhryU3dRU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkMxQy8zQzE0MkIxNjU3 RkUxMUVFQUE1NTMwNjBDNEY5QUUwMi9Oa1hOa09QMFBBRXRxenZ6bHk2R3ZKVGQx RlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05rWE5rT1AwUEFFdHF6dnpseTZHdkpUZDFGUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZDMUMvM0MxNDJCMTY1N0ZFMTFFRUFBNTUzMDYwQzRGOUFFMDIvQjM5MEY3OEU1 Q0I2MTFFRTk3RDcwQjc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKMdAwDQYJKoZIhvcNAQELBQADggEBAKAZlKjjZHrrf6hM Sy4NsIU/nA9X7NOqLnFMHr5I44SsFNSE7tNwNzDOzVWq8VnjULlaK8Qax6PKdl94 JjD5ZmRnaLxnxAXEy+joSW/wDC+2QA5QZqRyBCnrlpVfK6chfoxFLJ2ycpI+Y1oQ ap6iFnx9ltxOFLaWlc5hEE/lRVmzPnAFei9fUFqZpzYiMs7cEdn858chp0r0RvGF JFVJRqHcxm5Ca5rGWqEp777u7nmZHxd1KQ8rumpbikOX/nIr/hDuxaEmKB4nLHZH /nY7CPaZRqRUUVLvH9sZHN1/TmtKx2/797/50fCYrSsUCUpA9J8632dEb09TrEzV jMPKzTU= -----END CERTIFICATE-----Generated at Tue Jul 22 11:53:16 2025 by rpki-client