$ rpki-client -vvf rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/2B17862A82EE11EAB170FD4BC4F9AE02.roa File: 2B17862A82EE11EAB170FD4BC4F9AE02.roa (raw, json) Hash identifier: rShkEGVIbInxuwhM/D99+N9Ifro23DfGNAWpJ5dz2fM= Subject key identifier: A7:B8:6B:FD:2F:F1:A5:C4:C8:4B:9A:26:82:96:13:17:89:38:F9:A4 Certificate issuer: /CN=A91D66A0/serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Certificate serial: 0D47 Authority key identifier: 9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/2B17862A82EE11EAB170FD4BC4F9AE02.roa Signing time: Tue 08 Jul 2025 18:27:46 +0000 ROA not before: Tue 08 Jul 2025 18:27:46 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 18197 IP address blocks: 116.68.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Jul 2025 18:11:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3399 (0xd47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D66A0, serialNumber=9C94A5DCCF6A65B68986C7043846C721BD33BE99 Validity Not Before: Jul 8 18:27:46 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686d6322-c659 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:96:a0:d2:f2:8f:49:9a:60:ee:bb:7d:f1:b8: e1:d9:5f:24:0f:39:ed:d3:20:5c:a3:43:09:83:5e: 9f:18:26:79:02:80:92:b0:83:03:d2:a7:05:51:71: c4:ac:5a:42:44:d7:19:5a:b8:98:19:d3:a5:29:2f: 0a:fb:25:8f:da:3d:5a:94:92:12:cd:b1:68:be:1b: 65:b4:fb:90:c0:0b:14:2d:5d:97:78:4b:af:36:06: 9a:5a:74:1d:10:9b:52:8e:b8:44:2c:14:70:af:06: b4:e1:c8:f3:29:96:e7:b8:02:c6:fa:8f:cb:f6:f5: 7a:c8:3e:02:39:87:00:2d:8c:4d:a4:13:b2:b2:64: 47:e7:f4:a6:cd:c8:d2:f9:38:52:a2:fb:f3:88:36: dc:22:b2:58:63:b0:31:35:1f:a7:5a:d9:a9:c0:9f: c9:a5:5c:58:ad:7a:95:e1:76:c5:62:02:ca:1c:d6: b9:ae:a5:b6:a1:a1:d3:de:2f:71:f7:9e:fe:e6:1b: f2:7a:bf:79:d1:94:10:80:c3:73:93:9c:d1:ae:f8: 09:d5:a4:91:28:85:b1:74:d5:ce:07:9d:a6:5f:92: 74:77:f2:e4:06:63:73:34:47:43:fe:7a:48:55:42: 8c:87:93:c0:77:1b:96:59:b9:fe:4b:eb:52:a4:af: 9a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:B8:6B:FD:2F:F1:A5:C4:C8:4B:9A:26:82:96:13:17:89:38:F9:A4 X509v3 Authority Key Identifier: keyid:9C:94:A5:DC:CF:6A:65:B6:89:86:C7:04:38:46:C7:21:BD:33:BE:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/nJSl3M9qZbaJhscEOEbHIb0zvpk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nJSl3M9qZbaJhscEOEbHIb0zvpk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D66A0/625FF726D9E711E988054016C4F9AE02/2B17862A82EE11EAB170FD4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.68.159.0/24 Signature Algorithm: sha256WithRSAEncryption 65:9c:02:f8:5d:12:63:15:8e:74:71:15:4e:63:ee:55:71:01: 80:9d:71:00:33:8e:06:c9:72:4b:23:00:18:40:e7:61:07:af: f4:0a:56:be:b7:71:12:26:0b:71:ce:c1:d7:6a:9f:07:2f:46: 3f:3c:17:37:b4:b7:77:f0:4b:2b:c6:7f:6b:d8:38:12:89:cf: 45:f3:f0:84:24:dd:a7:af:76:26:16:e0:4c:c0:96:ef:46:37: be:c6:56:a1:4c:4c:15:d8:ec:57:76:34:b3:62:94:4d:d3:b9: d9:34:62:04:db:af:ce:fd:0c:52:8e:fb:1b:86:3a:ad:89:f6: 11:4c:55:97:83:76:23:c4:39:89:3e:e1:16:ce:ff:35:f6:b7: 3e:3b:48:93:f9:1b:e8:9c:99:bf:f0:34:b5:03:85:72:06:b3: fd:c9:1a:79:35:38:e3:21:ae:73:84:10:c9:cc:58:0d:7f:be: 5b:a3:0e:61:ea:26:ba:1e:bf:35:8f:37:17:ae:7b:e2:93:7a: 94:02:88:87:65:7f:ec:f4:23:56:28:d3:66:67:50:86:9c:cb: 3c:f4:be:ed:f3:1f:d3:e2:e0:c9:35:3d:e4:9c:a6:5c:fd:aa: 3d:19:f4:da:e1:e3:4a:ff:c4:1c:16:0d:cc:50:f9:73:ab:2e: f2:f3:2a:8a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDY2QTAxMTAvBgNVBAUTKDlDOTRBNURDQ0Y2QTY1QjY4OTg2QzcwNDM4NDZDNzIx QkQzM0JFOTkwHhcNMjUwNzA4MTgyNzQ2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkNjMyMi1jNjU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7Jag0vKPSZpg7rt98bjh2V8kDznt0yBco0MJg16fGCZ5AoCSsIMD0qcFUXHE rFpCRNcZWriYGdOlKS8K+yWP2j1alJISzbFovhtltPuQwAsULV2XeEuvNgaaWnQd EJtSjrhELBRwrwa04cjzKZbnuALG+o/L9vV6yD4COYcALYxNpBOysmRH5/SmzcjS +ThSovvziDbcIrJYY7AxNR+nWtmpwJ/JpVxYrXqV4XbFYgLKHNa5rqW2oaHT3i9x 957+5hvyer950ZQQgMNzk5zRrvgJ1aSRKIWxdNXOB52mX5J0d/LkBmNzNEdD/npI VUKMh5PAdxuWWbn+S+tSpK+aKQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKe4a/0v 8aXEyEuaJoKWExeJOPmkMB8GA1UdIwQYMBaAFJyUpdzPamW2iYbHBDhGxyG9M76Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjZBMC82MjVGRjcyNkQ5 RTcxMUU5ODgwNTQwMTZDNEY5QUUwMi9uSlNsM005cVpiYUpoc2NFT0ViSEliMHp2 cGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25KU2wzTTlxWmJhSmhzY0VPRWJISWIwenZway5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDY2QTAvNjI1RkY3MjZEOUU3MTFFOTg4MDU0MDE2QzRGOUFFMDIvMkIxNzg2MkE4 MkVFMTFFQUIxNzBGRDRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0RJ8wDQYJKoZIhvcNAQELBQADggEBAGWcAvhdEmMVjnRx FU5j7lVxAYCdcQAzjgbJcksjABhA52EHr/QKVr63cRImC3HOwddqnwcvRj88Fze0 t3fwSyvGf2vYOBKJz0Xz8IQk3aevdiYW4EzAlu9GN77GVqFMTBXY7Fd2NLNilE3T udk0YgTbr879DFKO+xuGOq2J9hFMVZeDdiPEOYk+4RbO/zX2tz47SJP5G+icmb/w NLUDhXIGs/3JGnk1OOMhrnOEEMnMWA1/vlujDmHqJroevzWPNxeue+KTepQCiIdl f+z0I1Yo02ZnUIacyzz0vu3zH9Pi4Mk1PeScplz9qj0Z9Nrh40r/xBwWDcxQ+XOr LvLzKoo= -----END CERTIFICATE-----Generated at Thu Jul 24 00:15:51 2025 by rpki-client