$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/536CEA945D5D11F0A20A8B47C4F9AE02.roa File: 536CEA945D5D11F0A20A8B47C4F9AE02.roa (raw, json) Hash identifier: NudhcCG6U8c/iVjiv9Q5GA7zP2bSr5Lt2Lyl6qOq+zo= Subject key identifier: C7:D0:3B:A9:98:50:9F:E6:BE:E5:34:98:BC:4C:D8:59:00:BC:04:91 Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Certificate serial: 08CA Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/536CEA945D5D11F0A20A8B47C4F9AE02.roa Signing time: Thu 10 Jul 2025 07:13:06 +0000 ROA not before: Thu 10 Jul 2025 07:13:06 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 21859 IP address blocks: 169.136.82.0/24 maxlen: 24 169.136.85.0/24 maxlen: 24 169.136.105.0/24 maxlen: 24 169.136.109.0/24 maxlen: 24 169.136.122.0/24 maxlen: 24 169.136.128.0/24 maxlen: 24 169.136.129.0/24 maxlen: 24 169.136.130.0/24 maxlen: 24 169.136.134.0/24 maxlen: 24 169.136.135.0/24 maxlen: 24 169.136.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 21:07:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2250 (0x8ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A, serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Validity Not Before: Jul 10 07:13:06 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686f6802-eaca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:26:4e:7c:b6:e8:64:a2:21:76:31:91:51:7a: b4:b2:d0:6e:f8:2b:36:39:36:ca:a9:88:c7:53:2e: d2:66:89:db:45:40:18:d3:5f:97:63:46:bc:76:f7: 8f:3b:e3:9c:99:9c:71:63:e7:0f:32:6f:be:41:06: 2e:f4:79:01:9f:44:8c:de:6f:f9:19:a2:d6:ad:e0: 26:08:ee:d1:5d:ff:1a:61:59:74:1b:71:88:21:3a: 99:54:2f:b5:ae:04:14:7e:89:1b:9d:1f:40:8f:de: 2b:16:62:ec:58:1f:b9:7a:f4:01:2c:de:d3:49:af: af:a0:4c:85:28:f3:06:9a:ef:c2:db:0d:b6:11:be: f7:7c:b4:22:be:8e:25:36:ce:e7:92:3d:9e:27:ca: be:c5:c1:a5:f6:73:58:6f:18:a3:23:c7:5d:c5:a0: 7d:e2:d8:81:d0:b1:2a:00:5a:2f:f7:54:11:94:43: 2a:6a:cf:36:d7:e8:cc:29:20:73:98:e4:1f:5a:60: cd:63:fd:99:6a:13:68:71:1f:7d:46:c0:04:2f:2c: 9f:40:00:c5:93:c6:c1:2e:a1:ec:01:d5:23:1b:8c: c7:00:3a:ca:9b:3f:da:76:48:8e:94:5b:5b:12:46: 36:59:d8:fb:79:58:8a:b0:04:4f:a5:da:98:07:9f: 2a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:D0:3B:A9:98:50:9F:E6:BE:E5:34:98:BC:4C:D8:59:00:BC:04:91 X509v3 Authority Key Identifier: keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/536CEA945D5D11F0A20A8B47C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 169.136.82.0/24 169.136.85.0/24 169.136.105.0/24 169.136.109.0/24 169.136.122.0/24 169.136.128.0-169.136.130.255 169.136.134.0/23 169.136.191.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:0f:3c:42:b2:53:02:9d:f6:7f:cc:17:b0:b2:ee:4b:a2:73: c7:f1:a4:02:ef:b2:91:a0:ae:31:31:0e:96:87:98:4d:b8:62: 6f:82:44:12:d5:bd:44:65:3a:75:d6:26:b2:b1:97:90:3b:db: 47:6b:3a:5b:39:b4:fb:f2:f9:91:ba:4e:5a:82:c7:2d:56:f9: e8:15:8e:51:10:68:30:c3:57:3b:a2:1d:3e:28:71:d3:a3:9b: e5:11:3c:33:16:ca:6b:74:ef:1f:6c:4b:fa:b4:1e:04:6f:04: 8b:24:e9:7a:36:c7:9c:a7:a0:20:a1:73:04:7c:bf:7f:60:c9: 7c:96:e4:0f:bd:da:f2:97:cc:79:b9:cb:ae:16:56:90:ad:be: 83:60:88:1d:04:ad:63:9d:ea:6b:6d:77:31:6d:4c:15:aa:c3: f5:d3:ae:71:70:83:da:0c:f7:0b:5e:d3:8d:6f:f3:aa:71:af: 3c:b2:4e:43:ff:e1:20:d4:b8:49:93:b5:a5:28:fe:b8:ea:ef: b2:4f:a2:c4:49:07:32:16:15:06:c8:d1:5d:1a:d1:6a:c7:ee: 2c:9c:cf:b7:e1:93:d6:b3:ae:2c:9d:53:54:0c:ab:56:3d:17: 2f:3d:97:fe:d4:18:6a:80:d6:2d:44:9f:f7:82:d9:fb:02:ae: e0:a8:f6:d1 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgICCMowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDdFMjQ0MzEwRDdBNDU2RUIxMjdCOTI2QzQyRjI2RDc5 RTlBQ0RCODgwHhcNMjUwNzEwMDcxMzA2WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZmNjgwMi1lYWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+CZOfLboZKIhdjGRUXq0stBu+Cs2OTbKqYjHUy7SZonbRUAY01+XY0a8dveP O+OcmZxxY+cPMm++QQYu9HkBn0SM3m/5GaLWreAmCO7RXf8aYVl0G3GIITqZVC+1 rgQUfokbnR9Aj94rFmLsWB+5evQBLN7TSa+voEyFKPMGmu/C2w22Eb73fLQivo4l Ns7nkj2eJ8q+xcGl9nNYbxijI8ddxaB94tiB0LEqAFov91QRlEMqas821+jMKSBz mOQfWmDNY/2ZahNocR99RsAELyyfQADFk8bBLqHsAdUjG4zHADrKmz/adkiOlFtb EkY2Wdj7eViKsARPpdqYB58qfQIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFMfQO6mY UJ/mvuU0mLxM2FkAvASRMB8GA1UdIwQYMBaAFH4kQxDXpFbrEnuSbELybXnprNuI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GN0RGQTcyRUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9maVJERU5la1Z1c1NlNUpzUXZKdGVlbXMy NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZpUkRFTmVrVnVzU2U1SnNRdkp0ZWVtczI0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRjdERkE3MkVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvNTM2Q0VBOTQ1 RDVEMTFGMEEyMEE4QjQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUQYIKwYBBQUHAQcBAf8E QjBAMD4EAgABMDgDBACpiFIDBACpiFUDBACpiGkDBACpiG0DBACpiHowDAMEB6mI gAMEAKmIggMEAamIhgMEAKmIvzANBgkqhkiG9w0BAQsFAAOCAQEAPw88QrJTAp32 f8wXsLLuS6Jzx/GkAu+ykaCuMTEOloeYTbhib4JEEtW9RGU6ddYmsrGXkDvbR2s6 Wzm0+/L5kbpOWoLHLVb56BWOURBoMMNXO6IdPihx06Ob5RE8MxbKa3TvH2xL+rQe BG8EiyTpejbHnKegIKFzBHy/f2DJfJbkD73a8pfMebnLrhZWkK2+g2CIHQStY53q a213MW1MFarD9dOucXCD2gz3C17TjW/zqnGvPLJOQ//hINS4SZO1pSj+uOrvsk+i xEkHMhYVBsjRXRrRasfuLJzPt+GT1rOuLJ1TVAyrVj0XLz2X/tQYaoDWLUSf94LZ +wKu4Kj20Q== -----END CERTIFICATE-----Generated at Sun Jul 20 18:56:13 2025 by rpki-client