$ rpki-client -vvf rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/D0D94718CB8111E89EDE697DC4F9AE02.roa File: D0D94718CB8111E89EDE697DC4F9AE02.roa (raw, json) Hash identifier: fzmHVxiTK7D8PG5yindwGef8+csbEOVTRn9jS+V30ac= Subject key identifier: AE:21:EF:14:CB:2B:AD:54:8A:0B:D3:BF:6B:F8:1D:69:8A:22:02:A2 Certificate issuer: /CN=A91E46B1/serialNumber=3007844AAA199BA9C88D6404C3DFE876E1E39FC6 Certificate serial: 14A5 Authority key identifier: 30:07:84:4A:AA:19:9B:A9:C8:8D:64:04:C3:DF:E8:76:E1:E3:9F:C6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAeESqoZm6nIjWQEw9_oduHjn8Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/D0D94718CB8111E89EDE697DC4F9AE02.roa Signing time: Tue 08 Jul 2025 17:25:31 +0000 ROA not before: Tue 08 Jul 2025 17:25:31 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 23779 IP address blocks: 138.243.0.0/16 maxlen: 31 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.crl rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAeESqoZm6nIjWQEw9_oduHjn8Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 17:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5285 (0x14a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E46B1, serialNumber=3007844AAA199BA9C88D6404C3DFE876E1E39FC6 Validity Not Before: Jul 8 17:25:31 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=686d548a-e178 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:42:08:2f:c9:a6:e5:31:73:ee:77:b3:8d:5a: 5d:56:14:b9:98:b1:a0:a0:19:d2:7a:82:cc:de:13: 16:84:16:38:27:6f:f7:90:38:6f:af:21:ba:57:19: 98:0f:8b:7d:d9:a4:bf:43:45:4a:da:e9:32:67:9c: 91:69:b0:12:52:a4:b3:bb:18:83:71:a1:ba:1e:9f: 85:13:0b:17:2f:66:8b:6c:52:d0:d0:e7:64:17:5e: cb:da:55:b8:8a:68:2f:8f:47:23:2f:da:34:ad:b5: ba:34:80:96:3e:55:45:33:c8:21:c9:59:e6:ad:3c: 0b:73:12:14:b7:cd:38:c0:98:d8:68:68:08:47:cd: 4e:1d:d3:90:fe:dc:46:82:33:70:fa:77:e9:ce:8d: 87:b8:50:b0:52:bb:3e:ea:df:71:ee:c7:55:66:93: 40:bc:c7:40:ba:eb:21:86:7e:a4:17:26:b0:8c:0e: 6e:ea:df:70:fb:81:ad:9b:be:1c:0d:22:1c:ec:17: 9e:21:80:67:27:fb:d0:6b:60:a1:9c:ff:54:4f:3f: 80:68:39:4f:e1:3f:01:f9:da:77:97:b6:f4:13:88: db:86:b1:10:1d:5e:1c:76:d2:0b:70:9f:be:ea:34: be:94:b1:75:c5:e1:bb:14:5b:40:38:07:d2:24:7e: 38:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:21:EF:14:CB:2B:AD:54:8A:0B:D3:BF:6B:F8:1D:69:8A:22:02:A2 X509v3 Authority Key Identifier: keyid:30:07:84:4A:AA:19:9B:A9:C8:8D:64:04:C3:DF:E8:76:E1:E3:9F:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/MAeESqoZm6nIjWQEw9_oduHjn8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MAeESqoZm6nIjWQEw9_oduHjn8Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E46B1/F00DF366679711E8A7891C48C4F9AE02/D0D94718CB8111E89EDE697DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.243.0.0/16 Signature Algorithm: sha256WithRSAEncryption c3:bd:69:f2:dd:dd:53:4c:f6:b9:50:74:d7:0d:62:32:36:cf: 5e:e1:73:4e:96:e0:c0:1e:a4:94:46:e8:ec:1b:72:78:50:78: d4:71:07:34:2d:05:70:ae:9b:18:f0:77:9e:1e:8e:3c:ed:68: 1e:7b:40:5a:71:4b:63:8c:16:70:a4:fa:54:90:f1:ea:da:78: 58:09:e6:d0:60:8b:bf:81:b0:4c:04:32:2e:9c:92:e4:da:10: 57:13:6c:76:35:d6:a3:69:19:09:e7:b1:df:4d:60:a0:ff:6f: e3:89:04:4c:d8:24:8d:df:72:5c:7f:d9:cb:3f:85:e0:75:20: 4d:a7:c0:b2:9f:19:59:e7:db:f0:6a:82:b0:b8:f8:0e:5d:68: e5:23:d1:ea:5d:f0:4f:f0:b6:42:f4:b9:9c:49:68:e0:2a:9b: e7:68:c0:cd:4e:26:d1:95:8f:54:5d:5a:1f:4b:6b:7f:a5:24: 52:10:2c:9d:fd:9a:ee:9f:18:13:1d:d8:84:43:24:8c:7c:93: f8:51:35:01:4c:fe:35:1f:e1:04:e1:a3:68:31:48:4d:b9:c8: b9:01:f3:76:2c:1b:a0:2b:2c:cf:d9:56:a3:3e:22:c2:33:d8: 0b:28:e1:67:54:2b:f0:e2:36:64:cc:aa:15:eb:e6:cf:31:10: f2:11:03:61 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICFKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTQ2QjExMTAvBgNVBAUTKDMwMDc4NDRBQUExOTlCQTlDODhENjQwNEMzREZFODc2 RTFFMzlGQzYwHhcNMjUwNzA4MTcyNTMxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODZkNTQ4YS1lMTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvEIIL8mm5TFz7nezjVpdVhS5mLGgoBnSeoLM3hMWhBY4J2/3kDhvryG6VxmY D4t92aS/Q0VK2ukyZ5yRabASUqSzuxiDcaG6Hp+FEwsXL2aLbFLQ0OdkF17L2lW4 imgvj0cjL9o0rbW6NICWPlVFM8ghyVnmrTwLcxIUt804wJjYaGgIR81OHdOQ/txG gjNw+nfpzo2HuFCwUrs+6t9x7sdVZpNAvMdAuushhn6kFyawjA5u6t9w+4Gtm74c DSIc7BeeIYBnJ/vQa2ChnP9UTz+AaDlP4T8B+dp3l7b0E4jbhrEQHV4cdtILcJ++ 6jS+lLF1xeG7FFtAOAfSJH44xwIDAQABo4IClDCCApAwHQYDVR0OBBYEFK4h7xTL K61UigvTv2v4HWmKIgKiMB8GA1UdIwQYMBaAFDAHhEqqGZupyI1kBMPf6Hbh45/G MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNDZCMS9GMDBERjM2NjY3 OTcxMUU4QTc4OTFDNDhDNEY5QUUwMi9NQWVFU3FvWm02bklqV1FFdzlfb2R1SGpu OFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL01BZUVTcW9abTZuSWpXUUV3OV9vZHVIam44WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTQ2QjEvRjAwREYzNjY2Nzk3MTFFOEE3ODkxQzQ4QzRGOUFFMDIvRDBEOTQ3MThD QjgxMTFFODlFREU2OTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCK8zANBgkqhkiG9w0BAQsFAAOCAQEAw71p8t3dU0z2uVB0 1w1iMjbPXuFzTpbgwB6klEbo7BtyeFB41HEHNC0FcK6bGPB3nh6OPO1oHntAWnFL Y4wWcKT6VJDx6tp4WAnm0GCLv4GwTAQyLpyS5NoQVxNsdjXWo2kZCeex301goP9v 44kETNgkjd9yXH/Zyz+F4HUgTafAsp8ZWefb8GqCsLj4Dl1o5SPR6l3wT/C2QvS5 nElo4Cqb52jAzU4m0ZWPVF1aH0trf6UkUhAsnf2a7p8YEx3YhEMkjHyT+FE1AUz+ NR/hBOGjaDFITbnIuQHzdiwboCssz9lWoz4iwjPYCyjhZ1Qr8OI2ZMyqFevmzzEQ 8hEDYQ== -----END CERTIFICATE-----Generated at Sun Jul 20 07:37:29 2025 by rpki-client