$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/A3F69D08606D11F0AFBFBA71C4F9AE02.roa File: A3F69D08606D11F0AFBFBA71C4F9AE02.roa (raw, json) Hash identifier: Wh2rdXz596XArZ4ildyIHGZ323rhgJZOySWgiSbVwpc= Subject key identifier: 33:CA:2C:13:1A:EF:54:33:D2:2C:52:01:77:0F:40:4C:22:EC:C4:7E Certificate issuer: /CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Certificate serial: 061F Authority key identifier: 25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/A3F69D08606D11F0AFBFBA71C4F9AE02.roa Signing time: Mon 14 Jul 2025 04:47:27 +0000 ROA not before: Mon 14 Jul 2025 04:47:27 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45458 IP address blocks: 14.207.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:52:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1567 (0x61f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7561, serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Validity Not Before: Jul 14 04:47:27 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=68748bde-e530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5a:a4:36:da:d8:27:d6:38:b3:0d:d5:29:b4: cd:14:d4:1e:8e:ba:e8:c9:cf:c9:fe:0b:d6:db:24: 85:6b:b2:a8:63:14:c8:43:08:99:da:5c:b5:41:09: 08:71:74:73:49:7d:d1:aa:4a:e5:31:07:00:93:2e: a6:cf:53:f4:a3:5f:61:07:f4:4a:59:3d:eb:07:b2: 5f:f5:0f:b5:9e:f3:38:21:68:37:49:3c:e4:84:21: 75:95:88:db:06:c9:6e:b3:9e:c9:2f:f9:ab:cb:8a: cd:75:40:c7:f0:17:46:20:f6:5d:e1:02:6c:17:1f: a0:68:c8:60:dd:b5:bf:42:7a:a5:4b:97:71:47:69: 8d:cc:84:37:a4:92:28:b3:14:a4:03:c6:f4:b7:17: 00:2d:8e:f5:79:82:97:44:38:39:23:58:03:1b:5e: 63:74:96:47:a3:38:a2:46:b2:a7:3e:a8:54:89:a3: dd:4f:28:85:57:4a:05:cc:72:af:90:ae:96:03:29: a4:96:10:77:d4:c9:0e:29:a7:dc:36:e6:8d:d0:51: ea:c0:c7:62:4c:d1:73:7d:61:d2:a4:14:43:13:35: 26:88:51:c7:bc:65:b2:35:63:8f:c1:d2:eb:09:5e: 54:6d:e6:de:5a:4e:45:df:1c:de:31:1b:59:dd:de: be:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:CA:2C:13:1A:EF:54:33:D2:2C:52:01:77:0F:40:4C:22:EC:C4:7E X509v3 Authority Key Identifier: keyid:25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/A3F69D08606D11F0AFBFBA71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.207.7.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:62:df:11:6c:7f:92:3f:23:29:b3:7a:ab:bb:dc:30:32:df: 04:1a:87:a6:4f:1f:1a:17:ba:0c:e2:60:40:57:66:2b:8c:d5: 7b:b1:9e:63:3c:c0:c3:ee:4a:be:37:da:1f:44:cb:df:7b:54: cd:52:56:4d:88:4f:9f:45:c8:6f:35:72:85:7b:37:fb:75:33: dc:6e:37:1b:78:ad:2f:68:24:a2:13:64:6d:8f:e1:5f:da:26: 25:d5:87:ae:fd:81:bf:1c:51:5e:81:66:31:06:98:49:63:5e: 4f:6b:dd:bd:79:e8:0d:f9:69:f4:ef:19:b7:d3:44:38:63:9c: e3:42:6c:e5:84:52:9d:a0:24:ed:11:96:cd:0a:1b:9e:60:80: 0b:a0:d3:80:08:0e:0e:69:a0:42:ca:63:76:97:6b:b8:ff:65: b6:3f:ac:d8:54:a8:46:ac:f7:b4:c8:c7:0d:66:a8:06:94:79: 88:13:79:94:06:7b:f9:93:6b:d8:3b:f2:dd:5d:f9:97:70:c8: 39:20:b5:95:37:4a:35:2b:6e:f4:79:f4:23:db:0f:71:cd:71: 0a:7f:82:4c:e2:91:d7:10:49:b1:11:9d:48:67:a3:d2:6e:0e: 97:25:c0:45:2e:ee:24:74:97:36:13:a0:a5:97:db:a6:a5:25: b9:62:8b:6c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBh8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NjExMTAvBgNVBAUTKDI1QkM3RDRERTc3QkQwMUIzRDE5MTU4NzY5NkU1QUZE RDhDRUNEMDQwHhcNMjUwNzE0MDQ0NzI3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc0OGJkZS1lNTMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0lqkNtrYJ9Y4sw3VKbTNFNQejrroyc/J/gvW2ySFa7KoYxTIQwiZ2ly1QQkI cXRzSX3RqkrlMQcAky6mz1P0o19hB/RKWT3rB7Jf9Q+1nvM4IWg3STzkhCF1lYjb Bslus57JL/mry4rNdUDH8BdGIPZd4QJsFx+gaMhg3bW/QnqlS5dxR2mNzIQ3pJIo sxSkA8b0txcALY71eYKXRDg5I1gDG15jdJZHoziiRrKnPqhUiaPdTyiFV0oFzHKv kK6WAymklhB31MkOKafcNuaN0FHqwMdiTNFzfWHSpBRDEzUmiFHHvGWyNWOPwdLr CV5UbebeWk5F3xzeMRtZ3d6+KwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDPKLBMa 71Qz0ixSAXcPQEwi7MR+MB8GA1UdIwQYMBaAFCW8fU3ne9AbPRkVh2luWv3Yzs0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU2MS9BMjZFMDZFMDA1 NEMxMUVDQkRCNEZFNDZDNEY5QUUwMi9KYng5VGVkNzBCczlHUldIYVc1YV9kak96 UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pieDlUZWQ3MEJzOUdSV0hhVzVhX2RqT3pRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc1NjEvQTI2RTA2RTAwNTRDMTFFQ0JEQjRGRTQ2QzRGOUFFMDIvQTNGNjlEMDg2 MDZEMTFGMEFGQkZCQTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAOzwcwDQYJKoZIhvcNAQELBQADggEBAHpi3xFsf5I/Iymz equ73DAy3wQah6ZPHxoXugziYEBXZiuM1XuxnmM8wMPuSr432h9Ey997VM1SVk2I T59FyG81coV7N/t1M9xuNxt4rS9oJKITZG2P4V/aJiXVh679gb8cUV6BZjEGmElj Xk9r3b156A35afTvGbfTRDhjnONCbOWEUp2gJO0Rls0KG55ggAug04AIDg5poELK Y3aXa7j/ZbY/rNhUqEas97TIxw1mqAaUeYgTeZQGe/mTa9g78t1d+ZdwyDkgtZU3 SjUrbvR59CPbD3HNcQp/gkzikdcQSbERnUhno9JuDpclwEUu7iR0lzYToKWX26al Jblii2w= -----END CERTIFICATE-----Generated at Sun Jul 20 07:42:50 2025 by rpki-client