$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/FE8AECB2607511F0901D374BC4F9AE02.roa File: FE8AECB2607511F0901D374BC4F9AE02.roa (raw, json) Hash identifier: iOnrWmkX18D7v3AwIq+ETOmXIAlQ80y89CHDQbanBbE= Subject key identifier: F6:2D:50:9B:D2:45:35:57:98:D6:94:E1:69:1A:20:98:93:68:1D:E9 Certificate issuer: /CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Certificate serial: 0621 Authority key identifier: 25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/FE8AECB2607511F0901D374BC4F9AE02.roa Signing time: Mon 14 Jul 2025 05:47:15 +0000 ROA not before: Mon 14 Jul 2025 05:47:15 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 131445 IP address blocks: 14.207.0.0/21 maxlen: 21 14.207.0.0/24 maxlen: 24 14.207.1.0/24 maxlen: 24 14.207.2.0/24 maxlen: 24 14.207.3.0/24 maxlen: 24 14.207.4.0/24 maxlen: 24 14.207.5.0/24 maxlen: 24 14.207.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Jul 2025 23:52:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1569 (0x621) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7561, serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Validity Not Before: Jul 14 05:47:15 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=687499e2-affc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:24:8f:36:f5:f5:89:5f:c6:a6:e7:07:06:f3: 16:a9:61:61:08:3c:64:60:dc:97:52:28:1e:e7:a9: eb:f3:ce:9e:24:15:11:f5:f6:b5:bf:88:a4:9e:a6: 82:be:f0:a9:f7:0e:79:6b:ab:5d:f0:0f:13:25:25: 20:37:aa:e9:f7:42:84:7d:f3:ea:26:cd:61:fc:ae: fd:13:c0:fc:c3:02:e6:9e:a0:68:89:b2:54:c8:55: 02:7e:39:fb:f8:c1:2a:0f:01:ba:58:dc:89:50:ac: c1:7f:ea:3e:34:27:34:25:74:79:16:0e:d2:5f:f8: d0:d7:7d:7d:bf:95:20:35:cb:8a:70:37:57:bc:a4: 50:11:29:db:47:ac:ca:b8:f2:ea:b9:9b:0e:96:50: 23:0b:b4:42:37:a2:a7:d6:41:47:1a:8d:53:dd:53: bf:89:2a:e3:2c:d0:cc:c3:7c:3a:8c:f3:39:cb:b5: 68:cb:5d:6f:a2:dd:78:cf:2f:df:00:9a:e4:e3:34: a9:3f:7e:ca:2f:32:d5:72:ee:41:d8:23:1a:46:60: 89:2a:60:c1:59:ba:cc:e0:8f:81:39:1a:02:9f:35: 96:d8:f9:65:2a:de:90:47:e3:d6:9d:cf:95:b3:aa: b8:94:85:22:f5:ed:6e:66:83:da:f4:87:9c:00:51: 17:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:2D:50:9B:D2:45:35:57:98:D6:94:E1:69:1A:20:98:93:68:1D:E9 X509v3 Authority Key Identifier: keyid:25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/FE8AECB2607511F0901D374BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.207.0.0/21 Signature Algorithm: sha256WithRSAEncryption 67:3b:8c:a1:be:6d:12:2c:c4:48:91:28:9b:28:eb:9c:85:94: cd:d8:52:14:e6:ed:51:fb:71:32:74:94:9a:cc:3b:56:25:23: 22:3e:05:e8:1f:cb:30:dd:a2:60:cc:6a:c2:37:72:bc:18:d9: 8d:fb:56:ad:5c:76:9a:be:af:6d:08:c0:81:c9:b6:cc:c1:67: 2c:64:7a:ac:a3:2b:7d:0f:76:aa:57:33:9f:1f:3a:9f:a4:cc: f7:4e:62:50:70:c0:62:2f:85:3c:83:e1:f3:3d:41:bb:7b:1e: 76:a7:f6:bf:75:04:e2:4b:25:89:f6:94:99:14:97:74:cf:44: 0f:ea:6d:4c:2c:e8:32:ad:08:f4:2a:e7:8e:ec:ca:9a:16:04: e3:20:e0:55:8b:d6:dc:93:52:e1:12:00:e9:f4:79:83:46:de: 73:ee:53:9a:70:94:b5:6f:5e:24:a8:12:81:6d:60:c4:cd:63: 55:d5:5f:60:f6:d5:6d:c1:19:33:b6:13:b3:84:3c:e6:76:0e: 16:de:32:94:3d:67:5d:18:69:ea:42:f9:62:f8:47:c0:d6:e6: 14:af:f1:ae:56:a3:58:34:c7:62:36:f2:d1:46:dc:29:23:61: 23:f0:e0:da:db:34:bb:b3:6b:fc:1b:f1:1a:d2:5c:83:f0:09: 4f:01:f9:36 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NjExMTAvBgNVBAUTKDI1QkM3RDRERTc3QkQwMUIzRDE5MTU4NzY5NkU1QUZE RDhDRUNEMDQwHhcNMjUwNzE0MDU0NzE1WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc0OTllMi1hZmZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqySPNvX1iV/GpucHBvMWqWFhCDxkYNyXUige56nr886eJBUR9fa1v4iknqaC vvCp9w55a6td8A8TJSUgN6rp90KEffPqJs1h/K79E8D8wwLmnqBoibJUyFUCfjn7 +MEqDwG6WNyJUKzBf+o+NCc0JXR5Fg7SX/jQ1319v5UgNcuKcDdXvKRQESnbR6zK uPLquZsOllAjC7RCN6Kn1kFHGo1T3VO/iSrjLNDMw3w6jPM5y7Voy11vot14zy/f AJrk4zSpP37KLzLVcu5B2CMaRmCJKmDBWbrM4I+BORoCnzWW2PllKt6QR+PWnc+V s6q4lIUi9e1uZoPa9IecAFEXewIDAQABo4IClTCCApEwHQYDVR0OBBYEFPYtUJvS RTVXmNaU4WkaIJiTaB3pMB8GA1UdIwQYMBaAFCW8fU3ne9AbPRkVh2luWv3Yzs0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU2MS9BMjZFMDZFMDA1 NEMxMUVDQkRCNEZFNDZDNEY5QUUwMi9KYng5VGVkNzBCczlHUldIYVc1YV9kak96 UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pieDlUZWQ3MEJzOUdSV0hhVzVhX2RqT3pRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc1NjEvQTI2RTA2RTAwNTRDMTFFQ0JEQjRGRTQ2QzRGOUFFMDIvRkU4QUVDQjI2 MDc1MTFGMDkwMUQzNzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAMOzwAwDQYJKoZIhvcNAQELBQADggEBAGc7jKG+bRIsxEiR KJso65yFlM3YUhTm7VH7cTJ0lJrMO1YlIyI+BegfyzDdomDMasI3crwY2Y37Vq1c dpq+r20IwIHJtszBZyxkeqyjK30PdqpXM58fOp+kzPdOYlBwwGIvhTyD4fM9Qbt7 Hnan9r91BOJLJYn2lJkUl3TPRA/qbUws6DKtCPQq547sypoWBOMg4FWL1tyTUuES AOn0eYNG3nPuU5pwlLVvXiSoEoFtYMTNY1XVX2D21W3BGTO2E7OEPOZ2DhbeMpQ9 Z10YaepC+WL4R8DW5hSv8a5Wo1g0x2I28tFG3CkjYSPw4NrbNLuza/wb8RrSXIPw CU8B+TY= -----END CERTIFICATE-----Generated at Sun Jul 20 07:53:12 2025 by rpki-client