$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/A95180F2D7DA11ECB3D1AF67C4F9AE02.roa File: A95180F2D7DA11ECB3D1AF67C4F9AE02.roa (raw, json) Hash identifier: rSNBIXkV3cHTqpqHK191W8K7lRyWQtgcWXUGkAW+h84= Subject key identifier: 23:9A:67:EB:EC:15:47:31:95:AC:EA:13:C7:1E:80:62:82:63:DE:14 Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 0744 Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/A95180F2D7DA11ECB3D1AF67C4F9AE02.roa Signing time: Thu 24 Jul 2025 22:34:42 +0000 ROA not before: Thu 24 Jul 2025 22:34:42 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 63593 IP address blocks: 129.227.17.0/24 maxlen: 24 129.227.18.0/24 maxlen: 24 129.227.19.0/24 maxlen: 24 129.227.29.0/24 maxlen: 24 129.227.30.0/24 maxlen: 24 129.227.31.0/24 maxlen: 24 129.227.192.0/24 maxlen: 24 129.227.193.0/24 maxlen: 24 129.227.194.0/23 maxlen: 24 156.59.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 31 Jul 2025 22:34:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1860 (0x744) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Jul 24 22:34:42 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6882b502-c708 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:29:3c:cf:05:6a:f7:63:47:47:77:65:11:2f: a8:c4:9c:e0:bf:08:64:05:dc:0b:f4:1a:09:8d:fd: 07:1f:bb:c3:79:72:6a:85:32:d9:48:db:49:5a:e3: 21:8a:92:00:3e:9c:3c:c5:8a:72:09:d3:c1:43:30: ed:41:99:9d:7d:8b:7f:2b:e1:cc:c8:08:bb:73:5d: ea:e8:bf:2d:59:da:bf:90:5f:48:d1:01:ba:a4:8a: 65:03:a5:df:95:34:98:5d:73:03:27:a3:76:87:76: ec:fd:04:e5:ff:0e:4c:b9:f0:96:08:ec:4e:76:c7: 48:60:ca:47:37:18:17:37:e2:6e:e0:d2:96:c0:d7: 9e:c5:92:2d:63:97:14:91:42:0d:80:ce:f7:69:71: a9:c2:76:0d:ff:4a:63:d4:24:57:8b:b0:67:6b:ae: 6a:a5:86:96:e9:f2:22:5c:f9:cc:9e:20:1b:dc:47: 5f:c7:43:58:d7:42:b8:72:3e:74:d1:93:3d:3e:be: cf:c0:67:36:df:8a:c6:20:c0:b1:e9:55:02:21:c5: d7:79:87:dd:b3:bb:da:8f:d0:8f:76:2a:e8:c5:17: b8:85:1c:8a:1c:3c:c2:e8:d4:b6:f6:a2:7a:4d:b8: 0c:6f:14:81:4a:0a:79:ce:2f:a1:0e:58:07:73:c6: bc:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:9A:67:EB:EC:15:47:31:95:AC:EA:13:C7:1E:80:62:82:63:DE:14 X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/A95180F2D7DA11ECB3D1AF67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 129.227.17.0-129.227.19.255 129.227.29.0-129.227.31.255 129.227.192.0/22 156.59.216.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:18:93:c6:95:d2:22:db:d6:95:8a:67:b0:be:b8:ef:ee:75: 97:17:b0:dc:6a:aa:f5:2f:f8:bd:0c:ca:1c:00:6d:5a:1b:6f: 36:f6:c5:1a:9a:f1:f9:b6:26:70:14:9d:e3:54:0c:0b:a9:05: 77:20:c0:f3:70:91:5a:7d:93:44:3c:ed:fe:3b:49:77:dc:33: d8:e2:68:71:66:37:72:ef:8f:3a:7b:d4:90:14:ba:d4:93:4c: 91:68:43:17:65:f0:e3:f9:55:1b:c4:48:82:ac:2e:9b:ac:9f: 9e:b7:38:e1:d7:f7:f9:ab:33:87:a3:20:d6:46:82:35:68:6e: 0e:eb:f5:ea:9b:b3:12:0e:07:64:75:97:8d:99:6e:63:60:d1: 9d:3b:70:71:bb:27:2b:ed:d8:67:40:b6:7e:c7:90:a8:ea:65: db:90:33:af:39:52:7d:54:0e:55:77:65:3a:c1:cf:54:19:a2: 46:3a:3d:86:56:4f:f6:a0:2e:67:e4:7d:b5:90:24:c7:3d:84: cc:1e:3b:74:73:13:59:34:01:d8:e4:ca:e8:44:c6:d2:cd:22: dc:7e:d9:fd:a8:02:f7:27:6c:42:33:5d:fe:95:47:16:49:0e: de:90:99:31:d0:bf:47:bc:32:9d:f0:43:f2:ed:6e:47:21:54: 93:09:9c:2e -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICB0QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjUwNzI0MjIzNDQyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODgyYjUwMi1jNzA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCk8zwVq92NHR3dlES+oxJzgvwhkBdwL9BoJjf0HH7vDeXJqhTLZSNtJWuMh ipIAPpw8xYpyCdPBQzDtQZmdfYt/K+HMyAi7c13q6L8tWdq/kF9I0QG6pIplA6Xf lTSYXXMDJ6N2h3bs/QTl/w5MufCWCOxOdsdIYMpHNxgXN+Ju4NKWwNeexZItY5cU kUINgM73aXGpwnYN/0pj1CRXi7Bna65qpYaW6fIiXPnMniAb3Edfx0NY10K4cj50 0ZM9Pr7PwGc234rGIMCx6VUCIcXXeYfds7vaj9CPdiroxRe4hRyKHDzC6NS29qJ6 TbgMbxSBSgp5zi+hDlgHc8a8JQIDAQABo4ICtzCCArMwHQYDVR0OBBYEFCOaZ+vs FUcxlazqE8cegGKCY94UMB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvQTk1MTgwRjJE N0RBMTFFQ0IzRDFBRjY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMC4EAgABMCgwDAMEAIHjEQMEAoHjEDAMAwQAgeMdAwQFgeMAAwQCgePAAwQA nDvYMA0GCSqGSIb3DQEBCwUAA4IBAQCNGJPGldIi29aVimewvrjv7nWXF7Dcaqr1 L/i9DMocAG1aG2829sUamvH5tiZwFJ3jVAwLqQV3IMDzcJFafZNEPO3+O0l33DPY 4mhxZjdy7486e9SQFLrUk0yRaEMXZfDj+VUbxEiCrC6brJ+etzjh1/f5qzOHoyDW RoI1aG4O6/Xqm7MSDgdkdZeNmW5jYNGdO3Bxuycr7dhnQLZ+x5Co6mXbkDOvOVJ9 VA5Vd2U6wc9UGaJGOj2GVk/2oC5n5H21kCTHPYTMHjt0cxNZNAHY5MroRMbSzSLc ftn9qAL3J2xCM13+lUcWSQ7ekJkx0L9HvDKd8EPy7W5HIVSTCZwu -----END CERTIFICATE-----Generated at Sat Jul 26 12:13:47 2025 by rpki-client