$ rpki-client -vvf rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/000A7CE25A5911F0948C6D20C4F9AE02.roa File: 000A7CE25A5911F0948C6D20C4F9AE02.roa (raw, json) Hash identifier: GWfp52D5q+ZWDIE0kYIw+TpLPvEGwRDdK6mh7QUL+8M= Subject key identifier: EE:0D:88:5A:D4:B4:B7:E5:B5:03:A5:38:F6:32:77:0F:FB:09:05:AF Certificate issuer: /CN=A91FBC89/serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Certificate serial: 63 Authority key identifier: B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/000A7CE25A5911F0948C6D20C4F9AE02.roa Signing time: Mon 07 Jul 2025 11:10:40 +0000 ROA not before: Mon 07 Jul 2025 11:10:40 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138512 IP address blocks: 163.61.212.0/23 maxlen: 23 163.61.212.0/24 maxlen: 24 163.61.213.0/24 maxlen: 24 2001:df5:21c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 07:30:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FBC89, serialNumber=B174A3D4BA9B476E2B31E47C72A298D044D98785 Validity Not Before: Jul 7 11:10:40 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=686bab2f-1c3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:23:34:1e:40:8a:23:a4:35:23:18:bc:23:dd: 8c:c3:26:d2:da:ea:07:07:13:b1:1c:36:e9:ba:7b: bb:50:af:44:bf:3e:f7:b1:f3:be:ab:f7:99:23:f6: 15:d6:df:17:99:59:ad:44:1f:ac:11:0c:c4:da:fd: 46:d7:07:e7:7d:cd:7f:ed:69:31:6a:e8:73:18:a8: fb:e6:97:dd:66:06:99:77:83:61:97:3b:e8:da:2a: 9b:41:1f:7d:51:67:c7:a0:0e:3a:5e:a4:68:e3:8c: 5d:fa:41:6f:be:45:22:4e:4f:b9:a1:b1:7d:d4:79: fc:1e:3a:72:ae:51:70:77:7a:ca:d6:29:bf:cb:31: df:fc:86:e8:fa:04:d8:e6:0c:e5:ee:82:1e:dc:55: 40:6a:0e:fe:10:62:70:6e:2f:f5:4a:92:34:4b:8a: 9b:d6:41:c8:e2:72:55:41:71:de:3b:18:6a:df:9c: fe:f8:da:bc:12:9a:f6:dc:2e:ff:aa:63:d7:d1:18: b4:f2:70:f5:39:a2:23:18:24:fa:9d:16:6c:49:0e: cb:06:ac:19:65:ee:cb:98:2f:b3:72:15:97:65:d8: 85:b0:cc:32:cb:fe:3e:ee:29:cf:a6:71:d5:f3:5a: 72:8e:75:8e:04:73:7a:35:46:d7:ca:54:91:4a:54: 67:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:0D:88:5A:D4:B4:B7:E5:B5:03:A5:38:F6:32:77:0F:FB:09:05:AF X509v3 Authority Key Identifier: keyid:B1:74:A3:D4:BA:9B:47:6E:2B:31:E4:7C:72:A2:98:D0:44:D9:87:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/sXSj1LqbR24rMeR8cqKY0ETZh4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sXSj1LqbR24rMeR8cqKY0ETZh4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FBC89/9E7262BEEFCE11EF893FF70EC4F9AE02/000A7CE25A5911F0948C6D20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.212.0/23 IPv6: 2001:df5:21c0::/48 Signature Algorithm: sha256WithRSAEncryption 89:9c:f7:50:d6:88:46:a9:b7:22:4a:0a:94:6f:ba:8f:6c:fb: b6:55:3a:f2:be:a2:1b:d6:9e:39:db:20:5a:dd:05:d3:06:7a: 58:f4:ee:dc:51:76:b2:b4:7f:46:68:ea:3d:c8:4e:d9:9f:e3: f3:4e:e4:d5:fb:56:fc:7e:87:7b:6e:b3:58:0b:62:75:35:10: 33:d5:1c:7e:ef:e7:e6:18:79:d9:0c:ee:23:ef:1d:89:b8:e9: d5:74:42:14:3f:8f:58:34:50:3d:aa:bd:d0:c2:dc:03:e1:a9: 1b:a7:0e:31:32:fd:eb:84:d9:88:64:07:84:58:0a:15:8f:0c: 23:b2:3b:39:48:92:a1:c1:ac:c8:6d:67:36:63:b8:a7:21:1c: 61:7a:9d:12:0d:c9:ad:31:e3:db:5f:6a:cd:cd:85:d5:e0:ad: aa:06:68:29:af:86:92:63:f6:35:4f:bc:c8:ed:1d:d0:9c:d2: 8d:45:f8:e2:00:b6:41:00:1e:cd:5e:2a:00:ba:9e:fb:ae:1a: 11:03:e5:49:68:4c:ba:c2:68:c2:34:fb:3e:af:1e:df:88:60: a0:31:b2:06:c6:8d:b2:a7:58:88:07:77:d7:0e:ce:7d:fe:7f: 8b:d7:b9:46:d1:76:32:96:dc:11:9b:34:ce:51:dc:e1:91:0f: f0:cd:4f:02 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QkM4OTExMC8GA1UEBRMoQjE3NEEzRDRCQTlCNDc2RTJCMzFFNDdDNzJBMjk4RDA0 NEQ5ODc4NTAeFw0yNTA3MDcxMTEwNDBaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NmJhYjJmLTFjM2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3IzQeQIojpDUjGLwj3YzDJtLa6gcHE7EcNum6e7tQr0S/Pvex876r95kj9hXW 3xeZWa1EH6wRDMTa/UbXB+d9zX/taTFq6HMYqPvml91mBpl3g2GXO+jaKptBH31R Z8egDjpepGjjjF36QW++RSJOT7mhsX3UefweOnKuUXB3esrWKb/LMd/8huj6BNjm DOXugh7cVUBqDv4QYnBuL/VKkjRLipvWQcjiclVBcd47GGrfnP742rwSmvbcLv+q Y9fRGLTycPU5oiMYJPqdFmxJDssGrBll7suYL7NyFZdl2IWwzDLL/j7uKc+mcdXz WnKOdY4Ec3o1RtfKVJFKVGf5AgMBAAGjggKmMIICojAdBgNVHQ4EFgQU7g2IWtS0 t+W1A6U49jJ3D/sJBa8wHwYDVR0jBBgwFoAUsXSj1LqbR24rMeR8cqKY0ETZh4Uw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCQzg5LzlFNzI2MkJFRUZD RTExRUY4OTNGRjcwRUM0RjlBRTAyL3NYU2oxTHFiUjI0ck1lUjhjcUtZMEVUWmg0 VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc1hTajFMcWJSMjRyTWVSOGNxS1kwRVRaaDRVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QkM4OS85RTcyNjJCRUVGQ0UxMUVGODkzRkY3MEVDNEY5QUUwMi8wMDBBN0NFMjVB NTkxMUYwOTQ4QzZEMjBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAaM91DAPBAIAAjAJAwcAIAEN9SHAMA0GCSqGSIb3DQEBCwUA A4IBAQCJnPdQ1ohGqbciSgqUb7qPbPu2VTryvqIb1p452yBa3QXTBnpY9O7cUXay tH9GaOo9yE7Zn+PzTuTV+1b8fod7brNYC2J1NRAz1Rx+7+fmGHnZDO4j7x2JuOnV dEIUP49YNFA9qr3QwtwD4akbpw4xMv3rhNmIZAeEWAoVjwwjsjs5SJKhwazIbWc2 Y7inIRxhep0SDcmtMePbX2rNzYXV4K2qBmgpr4aSY/Y1T7zI7R3QnNKNRfjiALZB AB7NXioAup77rhoRA+VJaEy6wmjCNPs+rx7fiGCgMbIGxo2yp1iIB3fXDs59/n+L 17lG0XYyltwRmzTOUdzhkQ/wzU8C -----END CERTIFICATE-----Generated at Wed Jul 23 01:58:04 2025 by rpki-client