$ rpki-client -vvf rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/BB62FBD82AEC11EA972CB627C4F9AE02.roa File: BB62FBD82AEC11EA972CB627C4F9AE02.roa (raw, json) Hash identifier: KdmEZEpKoLyIMn6+XZO0IZiKVzRjxKxZXmexqgggUFU= Subject key identifier: 2E:3C:65:F1:58:3C:98:CE:E5:F1:70:6E:E7:BA:1A:A3:91:B9:16:B7 Certificate issuer: /CN=A91238D6/serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Certificate serial: 224C Authority key identifier: 71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/BB62FBD82AEC11EA972CB627C4F9AE02.roa Signing time: Tue 08 Apr 2025 15:54:21 +0000 ROA not before: Tue 08 Apr 2025 15:54:21 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9497 IP address blocks: 115.146.136.0/21 maxlen: 21 115.146.144.0/20 maxlen: 24 2405:b800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 16:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8780 (0x224c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91238D6, serialNumber=714BA28DD835A7D419701FAD372A34B7C66CFAA0 Validity Not Before: Apr 8 15:54:21 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f546ad-e92d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:98:a1:29:0f:d6:87:78:04:cb:3e:3e:3d:97: b2:9a:7b:63:9b:87:bd:ee:5a:62:bf:1a:5b:77:7f: 13:e0:25:4c:14:c5:2f:af:23:63:1d:6f:89:82:92: 1d:7c:fa:36:fd:8d:5f:29:f5:4e:e2:b0:1f:cc:f6: da:d9:7e:e3:1b:75:2f:cc:96:af:2e:7f:0b:20:cc: 22:aa:90:38:04:71:6b:bf:51:73:31:c9:91:9d:5b: 2d:b6:0d:4f:18:ea:7d:7e:a7:1b:30:3f:e1:81:e8: 3e:c6:82:3a:1a:16:93:ae:cf:9c:42:95:0c:6f:54: 2b:67:06:9a:7a:f0:66:9f:3b:a3:94:b3:9c:cc:2b: c5:c7:ed:11:80:1c:39:d2:3a:50:14:0b:57:9b:8c: 99:4a:3f:ed:e2:bc:39:13:db:b6:ff:16:4d:30:e5: 98:c4:4b:ae:71:40:26:b7:ea:fa:08:90:6f:8d:22: b2:cc:2e:e1:34:81:0e:cf:14:69:a3:ca:88:b9:50: 74:7c:1a:d5:45:8a:da:5e:42:b4:44:6f:03:fa:bd: f2:ca:6a:20:82:b0:e4:f4:ce:9f:bb:11:14:a8:82: 1d:f0:f0:22:fe:df:59:57:f3:f0:64:b5:d5:21:c5: a3:d8:de:81:0d:71:e9:ae:a2:59:4d:7d:f0:c8:9a: 2b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:3C:65:F1:58:3C:98:CE:E5:F1:70:6E:E7:BA:1A:A3:91:B9:16:B7 X509v3 Authority Key Identifier: keyid:71:4B:A2:8D:D8:35:A7:D4:19:70:1F:AD:37:2A:34:B7:C6:6C:FA:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/cUuijdg1p9QZcB-tNyo0t8Zs-qA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cUuijdg1p9QZcB-tNyo0t8Zs-qA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91238D6/28990530BE5411E58DCC4357C4F9AE02/BB62FBD82AEC11EA972CB627C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.146.136.0-115.146.159.255 IPv6: 2405:b800::/32 Signature Algorithm: sha256WithRSAEncryption 2b:f1:e0:c8:ff:b7:02:75:41:14:17:15:24:4e:41:08:af:7a: 96:52:dd:ae:a0:09:17:93:92:d6:2d:3b:64:40:99:76:0b:b6: 0e:53:f0:36:c3:58:9a:07:2e:f1:82:c1:05:a3:f0:7e:95:2f: ce:a5:b6:b7:c0:49:77:ae:76:3c:04:d9:77:9a:71:7a:8a:24: 73:fe:e5:e6:b7:6e:7d:03:26:78:bb:c2:8b:44:f4:07:bf:fe: f8:aa:db:bb:2a:c6:d4:3a:20:f6:af:fd:d6:43:26:f5:83:e2: 08:37:dc:25:df:b1:20:00:09:46:5e:43:e6:b7:a6:e4:5c:cb: e3:aa:65:6f:40:9c:00:7e:11:80:7e:0c:a5:c0:d1:23:a3:ca: b9:b3:56:c3:01:31:03:c7:5c:b2:92:76:10:8d:2f:25:a8:42: cd:5b:57:40:57:e9:90:37:4f:7e:fe:0d:bf:67:fc:19:5b:56: 2d:19:f7:9c:85:2d:cd:53:f4:2c:ac:9a:66:3a:97:f5:c3:f1: 9e:d9:99:78:bf:cd:fc:ef:3f:26:39:12:54:cd:63:b9:20:f4: 5c:0a:3a:64:a5:d5:1f:2d:f9:a7:ee:ac:88:03:f9:0c:d9:77: bc:6d:cf:a9:b8:bc:a6:41:a3:3d:3e:e7:08:b1:4f:f7:98:73: 0c:1c:37:67 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICIkwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjM4RDYxMTAvBgNVBAUTKDcxNEJBMjhERDgzNUE3RDQxOTcwMUZBRDM3MkEzNEI3 QzY2Q0ZBQTAwHhcNMjUwNDA4MTU1NDIxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDZhZC1lOTJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqpihKQ/Wh3gEyz4+PZeymntjm4e97lpivxpbd38T4CVMFMUvryNjHW+JgpId fPo2/Y1fKfVO4rAfzPba2X7jG3UvzJavLn8LIMwiqpA4BHFrv1FzMcmRnVsttg1P GOp9fqcbMD/hgeg+xoI6GhaTrs+cQpUMb1QrZwaaevBmnzujlLOczCvFx+0RgBw5 0jpQFAtXm4yZSj/t4rw5E9u2/xZNMOWYxEuucUAmt+r6CJBvjSKyzC7hNIEOzxRp o8qIuVB0fBrVRYraXkK0RG8D+r3yymoggrDk9M6fuxEUqIId8PAi/t9ZV/PwZLXV IcWj2N6BDXHprqJZTX3wyJor/wIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFC48ZfFY PJjO5fFwbue6GqORuRa3MB8GA1UdIwQYMBaAFHFLoo3YNafUGXAfrTcqNLfGbPqg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzhENi8yODk5MDUzMEJF NTQxMUU1OERDQzQzNTdDNEY5QUUwMi9jVXVpamRnMXA5UVpjQi10TnlvMHQ4WnMt cUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NVdWlqZGcxcDlRWmNCLXROeW8wdDhacy1xQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjM4RDYvMjg5OTA1MzBCRTU0MTFFNThEQ0M0MzU3QzRGOUFFMDIvQkI2MkZCRDgy QUVDMTFFQTk3MkNCNjI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEA3OSiAMEBXOSgDANBAIAAjAHAwUAJAW4ADANBgkqhkiG 9w0BAQsFAAOCAQEAK/HgyP+3AnVBFBcVJE5BCK96llLdrqAJF5OS1i07ZECZdgu2 DlPwNsNYmgcu8YLBBaPwfpUvzqW2t8BJd652PATZd5pxeookc/7l5rdufQMmeLvC i0T0B7/++KrbuyrG1Dog9q/91kMm9YPiCDfcJd+xIAAJRl5D5rem5FzL46plb0Cc AH4RgH4MpcDRI6PKubNWwwExA8dcspJ2EI0vJahCzVtXQFfpkDdPfv4Nv2f8GVtW LRn3nIUtzVP0LKyaZjqX9cPxntmZeL/N/O8/JjkSVM1juSD0XAo6ZKXVHy35p+6s iAP5DNl3vG3Pqbi8pkGjPT7nCLFP95hzDBw3Zw== -----END CERTIFICATE-----Generated at Fri Oct 24 22:19:50 2025 by rpki-client