$ rpki-client -vvf rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/F570D764773F11F09FC02036C4F9AE02.roa File: F570D764773F11F09FC02036C4F9AE02.roa (raw, json) Hash identifier: zmJ243eRg2Ohq2gJwqhBcxhyjwkk5xLJsekeFyx7Ld0= Subject key identifier: A2:47:D6:12:CA:E6:30:F8:EF:7D:75:FA:E7:00:AB:E1:BA:67:9A:A4 Certificate issuer: /CN=A91342C5/serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Certificate serial: 03CD Authority key identifier: 85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/F570D764773F11F09FC02036C4F9AE02.roa Signing time: Tue 12 Aug 2025 05:48:23 +0000 ROA not before: Tue 12 Aug 2025 05:48:23 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 14618 IP address blocks: 64.25.42.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 00:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 973 (0x3cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91342C5, serialNumber=85F2BAF1B7DF1DAA8C88AB6C5E78C1FCC3F78D08 Validity Not Before: Aug 12 05:48:23 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=689ad5a7-9713 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:4e:b7:56:71:38:80:80:6f:69:25:50:85:4f: 67:fb:71:7a:c4:96:50:65:38:c5:96:e9:2d:b8:e6: f0:58:52:20:11:59:56:8e:3a:ae:ab:9b:31:8c:1e: 21:67:71:07:06:f4:95:5c:b0:54:cc:e3:19:7d:a8: c0:d8:27:af:53:a9:88:e2:ea:83:0f:7d:57:04:2c: a5:6d:71:f2:cf:f0:28:28:a2:cd:61:1d:89:a5:bb: 4f:84:78:a8:e2:9d:0e:82:43:9a:6d:15:94:05:56: 18:53:aa:db:6b:8c:37:51:26:8a:e0:0a:b0:06:b5: 55:a2:93:a6:b5:15:81:cb:dc:0c:db:9e:92:4b:81: 33:b8:ac:44:30:68:02:ec:a3:55:17:b5:f3:83:77: 23:2f:93:87:ed:b6:a2:32:1a:85:e5:7c:79:a9:fb: 45:5d:96:21:76:d6:51:9e:e0:07:70:49:cf:7e:74: e9:50:d6:55:95:03:98:95:54:05:19:bd:c8:9a:ea: b4:80:88:70:de:ae:dc:6d:8a:ba:ff:3a:0f:7e:11: ae:4d:73:53:22:c6:33:36:00:e2:6d:30:7c:c4:bb: 73:1e:f1:b2:9c:49:05:ac:c7:7c:7c:c0:ff:35:68: c2:16:45:bb:b6:26:20:0f:d9:ea:58:34:d0:fc:06: 47:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:47:D6:12:CA:E6:30:F8:EF:7D:75:FA:E7:00:AB:E1:BA:67:9A:A4 X509v3 Authority Key Identifier: keyid:85:F2:BA:F1:B7:DF:1D:AA:8C:88:AB:6C:5E:78:C1:FC:C3:F7:8D:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/hfK68bffHaqMiKtsXnjB_MP3jQg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/hfK68bffHaqMiKtsXnjB_MP3jQg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91342C5/1F404E30A4E911ECAF3FB152C4F9AE02/F570D764773F11F09FC02036C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 64.25.42.0/23 Signature Algorithm: sha256WithRSAEncryption 70:3e:16:7c:48:4f:24:0a:4f:ba:92:4b:90:7f:b9:42:f7:b1: 8b:70:ab:6f:f0:6b:7e:1e:ca:12:65:bf:2b:96:2f:a2:b9:39: 18:e5:ff:05:14:52:e9:6b:92:97:21:89:2f:2a:1b:d1:4a:16: 7c:d3:e7:5b:c6:6f:76:06:17:e1:a6:18:ef:45:2f:2f:fc:c7: 0d:99:46:db:94:ba:6c:c4:1b:a3:1c:f1:aa:2a:51:74:00:4c: 40:4a:ed:db:d0:d8:47:34:26:65:4a:8f:99:8b:a3:9d:da:ad: c3:4a:c8:9f:9d:7d:7f:68:17:42:d8:72:d8:51:6c:ec:da:19: 44:17:8f:9f:17:10:d8:ff:e9:45:26:ce:96:5f:b0:35:62:ba: 8e:2d:c2:73:ce:38:f0:8f:da:3e:f3:0c:d7:25:b3:f7:ba:bc: 19:22:16:c6:41:df:ef:ae:fc:92:73:7e:3e:92:0b:09:8b:a6: 8c:25:96:af:b7:ce:a0:e2:73:a2:61:d7:82:a9:c6:9d:00:76: 24:69:01:a5:07:aa:c4:1d:dc:7e:1b:d7:37:14:ae:0b:44:a4: 12:58:1c:63:7a:f3:25:c3:02:de:94:83:dd:f2:19:5a:b6:83: 55:61:fa:75:29:bf:fb:46:e1:36:3a:91:10:a4:07:1e:81:6d: 19:ed:c7:4b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA80wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQyQzUxMTAvBgNVBAUTKDg1RjJCQUYxQjdERjFEQUE4Qzg4QUI2QzVFNzhDMUZD QzNGNzhEMDgwHhcNMjUwODEyMDU0ODIzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODlhZDVhNy05NzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0063VnE4gIBvaSVQhU9n+3F6xJZQZTjFluktuObwWFIgEVlWjjquq5sxjB4h Z3EHBvSVXLBUzOMZfajA2CevU6mI4uqDD31XBCylbXHyz/AoKKLNYR2JpbtPhHio 4p0OgkOabRWUBVYYU6rba4w3USaK4AqwBrVVopOmtRWBy9wM256SS4EzuKxEMGgC 7KNVF7Xzg3cjL5OH7baiMhqF5Xx5qftFXZYhdtZRnuAHcEnPfnTpUNZVlQOYlVQF Gb3Imuq0gIhw3q7cbYq6/zoPfhGuTXNTIsYzNgDibTB8xLtzHvGynEkFrMd8fMD/ NWjCFkW7tiYgD9nqWDTQ/AZH1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFKJH1hLK 5jD47311+ucAq+G6Z5qkMB8GA1UdIwQYMBaAFIXyuvG33x2qjIirbF54wfzD940I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDJDNS8xRjQwNEUzMEE0 RTkxMUVDQUYzRkIxNTJDNEY5QUUwMi9oZks2OGJmZkhhcU1pS3RzWG5qQl9NUDNq UWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2hmSzY4YmZmSGFxTWlLdHNYbmpCX01QM2pRZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQyQzUvMUY0MDRFMzBBNEU5MTFFQ0FGM0ZCMTUyQzRGOUFFMDIvRjU3MEQ3NjQ3 NzNGMTFGMDlGQzAyMDM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFAGSowDQYJKoZIhvcNAQELBQADggEBAHA+FnxITyQKT7qS S5B/uUL3sYtwq2/wa34eyhJlvyuWL6K5ORjl/wUUUulrkpchiS8qG9FKFnzT51vG b3YGF+GmGO9FLy/8xw2ZRtuUumzEG6Mc8aoqUXQATEBK7dvQ2Ec0JmVKj5mLo53a rcNKyJ+dfX9oF0LYcthRbOzaGUQXj58XENj/6UUmzpZfsDViuo4twnPOOPCP2j7z DNcls/e6vBkiFsZB3++u/JJzfj6SCwmLpowllq+3zqDic6Jh14Kpxp0AdiRpAaUH qsQd3H4b1zcUrgtEpBJYHGN68yXDAt6Ug93yGVq2g1Vh+nUpv/tG4TY6kRCkBx6B bRntx0s= -----END CERTIFICATE-----Generated at Thu Aug 21 19:02:31 2025 by rpki-client