$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/DBBD442E3A2C11F09C99C60FC4F9AE02.roa File: DBBD442E3A2C11F09C99C60FC4F9AE02.roa (raw, json) Hash identifier: j7V2cLxBPJmgE9BS61lbh9dr46zqgDVKwuwWKKEatjA= Subject key identifier: C9:A5:85:48:99:C6:EC:43:77:DA:0F:09:8F:D5:7B:EA:37:34:F7:AA Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Certificate serial: 3640 Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/DBBD442E3A2C11F09C99C60FC4F9AE02.roa Signing time: Mon 26 May 2025 12:27:59 +0000 ROA not before: Mon 26 May 2025 12:27:59 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 136897 IP address blocks: 175.29.120.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:29:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13888 (0x3640) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91510AD, serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Validity Not Before: May 26 12:27:59 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=68345e4f-2225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:09:18:2c:cc:16:75:42:a9:67:fe:85:c5:88: 0c:41:6a:35:7f:9e:2d:25:a5:d8:34:34:c0:0f:65: 5f:76:f3:3e:38:da:16:20:e5:9b:ac:54:eb:4d:56: 5b:65:99:32:fa:96:60:c4:65:08:81:37:bd:12:89: c3:99:3a:b7:6f:af:12:ab:5e:c3:b4:1f:c3:03:42: be:8a:32:b4:19:24:ce:71:c0:7b:cd:d5:35:78:38: 9a:f0:ce:e7:87:5c:9f:cd:da:c4:1c:ea:aa:a6:c2: 01:6f:2f:2c:61:df:de:d2:b0:ff:d4:12:7c:91:f2: 09:1d:ad:d0:66:be:ef:59:7b:7e:9d:a5:b8:50:72: 34:c1:66:ca:a4:83:cd:01:1d:97:e6:2f:b5:1d:48: 67:84:ac:c5:01:b9:cc:1c:e0:5a:a5:86:09:51:16: ce:a5:6b:13:01:c1:cc:ec:c4:0c:53:04:c4:91:db: d5:00:de:94:41:aa:66:7e:be:13:69:95:72:0a:bb: ae:aa:ef:27:59:9a:44:e3:2f:3c:e9:18:0e:5b:b1: 93:93:dc:97:72:33:5c:27:4f:c6:3d:bf:33:0d:16: 6c:0a:42:de:35:9f:99:b1:2a:47:16:1c:0f:fe:03: 16:b7:eb:46:a1:10:a5:88:49:1d:30:22:9f:37:63: d1:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:A5:85:48:99:C6:EC:43:77:DA:0F:09:8F:D5:7B:EA:37:34:F7:AA X509v3 Authority Key Identifier: keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/DBBD442E3A2C11F09C99C60FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.29.120.0/22 Signature Algorithm: sha256WithRSAEncryption 37:5a:f6:fa:2d:0b:17:0a:2e:15:85:3a:80:aa:d1:8d:f3:f1: ad:0a:83:a7:2e:52:4a:00:03:a5:01:30:58:dc:49:a3:58:eb: 25:bf:ac:b6:03:33:af:67:6d:2e:c4:b4:19:dc:75:f1:32:24: 89:62:df:6e:fc:b1:e8:ef:da:f2:04:cf:97:32:bd:13:53:ce: 74:76:ff:c0:6f:d7:e9:7e:5e:f2:51:9f:0d:9a:4e:13:9e:8b: cd:ab:cc:66:0a:bc:a1:56:f2:95:67:f1:c0:d7:a4:13:dd:ed: 9b:41:48:cf:e3:d5:e8:b1:c7:60:fc:82:32:3c:c7:5a:a6:90: 67:46:df:7a:1a:c6:b6:c3:9d:d1:f0:c2:04:ed:2f:86:f7:85: 98:b4:5a:c1:35:8f:88:83:44:92:53:03:0d:f8:e7:0e:3f:c8: 9f:63:9a:50:2f:5b:7f:ca:66:83:7e:e8:31:6d:fc:72:0c:60: f9:06:78:72:09:92:f9:f6:b7:7a:48:5c:92:7e:72:79:50:c8: 7e:81:45:cb:96:ce:30:61:9c:b2:42:c8:bd:a3:03:0b:ec:5b: dc:1d:35:ed:db:4c:1b:31:2a:54:86:34:8e:9a:fe:2b:f9:be: 2c:c5:ef:42:9b:14:08:a4:a1:ac:99:3c:14:e9:e4:f9:c7:f3: 28:f7:5d:60 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNkAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEwQUQxMTAvBgNVBAUTKEUxRTY5MDhBMTZFQzgxM0RBQTBCRDY0Nzk3QUU5REJE RUIwOTIyNTcwHhcNMjUwNTI2MTIyNzU5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0NWU0Zi0yMjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3gkYLMwWdUKpZ/6FxYgMQWo1f54tJaXYNDTAD2VfdvM+ONoWIOWbrFTrTVZb ZZky+pZgxGUIgTe9EonDmTq3b68Sq17DtB/DA0K+ijK0GSTOccB7zdU1eDia8M7n h1yfzdrEHOqqpsIBby8sYd/e0rD/1BJ8kfIJHa3QZr7vWXt+naW4UHI0wWbKpIPN AR2X5i+1HUhnhKzFAbnMHOBapYYJURbOpWsTAcHM7MQMUwTEkdvVAN6UQapmfr4T aZVyCruuqu8nWZpE4y886RgOW7GTk9yXcjNcJ0/GPb8zDRZsCkLeNZ+ZsSpHFhwP /gMWt+tGoRCliEkdMCKfN2PRwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMmlhUiZ xuxDd9oPCY/Ve+o3NPeqMB8GA1UdIwQYMBaAFOHmkIoW7IE9qgvWR5eunb3rCSJX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTBBRC84QjVFNzVGRTFE ODcxMUUyODRCMzgzREYwOEIwMkNEMi80ZWFRaWhic2dUMnFDOVpIbDY2ZHZlc0pJ bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRlYVFpaGJzZ1QycUM5WkhsNjZkdmVzSklsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEwQUQvOEI1RTc1RkUxRDg3MTFFMjg0QjM4M0RGMDhCMDJDRDIvREJCRDQ0MkUz QTJDMTFGMDlDOTlDNjBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKvHXgwDQYJKoZIhvcNAQELBQADggEBADda9votCxcKLhWF OoCq0Y3z8a0Kg6cuUkoAA6UBMFjcSaNY6yW/rLYDM69nbS7EtBncdfEyJIli3278 sejv2vIEz5cyvRNTznR2/8Bv1+l+XvJRnw2aThOei82rzGYKvKFW8pVn8cDXpBPd 7ZtBSM/j1eixx2D8gjI8x1qmkGdG33oaxrbDndHwwgTtL4b3hZi0WsE1j4iDRJJT Aw345w4/yJ9jmlAvW3/KZoN+6DFt/HIMYPkGeHIJkvn2t3pIXJJ+cnlQyH6BRcuW zjBhnLJCyL2jAwvsW9wdNe3bTBsxKlSGNI6a/iv5vizF70KbFAikoayZPBTp5PnH 8yj3XWA= -----END CERTIFICATE-----Generated at Tue Jun 3 23:35:40 2025 by rpki-client