$ rpki-client -vvf rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/061C3362985911EBA5F39B54C4F9AE02.roa File: 061C3362985911EBA5F39B54C4F9AE02.roa (raw, json) Hash identifier: 58ITnOEIWhsg3VC5900dxvG6wKzEJQmdtWvJjNGVUdw= Subject key identifier: 13:A9:8E:BB:2D:86:E8:EC:19:87:27:8C:4F:CA:E2:AE:91:BE:57:8E Certificate issuer: /CN=A915DB55/serialNumber=4423FBF41AD9F0FC74D3C15558B8D09A164B261B Certificate serial: 0639 Authority key identifier: 44:23:FB:F4:1A:D9:F0:FC:74:D3:C1:55:58:B8:D0:9A:16:4B:26:1B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RCP79BrZ8Px008FVWLjQmhZLJhs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/061C3362985911EBA5F39B54C4F9AE02.roa Signing time: Fri 30 May 2025 20:59:32 +0000 ROA not before: Fri 30 May 2025 20:59:32 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 139034 IP address blocks: 104.255.36.0/22 maxlen: 22 104.255.36.0/24 maxlen: 24 104.255.37.0/24 maxlen: 24 104.255.38.0/24 maxlen: 24 104.255.39.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/RCP79BrZ8Px008FVWLjQmhZLJhs.crl rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/RCP79BrZ8Px008FVWLjQmhZLJhs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RCP79BrZ8Px008FVWLjQmhZLJhs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 20:37:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1593 (0x639) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915DB55, serialNumber=4423FBF41AD9F0FC74D3C15558B8D09A164B261B Validity Not Before: May 30 20:59:32 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a1c34-27a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:85:b8:85:ea:0c:23:f5:78:ea:c8:74:b4:bd: e0:37:22:cc:63:04:5b:e6:b6:d8:0a:a9:e4:ae:fc: 09:39:3b:7c:6b:52:b3:bd:67:ac:ef:1b:08:44:4a: 6d:31:f6:e0:a5:81:10:c2:bb:23:3e:9b:4f:e2:2b: 53:79:3c:68:f8:27:97:3b:2f:2d:c0:9a:7d:b1:75: cc:dd:80:4d:c3:dc:af:ec:7b:ea:d0:bc:d4:ce:14: a1:b1:ca:38:75:6d:cd:10:10:99:58:01:f3:ec:1b: c7:33:72:54:c6:ae:ae:09:4e:fa:b2:43:8a:41:82: e4:6b:86:da:96:cc:40:6c:66:93:47:70:e5:26:04: b3:0d:a3:2c:2f:03:ce:00:5f:b8:8d:c0:cd:ac:b0: 76:2c:24:69:5d:ee:5c:2d:24:87:f9:ce:06:a1:d4: e7:83:8b:fd:d2:1c:cd:a7:73:17:7c:e0:b6:b8:27: dd:51:fa:23:5b:d4:3e:58:8c:6c:68:e6:e6:92:51: 27:ef:a0:88:1e:cd:44:65:b7:bf:24:72:6b:83:1d: d9:bb:5f:60:4e:26:e9:d7:c5:df:20:e4:d5:3c:17: 91:d6:3a:51:7a:ec:c0:59:9f:83:05:7f:c1:fb:a6: 2b:bd:e4:41:34:de:09:b5:72:28:7f:a4:8f:28:39: 17:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:A9:8E:BB:2D:86:E8:EC:19:87:27:8C:4F:CA:E2:AE:91:BE:57:8E X509v3 Authority Key Identifier: keyid:44:23:FB:F4:1A:D9:F0:FC:74:D3:C1:55:58:B8:D0:9A:16:4B:26:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/RCP79BrZ8Px008FVWLjQmhZLJhs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/RCP79BrZ8Px008FVWLjQmhZLJhs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915DB55/20480532985811EB8A41FA20C4F9AE02/061C3362985911EBA5F39B54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 104.255.36.0/22 Signature Algorithm: sha256WithRSAEncryption c1:fc:42:bc:3d:5f:ea:06:18:d6:19:99:7f:dd:f2:28:5e:8d: 65:84:c2:1d:4a:19:54:9b:59:c0:20:e6:86:ff:30:04:7c:07: 35:cf:d5:5b:8b:03:09:02:e2:dd:bb:a3:38:54:eb:cd:1f:90: c7:57:9d:bd:61:58:34:c1:5b:ac:05:c4:f7:6a:ed:3e:f5:23: 43:eb:94:33:85:80:fb:44:44:53:20:7d:97:17:a6:11:14:04: 98:77:17:28:e5:18:4b:fd:02:69:10:39:55:9b:af:61:cb:ff: 64:92:b3:92:eb:a9:8d:29:8e:53:23:61:e9:c0:9f:37:5f:11: e0:4b:01:73:9c:ae:0d:8e:c7:fb:be:8a:01:f9:f2:b8:69:28: 9e:91:06:55:d6:5a:e8:92:2e:73:29:62:b5:e8:0d:e3:54:4d: 47:6f:72:24:56:74:59:66:ff:a0:24:43:f1:a0:d0:39:86:91: 7c:ed:c0:dd:e9:0f:ff:a7:62:a3:4e:f7:a3:53:b5:ab:90:67: 85:6c:13:c2:79:11:cc:dd:9b:8c:b5:d1:bb:ad:8c:a3:60:fa: cf:bd:66:da:b9:85:ee:71:d2:cc:2d:af:ad:6e:62:23:cc:9b: ae:b2:5b:16:0e:e2:ec:a8:2c:b3:27:46:af:ed:1a:75:84:f4: 77:03:c2:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBjkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NURCNTUxMTAvBgNVBAUTKDQ0MjNGQkY0MUFEOUYwRkM3NEQzQzE1NTU4QjhEMDlB MTY0QjI2MUIwHhcNMjUwNTMwMjA1OTMyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhMWMzNC0yN2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzIW4heoMI/V46sh0tL3gNyLMYwRb5rbYCqnkrvwJOTt8a1KzvWes7xsIREpt MfbgpYEQwrsjPptP4itTeTxo+CeXOy8twJp9sXXM3YBNw9yv7Hvq0LzUzhShsco4 dW3NEBCZWAHz7BvHM3JUxq6uCU76skOKQYLka4balsxAbGaTR3DlJgSzDaMsLwPO AF+4jcDNrLB2LCRpXe5cLSSH+c4GodTng4v90hzNp3MXfOC2uCfdUfojW9Q+WIxs aObmklEn76CIHs1EZbe/JHJrgx3Zu19gTibp18XfIOTVPBeR1jpReuzAWZ+DBX/B +6YrveRBNN4JtXIof6SPKDkXmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBOpjrst hujsGYcnjE/K4q6RvleOMB8GA1UdIwQYMBaAFEQj+/Qa2fD8dNPBVVi40JoWSyYb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1REI1NS8yMDQ4MDUzMjk4 NTgxMUVCOEE0MUZBMjBDNEY5QUUwMi9SQ1A3OUJyWjhQeDAwOEZWV0xqUW1oWkxK aHMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1JDUDc5QnJaOFB4MDA4RlZXTGpRbWhaTEpocy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NURCNTUvMjA0ODA1MzI5ODU4MTFFQjhBNDFGQTIwQzRGOUFFMDIvMDYxQzMzNjI5 ODU5MTFFQkE1RjM5QjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJo/yQwDQYJKoZIhvcNAQELBQADggEBAMH8Qrw9X+oGGNYZ mX/d8ihejWWEwh1KGVSbWcAg5ob/MAR8BzXP1VuLAwkC4t27ozhU680fkMdXnb1h WDTBW6wFxPdq7T71I0PrlDOFgPtERFMgfZcXphEUBJh3FyjlGEv9AmkQOVWbr2HL /2SSs5LrqY0pjlMjYenAnzdfEeBLAXOcrg2Ox/u+igH58rhpKJ6RBlXWWuiSLnMp YrXoDeNUTUdvciRWdFlm/6AkQ/Gg0DmGkXztwN3pD/+nYqNO96NTtauQZ4VsE8J5 Eczdm4y10butjKNg+s+9Ztq5he5x0swtr61uYiPMm66yWxYO4uyoLLMnRq/tGnWE 9HcDwqI= -----END CERTIFICATE-----Generated at Thu Jun 5 20:08:58 2025 by rpki-client