$ rpki-client -vvf rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/E4D80D6C3CDB11F0A9A90D61C4F9AE02.roa File: E4D80D6C3CDB11F0A9A90D61C4F9AE02.roa (raw, json) Hash identifier: oDkreqtgQ3KomYzGHxeIDH9tOeB0o1ZKVDebQJ7rZiY= Subject key identifier: 71:F1:17:CF:59:61:9E:DB:2C:2F:C1:53:33:24:E8:25:C3:09:74:1A Certificate issuer: /CN=A91883D3/serialNumber=EB3C8F24BBADC94134871D6E5FD0B7C58B49D3C9 Certificate serial: A2 Authority key identifier: EB:3C:8F:24:BB:AD:C9:41:34:87:1D:6E:5F:D0:B7:C5:8B:49:D3:C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6zyPJLutyUE0hx1uX9C3xYtJ08k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/E4D80D6C3CDB11F0A9A90D61C4F9AE02.roa Signing time: Thu 29 May 2025 22:25:58 +0000 ROA not before: Thu 29 May 2025 22:25:58 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 49915 IP address blocks: 64.251.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/6zyPJLutyUE0hx1uX9C3xYtJ08k.crl rsync://rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/6zyPJLutyUE0hx1uX9C3xYtJ08k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6zyPJLutyUE0hx1uX9C3xYtJ08k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 06:10:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 162 (0xa2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91883D3, serialNumber=EB3C8F24BBADC94134871D6E5FD0B7C58B49D3C9 Validity Not Before: May 29 22:25:58 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6838def6-edc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:1d:5e:3d:44:a2:e6:fb:28:47:a3:3c:9c:9f: e1:2b:f4:99:08:a6:a3:67:4a:4f:2a:24:1f:8c:d1: c4:9a:d7:cd:30:ff:75:17:8a:64:2e:30:8a:95:ae: 8e:57:c3:8f:1c:38:f9:0d:9d:40:ff:69:ef:cc:ac: 4a:6d:2a:66:f8:c1:e8:95:3f:ca:4e:3c:48:b4:a1: ba:da:db:d2:44:5b:69:df:86:7e:a2:27:a6:ea:0b: 23:a1:ae:a1:f6:7b:42:a9:67:84:14:5e:14:fe:ed: e8:a8:ef:51:85:28:5f:92:f8:f7:4b:7f:cb:51:a1: d7:f0:f9:11:99:7b:ce:65:06:c8:af:29:c2:9a:29: ec:f1:2a:6a:47:77:cf:1f:e5:79:9c:20:3b:94:6b: 16:e2:db:4e:a4:3c:82:58:7c:64:55:d9:54:68:2a: 63:f4:14:74:92:8f:ee:14:b3:7c:57:e9:d9:ec:ec: f9:14:52:b8:82:bc:bd:f2:98:84:f1:07:45:68:4e: e3:09:a9:ee:a3:86:5f:31:e3:f8:e0:82:32:dc:cf: 5a:96:70:79:b7:65:0e:ee:28:91:a3:59:79:3b:a8: 68:44:ed:71:29:92:47:a6:c1:c9:75:ac:34:95:0b: 6e:55:d9:53:60:cc:33:1a:1a:a1:37:22:59:3d:7f: 85:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F1:17:CF:59:61:9E:DB:2C:2F:C1:53:33:24:E8:25:C3:09:74:1A X509v3 Authority Key Identifier: keyid:EB:3C:8F:24:BB:AD:C9:41:34:87:1D:6E:5F:D0:B7:C5:8B:49:D3:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/6zyPJLutyUE0hx1uX9C3xYtJ08k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6zyPJLutyUE0hx1uX9C3xYtJ08k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91883D3/8D03EF365E3611EFAC92D314C4F9AE02/E4D80D6C3CDB11F0A9A90D61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 64.251.207.0/24 Signature Algorithm: sha256WithRSAEncryption ac:af:17:8c:7e:04:e8:9f:e3:3f:14:c8:86:c2:00:6d:66:0d: 68:00:95:ad:6d:85:64:e8:61:b4:6d:bd:55:d6:af:c0:fa:04: 58:bd:ef:fd:53:82:e4:8d:7b:d8:e7:d3:9a:e1:5e:0f:53:c9: de:2c:fe:87:62:0f:cf:9d:2a:f2:a6:7f:a4:c1:61:c0:df:d1: 70:3e:0b:2a:f3:90:e1:89:8b:53:22:40:f3:80:f2:4c:43:82: 59:20:18:5f:29:70:f8:55:7a:44:d7:72:c3:70:ff:2e:e3:1a: 54:89:70:90:03:b9:80:8e:f4:07:40:65:2d:f0:a8:10:08:3d: 4a:5b:70:72:65:3e:f8:1f:a9:2b:1b:15:9b:a2:c3:d6:a8:ad: 67:f1:cc:6b:c5:a8:75:e4:09:d5:92:9a:54:25:6f:c5:9d:bf: 50:a9:f7:6d:d4:23:f5:56:fd:85:f1:83:53:f0:b4:9b:be:c6: 69:09:d2:f9:6a:31:4e:ec:a0:6d:87:c9:68:2e:9f:dd:5c:33: a5:50:9d:0a:fb:29:dc:9d:21:07:ae:bf:62:07:9a:3e:51:db: 4d:b9:d4:13:45:b3:6a:a2:a5:76:a7:c2:64:12:2b:d6:07:5c: d1:d7:c8:66:0f:40:a1:26:ca:e4:ba:35:51:19:12:fd:a8:a4: d4:ba:42:29 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODgzRDMxMTAvBgNVBAUTKEVCM0M4RjI0QkJBREM5NDEzNDg3MUQ2RTVGRDBCN0M1 OEI0OUQzQzkwHhcNMjUwNTI5MjIyNTU4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM4ZGVmNi1lZGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1B1ePUSi5vsoR6M8nJ/hK/SZCKajZ0pPKiQfjNHEmtfNMP91F4pkLjCKla6O V8OPHDj5DZ1A/2nvzKxKbSpm+MHolT/KTjxItKG62tvSRFtp34Z+oiem6gsjoa6h 9ntCqWeEFF4U/u3oqO9RhShfkvj3S3/LUaHX8PkRmXvOZQbIrynCmins8SpqR3fP H+V5nCA7lGsW4ttOpDyCWHxkVdlUaCpj9BR0ko/uFLN8V+nZ7Oz5FFK4gry98piE 8QdFaE7jCanuo4ZfMeP44IIy3M9alnB5t2UO7iiRo1l5O6hoRO1xKZJHpsHJdaw0 lQtuVdlTYMwzGhqhNyJZPX+FhwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHHxF89Z YZ7bLC/BUzMk6CXDCXQaMB8GA1UdIwQYMBaAFOs8jyS7rclBNIcdbl/Qt8WLSdPJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODNEMy84RDAzRUYzNjVF MzYxMUVGQUM5MkQzMTRDNEY5QUUwMi82enlQSkx1dHlVRTBoeDF1WDlDM3hZdEow OGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzZ6eVBKTHV0eVVFMGh4MXVYOUMzeFl0SjA4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODgzRDMvOEQwM0VGMzY1RTM2MTFFRkFDOTJEMzE0QzRGOUFFMDIvRTREODBENkMz Q0RCMTFGMEE5QTkwRDYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABA+88wDQYJKoZIhvcNAQELBQADggEBAKyvF4x+BOif4z8U yIbCAG1mDWgAla1thWToYbRtvVXWr8D6BFi97/1TguSNe9jn05rhXg9Tyd4s/odi D8+dKvKmf6TBYcDf0XA+CyrzkOGJi1MiQPOA8kxDglkgGF8pcPhVekTXcsNw/y7j GlSJcJADuYCO9AdAZS3wqBAIPUpbcHJlPvgfqSsbFZuiw9aorWfxzGvFqHXkCdWS mlQlb8Wdv1Cp923UI/VW/YXxg1PwtJu+xmkJ0vlqMU7soG2HyWgun91cM6VQnQr7 KdydIQeuv2IHmj5R20251BNFs2qipXanwmQSK9YHXNHXyGYPQKEmyuS6NVEZEv2o pNS6Qik= -----END CERTIFICATE-----Generated at Wed Jun 4 13:09:21 2025 by rpki-client