$ rpki-client -vvf rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/218937DC5E5011F0B9404662C4F9AE02.roa File: 218937DC5E5011F0B9404662C4F9AE02.roa (raw, json) Hash identifier: AYUrmB0VmSIUZcI9YP+6cvDLUzAB6YwYDgaBWNY/PRc= Subject key identifier: 64:C7:5C:A8:67:8A:3B:F4:D0:70:09:09:29:EF:C1:30:83:E4:DC:25 Certificate issuer: /CN=A91A2C5D/serialNumber=08777FA381BF258E0CAC37D509EF0BAC70664844 Certificate serial: 02 Authority key identifier: 08:77:7F:A3:81:BF:25:8E:0C:AC:37:D5:09:EF:0B:AC:70:66:48:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/218937DC5E5011F0B9404662C4F9AE02.roa Signing time: Fri 11 Jul 2025 12:11:10 +0000 ROA not before: Fri 11 Jul 2025 12:11:10 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 152139 IP address blocks: 210.87.70.0/23 maxlen: 23 210.87.70.0/24 maxlen: 24 210.87.71.0/24 maxlen: 24 2001:df3:3e40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.crl rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Aug 2025 04:30:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A2C5D, serialNumber=08777FA381BF258E0CAC37D509EF0BAC70664844 Validity Not Before: Jul 11 12:11:10 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6870ff5e-482a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:91:ac:47:84:0d:63:1f:25:8f:84:e1:2b:17: b3:2a:e9:78:9c:81:30:78:60:ba:95:0d:e6:99:9c: 7e:1a:15:42:08:a3:9b:a0:75:47:5f:2d:5e:6f:9c: bf:1b:49:3e:f7:a8:4b:71:e7:6b:06:c7:80:e6:a8: c3:41:14:e9:e9:46:29:07:2d:b8:e5:21:37:ed:28: ed:e6:2c:0b:79:87:b8:4b:27:c5:f1:e1:0e:16:f3: 84:f8:39:4e:ac:4d:f7:c4:45:e9:b5:36:d0:14:aa: 87:bd:57:1f:06:ba:8c:e5:d6:de:f8:0b:78:b1:16: d8:66:a7:41:5d:20:e3:5a:32:07:8b:17:a7:f3:f4: 99:3b:3a:be:cc:dd:8b:20:e5:99:6a:7b:5c:3c:bd: b9:49:13:9c:5d:fe:e8:cc:33:1b:93:47:93:ac:2a: 5d:4f:32:56:8f:51:c8:bd:2a:5c:d3:b8:1b:28:c7: 86:97:0a:b1:74:33:4d:2b:a8:45:db:26:14:5d:92: 26:57:5e:23:fb:77:99:98:de:56:8c:b0:74:e7:8a: 80:0f:88:3c:e2:8b:1f:5a:a6:be:91:2a:a1:62:a7: 6c:38:bb:e7:28:13:c0:f1:d6:45:a2:9c:2a:c6:55: 4d:b4:37:a9:2f:b5:11:e2:65:f2:28:23:57:23:a1: a6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:C7:5C:A8:67:8A:3B:F4:D0:70:09:09:29:EF:C1:30:83:E4:DC:25 X509v3 Authority Key Identifier: keyid:08:77:7F:A3:81:BF:25:8E:0C:AC:37:D5:09:EF:0B:AC:70:66:48:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CHd_o4G_JY4MrDfVCe8LrHBmSEQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A2C5D/3B9DD41092C411EEB521BB49C4F9AE02/218937DC5E5011F0B9404662C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.87.70.0/23 IPv6: 2001:df3:3e40::/48 Signature Algorithm: sha256WithRSAEncryption 36:33:d3:ff:35:5b:ee:19:ff:c8:52:66:9d:ef:d3:c0:e0:07: 22:98:cc:2d:47:33:ed:7c:db:b3:56:74:ce:20:c9:1d:38:7c: cf:92:9f:8b:1e:a0:fe:55:7c:49:07:68:b3:19:57:a3:b2:38: 37:4f:87:72:a1:2d:6d:81:6e:6f:f8:db:d4:04:55:63:82:3b: d0:d1:0d:54:b4:81:e1:2d:29:78:1f:b9:8c:8a:c5:d0:47:66: ae:3d:1a:20:da:1d:1a:df:14:4e:f0:32:77:4e:8e:45:5f:41: 88:86:02:2a:69:92:c1:1d:60:26:09:b2:d8:96:25:8e:6b:20: 5f:ad:98:16:16:80:0e:79:c2:4a:ca:7a:34:9a:a8:24:91:d1: 69:d2:88:02:62:26:5b:03:43:12:97:1e:99:a5:db:7e:ab:02: 43:5e:6e:e4:50:c4:71:26:d7:83:03:68:16:64:db:58:36:d1: 04:8f:5a:6f:05:b9:9e:e8:21:18:5c:c4:98:2a:ee:a0:f2:98: 4c:d7:e0:9a:6b:4e:e9:b3:e2:8f:0c:18:cd:28:f7:a1:af:26: 67:5f:fc:2c:2d:c9:43:31:18:2c:12:2e:19:4a:33:ec:32:a4: 59:c3:55:76:d3:25:76:1c:d8:f7:07:9a:79:ea:60:78:ab:73: 61:3c:61:b8 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MkM1RDExMC8GA1UEBRMoMDg3NzdGQTM4MUJGMjU4RTBDQUMzN0Q1MDlFRjBCQUM3 MDY2NDg0NDAeFw0yNTA3MTExMjExMTBaFw0yNjAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NzBmZjVlLTQ4MmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4kaxHhA1jHyWPhOErF7Mq6XicgTB4YLqVDeaZnH4aFUIIo5ugdUdfLV5vnL8b ST73qEtx52sGx4DmqMNBFOnpRikHLbjlITftKO3mLAt5h7hLJ8Xx4Q4W84T4OU6s TffERem1NtAUqoe9Vx8Guozl1t74C3ixFthmp0FdIONaMgeLF6fz9Jk7Or7M3Ysg 5Zlqe1w8vblJE5xd/ujMMxuTR5OsKl1PMlaPUci9KlzTuBsox4aXCrF0M00rqEXb JhRdkiZXXiP7d5mY3laMsHTnioAPiDziix9apr6RKqFip2w4u+coE8Dx1kWinCrG VU20N6kvtRHiZfIoI1cjoabLAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUZMdcqGeK O/TQcAkJKe/BMIPk3CUwHwYDVR0jBBgwFoAUCHd/o4G/JY4MrDfVCe8LrHBmSEQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEyQzVELzNCOURENDEwOTJD NDExRUVCNTIxQkI0OUM0RjlBRTAyL0NIZF9vNEdfSlk0TXJEZlZDZThMckhCbVNF US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ0hkX280R19KWTRNckRmVkNlOExySEJtU0VRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MkM1RC8zQjlERDQxMDkyQzQxMUVFQjUyMUJCNDlDNEY5QUUwMi8yMTg5MzdEQzVF NTAxMUYwQjk0MDQ2NjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAdJXRjAPBAIAAjAJAwcAIAEN8z5AMA0GCSqGSIb3DQEBCwUA A4IBAQA2M9P/NVvuGf/IUmad79PA4AcimMwtRzPtfNuzVnTOIMkdOHzPkp+LHqD+ VXxJB2izGVejsjg3T4dyoS1tgW5v+NvUBFVjgjvQ0Q1UtIHhLSl4H7mMisXQR2au PRog2h0a3xRO8DJ3To5FX0GIhgIqaZLBHWAmCbLYliWOayBfrZgWFoAOecJKyno0 mqgkkdFp0ogCYiZbA0MSlx6Zpdt+qwJDXm7kUMRxJteDA2gWZNtYNtEEj1pvBbme 6CEYXMSYKu6g8phM1+Caa07ps+KPDBjNKPehryZnX/wsLclDMRgsEi4ZSjPsMqRZ w1V20yV2HNj3B5p56mB4q3NhPGG4 -----END CERTIFICATE-----Generated at Fri Aug 22 18:42:46 2025 by rpki-client