$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/0C2077B6D1B511EF944F205DC4F9AE02.roa File: 0C2077B6D1B511EF944F205DC4F9AE02.roa (raw, json) Hash identifier: vja+a7NVCjcQj64L0y6ot3hr8lpW0YLqwI3TCyIsiEI= Subject key identifier: 22:09:25:50:88:B4:CE:34:D6:22:8D:37:94:E7:51:EC:D7:D9:F5:1C Certificate issuer: /CN=A91A9083/serialNumber=E8CF22A08E4391CAD150FA31B44DC93C8AB825EA Certificate serial: 5E Authority key identifier: E8:CF:22:A0:8E:43:91:CA:D1:50:FA:31:B4:4D:C9:3C:8A:B8:25:EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/0C2077B6D1B511EF944F205DC4F9AE02.roa Signing time: Thu 19 Jun 2025 13:04:50 +0000 ROA not before: Thu 19 Jun 2025 13:04:50 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134351 IP address blocks: 23.81.40.0/21 maxlen: 21 23.106.224.0/21 maxlen: 21 142.91.104.0/23 maxlen: 23 142.91.106.0/23 maxlen: 23 173.234.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.crl rsync://rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 07:57:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9083, serialNumber=E8CF22A08E4391CAD150FA31B44DC93C8AB825EA Validity Not Before: Jun 19 13:04:50 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68540af1-3eb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:7e:08:f0:31:4c:07:55:78:59:b7:a0:ba:7b: 82:e5:9c:72:d3:1d:59:5c:88:8a:47:e9:ab:92:ba: ed:4c:ed:10:57:c6:32:8e:38:8e:69:c1:b6:64:ea: da:bd:af:52:0d:26:7b:58:92:dd:63:9c:b4:9e:d9: 40:a5:c0:b1:d2:34:b5:1c:53:2c:0f:9e:e8:d5:0d: ca:43:3b:cc:cc:81:35:bb:b1:38:f5:df:fd:cb:67: 53:4d:23:21:8a:13:81:7e:6e:12:68:18:b5:a8:51: 8a:11:f4:f8:32:e5:89:81:1c:74:18:a3:cf:8d:41: 4d:c3:a0:76:f1:3f:9b:57:60:ff:b2:9a:31:a3:46: 5f:27:c8:19:11:81:26:32:62:f9:14:fc:64:20:c8: de:03:28:3e:28:22:b2:f9:73:3d:3d:1f:e0:09:94: d2:85:8c:c4:41:c3:0d:de:bd:15:99:55:9f:98:9e: c1:90:3e:3a:26:19:49:66:f9:d7:50:54:cf:59:b2: 6b:6b:c2:ac:7d:ac:21:a6:77:46:91:75:0a:cb:cc: 42:78:6c:ea:df:8b:40:27:3b:ad:52:45:09:41:e2: 7e:3a:0b:da:98:03:12:cf:47:f4:83:11:da:fd:ac: 13:d6:56:19:1c:70:51:da:ac:20:8a:ce:d5:29:e6: 90:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:09:25:50:88:B4:CE:34:D6:22:8D:37:94:E7:51:EC:D7:D9:F5:1C X509v3 Authority Key Identifier: keyid:E8:CF:22:A0:8E:43:91:CA:D1:50:FA:31:B4:4D:C9:3C:8A:B8:25:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/0C2077B6D1B511EF944F205DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 23.81.40.0/21 23.106.224.0/21 142.91.104.0/22 173.234.64.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:77:d4:25:35:e2:f5:84:8f:99:e9:8e:5a:39:00:e3:c8:9c: d1:6f:3a:31:a7:19:ec:05:7b:cc:a4:54:11:f8:cb:5e:c5:b2: 2c:79:06:65:7a:8c:af:b3:76:d7:40:9b:01:f3:69:55:09:a7: 02:c2:6c:59:e8:95:e3:93:08:5f:88:c4:67:de:f0:a9:7a:58: 80:2d:4f:c3:a8:2b:17:b5:e5:51:32:fb:e3:2a:ca:dd:8b:c9: 52:97:d7:c5:45:b1:e1:01:be:e3:1b:ad:b6:f6:64:be:a5:64: 51:4c:70:88:0d:4f:54:12:f1:c0:93:e7:ff:ac:e2:9b:8b:2a: 6e:f0:40:a6:e1:83:ae:04:70:cc:12:26:28:e3:5c:56:6f:47: 8f:e2:1f:b7:d5:9f:ac:21:62:a5:78:da:9a:39:96:f3:11:31: f8:2e:ea:74:82:bd:8b:b1:f1:06:cd:12:1b:fe:f8:fe:9f:f1: 9e:d1:f9:4c:c7:65:4b:c7:c8:82:66:34:bb:bf:29:f3:18:04: e5:76:f2:df:7c:d9:5a:ae:0c:d1:60:0c:de:90:07:80:f0:af: 27:c9:43:23:8d:b0:98:fa:c8:06:82:99:e6:34:0f:59:19:a3: 7c:39:2d:f9:17:1f:5e:9b:fd:a6:bd:45:4f:0e:f1:f3:3e:d3: 58:7b:fe:06 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTA4MzExMC8GA1UEBRMoRThDRjIyQTA4RTQzOTFDQUQxNTBGQTMxQjQ0REM5M0M4 QUI4MjVFQTAeFw0yNTA2MTkxMzA0NTBaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NTQwYWYxLTNlYjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJfgjwMUwHVXhZt6C6e4LlnHLTHVlciIpH6auSuu1M7RBXxjKOOI5pwbZk6tq9 r1INJntYkt1jnLSe2UClwLHSNLUcUywPnujVDcpDO8zMgTW7sTj13/3LZ1NNIyGK E4F+bhJoGLWoUYoR9Pgy5YmBHHQYo8+NQU3DoHbxP5tXYP+ymjGjRl8nyBkRgSYy YvkU/GQgyN4DKD4oIrL5cz09H+AJlNKFjMRBww3evRWZVZ+YnsGQPjomGUlm+ddQ VM9Zsmtrwqx9rCGmd0aRdQrLzEJ4bOrfi0AnO61SRQlB4n46C9qYAxLPR/SDEdr9 rBPWVhkccFHarCCKztUp5pCJAgMBAAGjggKnMIICozAdBgNVHQ4EFgQUIgklUIi0 zjTWIo03lOdR7NfZ9RwwHwYDVR0jBBgwFoAU6M8ioI5DkcrRUPoxtE3JPIq4Jeow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MDgzL0MwNkYyRTQyRDFC MDExRUY4ODMzQzkzM0M0RjlBRTAyLzZNOGlvSTVEa2NyUlVQb3h0RTNKUElxNEpl by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNk04aW9JNURrY3JSVVBveHRFM0pQSXE0SmVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTA4My9DMDZGMkU0MkQxQjAxMUVGODgzM0M5MzNDNEY5QUUwMi8wQzIwNzdCNkQx QjUxMUVGOTQ0RjIwNURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAxBggrBgEFBQcBBwEB/wQi MCAwHgQCAAEwGAMEAxdRKAMEAxdq4AMEAo5baAMEAq3qQDANBgkqhkiG9w0BAQsF AAOCAQEAfXfUJTXi9YSPmemOWjkA48ic0W86MacZ7AV7zKRUEfjLXsWyLHkGZXqM r7N210CbAfNpVQmnAsJsWeiV45MIX4jEZ97wqXpYgC1Pw6grF7XlUTL74yrK3YvJ UpfXxUWx4QG+4xuttvZkvqVkUUxwiA1PVBLxwJPn/6zim4sqbvBApuGDrgRwzBIm KONcVm9Hj+Ift9WfrCFipXjamjmW8xEx+C7qdIK9i7HxBs0SG/74/p/xntH5TMdl S8fIgmY0u78p8xgE5Xby33zZWq4M0WAM3pAHgPCvJ8lDI42wmPrIBoKZ5jQPWRmj fDkt+RcfXpv9pr1FTw7x8z7TWHv+Bg== -----END CERTIFICATE-----Generated at Tue Jul 1 22:10:29 2025 by rpki-client