$ rpki-client -vvf rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/D53B3AEE89FE11E6A44EAA55C4F9AE02.roa File: D53B3AEE89FE11E6A44EAA55C4F9AE02.roa (raw, json) Hash identifier: Ye52YKhoRR1pJu5IsuPqQlgcqyEdYJTHUS480yJoKy0= Subject key identifier: 22:9C:E9:52:5A:1A:88:C3:39:DA:59:F7:B4:AA:19:FF:C8:2D:8A:D7 Certificate issuer: /CN=A91AABB1/serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806 Certificate serial: 35C4 Authority key identifier: EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/D53B3AEE89FE11E6A44EAA55C4F9AE02.roa Signing time: Wed 04 Jun 2025 15:10:55 +0000 ROA not before: Wed 04 Jun 2025 15:10:55 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 63932 IP address blocks: 114.130.54.0/23 maxlen: 23 114.130.54.0/24 maxlen: 24 114.130.55.0/24 maxlen: 24 114.130.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 Oct 2025 14:59:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13764 (0x35c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AABB1, serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806 Validity Not Before: Jun 4 15:10:55 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=684061fe-4ab2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d5:97:a8:50:9c:6d:bd:78:e8:8a:4b:71:8b: 2f:3b:63:a2:cc:c1:45:82:80:39:c7:6f:dc:27:6e: b3:3e:36:2b:22:9f:7a:f5:76:67:59:aa:a5:f9:ad: b2:ee:00:75:06:f5:13:d7:cb:bd:16:7c:df:8b:fa: 86:1a:45:41:bc:a9:b3:d5:b6:32:02:b9:13:4c:06: ff:74:18:3c:fe:f9:93:f5:3f:2b:7d:e2:19:22:a1: ef:4c:58:b7:4f:f8:eb:14:58:54:ab:91:46:17:63: dd:e1:3f:3d:23:d1:e9:78:ac:59:4c:55:d6:b5:e9: 7a:66:14:82:e9:c8:80:92:2a:ae:6d:99:f9:58:5b: cf:8d:45:72:bc:53:12:ea:cd:bc:7d:d6:5e:49:72: 3d:12:e8:4a:f7:10:ac:a5:1d:dc:09:5d:fb:38:6c: 72:73:8d:d5:bc:80:f5:8a:30:10:10:3e:be:c4:06: 6e:75:e0:4a:2f:e1:17:61:d6:10:11:a2:34:69:5b: 7d:aa:80:54:29:1d:84:03:72:f8:ce:06:11:8b:05: 3d:b9:fd:bc:3d:96:8a:0d:cc:98:92:72:67:59:2a: af:27:b8:c7:da:f1:8e:f4:50:cd:2f:33:55:7a:d7: 89:d2:e5:34:6a:d2:81:54:a7:21:93:c5:92:29:17: 64:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:9C:E9:52:5A:1A:88:C3:39:DA:59:F7:B4:AA:19:FF:C8:2D:8A:D7 X509v3 Authority Key Identifier: keyid:EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/D53B3AEE89FE11E6A44EAA55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.130.54.0/23 114.130.116.0/22 Signature Algorithm: sha256WithRSAEncryption 12:e6:f0:19:b0:41:71:48:f2:b8:de:33:64:bd:89:ba:e7:1f: ef:94:be:52:1c:46:33:d2:45:66:d0:ac:56:b3:dd:65:29:0f: 28:78:73:4f:5e:51:dd:af:82:cf:09:55:9e:af:36:bf:b0:c2: 32:42:4c:cd:ba:6c:7c:9d:f2:d6:43:ab:d4:54:f5:cf:13:12: 88:03:ae:0c:88:14:a9:d3:c2:f8:d9:8f:4d:91:7d:10:4e:d4: c0:60:ee:cb:e1:aa:32:db:db:ca:5e:8b:58:da:85:1c:e3:06: e2:3b:e5:1b:dd:53:7c:39:8c:99:42:40:80:34:43:83:a4:80: 7b:f6:64:de:a4:27:c9:33:6e:4f:be:4b:7a:1b:37:0f:91:2c: 8e:73:a8:9f:26:ea:ac:2f:d0:2c:89:ee:35:1d:52:2d:53:2a: a4:2f:64:4b:f7:53:16:ef:de:80:42:38:ef:af:d5:e1:81:ee: 87:55:e8:85:f1:9d:3f:4a:02:ae:73:6d:f3:c2:9e:50:98:36: 4d:23:e1:c3:89:0f:bf:04:52:02:e8:ce:36:f6:c5:df:55:25: 7a:c2:55:31:a3:d5:69:91:28:47:08:b3:74:ef:7a:6a:f6:bf: 8b:37:d4:a8:e4:dc:a8:fa:40:4e:16:77:f6:4e:30:a8:4d:b0: 3e:bf:fd:d8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNcQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFCQjExMTAvBgNVBAUTKEVCN0ZFOTg5MkRGMDAwMjU1RkNGM0FDMEIyQjREMTJB RUE2RkY4MDYwHhcNMjUwNjA0MTUxMDU1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwNjFmZS00YWIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzdWXqFCcbb146IpLcYsvO2OizMFFgoA5x2/cJ26zPjYrIp969XZnWaql+a2y 7gB1BvUT18u9Fnzfi/qGGkVBvKmz1bYyArkTTAb/dBg8/vmT9T8rfeIZIqHvTFi3 T/jrFFhUq5FGF2Pd4T89I9HpeKxZTFXWtel6ZhSC6ciAkiqubZn5WFvPjUVyvFMS 6s28fdZeSXI9EuhK9xCspR3cCV37OGxyc43VvID1ijAQED6+xAZudeBKL+EXYdYQ EaI0aVt9qoBUKR2EA3L4zgYRiwU9uf28PZaKDcyYknJnWSqvJ7jH2vGO9FDNLzNV eteJ0uU0atKBVKchk8WSKRdkcwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCKc6VJa GojDOdpZ97SqGf/ILYrXMB8GA1UdIwQYMBaAFOt/6Ykt8AAlX886wLK00Srqb/gG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUJCMS84ODc0RTlFODFE OTgxMUUyOTc4OEE5ODIwOEIwMkNEMi82M19waVMzd0FDVmZ6enJBc3JUUkt1cHYt QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzYzX3BpUzN3QUNWZnp6ckFzclRSS3Vwdi1BWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFCQjEvODg3NEU5RTgxRDk4MTFFMjk3ODhBOTgyMDhCMDJDRDIvRDUzQjNBRUU4 OUZFMTFFNkE0NEVBQTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFygjYDBAJygnQwDQYJKoZIhvcNAQELBQADggEBABLm8Bmw QXFI8rjeM2S9ibrnH++UvlIcRjPSRWbQrFaz3WUpDyh4c09eUd2vgs8JVZ6vNr+w wjJCTM26bHyd8tZDq9RU9c8TEogDrgyIFKnTwvjZj02RfRBO1MBg7svhqjLb28pe i1jahRzjBuI75RvdU3w5jJlCQIA0Q4OkgHv2ZN6kJ8kzbk++S3obNw+RLI5zqJ8m 6qwv0CyJ7jUdUi1TKqQvZEv3Uxbv3oBCOO+v1eGB7odV6IXxnT9KAq5zbfPCnlCY Nk0j4cOJD78EUgLozjb2xd9VJXrCVTGj1WmRKEcIs3Tvemr2v4s31Kjk3Kj6QE4W d/ZOMKhNsD6//dg= -----END CERTIFICATE-----Generated at Sun Oct 26 15:01:10 2025 by rpki-client