$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/CA13AA3259F411F088DE4585C4F9AE02.roa File: CA13AA3259F411F088DE4585C4F9AE02.roa (raw, json) Hash identifier: sqfwCpzDKMYilQCPQK2oKMa05i/stBaHoGZSKtfH8BY= Subject key identifier: 98:6A:6A:5E:F8:52:CE:0B:97:A6:8C:61:74:A6:6F:23:F7:9B:17:95 Certificate issuer: /CN=A91AC5BC/serialNumber=A145241D9830AF24A71567351255EC8E7ED53EFE Certificate serial: 04 Authority key identifier: A1:45:24:1D:98:30:AF:24:A7:15:67:35:12:55:EC:8E:7E:D5:3E:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/CA13AA3259F411F088DE4585C4F9AE02.roa Signing time: Sat 05 Jul 2025 23:11:34 +0000 ROA not before: Sat 05 Jul 2025 23:11:33 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153686 IP address blocks: 163.223.72.0/23 maxlen: 23 2001:df5:3640::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.crl rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Jul 2025 08:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC5BC, serialNumber=A145241D9830AF24A71567351255EC8E7ED53EFE Validity Not Before: Jul 5 23:11:33 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6869b125-e2a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:43:88:c4:de:69:c4:31:db:4a:73:98:b7:d9: 97:5d:d2:2f:0a:6e:12:37:2f:0f:2a:1d:41:43:13: 5b:33:39:b1:8c:9f:d0:42:65:1d:dd:93:96:bb:91: ba:99:c5:27:8d:ec:28:74:27:10:78:d0:cb:b4:49: f8:e3:b6:08:64:90:1b:ef:68:75:45:6a:73:b5:a1: 05:5d:58:e7:86:d0:c1:b5:dd:90:44:bf:21:1b:01: f7:d0:5b:69:5f:cf:f0:30:f7:77:cc:2a:d1:eb:86: f7:ab:0a:20:b6:46:f4:a5:77:3d:fa:36:ff:eb:d2: a9:73:1d:12:1d:fd:b5:66:4f:7a:bf:75:3e:96:5e: 90:5b:df:c1:48:56:e3:89:d7:73:ec:c3:21:49:c1: c5:a8:ea:3a:62:1a:1b:4a:95:c5:0c:b4:6e:fe:1f: e2:1f:50:52:93:62:5f:3a:18:5b:0a:8f:f4:fb:17: df:ad:cd:09:e9:96:d2:4a:6e:4f:bc:a3:92:db:1d: 96:9c:85:2d:be:f4:a7:dd:66:23:72:68:7f:e6:43: c6:f9:f7:20:9e:29:cf:0e:90:15:e6:ab:3e:ba:c3: 97:5a:c0:32:2e:c5:27:08:a5:eb:56:d2:bf:68:a1: b1:da:21:4c:65:c9:01:62:43:4e:20:49:76:73:06: 7a:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:6A:6A:5E:F8:52:CE:0B:97:A6:8C:61:74:A6:6F:23:F7:9B:17:95 X509v3 Authority Key Identifier: keyid:A1:45:24:1D:98:30:AF:24:A7:15:67:35:12:55:EC:8E:7E:D5:3E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/CA13AA3259F411F088DE4585C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.72.0/23 IPv6: 2001:df5:3640::/48 Signature Algorithm: sha256WithRSAEncryption 41:d7:70:cb:55:a7:dc:c4:e9:14:3a:7a:f9:a6:3d:72:b6:58: 10:5a:d5:4f:fa:f9:48:3c:26:73:7f:19:fa:23:5f:23:dd:e3: d8:4f:4a:cd:38:cb:5d:6a:53:47:f2:d5:5e:77:8a:a8:51:db: 51:f0:50:58:21:f2:f1:21:66:36:4e:0d:87:b1:f7:5b:05:47: f0:15:2f:42:5c:5f:d6:35:f9:23:ce:b5:04:25:08:3b:e7:b0: 37:e5:56:14:78:bc:b8:75:4d:6b:d5:d6:76:4c:d0:bc:62:2f: 7a:e2:b5:b5:7d:90:c4:2c:bc:e0:84:7a:70:d2:ea:95:a7:a3: 15:36:0d:a6:f1:e9:ae:b4:c1:5e:48:86:ae:c2:6c:13:97:4a: 82:fc:cd:55:0a:ac:b1:db:46:00:01:b5:75:3d:a8:fd:17:64: bc:5d:b0:d4:8c:52:7b:ae:d0:ed:fa:7c:49:9a:6f:4d:8d:a8: 17:da:de:84:83:c7:be:ea:83:59:15:6e:7f:f4:03:39:cb:1e: fa:10:cd:ed:77:4c:64:2e:03:a7:dd:72:dc:b8:09:88:f5:04: d9:bf:50:5c:89:9e:79:8b:ad:a7:ff:13:20:11:8d:a6:29:45: 22:ad:a2:e2:62:55:b7:47:7b:15:ce:e4:83:ee:1d:c0:d9:a4: 0a:01:dc:b7 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QzVCQzExMC8GA1UEBRMoQTE0NTI0MUQ5ODMwQUYyNEE3MTU2NzM1MTI1NUVDOEU3 RUQ1M0VGRTAeFw0yNTA3MDUyMzExMzNaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjliMTI1LWUyYTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4Q4jE3mnEMdtKc5i32Zdd0i8KbhI3Lw8qHUFDE1szObGMn9BCZR3dk5a7kbqZ xSeN7Ch0JxB40Mu0SfjjtghkkBvvaHVFanO1oQVdWOeG0MG13ZBEvyEbAffQW2lf z/Aw93fMKtHrhverCiC2RvSldz36Nv/r0qlzHRId/bVmT3q/dT6WXpBb38FIVuOJ 13PswyFJwcWo6jpiGhtKlcUMtG7+H+IfUFKTYl86GFsKj/T7F9+tzQnpltJKbk+8 o5LbHZachS2+9KfdZiNyaH/mQ8b59yCeKc8OkBXmqz66w5dawDIuxScIpetW0r9o obHaIUxlyQFiQ04gSXZzBnoHAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUmGpqXvhS zguXpoxhdKZvI/ebF5UwHwYDVR0jBBgwFoAUoUUkHZgwrySnFWc1ElXsjn7VPv4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFDNUJDLzcxRTVEOEJFNTlG MjExRjBCNEZBRTk1RkM0RjlBRTAyL29VVWtIWmd3cnlTbkZXYzFFbFhzam43VlB2 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1VVa0haZ3dyeVNuRldjMUVsWHNqbjdWUHY0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzVCQy83MUU1RDhCRTU5RjIxMUYwQjRGQUU5NUZDNEY5QUUwMi9DQTEzQUEzMjU5 RjQxMUYwODhERTQ1ODVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAaPfSDAPBAIAAjAJAwcAIAEN9TZAMA0GCSqGSIb3DQEBCwUA A4IBAQBB13DLVafcxOkUOnr5pj1ytlgQWtVP+vlIPCZzfxn6I18j3ePYT0rNOMtd alNH8tVed4qoUdtR8FBYIfLxIWY2Tg2HsfdbBUfwFS9CXF/WNfkjzrUEJQg757A3 5VYUeLy4dU1r1dZ2TNC8Yi964rW1fZDELLzghHpw0uqVp6MVNg2m8emutMFeSIau wmwTl0qC/M1VCqyx20YAAbV1Paj9F2S8XbDUjFJ7rtDt+nxJmm9NjagX2t6Eg8e+ 6oNZFW5/9AM5yx76EM3td0xkLgOn3XLcuAmI9QTZv1BciZ55i62n/xMgEY2mKUUi raLiYlW3R3sVzuSD7h3A2aQKAdy3 -----END CERTIFICATE-----Generated at Mon Jul 7 14:20:09 2025 by rpki-client