$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/D66D72562EAB11EF9B369566C4F9AE02.roa File: D66D72562EAB11EF9B369566C4F9AE02.roa (raw, json) Hash identifier: 6gN0nzoFmNHVaS7tp1oD/3MNM9qt5KAUk1vZ6H1zsVE= Subject key identifier: A3:D9:26:9A:B0:1F:A1:9A:72:DB:ED:C7:80:A2:C4:A0:65:2D:F4:45 Certificate issuer: /CN=A91B7BDC/serialNumber=EF25A925BFBD4CBAEF52456AB3B309B747040DFE Certificate serial: FB Authority key identifier: EF:25:A9:25:BF:BD:4C:BA:EF:52:45:6A:B3:B3:09:B7:47:04:0D:FE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/7yWpJb-9TLrvUkVqs7MJt0cEDf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/D66D72562EAB11EF9B369566C4F9AE02.roa Signing time: Thu 22 May 2025 02:58:12 +0000 ROA not before: Thu 22 May 2025 02:58:12 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132139 IP address blocks: 185.81.70.0/24 maxlen: 24 185.81.70.192/29 maxlen: 29 185.81.70.200/29 maxlen: 29 185.81.70.208/29 maxlen: 29 185.81.70.216/29 maxlen: 29 185.81.70.224/31 maxlen: 31 185.81.70.226/31 maxlen: 31 185.81.70.236/31 maxlen: 31 185.81.70.238/31 maxlen: 31 185.81.70.240/29 maxlen: 29 185.81.70.248/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/7yWpJb-9TLrvUkVqs7MJt0cEDf4.crl rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/7yWpJb-9TLrvUkVqs7MJt0cEDf4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/7yWpJb-9TLrvUkVqs7MJt0cEDf4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 00:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 251 (0xfb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7BDC, serialNumber=EF25A925BFBD4CBAEF52456AB3B309B747040DFE Validity Not Before: May 22 02:58:12 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=682e92c4-8d0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8d:b8:95:79:33:e8:2c:7a:2a:cd:f2:0c:26: 2f:bd:22:c4:a7:76:73:ff:f2:4b:4e:d5:bb:fb:c3: 3c:68:17:1d:76:8c:6d:6d:32:b2:e5:b7:94:bd:35: ac:71:d4:f3:0c:5e:0f:c5:fb:3b:f2:9f:c4:66:b2: b9:14:0b:8d:dc:34:8b:84:de:6e:3f:6a:d6:fe:3e: 18:52:85:0c:e8:39:94:27:73:aa:88:51:33:22:b1: 48:a9:e3:41:1c:ae:15:99:7a:89:03:f3:68:5f:b9: 9b:f6:8f:ce:49:b8:16:3e:24:0d:61:3a:64:a6:7b: b2:5b:11:ef:15:0b:98:a0:62:e1:55:50:ba:56:6c: 7d:c1:9c:ab:d0:93:05:63:89:bb:30:11:ce:18:f1: 17:e4:0b:f0:69:1a:0e:0c:0f:0c:8d:41:f3:94:e9: 17:1a:e7:c1:5c:9e:2e:00:3e:fe:75:92:fa:c2:ee: b0:bb:34:59:f7:44:6b:e8:b9:c7:62:c1:2d:67:07: 41:73:d2:7a:48:6e:d9:50:0c:4e:d8:74:54:cb:c8: 3b:dd:aa:88:15:42:9b:ff:0c:d2:72:96:2b:e1:2b: 0a:1b:bb:2f:82:01:af:15:e9:39:60:bd:42:b7:07: d0:30:d4:92:02:12:99:2b:01:00:fc:f7:7d:94:c1: 4f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:D9:26:9A:B0:1F:A1:9A:72:DB:ED:C7:80:A2:C4:A0:65:2D:F4:45 X509v3 Authority Key Identifier: keyid:EF:25:A9:25:BF:BD:4C:BA:EF:52:45:6A:B3:B3:09:B7:47:04:0D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/7yWpJb-9TLrvUkVqs7MJt0cEDf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/7yWpJb-9TLrvUkVqs7MJt0cEDf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/D66D72562EAB11EF9B369566C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.81.70.0/24 Signature Algorithm: sha256WithRSAEncryption 63:ff:4b:fe:b8:ba:fa:82:17:41:a4:a1:92:ba:5d:24:99:b4: 84:8e:19:9f:c6:b6:a6:cc:d7:b7:9e:45:f3:32:16:69:e9:48: b5:f4:a2:9d:a4:36:1c:1e:45:be:8f:80:ce:98:98:44:3c:55: c9:b2:83:7f:44:09:f5:28:9c:af:50:d0:53:dc:fc:4c:3d:c1: f0:1c:f0:a6:18:e2:70:c0:51:7c:ff:c5:10:94:af:c0:4f:3b: 08:df:72:36:20:98:c0:58:51:c3:ed:73:d3:85:91:a0:a7:31: 2d:1b:ef:de:52:f1:42:ad:03:62:22:1f:59:35:6b:26:2d:42: d1:66:71:7c:63:6d:fc:bf:74:57:93:e0:7e:b8:8b:ef:6b:1d: c1:bf:36:88:3e:76:10:10:99:85:9c:53:f5:0e:01:d8:05:0f: 8f:d9:02:87:dd:76:91:98:03:64:c0:15:73:ab:e6:85:07:e1: ba:17:01:75:14:b3:4e:fa:d8:d7:6e:f8:66:3c:e4:51:82:a0: c0:d7:87:81:a4:06:b6:92:e0:0b:59:e8:90:ce:6b:84:56:43: 64:b3:36:18:27:75:3a:f2:bc:7b:17:68:9e:1f:9d:06:35:c9: b8:70:34:4c:e7:24:95:26:3f:7b:4a:76:87:8a:89:ac:ec:49: d2:b9:fa:9a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAPswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCREMxMTAvBgNVBAUTKEVGMjVBOTI1QkZCRDRDQkFFRjUyNDU2QUIzQjMwOUI3 NDcwNDBERkUwHhcNMjUwNTIyMDI1ODEyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJlOTJjNC04ZDBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAto24lXkz6Cx6Ks3yDCYvvSLEp3Zz//JLTtW7+8M8aBcddoxtbTKy5beUvTWs cdTzDF4Pxfs78p/EZrK5FAuN3DSLhN5uP2rW/j4YUoUM6DmUJ3OqiFEzIrFIqeNB HK4VmXqJA/NoX7mb9o/OSbgWPiQNYTpkpnuyWxHvFQuYoGLhVVC6Vmx9wZyr0JMF Y4m7MBHOGPEX5AvwaRoODA8MjUHzlOkXGufBXJ4uAD7+dZL6wu6wuzRZ90Rr6LnH YsEtZwdBc9J6SG7ZUAxO2HRUy8g73aqIFUKb/wzScpYr4SsKG7svggGvFek5YL1C twfQMNSSAhKZKwEA/Pd9lMFPJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKPZJpqw H6Gactvtx4CixKBlLfRFMB8GA1UdIwQYMBaAFO8lqSW/vUy671JFarOzCbdHBA3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0JEQy83OUVFMEJDNEUy NzIxMUVFQjgzRDYwNkJDNEY5QUUwMi83eVdwSmItOVRMcnZVa1ZxczdNSnQwY0VE ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzd5V3BKYi05VExydlVrVnFzN01KdDBjRURmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjdCREMvNzlFRTBCQzRFMjcyMTFFRUI4M0Q2MDZCQzRGOUFFMDIvRDY2RDcyNTYy RUFCMTFFRjlCMzY5NTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAC5UUYwDQYJKoZIhvcNAQELBQADggEBAGP/S/64uvqCF0Gk oZK6XSSZtISOGZ/GtqbM17eeRfMyFmnpSLX0op2kNhweRb6PgM6YmEQ8Vcmyg39E CfUonK9Q0FPc/Ew9wfAc8KYY4nDAUXz/xRCUr8BPOwjfcjYgmMBYUcPtc9OFkaCn MS0b795S8UKtA2IiH1k1ayYtQtFmcXxjbfy/dFeT4H64i+9rHcG/Nog+dhAQmYWc U/UOAdgFD4/ZAofddpGYA2TAFXOr5oUH4boXAXUUs0762Ndu+GY85FGCoMDXh4Gk BraS4AtZ6JDOa4RWQ2SzNhgndTryvHsXaJ4fnQY1ybhwNEznJJUmP3tKdoeKiazs SdK5+po= -----END CERTIFICATE-----Generated at Thu Jun 5 19:20:42 2025 by rpki-client