$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DB63CF9A011411EAAB0EF153C4F9AE02.roa File: DB63CF9A011411EAAB0EF153C4F9AE02.roa (raw, json) Hash identifier: wGD4GgZYH8Wu637cB2mtopho5iC5QPWCCDSkj49GCdU= Subject key identifier: 49:99:55:A3:E6:95:7E:47:C2:62:62:34:5B:BE:72:0C:05:9C:24:A7 Certificate issuer: /CN=A91BA9CE/serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Certificate serial: 0C8A Authority key identifier: E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DB63CF9A011411EAAB0EF153C4F9AE02.roa Signing time: Wed 04 Jun 2025 18:41:51 +0000 ROA not before: Wed 04 Jun 2025 18:41:51 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 10143 IP address blocks: 43.239.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 18:09:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3210 (0xc8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA9CE, serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Validity Not Before: Jun 4 18:41:51 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6840936f-dba9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:59:ac:4f:7e:b5:f1:9d:56:87:f0:2b:90:dc: 2e:c2:28:1f:30:b9:31:bc:c4:f9:5b:cc:4d:cc:ef: 31:65:09:81:52:f3:3b:d5:33:f1:41:62:4d:c5:0f: 04:6e:20:88:4e:d0:ff:1e:47:e7:16:20:21:e8:84: 90:a3:9c:78:72:8d:4d:f4:4e:33:59:d6:f6:c1:c7: a5:be:47:07:f6:0d:77:60:3f:2e:d1:67:0b:28:4c: 19:fd:da:01:e4:ad:ee:14:0a:b6:d7:2d:9f:17:3e: 06:2e:ad:c1:04:a9:49:fd:5c:d9:2a:96:72:2f:fa: 6f:52:44:81:e8:9c:35:87:24:51:cf:ea:2f:5e:6f: b9:10:63:f9:6e:29:3e:58:8e:17:1a:f5:71:67:46: 36:f3:52:76:77:fc:c6:7d:c4:f0:3b:a1:ae:5f:59: f1:f4:ea:8e:24:92:68:28:b0:78:e9:46:ad:91:c6: fb:b9:47:94:66:f7:a0:be:6d:ce:9a:0d:cb:e9:d0: b5:18:45:a5:89:a6:d4:d5:8b:3f:e6:82:4d:b7:1c: dd:56:34:96:3c:b7:4b:f2:58:61:22:b0:7d:84:40: bb:9e:be:eb:7f:33:a5:a4:1e:6f:ca:1e:d0:44:93: aa:97:d8:a1:ef:0a:8f:ea:45:67:af:60:e0:c1:9c: ef:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:99:55:A3:E6:95:7E:47:C2:62:62:34:5B:BE:72:0C:05:9C:24:A7 X509v3 Authority Key Identifier: keyid:E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DB63CF9A011411EAAB0EF153C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.102.0/24 Signature Algorithm: sha256WithRSAEncryption 06:ab:01:46:af:a2:38:b5:f4:5c:bf:d3:3b:d6:41:ac:62:c3: bd:7a:39:b9:cf:02:b5:55:ca:1a:a2:ad:ba:aa:3c:af:6d:27: 17:ea:8e:4c:04:7f:48:05:05:3e:43:d2:6a:b3:ac:cb:31:73: c3:37:ec:51:25:f0:0d:0b:43:1d:07:3b:9e:7e:c6:f6:91:94: d4:c4:fd:75:af:b4:63:7c:d0:6a:7b:31:3b:89:c5:4a:18:cb: 6c:10:5a:1c:2f:46:d8:bf:20:0a:7e:33:67:e3:2b:ed:1a:41: e0:d4:6e:2d:28:36:ec:7f:17:c2:4c:16:8f:c1:0a:37:61:c1: 67:5a:99:69:8e:70:44:88:35:f9:27:d5:aa:62:b2:3b:04:b8: e1:5c:d9:d7:33:8c:22:fb:86:23:01:e7:d1:cc:4c:a0:74:4d: 88:44:72:3a:70:16:1e:67:23:3a:01:22:4e:db:ff:62:a0:cd: 73:6d:b8:69:c1:a7:77:6c:b9:f6:47:de:b8:96:7e:b9:22:d4: d8:61:2d:05:5f:af:c8:a3:07:5d:2e:f8:a7:34:28:d6:64:10: 89:05:83:a4:47:b7:bb:00:e9:44:fb:a6:04:78:44:71:09:7b: c9:e1:79:16:88:5a:e1:72:7c:92:d6:e9:8a:35:94:25:30:7e: 4f:e5:c7:de -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDIowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE5Q0UxMTAvBgNVBAUTKEU5NjkwQkJCOUYzNkMwOUQ0QzJFRDRGNjZDRjU1REMz NTI3NUZCNzIwHhcNMjUwNjA0MTg0MTUxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwOTM2Zi1kYmE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFmsT3618Z1Wh/ArkNwuwigfMLkxvMT5W8xNzO8xZQmBUvM71TPxQWJNxQ8E biCITtD/HkfnFiAh6ISQo5x4co1N9E4zWdb2wcelvkcH9g13YD8u0WcLKEwZ/doB 5K3uFAq21y2fFz4GLq3BBKlJ/VzZKpZyL/pvUkSB6Jw1hyRRz+ovXm+5EGP5bik+ WI4XGvVxZ0Y281J2d/zGfcTwO6GuX1nx9OqOJJJoKLB46Uatkcb7uUeUZvegvm3O mg3L6dC1GEWliabU1Ys/5oJNtxzdVjSWPLdL8lhhIrB9hEC7nr7rfzOlpB5vyh7Q RJOql9ih7wqP6kVnr2DgwZzv5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFEmZVaPm lX5HwmJiNFu+cgwFnCSnMB8GA1UdIwQYMBaAFOlpC7ufNsCdTC7U9mz1XcNSdfty MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTlDRS81NEYxNURBNDAx MTExMUVBQkQ0RjBBNDlDNEY5QUUwMi82V2tMdTU4MndKMU1MdFQyYlBWZHcxSjEt M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZXa0x1NTgyd0oxTUx0VDJiUFZkdzFKMS0zSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkE5Q0UvNTRGMTVEQTQwMTExMTFFQUJENEYwQTQ5QzRGOUFFMDIvREI2M0NGOUEw MTE0MTFFQUFCMEVGMTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr72YwDQYJKoZIhvcNAQELBQADggEBAAarAUavoji19Fy/ 0zvWQaxiw716ObnPArVVyhqirbqqPK9tJxfqjkwEf0gFBT5D0mqzrMsxc8M37FEl 8A0LQx0HO55+xvaRlNTE/XWvtGN80Gp7MTuJxUoYy2wQWhwvRti/IAp+M2fjK+0a QeDUbi0oNux/F8JMFo/BCjdhwWdamWmOcESINfkn1apisjsEuOFc2dczjCL7hiMB 59HMTKB0TYhEcjpwFh5nIzoBIk7b/2KgzXNtuGnBp3dsufZH3riWfrki1NhhLQVf r8ijB10u+Kc0KNZkEIkFg6RHt7sA6UT7pgR4RHEJe8nheRaIWuFyfJLW6Yo1lCUw fk/lx94= -----END CERTIFICATE-----Generated at Sun Jun 8 23:31:56 2025 by rpki-client