$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/534379FCEE1611ECA6DE1824C4F9AE02.roa File: 534379FCEE1611ECA6DE1824C4F9AE02.roa (raw, json) Hash identifier: IzD5q2GzmuV18q1dnBjmacTQl4qcdKe2UsljJfilqlM= Subject key identifier: 54:BC:7F:0C:56:34:0E:11:D6:69:6D:14:C4:32:41:86:33:CF:36:36 Certificate issuer: /CN=A91CF4FE/serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Certificate serial: 355A Authority key identifier: 16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/534379FCEE1611ECA6DE1824C4F9AE02.roa Signing time: Tue 02 Sep 2025 14:30:36 +0000 ROA not before: Tue 02 Sep 2025 14:30:36 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 198949 IP address blocks: 1.179.246.0/24 maxlen: 24 1.179.247.0/24 maxlen: 24 118.174.10.0/24 maxlen: 24 180.180.242.0/24 maxlen: 24 180.180.243.0/24 maxlen: 24 180.180.244.0/24 maxlen: 24 180.180.245.0/24 maxlen: 24 180.180.247.0/24 maxlen: 24 203.113.14.0/24 maxlen: 24 203.113.95.0/24 maxlen: 24 203.114.98.0/24 maxlen: 24 203.114.102.0/24 maxlen: 24 2001:ec0:100::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 11 Sep 2025 14:26:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13658 (0x355a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF4FE, serialNumber=16B564B758DFCD52C5CE891192E31B715B1CBFE8 Validity Not Before: Sep 2 14:30:36 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=68b6ff8b-f44f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:20:02:8a:de:34:96:a9:3d:7e:cf:1b:b2:7a: 58:5c:9a:74:a6:db:5d:a7:f6:e3:82:cf:30:85:0f: e7:04:3a:29:84:d7:4d:89:d3:cc:67:46:af:3b:b1: 28:6d:6b:a3:88:9e:56:e2:fb:94:1e:28:87:c4:60: 6c:fa:ac:d2:d2:39:9b:c2:00:52:1c:b2:65:1f:00: 65:09:37:14:b7:53:19:bb:00:d7:de:98:a5:94:a8: 06:db:3e:f8:d1:cf:30:fe:2f:62:34:00:69:e1:4d: c2:f5:5f:b9:99:8e:ec:99:12:9d:48:3a:50:32:43: 4a:fc:4d:ba:5e:c3:86:4e:95:4a:28:3a:3b:09:96: 25:fe:b0:4f:9f:ca:60:69:12:7d:04:fe:10:5d:30: c6:1b:a5:84:c6:60:28:9d:d0:9d:84:57:2f:5d:b9: 3e:b5:93:ca:d0:24:56:c4:f7:98:c4:e1:38:23:37: 7f:66:8a:40:b5:a8:68:f7:40:fc:8a:b0:af:72:7b: ee:a4:3b:8c:27:57:08:e2:55:f3:38:82:f3:44:e9: 2a:92:0f:f4:d5:96:fa:77:ac:8c:1b:ba:8c:82:81: e4:a6:ad:16:91:79:ef:c1:71:bb:0b:b2:65:95:0b: 12:66:30:e8:36:c1:df:f3:0d:80:71:7b:72:16:5f: da:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:BC:7F:0C:56:34:0E:11:D6:69:6D:14:C4:32:41:86:33:CF:36:36 X509v3 Authority Key Identifier: keyid:16:B5:64:B7:58:DF:CD:52:C5:CE:89:11:92:E3:1B:71:5B:1C:BF:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/FrVkt1jfzVLFzokRkuMbcVscv-g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FrVkt1jfzVLFzokRkuMbcVscv-g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF4FE/BA13124E1D8511E2A77999DC08B02CD2/534379FCEE1611ECA6DE1824C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.179.246.0/23 118.174.10.0/24 180.180.242.0-180.180.245.255 180.180.247.0/24 203.113.14.0/24 203.113.95.0/24 203.114.98.0/24 203.114.102.0/24 IPv6: 2001:ec0:100::/40 Signature Algorithm: sha256WithRSAEncryption b3:07:1e:ae:32:59:4f:93:40:50:8e:31:cf:4a:d0:9d:d5:12: 0e:2d:5b:46:fa:f7:c0:5c:9b:63:75:0e:4a:b5:6c:09:8d:ea: e3:0b:4b:1e:85:f9:f6:52:c8:ef:58:c3:14:fb:19:fd:c1:03: f2:b4:da:50:e7:5c:19:6d:6d:10:cf:8f:81:35:65:37:7b:39: c0:ce:62:24:79:ce:f4:25:58:7f:7e:56:06:a4:50:31:ec:8f: 64:e5:10:e4:75:09:e5:c2:86:a0:ce:f4:89:7d:ac:94:ab:66: df:c1:43:02:c6:8f:7d:b8:5f:b5:1a:ea:73:f9:36:e6:ae:94: 6a:b9:ec:89:4e:66:ea:9d:e8:d8:ba:6e:98:99:fd:73:3d:4d: 10:b2:60:79:c5:b6:7e:12:76:42:d9:3f:92:fa:40:3c:e5:79: cc:19:73:0d:89:ac:f5:b7:92:06:7f:a0:bb:cc:00:d5:40:85: 57:69:6f:ec:2d:c5:dc:02:27:68:f2:9d:00:ea:1f:88:87:36: 2f:09:2e:25:76:a4:d6:d1:df:d3:35:98:82:65:af:cf:b0:ce: a3:c6:a0:91:2c:b6:c4:95:a4:42:9e:cc:fe:e6:40:2a:fd:b9: 80:77:f6:85:67:e1:17:c4:67:33:03:c1:b6:6c:2b:16:a4:6e: c4:b3:20:19 -----BEGIN CERTIFICATE----- MIIFszCCBJugAwIBAgICNVowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0Y0RkUxMTAvBgNVBAUTKDE2QjU2NEI3NThERkNENTJDNUNFODkxMTkyRTMxQjcx NUIxQ0JGRTgwHhcNMjUwOTAyMTQzMDM2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGI2ZmY4Yi1mNDRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4SACit40lqk9fs8bsnpYXJp0pttdp/bjgs8whQ/nBDophNdNidPMZ0avO7Eo bWujiJ5W4vuUHiiHxGBs+qzS0jmbwgBSHLJlHwBlCTcUt1MZuwDX3pillKgG2z74 0c8w/i9iNABp4U3C9V+5mY7smRKdSDpQMkNK/E26XsOGTpVKKDo7CZYl/rBPn8pg aRJ9BP4QXTDGG6WExmAondCdhFcvXbk+tZPK0CRWxPeYxOE4Izd/ZopAtaho90D8 irCvcnvupDuMJ1cI4lXzOILzROkqkg/01Zb6d6yMG7qMgoHkpq0WkXnvwXG7C7Jl lQsSZjDoNsHf8w2AcXtyFl/a+QIDAQABo4IC1zCCAtMwHQYDVR0OBBYEFFS8fwxW NA4R1mltFMQyQYYzzzY2MB8GA1UdIwQYMBaAFBa1ZLdY381Sxc6JEZLjG3FbHL/o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjRGRS9CQTEzMTI0RTFE ODUxMUUyQTc3OTk5REMwOEIwMkNEMi9GclZrdDFqZnpWTEZ6b2tSa3VNYmNWc2N2 LWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZyVmt0MWpmelZMRnpva1JrdU1iY1ZzY3YtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0Y0RkUvQkExMzEyNEUxRDg1MTFFMkE3Nzk5OURDMDhCMDJDRDIvNTM0Mzc5RkNF RTE2MTFFQ0E2REUxODI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwYQYIKwYBBQUHAQcBAf8E UjBQMD4EAgABMDgDBAEBs/YDBAB2rgowDAMEAbS08gMEAbS09AMEALS09wMEAMtx DgMEAMtxXwMEAMtyYgMEAMtyZjAOBAIAAjAIAwYAIAEOwAEwDQYJKoZIhvcNAQEL BQADggEBALMHHq4yWU+TQFCOMc9K0J3VEg4tW0b698Bcm2N1Dkq1bAmN6uMLSx6F +fZSyO9YwxT7Gf3BA/K02lDnXBltbRDPj4E1ZTd7OcDOYiR5zvQlWH9+VgakUDHs j2TlEOR1CeXChqDO9Il9rJSrZt/BQwLGj324X7Ua6nP5NuaulGq57IlOZuqd6Ni6 bpiZ/XM9TRCyYHnFtn4SdkLZP5L6QDzlecwZcw2JrPW3kgZ/oLvMANVAhVdpb+wt xdwCJ2jynQDqH4iHNi8JLiV2pNbR39M1mIJlr8+wzqPGoJEstsSVpEKezP7mQCr9 uYB39oVn4RfEZzMDwbZsKxakbsSzIBk= -----END CERTIFICATE-----Generated at Sat Sep 6 14:26:05 2025 by rpki-client