$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/72F76026790A11EE88F94A29C4F9AE02.roa File: 72F76026790A11EE88F94A29C4F9AE02.roa (raw, json) Hash identifier: YumOlFepqCcL4/FMk4aKjlchGI7ETUe9t0yQ6qtDs+I= Subject key identifier: 8D:A0:4E:E4:42:AD:D9:7C:0A:04:21:B4:B0:AE:33:C5:9C:21:C5:EC Certificate issuer: /CN=A91D6DBD/serialNumber=272D71AD62645775CCDFBB5770478E5943EA6595 Certificate serial: 0139 Authority key identifier: 27:2D:71:AD:62:64:57:75:CC:DF:BB:57:70:47:8E:59:43:EA:65:95 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Jy1xrWJkV3XM37tXcEeOWUPqZZU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/72F76026790A11EE88F94A29C4F9AE02.roa Signing time: Thu 05 Jun 2025 04:32:53 +0000 ROA not before: Thu 05 Jun 2025 04:32:53 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 9792 IP address blocks: 192.65.182.0/24 maxlen: 24 192.160.169.0/24 maxlen: 24 192.160.170.0/24 maxlen: 24 198.22.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/Jy1xrWJkV3XM37tXcEeOWUPqZZU.crl rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/Jy1xrWJkV3XM37tXcEeOWUPqZZU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Jy1xrWJkV3XM37tXcEeOWUPqZZU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 04:32:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 313 (0x139) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6DBD, serialNumber=272D71AD62645775CCDFBB5770478E5943EA6595 Validity Not Before: Jun 5 04:32:53 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68411df5-e6a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:12:aa:2e:06:60:4e:ba:0a:73:48:c0:5b:47: 75:3e:c8:fb:0b:48:b7:70:bf:9b:0a:95:73:e3:c3: 93:28:a1:78:3c:20:92:00:22:49:d1:41:e6:04:fa: a8:94:08:00:db:ba:e4:1f:cc:65:27:9c:dc:1a:cf: 1c:2c:55:a7:17:62:1e:18:90:ef:e3:a9:c4:9f:b9: 66:80:f6:a7:a0:57:37:76:22:60:d0:f6:36:e5:8b: f9:76:5f:2d:e8:2b:ef:de:82:3b:35:0f:db:0f:54: 81:51:ad:ae:29:64:dc:3f:6f:91:f9:e2:be:e1:4b: e7:6a:7a:bf:73:d2:b9:84:59:a4:c2:85:19:ed:38: 05:55:3a:3a:20:ba:fa:01:60:f7:d9:87:d7:1e:88: ae:dd:fc:d6:bd:5c:0f:a7:0b:52:d8:ee:d4:42:ec: 7e:0c:ce:60:06:b6:d6:17:08:a8:4c:ac:cc:ef:95: db:cb:2c:84:1f:d1:44:f7:39:e6:e9:29:30:56:6e: 59:2e:37:42:68:a6:14:ed:b0:21:b4:4d:08:3f:64: ea:c6:6a:2f:9b:db:92:9c:27:49:df:76:2f:5d:99: 8f:cd:ca:27:de:be:00:2a:ae:fd:c7:c2:43:78:5b: d4:53:5b:d6:ae:84:4a:75:65:9f:ce:04:88:13:6b: 18:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:A0:4E:E4:42:AD:D9:7C:0A:04:21:B4:B0:AE:33:C5:9C:21:C5:EC X509v3 Authority Key Identifier: keyid:27:2D:71:AD:62:64:57:75:CC:DF:BB:57:70:47:8E:59:43:EA:65:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/Jy1xrWJkV3XM37tXcEeOWUPqZZU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Jy1xrWJkV3XM37tXcEeOWUPqZZU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6DBD/F9C0E11E790911EE99EDD11FC4F9AE02/72F76026790A11EE88F94A29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.65.182.0/24 192.160.169.0-192.160.170.255 198.22.61.0/24 Signature Algorithm: sha256WithRSAEncryption e5:2b:52:b8:0c:2a:de:75:70:76:f2:85:20:ef:45:f0:c0:5c: 99:46:f7:19:e6:9d:28:24:3d:28:3b:9c:ef:3d:e3:cf:b2:28: 90:57:36:59:79:96:ec:62:45:39:fa:e1:de:f5:5b:5e:95:e1: 25:9b:fe:75:9a:d5:e7:d7:06:3f:99:36:cd:3f:5d:89:ac:e6: 7a:ce:e9:3b:41:61:4f:f4:59:7b:66:c5:4d:9b:a0:28:5b:56: bb:87:4b:a7:87:19:08:63:ab:ee:da:51:13:6c:8e:cf:91:e4: 77:24:0e:56:5d:ac:e2:15:46:d9:21:47:5a:f6:34:ba:aa:15: 80:e1:36:6a:f0:c5:51:8c:ec:c2:84:bf:30:d4:73:b1:0c:f0: 7b:1b:b8:7e:ea:89:6d:b7:00:fc:9c:95:c2:fa:df:49:1c:c6: 69:00:12:c8:41:76:29:6e:a1:df:45:92:ed:ae:6e:f7:72:7a: 37:d9:07:73:82:62:18:55:f3:a4:79:5e:76:07:30:f3:04:7e: cd:0e:a6:a5:93:86:31:d8:eb:03:a6:83:5a:01:25:ef:86:b4: 7b:65:27:45:f5:6b:37:11:7d:63:1d:df:b3:ad:e1:28:1b:fe: 2b:56:64:3b:76:e4:fa:bc:58:a1:9e:b3:80:93:fb:cf:3e:df: cd:4a:7f:be -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICATkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDZEQkQxMTAvBgNVBAUTKDI3MkQ3MUFENjI2NDU3NzVDQ0RGQkI1NzcwNDc4RTU5 NDNFQTY1OTUwHhcNMjUwNjA1MDQzMjUzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQxMWRmNS1lNmEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApxKqLgZgTroKc0jAW0d1Psj7C0i3cL+bCpVz48OTKKF4PCCSACJJ0UHmBPqo lAgA27rkH8xlJ5zcGs8cLFWnF2IeGJDv46nEn7lmgPanoFc3diJg0PY25Yv5dl8t 6Cvv3oI7NQ/bD1SBUa2uKWTcP2+R+eK+4Uvnanq/c9K5hFmkwoUZ7TgFVTo6ILr6 AWD32YfXHoiu3fzWvVwPpwtS2O7UQux+DM5gBrbWFwioTKzM75XbyyyEH9FE9znm 6SkwVm5ZLjdCaKYU7bAhtE0IP2Tqxmovm9uSnCdJ33YvXZmPzcon3r4AKq79x8JD eFvUU1vWroRKdWWfzgSIE2sYEwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFI2gTuRC rdl8CgQhtLCuM8WcIcXsMB8GA1UdIwQYMBaAFCctca1iZFd1zN+7V3BHjllD6mWV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENkRCRC9GOUMwRTExRTc5 MDkxMUVFOTlFREQxMUZDNEY5QUUwMi9KeTF4cldKa1YzWE0zN3RYY0VlT1dVUHFa WlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0p5MXhyV0prVjNYTTM3dFhjRWVPV1VQcVpaVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDZEQkQvRjlDMEUxMUU3OTA5MTFFRTk5RUREMTFGQzRGOUFFMDIvNzJGNzYwMjY3 OTBBMTFFRTg4Rjk0QTI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBADAQbYwDAMEAMCgqQMEAMCgqgMEAMYWPTANBgkqhkiG9w0B AQsFAAOCAQEA5StSuAwq3nVwdvKFIO9F8MBcmUb3GeadKCQ9KDuc7z3jz7IokFc2 WXmW7GJFOfrh3vVbXpXhJZv+dZrV59cGP5k2zT9diazmes7pO0FhT/RZe2bFTZug KFtWu4dLp4cZCGOr7tpRE2yOz5HkdyQOVl2s4hVG2SFHWvY0uqoVgOE2avDFUYzs woS/MNRzsQzwexu4fuqJbbcA/JyVwvrfSRzGaQASyEF2KW6h30WS7a5u93J6N9kH c4JiGFXzpHledgcw8wR+zQ6mpZOGMdjrA6aDWgEl74a0e2UnRfVrNxF9Yx3fs63h KBv+K1ZkO3bk+rxYoZ6zgJP7zz7fzUp/vg== -----END CERTIFICATE-----Generated at Thu Jun 5 19:12:50 2025 by rpki-client