$ rpki-client -vvf rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/CFE87CFEE74911EE9E36BA2AC4F9AE02.roa File: CFE87CFEE74911EE9E36BA2AC4F9AE02.roa (raw, json) Hash identifier: 6O+gN+s3nYuHADI/TEqtB2x9DBi8NBjryPUz/maJeSc= Subject key identifier: E0:72:02:DE:14:9E:97:7F:49:BC:C0:1F:03:CB:0E:EB:08:26:94:92 Certificate issuer: /CN=A91D73BB/serialNumber=937A1B5FEB0A293360EA4E8847352E7FD36CC7A5 Certificate serial: 0110 Authority key identifier: 93:7A:1B:5F:EB:0A:29:33:60:EA:4E:88:47:35:2E:7F:D3:6C:C7:A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/CFE87CFEE74911EE9E36BA2AC4F9AE02.roa Signing time: Mon 21 Jul 2025 05:41:38 +0000 ROA not before: Mon 21 Jul 2025 05:41:38 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135315 IP address blocks: 159.73.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.crl rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:14:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D73BB, serialNumber=937A1B5FEB0A293360EA4E8847352E7FD36CC7A5 Validity Not Before: Jul 21 05:41:38 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687dd312-40d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a5:86:1b:94:95:0b:86:94:60:f9:ad:33:79: fe:9a:51:f3:af:ac:7b:56:4a:e5:d3:bd:e1:9c:72: 60:1d:69:b7:92:2b:c8:fe:53:cc:06:89:e1:4e:bf: e3:6d:24:58:eb:7e:ae:a0:67:bd:a9:8d:36:0b:cb: 71:c2:58:1c:94:5d:19:33:9d:dd:c7:19:0f:ed:26: b6:b6:09:86:d4:b0:f8:9e:e4:fa:75:6f:7b:7d:de: ea:9e:56:23:39:d5:85:9a:31:ba:64:a2:e4:46:0a: 24:7d:82:b9:3e:14:6d:f6:c6:0c:1d:c8:40:fe:17: 14:64:00:d5:f9:67:e0:f0:6f:f8:2f:3d:34:16:17: 70:ff:e4:ff:75:93:09:46:f4:1f:07:92:e9:49:58: ae:6e:de:6d:74:9b:e9:5c:18:89:b9:de:1e:96:55: 93:62:81:91:71:4e:1f:e9:b0:95:0a:f2:74:b4:b3: 4c:98:b1:3b:12:90:59:6f:71:e2:66:06:0d:4a:96: ad:0f:e6:2c:6f:14:8a:db:0e:59:8a:50:08:ae:25: 15:39:84:07:6f:b5:da:76:51:fb:45:98:e5:57:89: a1:47:b3:30:af:15:54:4c:9f:f7:00:d1:8b:79:03: 06:a5:b6:00:f7:3a:4c:0a:29:dd:36:22:77:c0:0e: 79:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:72:02:DE:14:9E:97:7F:49:BC:C0:1F:03:CB:0E:EB:08:26:94:92 X509v3 Authority Key Identifier: keyid:93:7A:1B:5F:EB:0A:29:33:60:EA:4E:88:47:35:2E:7F:D3:6C:C7:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/CFE87CFEE74911EE9E36BA2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 159.73.0.0/16 Signature Algorithm: sha256WithRSAEncryption 29:09:ae:e2:b7:7b:a8:8e:36:51:0c:71:4e:97:50:34:a3:8f: 26:12:5e:59:36:23:85:11:2a:a5:ea:1c:05:fa:34:89:39:03: 88:28:1c:19:54:42:78:54:5f:ff:2b:b2:18:17:1b:dc:60:44: f3:45:93:8a:67:2f:ae:0f:c0:33:07:84:b5:93:ea:be:68:37: 1d:f0:1d:92:d0:21:e6:67:ce:55:bc:6c:86:ad:ad:e0:77:41: db:a2:ce:42:e2:af:25:a9:35:1e:1e:0d:b5:ba:7d:82:a9:cb: d0:1c:86:3a:4d:21:0e:c5:49:94:f4:f6:81:03:ae:ae:83:95: 0d:ec:0d:58:29:be:13:7e:52:da:0a:0c:71:b0:b2:d0:a4:f4: 4c:3f:96:8a:e1:74:34:3e:2c:15:60:06:ac:1b:3c:b2:2b:4e: c5:c6:10:6d:94:5d:db:be:62:b9:27:90:17:f9:fe:dd:37:b5: d1:be:7f:bb:77:28:a3:aa:31:25:52:f6:dd:1c:d7:66:72:2e: 92:ba:a7:82:06:95:1f:c1:c0:1c:08:b4:a0:d6:4c:7b:c8:ef: 1e:c6:63:13:c2:5b:26:42:2b:6d:4b:f3:86:80:31:d2:0e:63: f3:13:1f:74:66:9c:d6:dc:a5:e2:44:ce:d9:98:f4:89:83:48: 78:bb:23:b5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDczQkIxMTAvBgNVBAUTKDkzN0ExQjVGRUIwQTI5MzM2MEVBNEU4ODQ3MzUyRTdG RDM2Q0M3QTUwHhcNMjUwNzIxMDU0MTM4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdkZDMxMi00MGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy6WGG5SVC4aUYPmtM3n+mlHzr6x7Vkrl073hnHJgHWm3kivI/lPMBonhTr/j bSRY636uoGe9qY02C8txwlgclF0ZM53dxxkP7Sa2tgmG1LD4nuT6dW97fd7qnlYj OdWFmjG6ZKLkRgokfYK5PhRt9sYMHchA/hcUZADV+Wfg8G/4Lz00Fhdw/+T/dZMJ RvQfB5LpSViubt5tdJvpXBiJud4ellWTYoGRcU4f6bCVCvJ0tLNMmLE7EpBZb3Hi ZgYNSpatD+YsbxSK2w5ZilAIriUVOYQHb7XadlH7RZjlV4mhR7MwrxVUTJ/3ANGL eQMGpbYA9zpMCindNiJ3wA554wIDAQABo4IClDCCApAwHQYDVR0OBBYEFOByAt4U npd/SbzAHwPLDusIJpSSMB8GA1UdIwQYMBaAFJN6G1/rCikzYOpOiEc1Ln/TbMel MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzNCQi83RUQ1NzU4NkUx OEQxMUVFOTkwRkVDNEZDNEY5QUUwMi9rM29iWC1zS0tUTmc2azZJUnpVdWY5TnN4 NlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2szb2JYLXNLS1ROZzZrNklSelV1ZjlOc3g2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDczQkIvN0VENTc1ODZFMThEMTFFRTk5MEZFQzRGQzRGOUFFMDIvQ0ZFODdDRkVF NzQ5MTFFRTlFMzZCQTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCfSTANBgkqhkiG9w0BAQsFAAOCAQEAKQmu4rd7qI42UQxx TpdQNKOPJhJeWTYjhREqpeocBfo0iTkDiCgcGVRCeFRf/yuyGBcb3GBE80WTimcv rg/AMweEtZPqvmg3HfAdktAh5mfOVbxshq2t4HdB26LOQuKvJak1Hh4Ntbp9gqnL 0ByGOk0hDsVJlPT2gQOuroOVDewNWCm+E35S2goMcbCy0KT0TD+WiuF0ND4sFWAG rBs8sitOxcYQbZRd275iuSeQF/n+3Te10b5/u3coo6oxJVL23RzXZnIukrqnggaV H8HAHAi0oNZMe8jvHsZjE8JbJkIrbUvzhoAx0g5j8xMfdGac1tyl4kTO2Zj0iYNI eLsjtQ== -----END CERTIFICATE-----Generated at Mon Jul 21 07:27:50 2025 by rpki-client