$ rpki-client -vvf rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/F74BBA0E307C11F09D502B0DC4F9AE02.roa File: F74BBA0E307C11F09D502B0DC4F9AE02.roa (raw, json) Hash identifier: Tr2BD+TjkZLpINWnT5Dv/SJcrrMfCgyU3wvXQZmqI2g= Subject key identifier: 8A:C2:6E:40:BE:B4:B5:3E:6A:35:74:5E:7B:37:1C:AF:22:D5:79:21 Certificate issuer: /CN=A91D73BB/serialNumber=937A1B5FEB0A293360EA4E8847352E7FD36CC7A5 Certificate serial: 010F Authority key identifier: 93:7A:1B:5F:EB:0A:29:33:60:EA:4E:88:47:35:2E:7F:D3:6C:C7:A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/F74BBA0E307C11F09D502B0DC4F9AE02.roa Signing time: Mon 21 Jul 2025 05:41:38 +0000 ROA not before: Mon 21 Jul 2025 05:41:38 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133045 IP address blocks: 148.195.145.0/24 maxlen: 24 148.195.230.0/24 maxlen: 24 159.73.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.crl rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Jul 2025 05:14:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 271 (0x10f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D73BB, serialNumber=937A1B5FEB0A293360EA4E8847352E7FD36CC7A5 Validity Not Before: Jul 21 05:41:38 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=687dd311-b22f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:96:bf:e1:d0:2a:0c:ad:05:ad:a8:f7:12:22: d3:f8:89:b3:86:c4:5c:27:c6:f9:18:d7:a8:d1:dc: 60:6d:90:83:2b:87:3e:14:38:9c:93:ba:9f:20:0a: 85:6c:5b:ea:f0:60:26:a3:04:88:aa:14:bf:16:c4: 0f:cb:f5:e1:d1:b0:a5:91:b7:a1:25:ca:a1:af:a0: 4f:21:cc:77:cb:4c:00:99:d2:f1:f6:2a:4d:bb:db: 70:74:69:b9:81:19:fc:d1:5b:09:c4:4b:60:df:6e: 89:72:61:0d:7f:9e:48:ca:57:1c:4d:01:a3:39:3d: 05:a5:5f:19:3b:d7:00:ba:11:b3:51:25:45:5b:7d: b6:0f:cf:f4:b5:95:c2:29:ac:f5:b2:e7:23:30:f6: 1c:43:f2:43:83:fb:fb:d2:b0:c1:d0:fc:1d:01:ed: 18:fc:eb:90:56:00:b8:ba:de:aa:7a:39:0d:21:ae: 58:48:3e:68:36:9d:54:bf:30:65:95:b8:72:36:82: cb:95:02:4b:63:5f:9c:c7:78:dc:ab:e4:2f:4f:ce: 0e:35:e2:98:14:bd:4a:f6:83:33:79:21:29:aa:20: e5:68:fb:f6:25:94:b6:e0:77:1e:39:cb:36:b9:78: b0:79:e8:22:4a:eb:c6:d8:66:03:98:e9:3b:ef:8c: c4:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:C2:6E:40:BE:B4:B5:3E:6A:35:74:5E:7B:37:1C:AF:22:D5:79:21 X509v3 Authority Key Identifier: keyid:93:7A:1B:5F:EB:0A:29:33:60:EA:4E:88:47:35:2E:7F:D3:6C:C7:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/F74BBA0E307C11F09D502B0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 148.195.145.0/24 148.195.230.0/24 159.73.0.0/16 Signature Algorithm: sha256WithRSAEncryption 59:89:77:b6:a9:b5:dd:cc:74:7f:1c:44:3b:3c:83:52:03:fe: 8a:c2:04:71:f4:35:0e:78:37:9c:89:4e:54:96:04:a6:55:63: fc:55:ca:1a:2d:af:24:85:4b:6c:91:30:64:49:08:1c:1a:41: 88:1b:65:91:e3:aa:7a:d1:f1:64:fd:29:05:74:37:02:3a:22: 70:13:28:68:28:13:2a:29:94:67:b0:a8:15:cd:23:77:bc:80: 35:cd:39:83:ec:ba:75:97:03:66:0f:c7:12:43:4f:73:29:71: 34:a5:9b:42:20:61:da:f1:6e:00:43:97:82:55:84:86:e6:e4: 10:08:d3:51:ed:85:7c:8c:93:de:35:65:c7:8c:bc:be:a5:df: a9:20:05:a6:4f:09:e5:6f:3e:1d:78:85:be:dc:2e:17:0b:ec: 13:ce:e6:6e:8a:c4:7f:b0:df:6f:82:8f:c2:3a:30:e5:41:6a: 80:5b:59:00:ff:79:e6:df:07:5e:4d:22:d5:6d:3d:b1:4a:be: 3e:97:10:0b:d4:f3:ff:0a:14:27:9e:9d:93:85:ca:7d:cc:ac: ff:c5:d8:68:a6:38:ca:50:4f:5b:25:a5:9c:a3:76:68:fe:f3: 48:85:71:61:f4:78:c9:7e:b6:5f:45:43:3b:d7:b5:31:25:73: fc:5b:8d:f3 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgICAQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDczQkIxMTAvBgNVBAUTKDkzN0ExQjVGRUIwQTI5MzM2MEVBNEU4ODQ3MzUyRTdG RDM2Q0M3QTUwHhcNMjUwNzIxMDU0MTM4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdkZDMxMS1iMjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwJa/4dAqDK0Fraj3EiLT+ImzhsRcJ8b5GNeo0dxgbZCDK4c+FDick7qfIAqF bFvq8GAmowSIqhS/FsQPy/Xh0bClkbehJcqhr6BPIcx3y0wAmdLx9ipNu9twdGm5 gRn80VsJxEtg326JcmENf55IylccTQGjOT0FpV8ZO9cAuhGzUSVFW322D8/0tZXC Kaz1sucjMPYcQ/JDg/v70rDB0PwdAe0Y/OuQVgC4ut6qejkNIa5YSD5oNp1UvzBl lbhyNoLLlQJLY1+cx3jcq+QvT84ONeKYFL1K9oMzeSEpqiDlaPv2JZS24HceOcs2 uXiweegiSuvG2GYDmOk774zEDQIDAQABo4ICoDCCApwwHQYDVR0OBBYEFIrCbkC+ tLU+ajV0Xns3HK8i1XkhMB8GA1UdIwQYMBaAFJN6G1/rCikzYOpOiEc1Ln/TbMel MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzNCQi83RUQ1NzU4NkUx OEQxMUVFOTkwRkVDNEZDNEY5QUUwMi9rM29iWC1zS0tUTmc2azZJUnpVdWY5TnN4 NlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2szb2JYLXNLS1ROZzZrNklSelV1ZjlOc3g2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDczQkIvN0VENTc1ODZFMThEMTFFRTk5MEZFQzRGQzRGOUFFMDIvRjc0QkJBMEUz MDdDMTFGMDlENTAyQjBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKgYIKwYBBQUHAQcBAf8E GzAZMBcEAgABMBEDBACUw5EDBACUw+YDAwCfSTANBgkqhkiG9w0BAQsFAAOCAQEA WYl3tqm13cx0fxxEOzyDUgP+isIEcfQ1Dng3nIlOVJYEplVj/FXKGi2vJIVLbJEw ZEkIHBpBiBtlkeOqetHxZP0pBXQ3AjoicBMoaCgTKimUZ7CoFc0jd7yANc05g+y6 dZcDZg/HEkNPcylxNKWbQiBh2vFuAEOXglWEhubkEAjTUe2FfIyT3jVlx4y8vqXf qSAFpk8J5W8+HXiFvtwuFwvsE87mborEf7Dfb4KPwjow5UFqgFtZAP955t8HXk0i 1W09sUq+PpcQC9Tz/woUJ56dk4XKfcys/8XYaKY4ylBPWyWlnKN2aP7zSIVxYfR4 yX62X0VDO9e1MSVz/FuN8w== -----END CERTIFICATE-----Generated at Mon Jul 21 07:29:32 2025 by rpki-client