$ rpki-client -vvf rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/98A0F61840AD11F0BB332714C4F9AE02.roa File: 98A0F61840AD11F0BB332714C4F9AE02.roa (raw, json) Hash identifier: JmqRq4ApEA8z7/2JyGOcdKG4rCkB8yM3OLiftmQmRmg= Subject key identifier: ED:EC:12:EC:15:5E:87:AD:D8:6E:2D:9B:63:4C:72:11:21:AF:FD:37 Certificate issuer: /CN=A91E57DC/serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Certificate serial: 1134 Authority key identifier: 22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/98A0F61840AD11F0BB332714C4F9AE02.roa Signing time: Tue 03 Jun 2025 19:07:01 +0000 ROA not before: Tue 03 Jun 2025 19:07:01 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 138640 IP address blocks: 220.152.114.0/24 maxlen: 24 2400:c640:81::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 13 Jun 2025 17:20:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4404 (0x1134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E57DC, serialNumber=22B1A7175E75FFD847391F2C2E9665E4EEE1B742 Validity Not Before: Jun 3 19:07:01 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=683f47d4-06d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3b:e5:ac:fc:f8:7c:d0:a3:e3:39:d8:88:6b: 3a:e1:a8:30:4f:9f:3f:9d:1a:4a:2a:ba:4b:ca:5a: a4:f5:33:b5:e0:fa:e2:65:ef:43:55:59:bd:22:5b: a5:36:47:f9:5e:29:b7:0b:19:1e:dd:6b:50:0d:8b: 7e:74:a4:8f:ef:78:bf:86:a6:8a:20:e0:e0:5d:08: 73:db:d3:29:af:13:38:93:c5:ac:39:26:19:11:c3: 61:07:27:65:df:71:e6:b9:ef:5a:3f:5d:ec:40:6d: 09:fd:95:5b:4b:29:da:ab:f3:7c:c2:3d:e5:dd:3b: 1f:92:fc:69:2f:c9:2c:ea:88:1b:49:ce:9a:48:d5: db:5a:32:b2:40:1d:32:7b:24:c2:f6:88:58:e8:dc: 4c:2e:8b:03:3b:55:6f:c7:ed:96:7d:33:bf:e2:b3: f9:6c:44:e9:3b:7b:d3:6a:59:84:6a:85:db:17:ce: d8:e3:e9:84:4e:71:95:8a:11:ee:b3:34:be:8f:97: 02:7a:ad:12:41:0c:71:16:bb:1a:07:9f:fe:0d:6b: a8:cf:57:12:c3:7e:87:85:d3:8d:95:79:84:32:fe: 97:c1:85:df:8a:50:54:5f:5d:1f:66:dc:51:83:90: dd:50:c6:70:5d:36:a5:53:38:06:28:09:a4:46:68: a2:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:EC:12:EC:15:5E:87:AD:D8:6E:2D:9B:63:4C:72:11:21:AF:FD:37 X509v3 Authority Key Identifier: keyid:22:B1:A7:17:5E:75:FF:D8:47:39:1F:2C:2E:96:65:E4:EE:E1:B7:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/IrGnF151_9hHOR8sLpZl5O7ht0I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IrGnF151_9hHOR8sLpZl5O7ht0I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E57DC/35F798661F0111E9B1AA9436C4F9AE02/98A0F61840AD11F0BB332714C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.152.114.0/24 IPv6: 2400:c640:81::/48 Signature Algorithm: sha256WithRSAEncryption 89:2d:c2:bc:11:02:30:ca:4f:30:10:4c:37:c1:90:b8:77:4d: 8b:62:93:22:65:14:df:4d:51:10:34:ed:43:7a:3b:34:c1:fc: 60:4b:61:fa:22:b3:de:84:86:c3:98:bc:20:f5:c6:52:44:4a: 52:22:1c:e5:65:45:30:31:ff:ae:7e:cb:dd:b2:7b:99:e2:32: 66:cb:14:08:3f:08:a0:d0:7d:0f:ee:70:8c:88:cf:41:0f:2b: 27:aa:26:47:06:aa:79:a2:3f:26:28:4f:0b:0e:44:22:a3:00: 38:32:09:02:3f:ae:ae:0d:b1:3c:31:0c:91:73:4d:3e:4e:fa: 1e:c3:00:a4:2d:9a:8d:32:1d:a8:f6:93:19:25:79:3e:6c:84: 6a:61:0b:30:05:3c:9f:4a:97:9f:7d:42:ec:61:73:5f:ee:73: a1:7d:d1:65:22:f4:3d:34:06:12:a5:09:84:cf:71:50:29:11: d8:a5:c3:f8:3b:e3:cf:5e:ec:42:f1:27:6b:3c:1c:ac:bd:6c: 23:f6:5d:31:9c:23:05:06:fe:a5:c9:67:bb:88:ed:c5:c6:de: ef:dc:11:18:de:fa:9f:6c:0d:da:0d:a9:6f:5b:aa:a1:4e:a3: ba:fd:a2:4e:f3:13:e5:17:4d:2b:fb:7b:dd:07:71:d6:f0:47: 92:85:14:02 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICETQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU3REMxMTAvBgNVBAUTKDIyQjFBNzE3NUU3NUZGRDg0NzM5MUYyQzJFOTY2NUU0 RUVFMUI3NDIwHhcNMjUwNjAzMTkwNzAxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODNmNDdkNC0wNmQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtjvlrPz4fNCj4znYiGs64agwT58/nRpKKrpLylqk9TO14PriZe9DVVm9Ilul Nkf5Xim3Cxke3WtQDYt+dKSP73i/hqaKIODgXQhz29MprxM4k8WsOSYZEcNhBydl 33Hmue9aP13sQG0J/ZVbSynaq/N8wj3l3TsfkvxpL8ks6ogbSc6aSNXbWjKyQB0y eyTC9ohY6NxMLosDO1Vvx+2WfTO/4rP5bETpO3vTalmEaoXbF87Y4+mETnGVihHu szS+j5cCeq0SQQxxFrsaB5/+DWuoz1cSw36HhdONlXmEMv6XwYXfilBUX10fZtxR g5DdUMZwXTalUzgGKAmkRmiiIwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFO3sEuwV Xoet2G4tm2NMchEhr/03MB8GA1UdIwQYMBaAFCKxpxdedf/YRzkfLC6WZeTu4bdC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTdEQy8zNUY3OTg2NjFG MDExMUU5QjFBQTk0MzZDNEY5QUUwMi9JckduRjE1MV85aEhPUjhzTHBabDVPN2h0 MEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lyR25GMTUxXzloSE9SOHNMcFpsNU83aHQwSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU3REMvMzVGNzk4NjYxRjAxMTFFOUIxQUE5NDM2QzRGOUFFMDIvOThBMEY2MTg0 MEFEMTFGMEJCMzMyNzE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADcmHIwDwQCAAIwCQMHACQAxkAAgTANBgkqhkiG9w0BAQsF AAOCAQEAiS3CvBECMMpPMBBMN8GQuHdNi2KTImUU301REDTtQ3o7NMH8YEth+iKz 3oSGw5i8IPXGUkRKUiIc5WVFMDH/rn7L3bJ7meIyZssUCD8IoNB9D+5wjIjPQQ8r J6omRwaqeaI/JihPCw5EIqMAODIJAj+urg2xPDEMkXNNPk76HsMApC2ajTIdqPaT GSV5PmyEamELMAU8n0qXn31C7GFzX+5zoX3RZSL0PTQGEqUJhM9xUCkR2KXD+Dvj z17sQvEnazwcrL1sI/ZdMZwjBQb+pclnu4jtxcbe79wRGN76n2wN2g2pb1uqoU6j uv2iTvMT5RdNK/t73Qdx1vBHkoUUAg== -----END CERTIFICATE-----Generated at Sat Jun 7 05:39:46 2025 by rpki-client