$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa File: FD6881C4438111ECBC63AC7BC4F9AE02.roa (raw, json) Hash identifier: Z8ccRdvI0vV8g3IYM422hQBz2ZIJt3FuRlWKtC5t3ok= Subject key identifier: 63:2C:02:19:86:27:62:84:26:60:E4:AA:2E:45:1E:58:C1:4E:5B:E2 Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 072F Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa Signing time: Mon 14 Jul 2025 15:14:57 +0000 ROA not before: Mon 14 Jul 2025 15:14:57 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 62610 IP address blocks: 156.59.73.0/24 maxlen: 24 156.59.123.0/24 maxlen: 24 156.59.146.0/24 maxlen: 24 156.59.184.0/24 maxlen: 24 162.128.82.0/24 maxlen: 24 162.128.83.0/24 maxlen: 24 162.128.84.0/24 maxlen: 24 162.128.85.0/24 maxlen: 24 162.128.86.0/24 maxlen: 24 162.128.87.0/24 maxlen: 24 162.128.90.0/24 maxlen: 24 162.128.91.0/24 maxlen: 24 162.128.92.0/24 maxlen: 24 162.128.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Jul 2025 22:21:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1839 (0x72f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Jul 14 15:14:57 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=68751ef1-8f6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2b:fe:cf:2f:f6:45:90:08:05:99:d0:bc:17: 27:aa:88:b5:79:19:51:b4:33:5e:71:ae:64:5c:dd: d6:ee:bb:bc:94:77:b5:52:b3:68:27:21:41:91:fb: 75:8e:9b:94:ad:6a:9e:fc:d3:5f:01:ab:3f:57:de: d5:73:cc:fe:ba:19:a3:0e:10:91:a4:f9:15:76:1c: a8:2a:67:f5:2b:b7:10:07:3c:5d:a5:f3:06:04:03: e6:85:2f:0a:ac:68:29:70:2b:b7:e4:b4:3e:e2:5c: ae:9a:0e:f1:92:06:ef:74:b2:45:bd:87:82:de:9c: 23:32:9b:64:ab:b7:91:58:29:4b:df:3b:b9:3d:b3: ea:50:a9:e8:50:7b:d6:0c:24:5e:14:7c:ff:fd:ec: be:66:bf:10:62:d6:a9:6a:88:94:a4:a4:4e:2b:70: 21:97:92:b9:59:ab:83:c0:ba:3b:b7:02:06:b7:eb: 38:29:05:99:48:bd:68:a4:31:5e:5d:ef:31:4e:03: 68:11:37:12:e9:00:7d:7f:1f:c8:e0:30:4b:c3:9e: bf:07:32:89:c6:bd:a1:7f:83:f7:29:96:f1:d8:86: 87:49:34:17:6f:1e:b2:5a:71:45:6f:33:e0:22:26: 3c:cd:1d:f7:75:01:2b:80:83:0d:1f:95:95:43:10: be:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:2C:02:19:86:27:62:84:26:60:E4:AA:2E:45:1E:58:C1:4E:5B:E2 X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 156.59.73.0/24 156.59.123.0/24 156.59.146.0/24 156.59.184.0/24 162.128.82.0-162.128.87.255 162.128.90.0-162.128.93.255 Signature Algorithm: sha256WithRSAEncryption 25:ce:cf:3d:d9:f3:61:95:37:28:c9:2d:8c:b8:71:1a:ec:3a: 4e:c2:89:ce:60:ee:a4:e8:a5:91:cf:4c:e9:57:1f:1a:9d:b3: 40:68:b6:98:c0:eb:0a:b0:dc:1a:ac:cf:88:93:55:b2:37:8d: 89:00:c9:13:56:32:03:94:bb:82:d5:fb:68:29:31:b3:47:5a: e5:d9:3a:3e:53:87:f6:a7:09:b1:e8:f0:64:b0:37:b6:97:ca: 4e:64:7a:9a:f6:e2:92:49:de:81:e0:e3:b1:46:27:5e:82:49: 0f:41:e4:4b:c2:b8:c3:76:91:f4:1f:a8:eb:00:07:5e:37:0c: 77:1f:e6:54:5e:43:8c:6a:14:5d:78:b8:a6:7c:5f:4e:69:dd: 54:69:01:a5:75:ae:7e:3d:13:03:13:06:8b:55:e0:e8:42:22: 1d:6e:2f:d9:ae:a6:80:95:26:e4:59:a3:0a:d6:ae:af:65:87: 27:2d:49:3b:05:9c:89:0e:45:5c:1a:98:0a:a7:fe:bc:12:70: fb:bc:98:76:3c:65:b0:4f:22:da:86:0e:14:25:a8:2a:4f:b0: 3a:42:f5:13:41:9a:c2:2c:d7:38:13:4c:cc:df:05:ea:3e:6c: 35:5a:97:38:96:89:bc:30:0c:90:3d:ac:c3:73:71:63:4a:5e: 33:00:d1:32 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICBy8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjUwNzE0MTUxNDU3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc1MWVmMS04ZjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCv+zy/2RZAIBZnQvBcnqoi1eRlRtDNeca5kXN3W7ru8lHe1UrNoJyFBkft1 jpuUrWqe/NNfAas/V97Vc8z+uhmjDhCRpPkVdhyoKmf1K7cQBzxdpfMGBAPmhS8K rGgpcCu35LQ+4lyumg7xkgbvdLJFvYeC3pwjMptkq7eRWClL3zu5PbPqUKnoUHvW DCReFHz//ey+Zr8QYtapaoiUpKROK3Ahl5K5WauDwLo7twIGt+s4KQWZSL1opDFe Xe8xTgNoETcS6QB9fx/I4DBLw56/BzKJxr2hf4P3KZbx2IaHSTQXbx6yWnFFbzPg IiY8zR33dQErgIMNH5WVQxC+9QIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFGMsAhmG J2KEJmDkqi5FHljBTlviMB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvRkQ2ODgxQzQ0 MzgxMTFFQ0JDNjNBQzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MDoEAgABMDQDBACcO0kDBACcO3sDBACcO5IDBACcO7gwDAMEAaKAUgMEA6KA UDAMAwQBooBaAwQBooBcMA0GCSqGSIb3DQEBCwUAA4IBAQAlzs892fNhlTcoyS2M uHEa7DpOwonOYO6k6KWRz0zpVx8anbNAaLaYwOsKsNwarM+Ik1WyN42JAMkTVjID lLuC1ftoKTGzR1rl2To+U4f2pwmx6PBksDe2l8pOZHqa9uKSSd6B4OOxRidegkkP QeRLwrjDdpH0H6jrAAdeNwx3H+ZUXkOMahRdeLimfF9Oad1UaQGlda5+PRMDEwaL VeDoQiIdbi/ZrqaAlSbkWaMK1q6vZYcnLUk7BZyJDkVcGpgKp/68EnD7vJh2PGWw TyLahg4UJagqT7A6QvUTQZrCLNc4E0zM3wXqPmw1Wpc4lom8MAyQPazDc3FjSl4z ANEy -----END CERTIFICATE-----Generated at Mon Jul 21 18:25:28 2025 by rpki-client