$ rpki-client -vvf rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/2031308808A111F09B131E5BC4F9AE02.roa File: 2031308808A111F09B131E5BC4F9AE02.roa (raw, json) Hash identifier: nPtDY3U86F0NTmleyc7SWqLKxebatm/VdygMH1CJZ5Y= Subject key identifier: 58:5B:C1:59:24:8D:BD:77:70:C2:0E:3F:BA:59:29:D2:E0:08:FC:C3 Certificate issuer: /CN=A91259CA/serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Certificate serial: 41 Authority key identifier: 1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/2031308808A111F09B131E5BC4F9AE02.roa Signing time: Wed 23 Jul 2025 08:58:06 +0000 ROA not before: Wed 23 Jul 2025 08:58:06 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 150694 IP address blocks: 163.223.186.0/24 maxlen: 24 163.223.187.0/24 maxlen: 24 2001:df5:47c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91259CA, serialNumber=1BB4E171CAC419E6167BA3A7D7253C761631A28D Validity Not Before: Jul 23 08:58:06 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6880a41e-9066 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c8:af:3a:7c:ea:80:fe:11:07:31:ed:83:58: e1:ed:55:6b:97:a1:9b:57:50:41:99:b6:9d:d4:a3: 7e:08:75:2b:e5:a3:12:d7:56:2c:44:1c:53:bc:ac: 16:44:bb:48:31:9c:28:a8:32:7c:4b:13:d5:da:cd: 64:dd:fe:04:63:b9:e9:3d:a5:ec:d2:4c:46:12:eb: c0:8b:da:7b:8c:fa:0a:30:91:12:a2:35:e8:58:36: 1b:0c:60:60:f7:df:e9:8a:0d:8d:7e:a7:7d:a1:2a: a0:cf:c0:dc:8a:6e:c2:da:87:61:8c:24:12:b3:14: d6:e6:8a:05:77:e0:39:32:a1:93:e5:1a:e5:d5:48: 85:c0:85:f1:8d:2f:02:44:91:13:11:2b:6a:90:b9: 66:8c:95:11:5c:d5:95:93:23:64:f1:1c:47:4f:e7: 5b:d0:cc:3c:ba:6b:5d:4f:89:05:2f:0b:0d:50:c7: c9:d9:f5:d2:63:c3:fb:4d:64:8c:c2:81:d1:7f:3f: c2:7a:17:63:00:1f:58:80:59:31:a8:de:9d:ef:7e: ae:9e:ae:d1:c4:97:3d:6e:ac:96:9e:44:44:62:bb: 17:dc:03:2a:7d:4d:c8:46:3a:c1:f7:9e:72:29:32: a8:ca:c4:0b:e1:79:a8:5e:de:94:43:7c:56:64:ae: 95:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:5B:C1:59:24:8D:BD:77:70:C2:0E:3F:BA:59:29:D2:E0:08:FC:C3 X509v3 Authority Key Identifier: keyid:1B:B4:E1:71:CA:C4:19:E6:16:7B:A3:A7:D7:25:3C:76:16:31:A2:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/G7ThccrEGeYWe6On1yU8dhYxoo0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G7ThccrEGeYWe6On1yU8dhYxoo0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91259CA/A9F2722E08A011F0B158565AC4F9AE02/2031308808A111F09B131E5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.186.0/23 IPv6: 2001:df5:47c0::/48 Signature Algorithm: sha256WithRSAEncryption 19:12:1c:ad:91:83:9a:82:7e:c2:fd:a0:2f:12:be:4f:98:27: 1c:5a:51:33:79:a7:c2:a0:80:67:46:f8:85:e8:55:0b:4f:59: f8:3a:0d:96:52:40:73:d7:68:8a:dc:2c:6c:70:28:e3:ef:40: 5c:19:cf:9a:11:c2:f1:ec:7a:3f:bf:36:a3:e6:85:5e:46:57: f0:95:b8:ef:15:73:43:95:c9:e7:d6:ba:4d:c0:d2:88:ad:b8: 06:19:e1:f8:27:ad:07:c4:0d:87:28:7a:d6:85:26:22:30:a5: ac:ce:6d:05:cf:d1:3b:7b:9e:01:b6:bc:e4:f8:41:30:ea:c9: da:29:5b:95:34:2d:81:d8:7e:87:9d:d1:2d:0a:84:98:67:58: 28:cb:c0:c3:9f:69:22:16:42:dd:ff:2b:a2:b7:c1:ef:4b:f0: 1a:75:14:32:f7:d3:e3:da:54:8e:4c:d8:f3:81:aa:40:14:2e: 7d:51:36:39:62:c4:98:e7:9e:dc:a7:b9:73:2b:3f:27:9e:2b: 75:75:9c:4c:86:44:4e:71:4b:b2:6c:4c:cd:b8:6d:7c:d1:95: 16:e4:14:9e:d2:8b:fa:a6:d7:7f:0e:fc:89:8b:e7:0b:e7:1e: 08:69:56:3d:14:43:3f:c4:0f:8a:88:66:8f:ab:b9:a1:9a:12: f1:65:5d:02 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NTlDQTExMC8GA1UEBRMoMUJCNEUxNzFDQUM0MTlFNjE2N0JBM0E3RDcyNTNDNzYx NjMxQTI4RDAeFw0yNTA3MjMwODU4MDZaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ODBhNDFlLTkwNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/yK86fOqA/hEHMe2DWOHtVWuXoZtXUEGZtp3Uo34IdSvloxLXVixEHFO8rBZE u0gxnCioMnxLE9XazWTd/gRjuek9pezSTEYS68CL2nuM+gowkRKiNehYNhsMYGD3 3+mKDY1+p32hKqDPwNyKbsLah2GMJBKzFNbmigV34DkyoZPlGuXVSIXAhfGNLwJE kRMRK2qQuWaMlRFc1ZWTI2TxHEdP51vQzDy6a11PiQUvCw1Qx8nZ9dJjw/tNZIzC gdF/P8J6F2MAH1iAWTGo3p3vfq6ertHElz1urJaeRERiuxfcAyp9TchGOsH3nnIp MqjKxAvheahe3pRDfFZkrpVdAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUWFvBWSSN vXdwwg4/ulkp0uAI/MMwHwYDVR0jBBgwFoAUG7ThccrEGeYWe6On1yU8dhYxoo0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI1OUNBL0E5RjI3MjJFMDhB MDExRjBCMTU4NTY1QUM0RjlBRTAyL0c3VGhjY3JFR2VZV2U2T24xeVU4ZGhZeG9v MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRzdUaGNjckVHZVlXZTZPbjF5VThkaFl4b28wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NTlDQS9BOUYyNzIyRTA4QTAxMUYwQjE1ODU2NUFDNEY5QUUwMi8yMDMxMzA4ODA4 QTExMUYwOUIxMzFFNUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAaPfujAPBAIAAjAJAwcAIAEN9UfAMA0GCSqGSIb3DQEBCwUA A4IBAQAZEhytkYOagn7C/aAvEr5PmCccWlEzeafCoIBnRviF6FULT1n4Og2WUkBz 12iK3CxscCjj70BcGc+aEcLx7Ho/vzaj5oVeRlfwlbjvFXNDlcnn1rpNwNKIrbgG GeH4J60HxA2HKHrWhSYiMKWszm0Fz9E7e54Btrzk+EEw6snaKVuVNC2B2H6HndEt CoSYZ1goy8DDn2kiFkLd/yuit8HvS/AadRQy99Pj2lSOTNjzgapAFC59UTY5YsSY 557cp7lzKz8nnit1dZxMhkROcUuybEzNuG180ZUW5BSe0ov6ptd/DvyJi+cL5x4I aVY9FEM/xA+KiGaPq7mhmhLxZV0C -----END CERTIFICATE-----Generated at Mon Aug 11 04:28:55 2025 by rpki-client