$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/1667FF9C5DF611EF919BDB31C4F9AE02.roa File: 1667FF9C5DF611EF919BDB31C4F9AE02.roa (raw, json) Hash identifier: bYDuNI3W6+4EZSV4cW7DNvBB9NpXjXY4h4lfRb3nwhQ= Subject key identifier: C3:88:E6:03:0C:25:D9:77:31:4A:5C:CC:56:BD:08:BF:1C:4A:3C:F5 Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0BE5 Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/1667FF9C5DF611EF919BDB31C4F9AE02.roa Signing time: Fri 30 May 2025 19:14:11 +0000 ROA not before: Fri 30 May 2025 19:14:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 149419 IP address blocks: 45.117.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 18:52:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3045 (0xbe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA, serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: May 30 19:14:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=683a0383-6d91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d6:40:1a:81:94:cb:0c:fd:19:1c:21:6f:8d: 95:37:31:ed:0e:ea:dc:d8:c6:31:9d:d4:80:46:9c: bf:14:2e:e1:6d:6d:29:87:98:46:1e:69:74:68:88: 31:b3:e3:53:8f:7c:6f:7a:5e:ff:4f:2a:6b:1d:9f: 98:95:72:b2:a1:2d:85:b4:39:e0:03:2e:af:28:3c: 4c:4d:c1:28:51:9e:7a:79:f4:6c:49:2f:2d:a6:e8: 13:f9:23:2f:c8:b6:02:28:10:d9:06:ad:2b:2a:44: 4e:db:c0:90:92:32:7c:6d:b7:1c:6f:6c:ea:9a:fc: d7:dc:78:fb:d3:9c:c4:ab:03:d3:08:82:80:e9:12: e2:c5:79:75:3b:cb:3d:c5:2f:b8:ac:c0:7a:4e:d9: a4:15:69:f8:3f:5f:7f:9e:61:de:0e:bb:16:89:b2: 9c:29:5a:da:a5:b0:cb:a5:3c:a1:f6:74:98:01:33: c7:7e:c6:21:a7:7b:e6:77:24:43:e7:ea:ed:32:07: 94:b2:02:35:b9:e4:9b:0e:3a:1c:04:92:dc:80:7c: 5b:5f:32:dc:c5:18:32:34:b2:53:42:67:59:82:33: 21:f0:ac:27:23:0b:24:12:b7:d6:6a:d1:5a:f8:40: 96:d7:8f:7a:b0:5f:ac:7a:7c:da:2d:31:c0:28:73: a9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:88:E6:03:0C:25:D9:77:31:4A:5C:CC:56:BD:08:BF:1C:4A:3C:F5 X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/1667FF9C5DF611EF919BDB31C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.104.0/24 Signature Algorithm: sha256WithRSAEncryption 71:4e:8e:a8:19:b1:d4:6c:a7:b2:9c:bc:9e:2c:ae:27:58:d6: 73:b8:de:ac:11:8f:a3:28:7d:61:07:82:fc:06:75:5e:23:83: 80:70:cd:8d:ed:42:18:e1:59:5e:11:83:8c:12:39:c5:30:7c: 73:72:87:16:3d:a6:63:84:ad:45:ed:b4:bc:6e:e8:aa:da:99: f5:ee:ad:a7:12:86:e4:c6:58:da:75:2f:d6:5e:d7:07:93:bf: 43:44:27:dd:32:6f:8c:7b:ec:24:86:97:0c:9d:94:47:52:d9: 76:e4:3f:4a:56:49:40:73:c6:38:f5:e7:35:f0:ca:74:24:03: c1:5c:dc:fa:97:31:df:67:6d:89:6b:4a:70:c9:30:b7:b4:35: 61:9c:b6:0a:a9:db:0b:67:e4:fe:57:98:8d:80:b9:5f:a8:8f: 2f:fd:a9:11:18:ee:0e:8f:45:10:ab:c6:17:73:84:68:6e:83: ec:50:ef:b0:7f:33:14:9d:8a:9c:7f:57:c6:f3:c6:30:35:a3: af:7d:b0:6c:13:58:f2:90:89:17:0c:99:58:a3:a6:2f:d0:b3: 24:c7:ab:09:af:35:e1:db:cc:49:9e:c7:03:1f:c2:41:9c:f0: 0e:f4:2f:19:1f:9c:ef:1b:38:54:c7:fb:d2:2f:18:4a:44:91: aa:cb:76:85 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjUwNTMwMTkxNDExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhMDM4My02ZDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqdZAGoGUywz9GRwhb42VNzHtDurc2MYxndSARpy/FC7hbW0ph5hGHml0aIgx s+NTj3xvel7/TyprHZ+YlXKyoS2FtDngAy6vKDxMTcEoUZ56efRsSS8tpugT+SMv yLYCKBDZBq0rKkRO28CQkjJ8bbccb2zqmvzX3Hj705zEqwPTCIKA6RLixXl1O8s9 xS+4rMB6TtmkFWn4P19/nmHeDrsWibKcKVrapbDLpTyh9nSYATPHfsYhp3vmdyRD 5+rtMgeUsgI1ueSbDjocBJLcgHxbXzLcxRgyNLJTQmdZgjMh8KwnIwskErfWatFa +ECW1496sF+senzaLTHAKHOpywIDAQABo4IClTCCApEwHQYDVR0OBBYEFMOI5gMM Jdl3MUpczFa9CL8cSjz1MB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk4REEvMzRGMzYxMkUyNjgxMTFFQTkwM0Q3MDU4QzRGOUFFMDIvMTY2N0ZGOUM1 REY2MTFFRjkxOUJEQjMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtdWgwDQYJKoZIhvcNAQELBQADggEBAHFOjqgZsdRsp7Kc vJ4sridY1nO43qwRj6MofWEHgvwGdV4jg4BwzY3tQhjhWV4Rg4wSOcUwfHNyhxY9 pmOErUXttLxu6KramfXuracShuTGWNp1L9Ze1weTv0NEJ90yb4x77CSGlwydlEdS 2XbkP0pWSUBzxjj15zXwynQkA8Fc3PqXMd9nbYlrSnDJMLe0NWGctgqp2wtn5P5X mI2AuV+ojy/9qREY7g6PRRCrxhdzhGhug+xQ77B/MxSdipx/V8bzxjA1o699sGwT WPKQiRcMmVijpi/QsyTHqwmvNeHbzEmexwMfwkGc8A70LxkfnO8bOFTH+9IvGEpE karLdoU= -----END CERTIFICATE-----Generated at Fri Jun 20 12:36:06 2025 by rpki-client