$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/747C7164462C11ED90035452C4F9AE02.roa File: 747C7164462C11ED90035452C4F9AE02.roa (raw, json) Hash identifier: ysgxI/G91R+a/iojor3l2n28shR0MhG5qk8DtBNdJ8I= Subject key identifier: 86:89:C6:53:C7:AC:A0:97:43:AC:65:1C:BD:E3:50:B9:CB:96:99:78 Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Certificate serial: 3668 Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/747C7164462C11ED90035452C4F9AE02.roa Signing time: Thu 17 Jul 2025 11:34:36 +0000 ROA not before: Thu 17 Jul 2025 11:34:36 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 17469 IP address blocks: 175.29.124.0/22 maxlen: 24 175.29.140.0/22 maxlen: 24 175.29.144.0/22 maxlen: 24 175.29.160.0/20 maxlen: 24 175.29.176.0/20 maxlen: 24 175.29.192.0/21 maxlen: 24 202.22.192.0/20 maxlen: 24 203.76.144.0/21 maxlen: 24 203.82.192.0/20 maxlen: 24 2404:150::/32 maxlen: 32 2404:150:100::/48 maxlen: 56 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:29:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13928 (0x3668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91510AD, serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Validity Not Before: Jul 17 11:34:36 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6878dfcb-3611 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9b:82:91:8f:9d:0a:fb:d4:36:f2:8d:fd:66: eb:f2:0e:ca:6b:fd:9a:fe:86:f6:87:08:b5:bf:6c: 96:9a:25:b6:41:47:55:a8:7e:18:d5:39:27:5c:81: 8e:b4:c8:ae:03:07:ab:65:b5:26:d2:c7:2c:17:3f: fa:15:39:b2:f0:23:92:eb:05:fd:9c:45:25:66:2c: 6e:14:a9:e9:64:ac:c1:5d:2c:a6:f9:c9:8f:08:9f: 4e:65:b4:d0:69:ab:eb:e2:36:bb:27:bd:78:5f:5b: 56:a7:08:7d:42:85:99:9f:70:e6:eb:60:b5:a3:d8: 7a:5f:2e:21:1d:cc:9c:af:cf:6d:73:32:94:9e:0d: de:21:3f:a3:1f:a6:8a:c5:64:b6:9c:e3:d7:90:11: e9:61:fa:cf:30:77:9e:54:4f:42:ee:f4:35:58:d0: f1:c8:55:f5:b4:3f:17:e7:71:4b:f7:a6:3e:af:0e: fc:7a:a0:83:bd:df:97:e6:04:d6:d8:cd:5c:0b:df: aa:a1:c9:ce:d9:fd:78:cc:15:bf:b9:f5:64:93:69: 1a:35:68:60:ed:c3:33:1e:73:92:c7:cf:6b:ae:eb: 48:79:c8:dc:ac:90:48:d3:16:06:73:1f:6c:37:82: 5b:35:3f:cb:87:2f:92:32:41:d9:1e:92:1f:fc:78: 36:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:89:C6:53:C7:AC:A0:97:43:AC:65:1C:BD:E3:50:B9:CB:96:99:78 X509v3 Authority Key Identifier: keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/747C7164462C11ED90035452C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.29.124.0/22 175.29.140.0-175.29.147.255 175.29.160.0-175.29.199.255 202.22.192.0/20 203.76.144.0/21 203.82.192.0/20 IPv6: 2404:150::/32 Signature Algorithm: sha256WithRSAEncryption 25:cf:6b:9f:c0:c2:f7:6a:16:cf:36:89:ba:af:7f:ce:bb:02: 16:74:61:16:45:2f:3c:15:05:65:71:af:6b:6a:0b:29:b9:d3: 4b:c3:84:fb:bc:b1:af:88:2a:d4:46:4e:a0:fd:c8:14:bb:02: 1f:9f:a7:25:e2:6f:ea:27:c3:26:e0:77:17:b4:42:3c:6f:9d: ea:53:c7:53:a2:dd:88:ee:e7:cd:3c:4d:ed:3a:69:3e:d0:b4: 25:2e:65:d5:f9:a8:d5:6f:74:b4:aa:dd:10:76:40:36:e6:d0: 5e:7f:40:87:73:98:95:9d:13:86:f9:8a:6e:bf:9e:c5:dc:26: c0:65:0c:07:31:9e:5c:dc:22:63:e1:36:67:1c:ab:80:96:74: c7:5c:81:13:3a:ec:5c:28:7d:13:f5:f9:64:83:97:4b:e3:93: 65:b7:fa:08:c5:ba:aa:37:9a:4a:ce:24:73:b8:98:b9:52:4d: a7:13:76:d6:4d:6a:e4:b0:65:08:a9:4a:34:ee:a5:db:15:3d: a7:ff:bc:5a:2f:04:ab:99:fd:c3:a2:17:2e:7a:64:02:2b:e9: 28:b0:f9:2b:ac:59:71:46:cc:3f:7b:88:5b:e2:0f:fb:e1:9d: 28:54:6d:f7:11:ec:b1:d7:47:e0:97:5a:8c:ba:e6:aa:64:10: 6e:af:57:58 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgICNmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEwQUQxMTAvBgNVBAUTKEUxRTY5MDhBMTZFQzgxM0RBQTBCRDY0Nzk3QUU5REJE RUIwOTIyNTcwHhcNMjUwNzE3MTEzNDM2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODc4ZGZjYi0zNjExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0puCkY+dCvvUNvKN/Wbr8g7Ka/2a/ob2hwi1v2yWmiW2QUdVqH4Y1TknXIGO tMiuAwerZbUm0scsFz/6FTmy8COS6wX9nEUlZixuFKnpZKzBXSym+cmPCJ9OZbTQ aavr4ja7J714X1tWpwh9QoWZn3Dm62C1o9h6Xy4hHcycr89tczKUng3eIT+jH6aK xWS2nOPXkBHpYfrPMHeeVE9C7vQ1WNDxyFX1tD8X53FL96Y+rw78eqCDvd+X5gTW 2M1cC9+qocnO2f14zBW/ufVkk2kaNWhg7cMzHnOSx89rrutIecjcrJBI0xYGcx9s N4JbNT/Lhy+SMkHZHpIf/Hg2IwIDAQABo4IC0jCCAs4wHQYDVR0OBBYEFIaJxlPH rKCXQ6xlHL3jULnLlpl4MB8GA1UdIwQYMBaAFOHmkIoW7IE9qgvWR5eunb3rCSJX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTBBRC84QjVFNzVGRTFE ODcxMUUyODRCMzgzREYwOEIwMkNEMi80ZWFRaWhic2dUMnFDOVpIbDY2ZHZlc0pJ bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRlYVFpaGJzZ1QycUM5WkhsNjZkdmVzSklsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEwQUQvOEI1RTc1RkUxRDg3MTFFMjg0QjM4M0RGMDhCMDJDRDIvNzQ3QzcxNjQ0 NjJDMTFFRDkwMDM1NDUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXAYIKwYBBQUHAQcBAf8E TTBLMDoEAgABMDQDBAKvHXwwDAMEAq8djAMEAq8dkDAMAwQFrx2gAwQDrx3AAwQE yhbAAwQDy0yQAwQEy1LAMA0EAgACMAcDBQAkBAFQMA0GCSqGSIb3DQEBCwUAA4IB AQAlz2ufwML3ahbPNom6r3/OuwIWdGEWRS88FQVlca9ragspudNLw4T7vLGviCrU Rk6g/cgUuwIfn6cl4m/qJ8Mm4HcXtEI8b53qU8dTot2I7ufNPE3tOmk+0LQlLmXV +ajVb3S0qt0QdkA25tBef0CHc5iVnROG+Ypuv57F3CbAZQwHMZ5c3CJj4TZnHKuA lnTHXIETOuxcKH0T9flkg5dL45Nlt/oIxbqqN5pKziRzuJi5Uk2nE3bWTWrksGUI qUo07qXbFT2n/7xaLwSrmf3DohcuemQCK+kosPkrrFlxRsw/e4hb4g/74Z0oVG33 Eeyx10fgl1qMuuaqZBBur1dY -----END CERTIFICATE-----Generated at Wed Aug 6 12:38:42 2025 by rpki-client