$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/D3D36BE0271011ECA0D7D95AC4F9AE02.roa File: D3D36BE0271011ECA0D7D95AC4F9AE02.roa (raw, json) Hash identifier: ToNYuKjsmNUrDjM3EopYow2kRZNQw6nwL7h9Ilwq2wI= Subject key identifier: F6:5A:27:A0:02:E3:D7:29:7F:CD:1E:E3:E4:32:DD:67:31:48:F6:99 Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 0579 Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/D3D36BE0271011ECA0D7D95AC4F9AE02.roa Signing time: Fri 01 Aug 2025 00:36:00 +0000 ROA not before: Fri 01 Aug 2025 00:36:00 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 198949 IP address blocks: 161.43.102.0/24 maxlen: 24 161.43.122.0/24 maxlen: 24 198.142.0.0/24 maxlen: 24 198.142.152.0/24 maxlen: 24 198.142.231.0/24 maxlen: 24 198.142.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1401 (0x579) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Aug 1 00:36:00 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688c0bf0-0864 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:54:5f:ba:97:47:01:7a:9f:07:6a:0a:3a:c1: ae:24:80:82:ad:a6:aa:c6:69:3b:8a:f8:30:5e:69: 15:bc:86:64:29:ad:38:df:7d:a7:5d:fc:7d:e0:9e: 8a:ed:fd:c3:b3:5e:69:1e:0f:8f:d3:0d:fd:27:53: d7:83:d6:69:f1:89:3a:e9:18:a1:12:43:37:6b:44: e0:8c:35:58:18:ad:07:ea:e9:bf:c8:30:95:f6:38: 58:a6:b0:df:a9:15:7e:64:7b:fd:3f:df:97:a7:93: 60:03:c0:9d:98:e0:d3:e2:da:85:c4:4f:9b:f2:92: b8:54:0d:a9:5f:b8:16:6e:10:e6:20:22:bd:37:4d: fc:26:af:85:9e:54:74:91:1a:98:03:34:84:98:c8: 0c:1b:90:40:50:73:29:84:9d:01:62:20:8d:cb:55: cd:24:b6:8b:78:ea:c2:da:cf:0c:1e:12:c0:c0:26: 72:0c:54:e2:bd:95:d2:95:d9:b7:13:15:3d:9e:e2: 16:55:46:02:a4:5f:b3:d8:88:6a:00:70:f3:f4:3d: b8:5a:67:0a:7f:bb:b2:cf:8e:a8:ce:a5:c9:d4:36: 59:a5:64:19:a6:13:c2:16:6e:08:98:a0:3f:47:63: 76:9f:04:0b:f5:48:97:f4:42:0e:e9:80:5d:b5:4f: 1c:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:5A:27:A0:02:E3:D7:29:7F:CD:1E:E3:E4:32:DD:67:31:48:F6:99 X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/D3D36BE0271011ECA0D7D95AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.43.102.0/24 161.43.122.0/24 198.142.0.0/24 198.142.152.0/24 198.142.231.0/24 198.142.235.0/24 Signature Algorithm: sha256WithRSAEncryption 48:a1:64:19:3b:f4:10:77:81:5c:59:bd:1b:7e:cd:54:92:e3: e9:71:90:e2:e8:c8:b0:92:b0:83:82:ef:a6:40:cf:63:9b:b1: 32:a8:9b:80:7c:c1:69:9a:b2:2a:af:39:18:7c:63:70:c8:c3: 69:2a:c4:9c:1f:09:78:57:77:c0:1b:5c:f5:91:b0:33:4d:92: 45:e6:07:be:26:05:c0:24:93:2f:bc:51:ef:67:be:96:03:8c: b9:52:08:1b:e5:39:f6:91:43:32:9d:05:02:16:1b:a6:0c:1b: 66:38:33:f2:62:df:8d:3c:b3:00:3b:55:09:34:ec:a8:d0:c7: 72:2d:d1:21:f2:46:e2:ae:38:10:91:2e:dd:4f:46:ef:73:42: eb:12:6b:87:31:19:68:7d:a8:a1:85:07:72:7c:e7:c0:55:d2: 96:37:fa:06:c4:85:c2:a7:72:39:7a:be:99:3f:4d:94:93:7d: ad:cc:52:e1:15:0d:7c:ce:cb:85:a1:ae:6e:52:5c:74:84:ea: 25:fc:0d:13:77:b7:0a:b0:aa:f1:f8:8d:ce:bc:73:0f:4c:b1: 68:a1:00:c6:49:3d:3c:39:84:31:60:54:a5:28:48:9c:2f:ee: cf:17:ee:24:8b:19:f7:50:0d:a2:d7:2c:0e:bf:d5:a6:3f:de: 3c:71:94:ef -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICBXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjUwODAxMDAzNjAwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhjMGJmMC0wODY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1RfupdHAXqfB2oKOsGuJICCraaqxmk7ivgwXmkVvIZkKa04332nXfx94J6K 7f3Ds15pHg+P0w39J1PXg9Zp8Yk66RihEkM3a0TgjDVYGK0H6um/yDCV9jhYprDf qRV+ZHv9P9+Xp5NgA8CdmODT4tqFxE+b8pK4VA2pX7gWbhDmICK9N038Jq+FnlR0 kRqYAzSEmMgMG5BAUHMphJ0BYiCNy1XNJLaLeOrC2s8MHhLAwCZyDFTivZXSldm3 ExU9nuIWVUYCpF+z2IhqAHDz9D24WmcKf7uyz46ozqXJ1DZZpWQZphPCFm4ImKA/ R2N2nwQL9UiX9EIO6YBdtU8caQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFPZaJ6AC 49cpf80e4+Qy3WcxSPaZMB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvN0E4ODY0QUNGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvRDNEMzZCRTAy NzEwMTFFQ0EwRDdEOTVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAChK2YDBAChK3oDBADGjgADBADGjpgDBADGjucDBADGjusw DQYJKoZIhvcNAQELBQADggEBAEihZBk79BB3gVxZvRt+zVSS4+lxkOLoyLCSsIOC 76ZAz2ObsTKom4B8wWmasiqvORh8Y3DIw2kqxJwfCXhXd8AbXPWRsDNNkkXmB74m BcAkky+8Ue9nvpYDjLlSCBvlOfaRQzKdBQIWG6YMG2Y4M/Ji3408swA7VQk07KjQ x3It0SHyRuKuOBCRLt1PRu9zQusSa4cxGWh9qKGFB3J858BV0pY3+gbEhcKncjl6 vpk/TZSTfa3MUuEVDXzOy4Whrm5SXHSE6iX8DRN3twqwqvH4jc68cw9MsWihAMZJ PTw5hDFgVKUoSJwv7s8X7iSLGfdQDaLXLA6/1aY/3jxxlO8= -----END CERTIFICATE-----Generated at Sun Aug 10 05:50:56 2025 by rpki-client