$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/F1C7A044D91E11EFAD3C7613C4F9AE02.roa File: F1C7A044D91E11EFAD3C7613C4F9AE02.roa (raw, json) Hash identifier: cMsOBL01lB8MhNIvPe7EZWZhW2/NqYoBIP9IcsqTKSI= Subject key identifier: 24:80:8D:02:23:19:B4:D5:00:91:73:82:AF:3A:D0:70:3E:DF:F7:AE Certificate issuer: /CN=A91514B1/serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Certificate serial: 057A Authority key identifier: 96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/F1C7A044D91E11EFAD3C7613C4F9AE02.roa Signing time: Fri 01 Aug 2025 00:36:01 +0000 ROA not before: Fri 01 Aug 2025 00:36:01 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 4804 IP address blocks: 161.43.224.0/21 maxlen: 21 161.43.232.0/21 maxlen: 21 198.142.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1402 (0x57a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=9682C2ABE25323580776B1D0E275D2FD2D697EB6 Validity Not Before: Aug 1 00:36:01 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688c0bf0-e926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:97:f2:12:8e:47:ef:fa:f5:42:14:a7:4a:a2: ec:e9:cb:15:ab:22:49:59:d2:66:98:dd:29:c9:42: 01:fa:1b:65:22:a4:fa:37:ef:5e:8a:32:05:a4:a1: 9c:ee:24:8f:30:7c:04:00:da:2d:bd:09:63:f2:59: 29:2e:50:52:65:d8:89:20:8b:ea:fd:fc:0e:fb:27: 5b:e2:87:22:a6:95:68:a7:3a:13:3b:a1:73:14:2e: ee:72:3e:f0:d9:21:47:16:b1:4b:19:5a:b8:0c:10: 8e:68:f9:08:59:50:ad:bf:78:7a:86:a0:e8:89:53: 6e:0c:23:74:05:76:e3:45:ce:37:c5:2e:79:c5:5f: fa:e3:9e:7b:28:1c:cb:71:19:2d:b2:69:9a:fe:ea: e8:f3:1f:27:21:7b:12:a8:a5:e6:ef:57:ae:3a:39: 44:9e:1a:64:4d:20:55:b9:fc:47:52:1a:b0:27:ba: 27:72:8b:f7:b3:1c:d7:0a:eb:99:0d:16:17:b2:d5: 3f:2f:f5:95:f2:f6:62:f2:a8:43:b6:5e:18:58:d2: 46:54:82:e3:e1:81:32:d4:20:d0:08:e1:00:24:e2: d0:b0:75:51:92:6a:e2:50:33:fd:d3:95:ed:01:05: 03:5d:9f:6e:ad:e4:0e:6a:27:6d:ef:22:ac:28:f7: 18:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:80:8D:02:23:19:B4:D5:00:91:73:82:AF:3A:D0:70:3E:DF:F7:AE X509v3 Authority Key Identifier: keyid:96:82:C2:AB:E2:53:23:58:07:76:B1:D0:E2:75:D2:FD:2D:69:7E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/loLCq-JTI1gHdrHQ4nXS_S1pfrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/loLCq-JTI1gHdrHQ4nXS_S1pfrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/7A8864ACFBE411EB82B6264FC4F9AE02/F1C7A044D91E11EFAD3C7613C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.43.224.0/20 198.142.0.0/16 Signature Algorithm: sha256WithRSAEncryption 82:70:ba:6d:7c:0c:03:5e:3e:25:b5:7e:17:39:39:0e:45:a1: ff:ce:54:48:c7:aa:f2:02:16:65:bd:51:5a:05:79:64:99:9c: fc:be:89:90:19:74:68:0e:51:43:86:40:3a:eb:f7:58:dd:1d: 7a:3f:8b:b2:f9:06:ff:4b:68:fe:a6:d6:7d:82:5a:17:19:50: 87:b8:b5:f0:ef:89:57:5c:0e:6a:89:21:8e:0b:6c:1e:15:01: 60:86:ae:80:79:a0:7c:f8:86:3e:fb:36:1c:00:c9:f4:0b:a4: ee:44:01:65:ec:c6:89:ac:37:a1:4b:c8:72:62:ba:a1:f8:62: b5:ab:8e:f5:c2:b8:d8:7e:01:3b:9b:ec:c6:3e:b3:b1:92:c2: 51:b4:01:95:03:1e:06:3f:f5:32:89:44:fe:1e:11:d3:68:4d: e3:a0:97:c3:88:87:c0:eb:a8:1f:82:19:1c:97:c4:3b:86:f1: 19:ac:04:cf:5e:f4:a5:95:66:de:e4:a0:0c:ef:f4:6b:7b:7e: 32:7f:dc:ea:08:26:4d:c6:e3:e3:66:35:05:42:7a:90:aa:2e: 21:a8:c0:26:2a:5a:28:a2:b2:3b:3e:34:0d:3c:d5:25:a3:d6: 50:ef:f0:ea:48:08:6c:9f:c6:5b:f7:3e:45:9f:00:83:46:65: 4b:65:0f:73 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICBXowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDk2ODJDMkFCRTI1MzIzNTgwNzc2QjFEMEUyNzVEMkZE MkQ2OTdFQjYwHhcNMjUwODAxMDAzNjAxWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhjMGJmMC1lOTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArJfyEo5H7/r1QhSnSqLs6csVqyJJWdJmmN0pyUIB+htlIqT6N+9eijIFpKGc 7iSPMHwEANotvQlj8lkpLlBSZdiJIIvq/fwO+ydb4ocippVopzoTO6FzFC7ucj7w 2SFHFrFLGVq4DBCOaPkIWVCtv3h6hqDoiVNuDCN0BXbjRc43xS55xV/64557KBzL cRktsmma/uro8x8nIXsSqKXm71euOjlEnhpkTSBVufxHUhqwJ7oncov3sxzXCuuZ DRYXstU/L/WV8vZi8qhDtl4YWNJGVILj4YEy1CDQCOEAJOLQsHVRkmriUDP905Xt AQUDXZ9ureQOaidt7yKsKPcYPwIDAQABo4ICmjCCApYwHQYDVR0OBBYEFCSAjQIj GbTVAJFzgq860HA+3/euMB8GA1UdIwQYMBaAFJaCwqviUyNYB3ax0OJ10v0taX62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS83QTg4NjRBQ0ZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9sb0xDcS1KVEkxZ0hkckhRNG5YU19TMXBm clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xvTENxLUpUSTFnSGRySFE0blhTX1MxcGZyWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvN0E4ODY0QUNGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvRjFDN0EwNDRE OTFFMTFFRkFEM0M3NjEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDBAShK+ADAwDGjjANBgkqhkiG9w0BAQsFAAOCAQEAgnC6bXwM A14+JbV+Fzk5DkWh/85USMeq8gIWZb1RWgV5ZJmc/L6JkBl0aA5RQ4ZAOuv3WN0d ej+LsvkG/0to/qbWfYJaFxlQh7i18O+JV1wOaokhjgtsHhUBYIaugHmgfPiGPvs2 HADJ9Auk7kQBZezGiaw3oUvIcmK6ofhitauO9cK42H4BO5vsxj6zsZLCUbQBlQMe Bj/1MolE/h4R02hN46CXw4iHwOuoH4IZHJfEO4bxGawEz170pZVm3uSgDO/0a3t+ Mn/c6ggmTcbj42Y1BUJ6kKouIajAJipaKKKyOz40DTzVJaPWUO/w6kgIbJ/GW/c+ RZ8Ag0ZlS2UPcw== -----END CERTIFICATE-----Generated at Sat Aug 9 14:26:13 2025 by rpki-client