$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/16637998DB5311EE9F9F1F75C4F9AE02.roa File: 16637998DB5311EE9F9F1F75C4F9AE02.roa (raw, json) Hash identifier: zshJYk0TxPL9T44CRx3MVOCJOUXw59+QWEbCFduzfwQ= Subject key identifier: 9A:D3:C6:52:6B:D7:D3:44:CE:DE:B5:DA:8B:1D:65:20:F8:06:86:2F Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 05F7 Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/16637998DB5311EE9F9F1F75C4F9AE02.roa Signing time: Sun 03 Aug 2025 00:06:26 +0000 ROA not before: Sun 03 Aug 2025 00:06:26 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 16509 IP address blocks: 1.44.96.0/24 maxlen: 24 203.17.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1527 (0x5f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: Aug 3 00:06:26 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688ea801-49a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4d:c6:93:b6:7d:42:b6:87:41:e4:fa:7a:8b: 4a:99:36:f1:5e:00:fa:63:69:fd:fd:d1:21:70:db: 3d:33:8e:a8:8f:fc:94:cf:dd:70:b5:63:70:5b:2c: 68:f4:b1:df:16:07:52:7a:85:16:91:91:d1:56:43: 69:de:15:1e:d2:e3:fa:5e:4d:b5:8f:d7:a1:91:3a: 9b:96:b3:1d:49:0b:7e:0b:5f:ca:88:7f:aa:89:21: a5:23:59:8b:8e:44:d6:81:7d:55:38:e2:1e:1d:14: 8b:a5:24:ef:72:98:f0:22:a1:37:fa:df:13:10:06: ea:c5:50:44:ed:a5:46:41:ad:0a:e4:0e:32:fc:fe: be:e2:19:86:75:b7:70:82:d4:61:22:e6:ae:d6:b2: 2d:d3:e8:6a:01:3f:fd:16:84:d3:e6:bc:a4:ce:77: 72:ee:e3:46:c0:48:3b:e3:d4:0a:32:a3:c9:25:08: 1b:ba:a5:50:2a:e4:92:64:a6:df:b0:07:ec:31:1d: 52:04:94:90:89:dc:e4:2d:94:96:aa:09:f2:13:b4: 05:11:4c:f8:b3:bc:21:ea:25:e0:b8:fe:b3:cf:51: 34:91:85:e2:a8:de:20:b0:59:01:6f:f6:f7:df:84: bd:96:38:22:57:90:9f:48:7a:c0:cc:4a:22:cb:4d: 6f:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D3:C6:52:6B:D7:D3:44:CE:DE:B5:DA:8B:1D:65:20:F8:06:86:2F X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/16637998DB5311EE9F9F1F75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.44.96.0/24 203.17.138.0/24 Signature Algorithm: sha256WithRSAEncryption 98:30:77:8a:da:94:04:63:56:f1:bf:f3:b6:c4:75:23:66:d1: a5:db:ce:e4:e7:1c:9a:80:c2:02:62:e5:65:bd:3a:07:36:d5: 81:6a:5b:18:26:37:18:65:91:d4:5e:42:c3:d7:42:8b:d4:aa: e9:69:6a:7e:2a:f2:cd:fd:f0:c0:a8:59:ea:2b:56:24:64:c3: 2a:61:41:90:e4:dd:75:2a:8e:76:9f:1b:05:65:c0:e2:d4:18: 1b:15:64:fb:1b:02:18:51:7c:02:5b:ec:d8:56:2b:6d:80:2a: 04:60:ac:00:97:53:50:b1:13:88:af:16:fb:99:76:bc:76:71: 80:c0:09:ce:e4:cc:5c:b2:07:cf:6c:68:47:26:69:76:10:a3: 23:ba:3e:a0:a4:17:96:64:9f:d7:f9:e5:5a:1c:df:3e:0f:ac: 21:f4:97:af:0e:d0:5b:65:34:23:7a:4e:23:38:cb:ad:4d:cd: 56:7c:09:6c:ae:35:a4:98:e6:12:2e:27:6f:f7:fb:4a:e9:51: 1b:ba:dd:3b:b6:81:f7:d1:8a:4a:a1:19:1a:bd:42:8e:bc:88: a9:90:d7:79:86:36:6a:9e:3a:8a:bf:97:f2:a0:4e:8d:c8:12: ae:08:de:be:dd:1f:03:72:0e:f1:0f:e8:a4:58:93:54:2f:95: b8:4f:60:c9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBfcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjUwODAzMDAwNjI2WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlYTgwMS00OWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu03Gk7Z9QraHQeT6eotKmTbxXgD6Y2n9/dEhcNs9M46oj/yUz91wtWNwWyxo 9LHfFgdSeoUWkZHRVkNp3hUe0uP6Xk21j9ehkTqblrMdSQt+C1/KiH+qiSGlI1mL jkTWgX1VOOIeHRSLpSTvcpjwIqE3+t8TEAbqxVBE7aVGQa0K5A4y/P6+4hmGdbdw gtRhIuau1rIt0+hqAT/9FoTT5rykzndy7uNGwEg749QKMqPJJQgbuqVQKuSSZKbf sAfsMR1SBJSQidzkLZSWqgnyE7QFEUz4s7wh6iXguP6zz1E0kYXiqN4gsFkBb/b3 34S9ljgiV5CfSHrAzEoiy01viwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJrTxlJr 19NEzt612osdZSD4BoYvMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvMTY2Mzc5OThE QjUzMTFFRTlGOUYxRjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAABLGADBADLEYowDQYJKoZIhvcNAQELBQADggEBAJgwd4ra lARjVvG/87bEdSNm0aXbzuTnHJqAwgJi5WW9Ogc21YFqWxgmNxhlkdReQsPXQovU qulpan4q8s398MCoWeorViRkwyphQZDk3XUqjnafGwVlwOLUGBsVZPsbAhhRfAJb 7NhWK22AKgRgrACXU1CxE4ivFvuZdrx2cYDACc7kzFyyB89saEcmaXYQoyO6PqCk F5Zkn9f55Voc3z4PrCH0l68O0FtlNCN6TiM4y61NzVZ8CWyuNaSY5hIuJ2/3+0rp URu63Tu2gffRikqhGRq9Qo68iKmQ13mGNmqeOoq/l/KgTo3IEq4I3r7dHwNyDvEP 6KRYk1QvlbhPYMk= -----END CERTIFICATE-----Generated at Mon Aug 11 07:45:55 2025 by rpki-client