$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/3A9DF21A178411EC83735974C4F9AE02.roa File: 3A9DF21A178411EC83735974C4F9AE02.roa (raw, json) Hash identifier: sWgR7Sj23JtA2KAOZv42p7Xi0bd5s2SoEVnKmmEKkuA= Subject key identifier: 64:04:C3:FC:A0:0F:92:C8:34:46:A1:27:03:C9:C7:FE:B2:73:B7:56 Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 05F4 Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/3A9DF21A178411EC83735974C4F9AE02.roa Signing time: Sun 03 Aug 2025 00:06:23 +0000 ROA not before: Sun 03 Aug 2025 00:06:23 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134139 IP address blocks: 61.88.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 23:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1524 (0x5f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: Aug 3 00:06:23 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688ea7ff-a625 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:22:6a:38:06:86:36:c5:c4:2b:de:b2:87:49: db:9f:70:4a:81:0f:f8:e0:68:41:b2:ab:b4:c2:3f: fb:d0:85:ac:93:a7:15:72:7e:f2:94:da:07:7f:63: b5:6e:d2:41:f3:6a:51:fd:4d:41:90:3a:8a:b3:bf: 56:cd:ff:70:13:b4:1b:da:7d:6f:1a:4e:18:d9:df: 37:ee:44:e8:72:6c:86:f4:58:60:17:5f:3b:76:fd: f0:2c:9d:97:04:e3:ad:07:16:71:e6:e7:c4:79:30: ef:dc:13:8d:7e:4e:22:10:9f:b1:06:21:86:b0:55: 11:4b:95:5e:9d:11:70:de:97:93:08:dc:e5:ca:f4: 72:d4:c6:d3:79:63:f5:b1:48:04:54:0d:24:c1:33: cd:d1:1b:c6:4f:f1:ea:47:4a:27:ac:fe:87:88:27: 18:be:62:71:61:75:5d:09:ed:32:25:84:41:51:2e: 35:f7:1d:bc:bb:cf:fd:6e:86:c3:6a:cf:e3:ed:0f: fa:de:af:a0:43:bb:61:7a:f2:6b:0e:5d:72:fb:2f: b8:c6:d9:aa:0a:93:22:09:ee:90:cc:b6:f1:0b:74: 54:35:11:3e:5a:30:e7:3e:05:6f:56:6e:2f:db:1c: b6:17:3a:9b:87:e1:22:15:c8:23:1f:86:55:6d:c0: d6:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:04:C3:FC:A0:0F:92:C8:34:46:A1:27:03:C9:C7:FE:B2:73:B7:56 X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/3A9DF21A178411EC83735974C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.88.231.0/24 Signature Algorithm: sha256WithRSAEncryption a6:74:a0:95:f3:56:51:2c:46:c3:1f:ca:b4:69:02:5c:ad:eb: 6c:42:0b:d2:61:ad:4c:5d:0f:b4:fb:62:42:07:26:26:03:e9: 65:f8:89:0c:18:92:b8:c2:d0:04:c4:2e:6d:77:e5:26:7b:bf: 59:27:8f:be:fb:ac:3b:3c:b5:e2:63:30:28:97:92:43:3e:47: 16:2f:a2:02:50:37:70:d8:16:7b:91:02:4f:8f:34:02:c2:8f: fe:b0:db:09:9d:3a:9f:84:47:6e:aa:6a:f8:55:72:fc:fe:39: 08:cd:ba:f8:e7:99:e4:1c:32:d5:47:c3:04:a4:c3:b5:ea:f8: c3:bc:9a:ff:9e:54:bf:55:da:01:eb:84:66:71:54:13:4a:53: a0:6d:f5:9c:53:b3:0d:94:47:23:4e:ae:4b:b6:1d:af:5d:de: d6:1c:e7:2d:31:8b:c7:a4:2f:0d:db:6b:4d:92:3b:1d:6e:0d: 14:85:e3:bb:7f:d2:06:39:82:b7:76:f5:07:b8:a4:91:93:cf: 32:4b:ba:52:cd:01:a9:29:5c:d2:77:30:67:b9:93:93:b4:f7: 9b:67:5e:27:1b:a3:45:c8:4b:6c:d0:df:02:1b:b7:27:8c:b9: a1:71:56:37:6d:41:96:50:39:21:9e:50:3a:9d:f4:39:6f:ed: 60:09:e1:2d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjUwODAzMDAwNjIzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlYTdmZi1hNjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3CJqOAaGNsXEK96yh0nbn3BKgQ/44GhBsqu0wj/70IWsk6cVcn7ylNoHf2O1 btJB82pR/U1BkDqKs79Wzf9wE7Qb2n1vGk4Y2d837kTocmyG9FhgF187dv3wLJ2X BOOtBxZx5ufEeTDv3BONfk4iEJ+xBiGGsFURS5VenRFw3peTCNzlyvRy1MbTeWP1 sUgEVA0kwTPN0RvGT/HqR0onrP6HiCcYvmJxYXVdCe0yJYRBUS419x28u8/9bobD as/j7Q/63q+gQ7thevJrDl1y+y+4xtmqCpMiCe6QzLbxC3RUNRE+WjDnPgVvVm4v 2xy2Fzqbh+EiFcgjH4ZVbcDWWQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGQEw/yg D5LINEahJwPJx/6yc7dWMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvM0E5REYyMUEx Nzg0MTFFQzgzNzM1OTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9WOcwDQYJKoZIhvcNAQELBQADggEBAKZ0oJXzVlEsRsMf yrRpAlyt62xCC9JhrUxdD7T7YkIHJiYD6WX4iQwYkrjC0ATELm135SZ7v1knj777 rDs8teJjMCiXkkM+RxYvogJQN3DYFnuRAk+PNALCj/6w2wmdOp+ER26qavhVcvz+ OQjNuvjnmeQcMtVHwwSkw7Xq+MO8mv+eVL9V2gHrhGZxVBNKU6Bt9ZxTsw2URyNO rku2Ha9d3tYc5y0xi8ekLw3ba02SOx1uDRSF47t/0gY5grd29Qe4pJGTzzJLulLN AakpXNJ3MGe5k5O095tnXicbo0XIS2zQ3wIbtyeMuaFxVjdtQZZQOSGeUDqd9Dlv 7WAJ4S0= -----END CERTIFICATE-----Generated at Wed Aug 13 04:28:02 2025 by rpki-client