$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/3BE907D6178411EC83735974C4F9AE02.roa File: 3BE907D6178411EC83735974C4F9AE02.roa (raw, json) Hash identifier: rE9WkJIenLF+WGIHOu03ZgrTq1HXqzhO0fgnF30Hn3s= Subject key identifier: 7E:BC:BD:40:84:09:EE:F5:4C:44:5D:90:83:A6:B1:11:FE:A6:F2:66 Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 0602 Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/3BE907D6178411EC83735974C4F9AE02.roa Signing time: Sun 03 Aug 2025 00:06:35 +0000 ROA not before: Sun 03 Aug 2025 00:06:35 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 9738 IP address blocks: 61.88.58.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 23:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1538 (0x602) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: Aug 3 00:06:35 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688ea80a-ef07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:76:5f:06:c8:2c:35:30:18:63:a5:e7:82:7b: 6e:ca:1f:0b:f7:13:fc:9a:e3:b4:de:e7:d6:67:77: a1:d6:2c:e2:52:ed:41:ee:6b:b6:f2:c3:b0:93:1f: c6:34:25:ca:35:d8:72:9e:10:81:db:91:6a:67:b6: 45:8d:e2:e5:98:60:c6:28:43:8b:fe:52:ed:31:9e: fe:d1:08:bd:0a:cd:9c:44:d0:3e:c6:a7:a9:1a:33: 5c:1a:e0:dc:23:fb:41:2d:fe:86:a5:b0:47:a4:92: 8d:c9:0b:17:1e:71:ba:21:51:c7:fb:a0:a7:92:b0: 90:13:80:65:e8:0a:c7:7c:d7:c0:da:49:c9:f0:aa: d5:d9:db:17:0e:22:e6:65:93:90:ba:f0:02:00:7c: cf:7a:29:35:e4:41:8c:6d:f4:eb:85:32:d8:9a:fe: b5:e3:2d:05:47:fa:a8:ce:a1:14:a0:39:6c:57:f6: 13:11:01:43:6b:10:d6:b6:3b:fe:7a:dd:6f:2b:1f: 6f:a8:67:a7:38:8f:fd:3d:55:bc:c6:1f:88:82:33: 76:7d:e6:b3:1b:17:cc:ae:65:2f:37:f7:e5:c8:fd: e8:f0:e7:35:09:98:da:8c:cc:06:44:24:8b:76:75: 03:12:a0:67:bc:c9:0c:e1:60:76:29:ac:1b:b2:44: 9d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:BC:BD:40:84:09:EE:F5:4C:44:5D:90:83:A6:B1:11:FE:A6:F2:66 X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/3BE907D6178411EC83735974C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.88.58.0/24 Signature Algorithm: sha256WithRSAEncryption 9d:e3:eb:04:6f:c6:a8:ff:85:dc:a6:c5:0d:34:1b:30:5b:6e: d4:ce:f4:11:4a:4c:88:77:87:f6:ea:32:6d:44:41:6a:8c:79: 64:ea:14:15:f1:94:2e:a8:99:81:94:e9:80:59:ef:ad:aa:ad: 79:ae:4a:30:d8:c6:ee:3f:11:7c:88:b2:14:dd:4e:e6:46:75: 58:08:88:4b:1e:73:16:17:5f:f8:87:b3:b2:5f:de:af:65:e2: f2:4c:ed:d2:b5:9a:0c:2a:25:28:20:d1:51:ac:4c:e4:b7:48: 23:12:ec:9f:22:fd:fe:c4:f3:0f:21:bc:f0:3e:22:77:bb:56: 4a:57:e1:cc:f9:62:0b:fc:03:5d:ed:8d:ee:b2:63:2e:a2:87: 59:cc:4c:b8:39:15:d6:3e:0a:91:2e:0b:a1:bb:8f:df:ae:54: 9e:2d:b9:2c:b9:a7:12:86:16:3f:44:5e:a8:26:87:04:ec:14: 88:c2:0c:68:24:2f:83:03:23:9e:07:5e:13:a3:ab:92:0a:1f: c5:04:e0:07:4c:34:f4:69:b7:33:ea:c4:0a:c6:93:ec:c9:e1: 9b:6a:73:80:32:88:ba:2c:42:b1:23:fb:59:74:27:22:3d:67: e2:9d:8a:b4:59:02:a3:5d:c0:e9:95:a2:f5:1b:93:45:5a:af: 09:65:6a:bb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBgIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjUwODAzMDAwNjM1WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlYTgwYS1lZjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03ZfBsgsNTAYY6Xngntuyh8L9xP8muO03ufWZ3eh1iziUu1B7mu28sOwkx/G NCXKNdhynhCB25FqZ7ZFjeLlmGDGKEOL/lLtMZ7+0Qi9Cs2cRNA+xqepGjNcGuDc I/tBLf6GpbBHpJKNyQsXHnG6IVHH+6CnkrCQE4Bl6ArHfNfA2knJ8KrV2dsXDiLm ZZOQuvACAHzPeik15EGMbfTrhTLYmv614y0FR/qozqEUoDlsV/YTEQFDaxDWtjv+ et1vKx9vqGenOI/9PVW8xh+IgjN2feazGxfMrmUvN/flyP3o8Oc1CZjajMwGRCSL dnUDEqBnvMkM4WB2KawbskSdcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFH68vUCE Ce71TERdkIOmsRH+pvJmMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvM0JFOTA3RDYx Nzg0MTFFQzgzNzM1OTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA9WDowDQYJKoZIhvcNAQELBQADggEBAJ3j6wRvxqj/hdym xQ00GzBbbtTO9BFKTIh3h/bqMm1EQWqMeWTqFBXxlC6omYGU6YBZ762qrXmuSjDY xu4/EXyIshTdTuZGdVgIiEsecxYXX/iHs7Jf3q9l4vJM7dK1mgwqJSgg0VGsTOS3 SCMS7J8i/f7E8w8hvPA+Ine7VkpX4cz5Ygv8A13tje6yYy6ih1nMTLg5FdY+CpEu C6G7j9+uVJ4tuSy5pxKGFj9EXqgmhwTsFIjCDGgkL4MDI54HXhOjq5IKH8UE4AdM NPRptzPqxArGk+zJ4Ztqc4AyiLosQrEj+1l0JyI9Z+KdirRZAqNdwOmVovUbk0Va rwllars= -----END CERTIFICATE-----Generated at Wed Aug 13 04:29:11 2025 by rpki-client