$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/7DAE1400175111EC8D2A3722C4F9AE02.roa File: 7DAE1400175111EC8D2A3722C4F9AE02.roa (raw, json) Hash identifier: SXBGm34mimsdYeltsnEgpB58FMYIOvftCuhhELfcncI= Subject key identifier: 71:4B:10:35:D7:A3:13:45:D3:08:4B:1B:93:08:A2:46:0C:2B:F0:6E Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 05F3 Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/7DAE1400175111EC8D2A3722C4F9AE02.roa Signing time: Sun 03 Aug 2025 00:06:22 +0000 ROA not before: Sun 03 Aug 2025 00:06:22 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 134065 IP address blocks: 220.101.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 23:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1523 (0x5f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: Aug 3 00:06:22 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688ea7fd-c30a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:21:0c:64:04:52:d7:c7:99:0c:e4:e4:f1:00: c4:9d:04:8a:a7:f9:57:10:ce:a3:8a:fc:05:84:5f: 7e:99:0a:6c:69:7a:df:71:c9:67:bf:ef:25:f2:59: 92:0e:40:8b:43:94:35:f0:0a:85:f5:33:4a:86:5a: 0a:8b:f1:3c:d2:a4:0c:1b:93:7f:9a:fa:cd:d8:89: e6:e3:c2:16:cf:f8:b9:c2:60:bb:81:12:c1:2a:f4: ae:7e:b9:e9:24:9f:85:9c:46:32:14:df:50:33:ad: 5b:1b:3e:b4:5f:06:a8:18:8b:78:83:cd:fc:42:53: d7:45:b3:36:c7:cb:f9:94:de:77:eb:6a:27:d0:ec: 5c:6f:8d:3d:87:bf:58:d1:4d:bc:ad:48:8a:b1:ea: ab:9a:f1:dc:9f:28:5c:88:73:a5:c3:62:63:64:30: f1:1e:a7:ea:a6:0a:15:73:1e:15:8f:77:02:04:18: 01:51:17:d2:62:db:c3:c5:b4:af:8f:55:75:1e:89: 0f:07:21:7e:46:40:75:7a:93:50:c2:6d:df:ca:74: a3:b0:2a:8c:e6:63:09:1e:0d:c2:3c:d5:5a:48:26: c7:8a:cf:26:dc:37:6a:5e:ce:2a:17:4e:b8:4c:5d: 90:e7:70:2f:0b:1f:12:0e:df:fc:4a:53:1f:18:b6: 16:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:4B:10:35:D7:A3:13:45:D3:08:4B:1B:93:08:A2:46:0C:2B:F0:6E X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/7DAE1400175111EC8D2A3722C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.101.72.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:6a:8f:68:5b:13:8d:3d:11:cc:90:19:da:2c:87:de:47:35: f2:6f:bb:f4:0d:84:c9:62:c6:b4:ad:d4:8b:25:28:a5:01:30: 10:83:1e:59:45:e5:4d:7a:5a:16:3d:a9:98:50:ab:37:ae:e4: b5:31:c0:68:4a:ec:1d:a0:a3:fd:da:1f:07:6d:38:ce:52:5e: 3f:f3:2f:07:01:fa:8f:54:10:96:a7:f7:3f:20:f3:da:a2:fa: 78:51:64:77:c2:f5:d9:25:ec:c3:ff:d7:e4:90:43:0b:ab:e7: 18:e9:0d:64:2f:d9:ea:f0:34:93:92:a9:06:83:b8:50:cc:4c: 3f:41:51:d8:c3:2f:40:08:7d:ba:5d:b1:55:01:73:c5:6e:04: 54:99:4d:09:cc:af:94:9f:3c:82:04:54:f1:8e:c3:6c:f3:32: 26:ed:f3:a8:f2:1c:ef:16:82:e1:22:45:4d:5e:96:bd:c0:17: 77:ca:3b:5f:0f:ad:40:04:00:9a:4a:f7:f6:1e:05:b9:0f:ad: 03:04:ba:22:97:51:83:6f:63:79:5a:0e:72:9b:2f:f3:23:b8: d3:55:27:e0:a5:42:f4:0f:7d:b4:05:ca:31:a5:63:ac:52:ef: bd:04:7c:2e:d0:0b:24:28:ff:cc:90:d0:28:98:bc:82:c0:3b: 4f:28:c5:16 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBfMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjUwODAzMDAwNjIyWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlYTdmZC1jMzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7iEMZARS18eZDOTk8QDEnQSKp/lXEM6jivwFhF9+mQpsaXrfcclnv+8l8lmS DkCLQ5Q18AqF9TNKhloKi/E80qQMG5N/mvrN2Inm48IWz/i5wmC7gRLBKvSufrnp JJ+FnEYyFN9QM61bGz60XwaoGIt4g838QlPXRbM2x8v5lN5362on0Oxcb409h79Y 0U28rUiKseqrmvHcnyhciHOlw2JjZDDxHqfqpgoVcx4Vj3cCBBgBURfSYtvDxbSv j1V1HokPByF+RkB1epNQwm3fynSjsCqM5mMJHg3CPNVaSCbHis8m3DdqXs4qF064 TF2Q53AvCx8SDt/8SlMfGLYWdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHFLEDXX oxNF0whLG5MIokYMK/BuMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvN0RBRTE0MDAx NzUxMTFFQzhEMkEzNzIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADcZUgwDQYJKoZIhvcNAQELBQADggEBAFpqj2hbE409EcyQ Gdosh95HNfJvu/QNhMlixrSt1IslKKUBMBCDHllF5U16WhY9qZhQqzeu5LUxwGhK 7B2go/3aHwdtOM5SXj/zLwcB+o9UEJan9z8g89qi+nhRZHfC9dkl7MP/1+SQQwur 5xjpDWQv2erwNJOSqQaDuFDMTD9BUdjDL0AIfbpdsVUBc8VuBFSZTQnMr5SfPIIE VPGOw2zzMibt86jyHO8WguEiRU1elr3AF3fKO18PrUAEAJpK9/YeBbkPrQMEuiKX UYNvY3laDnKbL/MjuNNVJ+ClQvQPfbQFyjGlY6xS770EfC7QCyQo/8yQ0CiYvILA O08oxRY= -----END CERTIFICATE-----Generated at Wed Aug 13 05:56:12 2025 by rpki-client