$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/7E42E396175111EC8D2A3722C4F9AE02.roa File: 7E42E396175111EC8D2A3722C4F9AE02.roa (raw, json) Hash identifier: fspJDcOC1Xb3sd77qo6chvyvEirDEygX2X00yJH8TrU= Subject key identifier: D2:41:6B:76:7A:DC:77:3B:64:6F:54:C6:AE:E3:FB:BC:38:74:C5:72 Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 05F5 Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/7E42E396175111EC8D2A3722C4F9AE02.roa Signing time: Sun 03 Aug 2025 00:06:23 +0000 ROA not before: Sun 03 Aug 2025 00:06:23 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 138475 IP address blocks: 220.101.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 23:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1525 (0x5f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: Aug 3 00:06:23 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688ea7ff-66fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:c5:a3:9d:47:99:05:37:c8:77:45:95:aa:58: cc:f7:b0:54:fb:46:18:18:fb:6c:07:72:24:44:66: 0f:bf:a3:12:1d:6a:56:d5:06:62:c4:ca:de:3c:79: 40:80:1b:cf:1c:28:a6:4a:10:fd:5b:ec:69:38:49: 84:50:96:5e:31:c6:c5:d6:73:42:24:8f:18:90:22: 7d:12:6f:43:87:ed:97:35:18:d5:35:91:6d:d1:77: ad:8e:85:aa:1c:43:8f:6e:9b:7c:ab:4a:32:6e:7c: cb:17:d1:87:f1:cd:06:95:e1:8a:72:21:98:ed:a6: 4f:d0:77:19:93:68:bb:16:b6:ec:7b:da:8f:d7:d9: bf:d2:66:3d:7f:58:a8:a4:68:32:29:6e:94:19:b7: e3:33:0a:da:5b:71:90:1e:29:ab:21:7b:89:3b:da: 52:48:1c:2e:72:7d:6c:0a:d8:2e:04:c7:13:bc:4c: 57:4c:d1:dd:69:de:c6:2f:29:31:a4:3e:8a:18:ca: fc:dd:86:c4:4e:40:a3:5c:db:5f:55:96:94:fd:a6: c7:ce:57:5e:df:dd:b4:d8:54:36:6d:cc:af:75:25: 0e:6c:55:f6:4e:e4:5e:3c:c6:5e:82:00:00:0d:fc: 11:0d:3f:46:b6:c5:df:72:08:9e:2f:4c:aa:49:2d: 60:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:41:6B:76:7A:DC:77:3B:64:6F:54:C6:AE:E3:FB:BC:38:74:C5:72 X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/7E42E396175111EC8D2A3722C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 220.101.82.0/24 Signature Algorithm: sha256WithRSAEncryption b3:7f:25:4d:eb:99:38:d3:bf:cc:85:05:c0:0c:ab:1e:21:21: 9d:70:a0:53:bd:18:db:3c:b2:5d:5e:9d:b6:52:5c:92:5a:a6: 28:f4:3d:79:9d:46:09:33:d3:d6:cb:1e:50:d8:a5:bb:e6:5b: e5:4e:d1:bb:6c:0e:ff:18:f1:00:c6:9d:12:9b:fe:42:75:55: 11:4b:3a:42:f3:9f:e3:e6:04:c8:04:a3:3d:3c:55:cb:56:7a: 60:de:72:9f:0f:36:60:9b:3b:1e:4e:68:ad:74:78:12:3c:fe: 3a:19:ed:c6:a8:82:05:09:13:ca:87:10:23:30:96:c1:cd:3a: 5b:8f:1b:9a:90:67:1f:de:10:79:cb:09:2e:43:5f:ca:2e:87: d3:74:76:28:f0:7c:16:d4:b3:95:92:a6:55:01:6c:01:f2:0d: bb:44:ef:38:24:e1:c8:d4:8d:88:43:7d:57:33:bf:93:e7:d4: ae:6e:45:f2:c1:8b:a6:39:67:85:28:4e:d8:55:9f:c5:64:b7: 13:c8:1e:bd:b5:da:f1:92:15:01:02:dd:0d:61:11:89:6f:dd: 13:e6:93:a0:62:c2:4c:b7:73:52:c1:69:de:18:dd:40:58:63: 88:ba:2f:07:c9:f9:b8:af:72:c0:d1:bc:ba:9d:52:ac:5d:38: 34:cd:c8:41 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjUwODAzMDAwNjIzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlYTdmZi02NmZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5MWjnUeZBTfId0WVqljM97BU+0YYGPtsB3IkRGYPv6MSHWpW1QZixMrePHlA gBvPHCimShD9W+xpOEmEUJZeMcbF1nNCJI8YkCJ9Em9Dh+2XNRjVNZFt0XetjoWq HEOPbpt8q0oybnzLF9GH8c0GleGKciGY7aZP0HcZk2i7Frbse9qP19m/0mY9f1io pGgyKW6UGbfjMwraW3GQHimrIXuJO9pSSBwucn1sCtguBMcTvExXTNHdad7GLykx pD6KGMr83YbETkCjXNtfVZaU/abHzlde39202FQ2bcyvdSUObFX2TuRePMZeggAA DfwRDT9GtsXfcgieL0yqSS1gbwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNJBa3Z6 3Hc7ZG9Uxq7j+7w4dMVyMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvN0U0MkUzOTYx NzUxMTFFQzhEMkEzNzIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADcZVIwDQYJKoZIhvcNAQELBQADggEBALN/JU3rmTjTv8yF BcAMqx4hIZ1woFO9GNs8sl1enbZSXJJapij0PXmdRgkz09bLHlDYpbvmW+VO0bts Dv8Y8QDGnRKb/kJ1VRFLOkLzn+PmBMgEoz08VctWemDecp8PNmCbOx5OaK10eBI8 /joZ7caoggUJE8qHECMwlsHNOluPG5qQZx/eEHnLCS5DX8ouh9N0dijwfBbUs5WS plUBbAHyDbtE7zgk4cjUjYhDfVczv5Pn1K5uRfLBi6Y5Z4UoTthVn8VktxPIHr21 2vGSFQEC3Q1hEYlv3RPmk6Biwky3c1LBad4Y3UBYY4i6LwfJ+bivcsDRvLqdUqxd ODTNyEE= -----END CERTIFICATE-----Generated at Wed Aug 13 05:54:08 2025 by rpki-client