$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/D97BFEC0175911EC87322F85C4F9AE02.roa File: D97BFEC0175911EC87322F85C4F9AE02.roa (raw, json) Hash identifier: FivViNGSTU96covzVM6f/dErai70JTFHMUYNfvRAWrE= Subject key identifier: 2A:8C:D7:68:48:F5:CD:26:EF:8B:CD:AD:70:01:EE:43:33:36:14:45 Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 05F1 Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/D97BFEC0175911EC87322F85C4F9AE02.roa Signing time: Sun 03 Aug 2025 00:06:20 +0000 ROA not before: Sun 03 Aug 2025 00:06:20 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 132581 IP address blocks: 119.225.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 19 Aug 2025 23:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1521 (0x5f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: Aug 3 00:06:20 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688ea7fc-6d83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4b:6c:33:1d:66:29:92:33:1e:3a:67:00:29: 70:59:6a:33:58:98:34:1e:03:04:3b:b6:61:12:15: 4c:23:1e:44:29:f2:65:a5:0d:0e:c7:f5:e7:9b:d4: 58:b4:3a:d3:af:d5:cc:c5:65:f3:97:22:5a:02:20: 27:1d:47:fd:a6:64:8e:99:34:bb:eb:aa:19:9e:5a: 0c:b6:89:b1:7e:96:f8:77:7c:c9:83:05:7d:82:fb: e6:ee:5e:1c:6d:71:05:33:b7:89:71:92:5a:b3:93: 45:d7:81:fe:df:5b:62:59:01:df:2c:c9:84:38:84: 2a:c2:c9:8e:ad:1f:46:f4:cb:ee:fc:7d:d8:47:45: ae:ea:39:db:7e:d7:79:0c:30:c5:e5:e2:d7:a3:3c: 30:65:27:2a:77:70:b1:56:5a:e6:74:4d:c0:27:12: e8:27:89:9d:19:8e:9e:93:f7:74:49:85:62:f5:b3: a3:c6:f5:c2:06:ee:6b:3a:2b:74:08:13:a6:32:b8: 64:16:4d:4f:d5:b8:8c:9e:2c:f9:d4:68:dd:44:2d: da:1c:d5:45:fa:08:a1:e7:70:f3:f0:a8:f2:9d:76: 71:75:13:2c:e8:d8:eb:48:63:86:28:0c:65:6b:2b: fd:e3:88:f8:8d:87:9f:28:8a:83:1e:0c:59:6a:a1: b6:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:8C:D7:68:48:F5:CD:26:EF:8B:CD:AD:70:01:EE:43:33:36:14:45 X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/D97BFEC0175911EC87322F85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.225.129.0/24 Signature Algorithm: sha256WithRSAEncryption c1:88:45:37:48:6a:b0:14:56:c4:4c:87:da:79:95:f8:fc:c4: 82:dd:6d:44:60:f8:03:e1:3d:93:09:c6:20:9a:3a:b1:68:7c: d7:47:98:a9:fd:96:be:d3:6f:f9:ce:a2:b8:3f:7c:de:b7:46: ea:98:64:ac:5e:39:bf:3c:69:4c:67:3a:eb:7b:a1:92:d4:aa: 00:8a:e9:f8:55:aa:5e:eb:64:1a:2f:55:49:bd:69:d7:0d:dc: 00:e8:90:94:0a:93:ed:86:1a:05:53:5b:d8:1d:35:0f:33:f0: db:cc:c3:d2:9f:69:5e:fe:74:8f:b1:49:6c:d4:8e:d1:0b:bc: c1:c2:d2:66:07:39:44:7e:eb:6b:fe:47:11:0c:53:a6:66:e7: 72:bc:fe:81:f6:6d:85:59:34:8b:cf:06:0f:c9:db:02:ce:a8: 1e:47:62:8f:52:b8:e5:d9:2c:f0:2d:e7:d6:2b:a0:a2:a7:e8: b7:7f:64:38:2c:74:e8:a3:d7:e1:ec:12:69:b3:f0:70:58:d0: 80:0a:ae:55:be:7a:06:6d:81:5c:07:b5:f9:2e:4e:f1:52:9d: a4:b4:0c:be:f6:e9:dc:a0:51:d6:ab:22:19:d9:ff:a0:5c:dd: 57:71:73:2a:93:21:80:29:c2:e7:ca:e4:b3:82:34:0c:fb:1d: c3:df:ec:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBfEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjUwODAzMDAwNjIwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlYTdmYy02ZDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUtsMx1mKZIzHjpnAClwWWozWJg0HgMEO7ZhEhVMIx5EKfJlpQ0Ox/Xnm9RY tDrTr9XMxWXzlyJaAiAnHUf9pmSOmTS766oZnloMtomxfpb4d3zJgwV9gvvm7l4c bXEFM7eJcZJas5NF14H+31tiWQHfLMmEOIQqwsmOrR9G9Mvu/H3YR0Wu6jnbftd5 DDDF5eLXozwwZScqd3CxVlrmdE3AJxLoJ4mdGY6ek/d0SYVi9bOjxvXCBu5rOit0 CBOmMrhkFk1P1biMniz51GjdRC3aHNVF+gih53Dz8KjynXZxdRMs6NjrSGOGKAxl ayv944j4jYefKIqDHgxZaqG21QIDAQABo4IClTCCApEwHQYDVR0OBBYEFCqM12hI 9c0m74vNrXAB7kMzNhRFMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvRDk3QkZFQzAx NzU5MTFFQzg3MzIyRjg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB34YEwDQYJKoZIhvcNAQELBQADggEBAMGIRTdIarAUVsRM h9p5lfj8xILdbURg+APhPZMJxiCaOrFofNdHmKn9lr7Tb/nOorg/fN63RuqYZKxe Ob88aUxnOut7oZLUqgCK6fhVql7rZBovVUm9adcN3ADokJQKk+2GGgVTW9gdNQ8z 8NvMw9KfaV7+dI+xSWzUjtELvMHC0mYHOUR+62v+RxEMU6Zm53K8/oH2bYVZNIvP Bg/J2wLOqB5HYo9SuOXZLPAt59YroKKn6Ld/ZDgsdOij1+HsEmmz8HBY0IAKrlW+ egZtgVwHtfkuTvFSnaS0DL726dygUdarIhnZ/6Bc3VdxcyqTIYApwufK5LOCNAz7 HcPf7HM= -----END CERTIFICATE-----Generated at Wed Aug 13 05:55:20 2025 by rpki-client