$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/DA504F0E175911EC87322F85C4F9AE02.roa File: DA504F0E175911EC87322F85C4F9AE02.roa (raw, json) Hash identifier: Q3xsSaWPc4XxcLpd/vlmMg5uD6tU7wAyR+WHYWMx34k= Subject key identifier: C0:68:5C:62:EC:54:F3:2D:75:4D:A8:E7:4A:71:43:5D:D1:2C:56:95 Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 05FD Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/DA504F0E175911EC87322F85C4F9AE02.roa Signing time: Sun 03 Aug 2025 00:06:30 +0000 ROA not before: Sun 03 Aug 2025 00:06:30 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 4804 IP address blocks: 1.44.0.0/21 maxlen: 21 1.44.8.0/21 maxlen: 21 1.44.16.0/21 maxlen: 21 1.44.24.0/21 maxlen: 21 1.44.32.0/21 maxlen: 21 1.44.40.0/21 maxlen: 21 1.44.48.0/21 maxlen: 21 1.44.56.0/21 maxlen: 21 61.88.184.0/24 maxlen: 24 61.88.185.0/24 maxlen: 24 61.88.186.0/24 maxlen: 24 61.88.190.0/24 maxlen: 24 119.225.240.0/21 maxlen: 21 119.225.248.0/21 maxlen: 21 202.139.72.0/22 maxlen: 22 203.2.75.0/24 maxlen: 24 203.10.68.0/24 maxlen: 24 203.202.52.0/24 maxlen: 24 203.202.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1533 (0x5fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: Aug 3 00:06:30 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=688ea806-3786 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:1c:a1:2c:21:28:71:3f:4a:c7:57:4c:e1:ce: 68:b5:38:43:03:09:fc:af:fa:5e:b9:97:d0:9e:e4: 26:cb:5f:4a:f9:62:d4:70:2f:33:5b:5b:ce:b7:a2: 05:0c:22:ab:f1:bf:9c:5d:3d:a2:a3:e3:41:95:3b: 62:64:00:fe:74:5b:62:50:1b:fa:7f:b6:a4:a1:0b: 2f:5b:0e:65:e1:c5:77:24:0b:cc:f3:ee:aa:13:da: 6b:59:86:26:6e:0d:ae:ad:59:25:14:9d:62:c0:b9: 02:cc:e3:46:a6:fc:aa:bd:80:b9:df:c4:19:d0:80: be:02:84:db:38:ad:aa:ec:45:17:b5:76:34:15:f5: af:6f:e7:a5:e0:e8:3a:83:e6:fa:7d:23:81:5e:bd: a9:cd:de:5f:17:60:b8:2c:31:52:6d:4f:8a:35:f7: 4a:aa:35:1f:d0:52:45:b4:17:d5:8b:b6:bc:d3:87: 47:5e:28:6b:96:96:50:a1:d6:b1:02:d2:88:5a:84: cf:e8:80:29:a8:07:d8:ad:4e:af:a7:f1:23:ca:fd: 94:08:a1:97:06:42:f9:f2:3b:d7:2d:86:1b:9c:03: 78:53:f7:c3:b3:e2:d2:9c:46:8a:c3:94:a8:de:48: 95:2c:a6:c9:7a:cd:f4:db:b2:98:46:7c:91:da:30: 02:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:68:5C:62:EC:54:F3:2D:75:4D:A8:E7:4A:71:43:5D:D1:2C:56:95 X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/DA504F0E175911EC87322F85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.44.0.0/18 61.88.184.0-61.88.186.255 61.88.190.0/24 119.225.240.0/20 202.139.72.0/22 203.2.75.0/24 203.10.68.0/24 203.202.52.0/23 Signature Algorithm: sha256WithRSAEncryption 12:e6:56:8a:bc:74:ce:70:55:67:a7:4d:0c:cb:70:0b:ca:bd: 1c:cc:3e:38:58:9d:e3:c9:6e:28:b1:5a:4a:27:b8:c3:43:2a: 63:0d:47:2b:66:03:bd:62:69:bd:a3:6e:b2:25:99:f9:35:7d: 71:0b:85:6b:3a:a3:81:a2:9b:69:d0:f9:cf:67:6c:4c:b0:31: ce:8c:11:c4:21:94:32:44:16:86:be:e3:cb:4b:c6:7b:7a:23: 8b:13:eb:98:5d:23:61:58:d1:aa:d9:bc:38:23:14:7b:53:fe: 4d:6e:b4:2e:25:83:f4:bc:a8:51:86:98:de:50:09:f1:09:52: f8:ca:06:9c:76:27:e7:45:e5:ea:61:69:b0:3e:12:77:5c:04: e3:c5:bd:c0:87:5a:57:93:b8:4e:79:d7:c8:d4:80:c9:2e:19: 35:92:88:3b:c1:df:df:55:4e:bc:56:8a:86:5e:13:ae:48:c8: 96:1c:2b:be:de:2b:56:bf:af:e6:1f:15:32:a8:6e:aa:f7:50: b7:55:01:65:b0:b6:4e:20:90:03:e6:eb:c2:74:93:e2:cd:24: f0:fc:92:fd:7c:7d:fb:dc:35:76:ac:5a:64:e3:b7:f9:4c:5f: 12:20:ac:e6:b2:57:ed:1c:90:fd:a4:9a:0c:97:a0:4f:f4:76: cf:60:15:b0 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgICBf0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjUwODAzMDAwNjMwWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhlYTgwNi0zNzg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmxyhLCEocT9Kx1dM4c5otThDAwn8r/peuZfQnuQmy19K+WLUcC8zW1vOt6IF DCKr8b+cXT2io+NBlTtiZAD+dFtiUBv6f7akoQsvWw5l4cV3JAvM8+6qE9prWYYm bg2urVklFJ1iwLkCzONGpvyqvYC538QZ0IC+AoTbOK2q7EUXtXY0FfWvb+el4Og6 g+b6fSOBXr2pzd5fF2C4LDFSbU+KNfdKqjUf0FJFtBfVi7a804dHXihrlpZQodax AtKIWoTP6IApqAfYrU6vp/Ejyv2UCKGXBkL58jvXLYYbnAN4U/fDs+LSnEaKw5So 3kiVLKbJes3027KYRnyR2jACrwIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFMBoXGLs VPMtdU2o50pxQ13RLFaVMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvREE1MDRGMEUx NzU5MTFFQzg3MzIyRjg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUQYIKwYBBQUHAQcBAf8E QjBAMD4EAgABMDgDBAYBLAAwDAMEAz1YuAMEAD1YugMEAD1YvgMEBHfh8AMEAsqL SAMEAMsCSwMEAMsKRAMEAcvKNDANBgkqhkiG9w0BAQsFAAOCAQEAEuZWirx0znBV Z6dNDMtwC8q9HMw+OFid48luKLFaSie4w0MqYw1HK2YDvWJpvaNusiWZ+TV9cQuF azqjgaKbadD5z2dsTLAxzowRxCGUMkQWhr7jy0vGe3ojixPrmF0jYVjRqtm8OCMU e1P+TW60LiWD9LyoUYaY3lAJ8QlS+MoGnHYn50Xl6mFpsD4Sd1wE48W9wIdaV5O4 TnnXyNSAyS4ZNZKIO8Hf31VOvFaKhl4TrkjIlhwrvt4rVr+v5h8VMqhuqvdQt1UB ZbC2TiCQA+brwnST4s0k8PyS/Xx9+9w1dqxaZOO3+UxfEiCs5rJX7RyQ/aSaDJeg T/R2z2AVsA== -----END CERTIFICATE-----Generated at Sun Aug 10 21:12:48 2025 by rpki-client