$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/13C828C62D8911EBA7D22C3EC4F9AE02.roa File: 13C828C62D8911EBA7D22C3EC4F9AE02.roa (raw, json) Hash identifier: twGH4Ti0Hxo3XFvPXLG4LeJ5bIvmDJLFNJkw3EGUZio= Subject key identifier: 47:FD:6A:46:FC:85:A2:6F:41:E8:58:E5:4D:AA:75:EA:6D:2A:83:88 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 36BE Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/13C828C62D8911EBA7D22C3EC4F9AE02.roa Signing time: Sat 22 Mar 2025 15:01:07 +0000 ROA not before: Sat 22 Mar 2025 15:01:07 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 141031 IP address blocks: 39.34.164.0/24 maxlen: 24 39.34.165.0/24 maxlen: 24 39.34.166.0/24 maxlen: 24 39.34.167.0/24 maxlen: 24 39.34.168.0/21 maxlen: 24 39.34.184.0/21 maxlen: 24 59.103.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14014 (0x36be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Mar 22 15:01:07 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ded0b2-8af1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:3c:0e:b7:c5:11:50:ab:85:05:6b:40:f0:60: 8e:ee:c1:5e:f9:68:5e:35:51:74:bd:8e:1a:36:b7: 9c:3f:80:10:22:42:9c:c2:1d:61:e1:ef:97:8d:aa: 8a:8b:ea:55:5f:2a:aa:e4:a3:2d:91:24:d0:71:44: 2f:84:71:f8:3d:59:cd:c3:d3:b8:2c:f6:17:a2:31: 9d:e2:de:0c:42:e2:75:b0:8c:e6:c9:91:89:47:a9: 63:2a:46:b4:b9:01:5e:19:44:0e:55:ea:15:d2:4f: 6e:ee:5d:00:78:7e:16:b6:39:46:fd:1a:a2:8e:90: 7b:8b:bc:81:e5:34:c5:01:f3:b6:77:5d:87:f6:00: cf:f4:ae:62:94:39:b5:29:00:ec:b9:4e:21:06:62: 0b:14:6d:e8:7f:9c:74:4f:03:dc:87:dc:c5:f6:88: 9d:87:0b:2b:ad:15:dc:af:ba:1c:46:6e:34:44:b9: 3c:61:74:f0:f3:52:6c:26:8c:79:07:20:a2:a1:61: b9:a1:89:16:bd:82:bf:a4:4d:40:78:a7:7f:85:3d: cf:19:d0:92:42:3e:73:a6:32:4c:3e:7b:1c:4a:0d: 02:d1:23:ff:e7:d7:63:87:e0:34:52:ee:e0:c5:fa: 3c:26:57:e8:28:87:94:c5:44:cc:9c:42:4c:6e:db: e4:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:FD:6A:46:FC:85:A2:6F:41:E8:58:E5:4D:AA:75:EA:6D:2A:83:88 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/13C828C62D8911EBA7D22C3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 39.34.164.0-39.34.175.255 39.34.184.0/21 59.103.208.0/20 Signature Algorithm: sha256WithRSAEncryption 4f:18:5e:27:93:26:e3:4a:36:76:03:8b:df:3c:d2:82:59:0d: 66:dc:11:53:8f:d7:93:92:13:fe:4c:fe:29:bc:c3:3b:4f:a1: 2a:22:13:94:01:0b:f7:9d:05:96:3b:85:b5:8f:c3:db:23:0e: bd:89:55:33:84:e0:0d:d3:d3:d7:19:71:6f:ee:60:5b:29:3a: d6:32:da:56:31:d8:31:97:11:68:0c:89:5c:b8:b5:14:a3:55: 8e:df:27:01:b8:9b:f6:ab:d2:bc:85:5e:d5:6b:f4:5b:1f:bb: 3a:9e:51:f9:87:2f:d8:6e:80:d1:95:b2:13:ff:87:d3:7f:c9: 94:84:e2:ef:1d:57:86:5b:da:a2:fc:10:eb:28:6c:ac:92:a1: ac:43:2c:7c:50:a5:7a:34:0b:55:14:c9:a5:c1:38:d4:7f:67: 13:48:fc:b1:05:6e:2e:aa:f7:18:72:84:7a:1e:5b:07:e5:2d: cd:22:e0:02:df:69:d1:76:21:b1:84:8f:4d:ec:a1:18:53:8b: 3a:2f:cb:3e:52:57:45:66:24:2b:31:c4:4a:5a:cd:ed:f6:b0: fb:01:ca:57:05:e6:6a:b2:64:bc:40:f2:8d:39:a6:12:a9:3f: ec:1f:c1:dd:c4:b8:e9:21:37:ca:97:45:8a:88:22:68:5d:a2: b5:65:e1:2b -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICNr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzIyMTUwMTA3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RlZDBiMi04YWYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsjwOt8URUKuFBWtA8GCO7sFe+WheNVF0vY4aNrecP4AQIkKcwh1h4e+XjaqK i+pVXyqq5KMtkSTQcUQvhHH4PVnNw9O4LPYXojGd4t4MQuJ1sIzmyZGJR6ljKka0 uQFeGUQOVeoV0k9u7l0AeH4WtjlG/RqijpB7i7yB5TTFAfO2d12H9gDP9K5ilDm1 KQDsuU4hBmILFG3of5x0TwPch9zF9oidhwsrrRXcr7ocRm40RLk8YXTw81JsJox5 ByCioWG5oYkWvYK/pE1AeKd/hT3PGdCSQj5zpjJMPnscSg0C0SP/59djh+A0Uu7g xfo8JlfoKIeUxUTMnEJMbtvkbwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFEf9akb8 haJvQehY5U2qdeptKoOIMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvMTNDODI4QzYy RDg5MTFFQkE3RDIyQzNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAicipAMEBCcioAMEAyciuAMEBDtn0DANBgkqhkiG9w0B AQsFAAOCAQEATxheJ5Mm40o2dgOL3zzSglkNZtwRU4/Xk5IT/kz+KbzDO0+hKiIT lAEL950FljuFtY/D2yMOvYlVM4TgDdPT1xlxb+5gWyk61jLaVjHYMZcRaAyJXLi1 FKNVjt8nAbib9qvSvIVe1Wv0Wx+7Op5R+Ycv2G6A0ZWyE/+H03/JlITi7x1Xhlva ovwQ6yhsrJKhrEMsfFClejQLVRTJpcE41H9nE0j8sQVuLqr3GHKEeh5bB+UtzSLg At9p0XYhsYSPTeyhGFOLOi/LPlJXRWYkKzHESlrN7faw+wHKVwXmarJkvEDyjTmm Eqk/7B/B3cS46SE3ypdFiogiaF2itWXhKw== -----END CERTIFICATE-----Generated at Wed Nov 5 10:07:47 2025 by rpki-client