$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/35E95924844811EAB301615FC4F9AE02.roa File: 35E95924844811EAB301615FC4F9AE02.roa (raw, json) Hash identifier: LgoFbTvnCYGxtb9l3zKpoNxXJ+KSjB/JRV9oy3sEYvk= Subject key identifier: 6A:57:5D:52:26:83:44:E3:C5:AD:ED:85:8E:CB:F0:FC:8A:58:B7:B7 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 36C6 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/35E95924844811EAB301615FC4F9AE02.roa Signing time: Sat 22 Mar 2025 15:01:15 +0000 ROA not before: Sat 22 Mar 2025 15:01:15 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17539 IP address blocks: 221.120.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 14:51:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14022 (0x36c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832, serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Mar 22 15:01:15 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67ded0bb-7b64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2b:70:61:03:84:e1:53:ae:6a:1f:06:7f:7e: 87:20:83:0d:97:77:5c:87:18:e5:ec:11:81:70:1a: bd:5d:86:55:2e:1b:2f:2d:14:91:2b:71:b3:fd:71: 7d:b1:a6:24:10:11:d6:3d:25:6d:34:dc:de:f5:75: 77:e9:c8:50:05:e8:f6:72:94:c5:38:43:01:b3:88: a4:9f:00:d0:4e:05:47:a0:70:d5:e9:00:ee:a5:15: 24:b7:a2:e9:c7:f5:13:63:dd:ae:bc:53:49:5e:d1: ce:66:7d:34:ef:b4:6e:f3:a5:a4:1f:0b:7a:ba:dc: 36:e5:43:82:3a:37:f8:13:4c:32:0b:96:ab:e5:5f: a6:34:09:40:ce:56:45:cd:8c:6e:48:d3:f5:f2:cc: 35:c0:17:3a:af:a8:1c:a5:e1:48:2f:9f:68:7b:5e: dc:67:ad:0d:c8:8f:44:12:01:a1:6c:2d:0e:e7:2a: f8:9c:b2:eb:61:8f:04:d8:48:e7:d8:ba:21:2b:f1: 16:d6:91:e3:2e:a8:c2:44:bb:de:0f:49:84:f5:1d: 07:a5:8c:b4:fe:17:29:5f:c1:7d:e7:48:df:9d:ea: 76:8e:a0:1f:80:6a:95:b0:0a:32:dd:0c:4b:94:75: 3b:20:92:f8:82:fb:b7:12:c7:6b:4e:33:cc:c4:22: 2e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:57:5D:52:26:83:44:E3:C5:AD:ED:85:8E:CB:F0:FC:8A:58:B7:B7 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/35E95924844811EAB301615FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 221.120.213.0/24 Signature Algorithm: sha256WithRSAEncryption 22:a3:a0:91:41:78:c3:38:c7:58:da:96:f6:83:1b:9e:2f:c9: 75:81:b2:6f:ce:9d:31:8f:56:14:b6:23:0b:15:9a:9d:99:76: 1d:a0:5d:e5:b0:d7:ed:ab:87:d1:9d:b0:24:51:09:29:bd:4d: 7a:0d:66:6e:3a:8d:76:46:a3:70:f5:bd:2f:c4:41:b3:47:2e: f8:01:96:5d:32:4d:d9:ea:2d:22:c8:65:c0:46:36:68:c5:d7: 63:ec:7b:8e:a3:46:3f:97:84:bb:cd:92:be:26:65:c0:1b:c3: 35:a4:27:14:c9:ae:39:d8:7f:3f:46:2a:da:9f:23:fa:35:83: 32:2a:e1:17:15:e5:7e:73:70:f9:82:05:14:f4:77:df:c6:ef: 86:08:eb:40:51:61:80:a1:e1:25:b5:4d:7f:f8:f0:62:e2:a3: e8:8a:09:a3:65:00:77:22:cc:32:df:1c:fa:a4:b2:d5:8f:b4: dd:f4:2a:96:26:08:d9:e8:37:12:5d:ea:06:6e:58:15:9b:db: 3f:7b:a8:4d:96:51:d3:e9:d4:75:67:61:9f:6d:b2:5f:ef:5d: 17:0c:fb:1a:24:fd:c0:c6:44:8b:aa:50:71:d0:c1:46:82:d2: cd:22:4f:92:49:d8:48:29:22:e5:64:3e:25:8b:72:59:79:88: 6c:59:c4:e8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNsYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjUwMzIyMTUwMTE1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2RlZDBiYi03YjY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArStwYQOE4VOuah8Gf36HIIMNl3dchxjl7BGBcBq9XYZVLhsvLRSRK3Gz/XF9 saYkEBHWPSVtNNze9XV36chQBej2cpTFOEMBs4iknwDQTgVHoHDV6QDupRUkt6Lp x/UTY92uvFNJXtHOZn0077Ru86WkHwt6utw25UOCOjf4E0wyC5ar5V+mNAlAzlZF zYxuSNP18sw1wBc6r6gcpeFIL59oe17cZ60NyI9EEgGhbC0O5yr4nLLrYY8E2Ejn 2LohK/EW1pHjLqjCRLveD0mE9R0HpYy0/hcpX8F950jfnep2jqAfgGqVsAoy3QxL lHU7IJL4gvu3EsdrTjPMxCIuGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGpXXVIm g0Tjxa3thY7L8PyKWLe3MB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvMzVFOTU5MjQ4 NDQ4MTFFQUIzMDE2MTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADdeNUwDQYJKoZIhvcNAQELBQADggEBACKjoJFBeMM4x1ja lvaDG54vyXWBsm/OnTGPVhS2IwsVmp2Zdh2gXeWw1+2rh9GdsCRRCSm9TXoNZm46 jXZGo3D1vS/EQbNHLvgBll0yTdnqLSLIZcBGNmjF12Pse46jRj+XhLvNkr4mZcAb wzWkJxTJrjnYfz9GKtqfI/o1gzIq4RcV5X5zcPmCBRT0d9/G74YI60BRYYCh4SW1 TX/48GLio+iKCaNlAHcizDLfHPqkstWPtN30KpYmCNnoNxJd6gZuWBWb2z97qE2W UdPp1HVnYZ9tsl/vXRcM+xok/cDGRIuqUHHQwUaC0s0iT5JJ2EgpIuVkPiWLcll5 iGxZxOg= -----END CERTIFICATE-----Generated at Wed Nov 5 13:33:00 2025 by rpki-client