$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6F56/8812FBE46E8811F0AD5D1A12C4F9AE02/482874AE710E11F0B4CBA430C4F9AE02.roa File: 482874AE710E11F0B4CBA430C4F9AE02.roa (raw, json) Hash identifier: ZwA3RLDFZuJuq+OnGHO5YHGm+YL4BWQ+qyec67LETqc= Subject key identifier: 0F:73:07:51:49:01:81:18:AB:91:BA:FA:25:A0:D1:E4:43:D8:16:AF Certificate issuer: /CN=A91A6F56/serialNumber=37A65FDB40E8C659B17E5000FA89A65680976D5B Certificate serial: 08 Authority key identifier: 37:A6:5F:DB:40:E8:C6:59:B1:7E:50:00:FA:89:A6:56:80:97:6D:5B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/N6Zf20DoxlmxflAA-ommVoCXbVs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6F56/8812FBE46E8811F0AD5D1A12C4F9AE02/482874AE710E11F0B4CBA430C4F9AE02.roa Signing time: Mon 04 Aug 2025 08:42:34 +0000 ROA not before: Mon 04 Aug 2025 08:42:34 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 153529 IP address blocks: 161.248.214.0/24 maxlen: 24 161.248.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6F56/8812FBE46E8811F0AD5D1A12C4F9AE02/N6Zf20DoxlmxflAA-ommVoCXbVs.crl rsync://rpki.apnic.net/member_repository/A91A6F56/8812FBE46E8811F0AD5D1A12C4F9AE02/N6Zf20DoxlmxflAA-ommVoCXbVs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/N6Zf20DoxlmxflAA-ommVoCXbVs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6F56, serialNumber=37A65FDB40E8C659B17E5000FA89A65680976D5B Validity Not Before: Aug 4 08:42:34 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6890727a-6671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:60:cc:29:91:db:98:88:1c:57:2d:bf:0e:4a: 38:38:18:ca:55:c2:50:dd:c9:32:02:47:e3:e1:63: be:b9:45:83:bc:59:73:87:29:fb:35:d6:82:79:46: d0:e3:78:c8:df:6b:98:e9:78:6b:c0:8a:5b:4b:00: 1d:93:58:78:1a:95:2f:1e:9c:60:80:2b:a5:4b:05: 00:ed:37:46:11:37:10:7c:e6:bd:7b:aa:80:a5:03: 83:db:62:22:09:8d:f3:55:53:d8:3c:ac:2e:e5:78: 3f:58:b8:85:d8:b8:32:76:95:5c:4b:d5:49:82:dd: 8b:28:09:6b:a1:d5:57:d6:20:40:27:25:90:67:f4: 6f:9f:3a:e0:8f:27:97:cc:2f:c8:e3:87:c1:f1:1e: 09:a5:a0:ff:82:2a:96:36:a1:fc:d7:cc:0a:08:1c: 2d:51:6d:f8:6b:a8:45:69:8f:bd:7b:1f:1d:07:e0: 50:3b:52:a7:63:9a:b9:16:7f:ba:48:82:c2:c4:c1: 5d:16:02:e4:71:0f:6e:8e:fc:20:e7:7e:63:e5:55: ce:ff:f0:28:c6:81:da:fa:04:87:bf:26:e3:ef:e7: c4:d4:22:5f:ce:df:6c:fc:c4:d9:26:ca:55:78:99: 3d:57:ae:83:cc:7d:57:d1:1c:4c:63:05:bf:9f:c6: 77:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:73:07:51:49:01:81:18:AB:91:BA:FA:25:A0:D1:E4:43:D8:16:AF X509v3 Authority Key Identifier: keyid:37:A6:5F:DB:40:E8:C6:59:B1:7E:50:00:FA:89:A6:56:80:97:6D:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6F56/8812FBE46E8811F0AD5D1A12C4F9AE02/N6Zf20DoxlmxflAA-ommVoCXbVs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/N6Zf20DoxlmxflAA-ommVoCXbVs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6F56/8812FBE46E8811F0AD5D1A12C4F9AE02/482874AE710E11F0B4CBA430C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.214.0/23 Signature Algorithm: sha256WithRSAEncryption ad:f6:00:8b:f5:79:b8:6d:f1:96:8f:f2:0d:be:d7:df:e4:bb: 83:9f:72:fd:e5:ac:c7:9d:4f:61:90:c6:5b:7d:a8:34:f9:73: 2d:ca:56:9c:87:62:fb:04:7a:5f:dc:20:6a:f8:ea:1d:3a:bd: 85:ba:4f:ae:aa:4b:01:31:40:f1:4a:84:bb:eb:59:e6:64:66: d7:ab:af:e5:44:3b:d6:9d:32:45:aa:f9:04:2c:9a:4e:97:d4: d2:e9:6a:a4:20:db:1f:08:1f:b9:30:11:dd:7a:70:5e:0a:f0: 9c:c8:76:ff:63:c4:d1:66:82:e0:e7:f7:d9:d1:f9:fe:1b:04: 09:0b:36:4f:db:94:ee:12:1c:36:5f:25:9d:c0:3f:78:c2:9f: c3:47:35:9c:a4:d9:b6:61:de:84:11:09:7f:82:c3:d1:98:fa: 1a:f2:79:43:7f:d4:ca:43:d5:5d:5b:b3:ff:00:32:8c:ed:1b: 8e:9e:89:1d:2d:07:23:40:51:28:da:a0:ba:0a:3f:57:0d:d2: ee:55:71:f1:61:78:e8:e6:a5:dd:3b:20:76:9e:00:69:68:cc: af:b3:f7:87:6b:80:a0:b2:83:f7:ff:8e:1c:5c:48:04:a7:f8: 75:4d:1a:dc:73:78:8c:f9:f2:32:a9:92:15:ec:42:85:44:31: da:7f:fc:d3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NkY1NjExMC8GA1UEBRMoMzdBNjVGREI0MEU4QzY1OUIxN0U1MDAwRkE4OUE2NTY4 MDk3NkQ1QjAeFw0yNTA4MDQwODQyMzRaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OTA3MjdhLTY2NzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFYMwpkduYiBxXLb8OSjg4GMpVwlDdyTICR+PhY765RYO8WXOHKfs11oJ5RtDj eMjfa5jpeGvAiltLAB2TWHgalS8enGCAK6VLBQDtN0YRNxB85r17qoClA4PbYiIJ jfNVU9g8rC7leD9YuIXYuDJ2lVxL1UmC3YsoCWuh1VfWIEAnJZBn9G+fOuCPJ5fM L8jjh8HxHgmloP+CKpY2ofzXzAoIHC1RbfhrqEVpj717Hx0H4FA7UqdjmrkWf7pI gsLEwV0WAuRxD26O/CDnfmPlVc7/8CjGgdr6BIe/JuPv58TUIl/O32z8xNkmylV4 mT1XroPMfVfRHExjBb+fxnd1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUD3MHUUkB gRirkbr6JaDR5EPYFq8wHwYDVR0jBBgwFoAUN6Zf20DoxlmxflAA+ommVoCXbVsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE2RjU2Lzg4MTJGQkU0NkU4 ODExRjBBRDVEMUExMkM0RjlBRTAyL042WmYyMERveGxteGZsQUEtb21tVm9DWGJW cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvTjZaZjIwRG94bG14ZmxBQS1vbW1Wb0NYYlZzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NkY1Ni84ODEyRkJFNDZFODgxMUYwQUQ1RDFBMTJDNEY5QUUwMi80ODI4NzRBRTcx MEUxMUYwQjRDQkE0MzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaH41jANBgkqhkiG9w0BAQsFAAOCAQEArfYAi/V5uG3xlo/y Db7X3+S7g59y/eWsx51PYZDGW32oNPlzLcpWnIdi+wR6X9wgavjqHTq9hbpPrqpL ATFA8UqEu+tZ5mRm16uv5UQ71p0yRar5BCyaTpfU0ulqpCDbHwgfuTAR3XpwXgrw nMh2/2PE0WaC4Of32dH5/hsECQs2T9uU7hIcNl8lncA/eMKfw0c1nKTZtmHehBEJ f4LD0Zj6GvJ5Q3/UykPVXVuz/wAyjO0bjp6JHS0HI0BRKNqgugo/Vw3S7lVx8WF4 6Oal3Tsgdp4AaWjMr7P3h2uAoLKD9/+OHFxIBKf4dU0a3HN4jPnyMqmSFexChUQx 2n/80w== -----END CERTIFICATE-----Generated at Sun Aug 10 18:48:03 2025 by rpki-client