$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/0C2077B6D1B511EF944F205DC4F9AE02.roa File: 0C2077B6D1B511EF944F205DC4F9AE02.roa (raw, json) Hash identifier: QhqWdrTMm6OadIcKEi68Y4p+cFPG64Ol8nvunUMPUXM= Subject key identifier: C3:7B:47:05:EA:7C:8E:3B:9A:F7:4C:01:46:78:CF:AB:C3:71:09:9A Certificate issuer: /CN=A91A9083/serialNumber=E8CF22A08E4391CAD150FA31B44DC93C8AB825EA Certificate serial: 4D Authority key identifier: E8:CF:22:A0:8E:43:91:CA:D1:50:FA:31:B4:4D:C9:3C:8A:B8:25:EA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/0C2077B6D1B511EF944F205DC4F9AE02.roa Signing time: Mon 19 May 2025 06:34:16 +0000 ROA not before: Mon 19 May 2025 06:34:16 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 134351 IP address blocks: 23.81.40.0/21 maxlen: 21 23.106.224.0/21 maxlen: 21 142.91.104.0/23 maxlen: 23 173.234.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.crl rsync://rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 06:09:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77 (0x4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9083, serialNumber=E8CF22A08E4391CAD150FA31B44DC93C8AB825EA Validity Not Before: May 19 06:34:16 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=682ad0e8-c219 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ca:5a:7e:85:93:8b:44:9e:e7:55:b2:f1:8e: 51:ed:85:82:31:d9:2e:e5:97:90:b6:3a:8a:ec:81: 1b:b1:b3:ee:42:76:b0:13:1c:2a:25:3d:36:00:17: 94:fc:ee:40:bf:d0:43:4a:6b:a3:63:9a:1a:b2:29: 7d:0e:ad:ec:9d:00:61:f9:f3:9f:44:fe:9e:a8:37: 66:47:97:27:d4:d7:f4:6b:68:da:b3:17:ca:c7:b5: 83:fd:37:d6:e4:1b:53:7a:03:48:9f:7d:be:16:74: 19:1b:af:81:eb:cc:3a:fe:58:35:83:da:c8:ae:52: 42:11:a1:cf:4e:2d:92:fb:52:b3:82:a5:7e:4c:a0: 29:56:e9:e9:a3:a5:ad:07:c0:3f:0b:b9:70:56:ef: 5a:37:4d:74:f3:c1:5b:8b:56:0b:22:de:ce:6f:ce: bd:d1:71:f1:7d:c6:ae:49:23:5e:ae:53:32:f1:d7: b7:10:45:32:1b:8e:cb:62:27:03:a7:05:a1:eb:64: 46:d6:97:e4:56:6d:98:23:ee:57:b2:32:75:eb:c6: 32:2a:7b:f8:e5:a4:b0:19:37:fb:92:c4:3f:db:3a: 5f:f0:82:f6:37:52:4a:fa:9e:89:31:83:3e:1e:27: e1:ea:4e:6b:d9:09:c8:b5:fd:57:45:8f:5d:37:99: 5a:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:7B:47:05:EA:7C:8E:3B:9A:F7:4C:01:46:78:CF:AB:C3:71:09:9A X509v3 Authority Key Identifier: keyid:E8:CF:22:A0:8E:43:91:CA:D1:50:FA:31:B4:4D:C9:3C:8A:B8:25:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6M8ioI5DkcrRUPoxtE3JPIq4Jeo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9083/C06F2E42D1B011EF8833C933C4F9AE02/0C2077B6D1B511EF944F205DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 23.81.40.0/21 23.106.224.0/21 142.91.104.0/23 173.234.64.0/22 Signature Algorithm: sha256WithRSAEncryption 51:da:af:ce:33:b7:4f:0a:67:5b:fc:04:7e:a6:e3:1b:7c:b6: dd:46:17:cd:da:f3:17:6d:7c:c7:a5:90:78:03:65:4c:2c:02: 3a:e3:ea:a0:b7:91:e6:ee:3b:c9:35:0a:83:23:37:f9:32:0e: 84:bc:48:dd:a7:ca:b1:f0:28:76:cc:1b:1d:14:9b:4d:79:9c: 95:f5:b2:d4:08:85:c6:85:71:ed:98:1c:cb:d6:a1:28:80:08: ae:89:43:45:01:3f:11:d4:94:c8:0a:80:f6:be:9e:14:6f:7c: 85:d0:80:16:5c:a6:94:76:4d:b7:8f:38:76:b4:0c:8a:fc:e5: cf:40:97:19:4a:2f:ac:93:90:53:29:0d:57:2d:55:5a:dc:a9: c6:89:7f:1c:bc:13:b6:75:6a:b1:41:9a:3a:2d:53:a1:cb:9b: 80:45:44:d8:8c:62:ce:b8:6c:ae:56:4b:62:3e:3a:b7:6d:7c: 33:68:4b:f7:ed:d9:0b:d6:75:ed:c3:6f:bd:f8:e4:a5:42:16: 91:b2:0c:aa:68:ca:8b:57:45:72:3a:0c:b9:bd:69:0b:d6:9a: 4a:c1:09:04:6c:d9:6d:dc:9b:64:bd:e2:4f:d1:f2:3f:8b:d5: a5:0b:a9:c3:b5:9b:a5:ff:94:d4:09:3a:7c:a8:80:d9:93:a0: 4c:87:de:e1 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgIBTTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB OTA4MzExMC8GA1UEBRMoRThDRjIyQTA4RTQzOTFDQUQxNTBGQTMxQjQ0REM5M0M4 QUI4MjVFQTAeFw0yNTA1MTkwNjM0MTZaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MmFkMGU4LWMyMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEylp+hZOLRJ7nVbLxjlHthYIx2S7ll5C2OorsgRuxs+5CdrATHColPTYAF5T8 7kC/0ENKa6NjmhqyKX0OreydAGH5859E/p6oN2ZHlyfU1/RraNqzF8rHtYP9N9bk G1N6A0iffb4WdBkbr4HrzDr+WDWD2siuUkIRoc9OLZL7UrOCpX5MoClW6emjpa0H wD8LuXBW71o3TXTzwVuLVgsi3s5vzr3RcfF9xq5JI16uUzLx17cQRTIbjstiJwOn BaHrZEbWl+RWbZgj7leyMnXrxjIqe/jlpLAZN/uSxD/bOl/wgvY3Ukr6nokxgz4e J+HqTmvZCci1/VdFj103mVrhAgMBAAGjggKnMIICozAdBgNVHQ4EFgQUw3tHBep8 jjua90wBRnjPq8NxCZowHwYDVR0jBBgwFoAU6M8ioI5DkcrRUPoxtE3JPIq4Jeow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE5MDgzL0MwNkYyRTQyRDFC MDExRUY4ODMzQzkzM0M0RjlBRTAyLzZNOGlvSTVEa2NyUlVQb3h0RTNKUElxNEpl by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNk04aW9JNURrY3JSVVBveHRFM0pQSXE0SmVvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB OTA4My9DMDZGMkU0MkQxQjAxMUVGODgzM0M5MzNDNEY5QUUwMi8wQzIwNzdCNkQx QjUxMUVGOTQ0RjIwNURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAxBggrBgEFBQcBBwEB/wQi MCAwHgQCAAEwGAMEAxdRKAMEAxdq4AMEAY5baAMEAq3qQDANBgkqhkiG9w0BAQsF AAOCAQEAUdqvzjO3TwpnW/wEfqbjG3y23UYXzdrzF218x6WQeANlTCwCOuPqoLeR 5u47yTUKgyM3+TIOhLxI3afKsfAodswbHRSbTXmclfWy1AiFxoVx7Zgcy9ahKIAI rolDRQE/EdSUyAqA9r6eFG98hdCAFlymlHZNt484drQMivzlz0CXGUovrJOQUykN Vy1VWtypxol/HLwTtnVqsUGaOi1TocubgEVE2IxizrhsrlZLYj46t218M2hL9+3Z C9Z17cNvvfjkpUIWkbIMqmjKi1dFcjoMub1pC9aaSsEJBGzZbdybZL3iT9HyP4vV pQupw7Wbpf+U1Ak6fKiA2ZOgTIfe4Q== -----END CERTIFICATE-----Generated at Wed Jun 18 13:53:39 2025 by rpki-client