$ rpki-client -vvf rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/B3501A3838BB11EB9F5B573BC4F9AE02.roa File: B3501A3838BB11EB9F5B573BC4F9AE02.roa (raw, json) Hash identifier: FPx4j1dXBaHascOYpOd8k2oiJWPN4GjsVVNyHaYUFk0= Subject key identifier: 22:7B:07:EA:92:80:98:72:20:BF:56:B6:E6:D5:27:9C:6E:E9:E1:26 Certificate issuer: /CN=A91AABB1/serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806 Certificate serial: 35BC Authority key identifier: EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/B3501A3838BB11EB9F5B573BC4F9AE02.roa Signing time: Wed 04 Jun 2025 15:10:48 +0000 ROA not before: Wed 04 Jun 2025 15:10:48 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 137029 IP address blocks: 114.130.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Jun 2025 14:54:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13756 (0x35bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AABB1, serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806 Validity Not Before: Jun 4 15:10:48 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=684061f8-9ef0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f0:a2:7f:92:87:9e:39:c1:ff:1a:3e:44:94: da:84:95:79:ff:47:6a:99:53:14:85:bc:c9:96:ef: 91:2e:03:04:cf:8a:47:91:65:0d:40:d1:ec:88:36: 08:f6:f9:d6:39:6c:e2:81:3b:02:54:bb:9f:f3:cf: 70:10:e5:a9:cc:72:8f:bd:1f:c1:93:fa:89:81:7e: 16:68:77:40:90:91:89:f5:7a:58:48:7e:42:93:e5: c3:de:b6:5a:1f:ff:a1:6c:88:35:56:30:6b:17:c0: b1:cc:3c:06:f5:dd:20:8b:03:0f:2a:ad:cb:cc:fa: 8b:59:1f:c3:e9:38:0a:25:55:26:22:39:83:bc:e5: 6d:43:74:02:2a:26:e1:62:bb:0e:19:5f:df:8f:3b: 73:ac:62:33:a6:45:26:10:d8:fc:5b:f7:54:90:91: f8:58:57:32:c0:b7:a2:59:5c:d4:d5:1a:ba:fb:87: 4d:8d:84:34:77:ac:7c:d6:f6:c3:71:6c:84:39:08: 60:96:97:84:94:fa:2d:3e:69:d5:f0:cf:74:4d:db: 73:c3:a1:55:5b:9b:39:eb:c2:1f:cf:51:4b:ad:bf: de:0f:3c:7c:11:42:ec:9a:6e:0f:8a:79:2f:c5:b2: 9a:5e:a7:45:d1:c9:a0:b1:6e:54:c2:0f:cb:fa:df: 6f:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:7B:07:EA:92:80:98:72:20:BF:56:B6:E6:D5:27:9C:6E:E9:E1:26 X509v3 Authority Key Identifier: keyid:EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/B3501A3838BB11EB9F5B573BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.130.72.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:30:bc:ca:19:c7:3b:28:b2:1f:27:28:82:93:a6:a6:c8:52: 9d:93:54:d8:56:20:a2:23:e8:4f:7d:b0:d8:9e:f8:9c:10:97: 59:15:27:19:10:2e:ac:d7:02:68:e9:75:26:c0:22:28:91:16: 01:0a:b4:ec:88:ac:2c:9b:c3:dc:2f:0d:53:83:01:ae:e5:54: 0b:71:12:e2:8f:96:06:ee:79:12:c3:da:ac:73:cb:d2:82:1b: ab:f9:14:2c:ba:39:01:da:b1:c5:47:f3:e6:0a:bd:ed:11:f7: c2:cc:f1:f3:89:8f:26:c1:91:8d:03:f1:53:31:2f:cd:dd:67: 23:31:93:85:f6:e3:bf:04:8b:12:c1:18:17:15:5b:18:10:ab: a0:92:c8:4f:87:4a:f7:d6:aa:c0:8d:0f:ed:fe:ea:b0:09:aa: 63:b6:cf:c5:e9:94:59:8f:ec:aa:59:3b:c9:db:68:94:1f:7a: 47:53:80:fe:68:6d:82:83:15:ab:be:75:87:9b:f7:11:28:b3: bb:9f:dc:64:3e:5d:67:6c:82:d2:49:2e:44:0f:ae:ff:33:62: f2:c5:e8:87:7e:02:49:b6:e7:49:79:b4:21:d2:fb:82:8a:cb: 19:b8:ee:2a:84:a7:bf:3c:93:e1:d6:c5:f2:9d:52:43:12:93: fe:43:dc:03 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFCQjExMTAvBgNVBAUTKEVCN0ZFOTg5MkRGMDAwMjU1RkNGM0FDMEIyQjREMTJB RUE2RkY4MDYwHhcNMjUwNjA0MTUxMDQ4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwNjFmOC05ZWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/Cif5KHnjnB/xo+RJTahJV5/0dqmVMUhbzJlu+RLgMEz4pHkWUNQNHsiDYI 9vnWOWzigTsCVLuf889wEOWpzHKPvR/Bk/qJgX4WaHdAkJGJ9XpYSH5Ck+XD3rZa H/+hbIg1VjBrF8CxzDwG9d0giwMPKq3LzPqLWR/D6TgKJVUmIjmDvOVtQ3QCKibh YrsOGV/fjztzrGIzpkUmENj8W/dUkJH4WFcywLeiWVzU1Rq6+4dNjYQ0d6x81vbD cWyEOQhglpeElPotPmnV8M90Tdtzw6FVW5s568Ifz1FLrb/eDzx8EULsmm4Pinkv xbKaXqdF0cmgsW5Uwg/L+t9vSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCJ7B+qS gJhyIL9WtubVJ5xu6eEmMB8GA1UdIwQYMBaAFOt/6Ykt8AAlX886wLK00Srqb/gG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUJCMS84ODc0RTlFODFE OTgxMUUyOTc4OEE5ODIwOEIwMkNEMi82M19waVMzd0FDVmZ6enJBc3JUUkt1cHYt QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzYzX3BpUzN3QUNWZnp6ckFzclRSS3Vwdi1BWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFCQjEvODg3NEU5RTgxRDk4MTFFMjk3ODhBOTgyMDhCMDJDRDIvQjM1MDFBMzgz OEJCMTFFQjlGNUI1NzNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABygkgwDQYJKoZIhvcNAQELBQADggEBAHowvMoZxzsosh8n KIKTpqbIUp2TVNhWIKIj6E99sNie+JwQl1kVJxkQLqzXAmjpdSbAIiiRFgEKtOyI rCybw9wvDVODAa7lVAtxEuKPlgbueRLD2qxzy9KCG6v5FCy6OQHascVH8+YKve0R 98LM8fOJjybBkY0D8VMxL83dZyMxk4X2478EixLBGBcVWxgQq6CSyE+HSvfWqsCN D+3+6rAJqmO2z8XplFmP7KpZO8nbaJQfekdTgP5obYKDFau+dYeb9xEos7uf3GQ+ XWdsgtJJLkQPrv8zYvLF6Id+Akm250l5tCHS+4KKyxm47iqEp788k+HWxfKdUkMS k/5D3AM= -----END CERTIFICATE-----Generated at Sun Jun 22 08:55:21 2025 by rpki-client