$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/1A704D8CADB511EBB5CFE734C4F9AE02.roa File: 1A704D8CADB511EBB5CFE734C4F9AE02.roa (raw, json) Hash identifier: vcP/S0izUQbA7Z/0jbMqfJjGpHZIaNp2jddGsZhjHPI= Subject key identifier: 59:6A:41:8F:86:D8:8F:D0:FE:68:21:8F:24:7D:29:50:93:30:15:45 Certificate issuer: /CN=A91AB74D/serialNumber=3AF09D28CA487A9326631A6BE9BD9BDBAA18DA75 Certificate serial: 060B Authority key identifier: 3A:F0:9D:28:CA:48:7A:93:26:63:1A:6B:E9:BD:9B:DB:AA:18:DA:75 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OvCdKMpIepMmYxpr6b2b26oY2nU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/1A704D8CADB511EBB5CFE734C4F9AE02.roa Signing time: Fri 16 May 2025 23:32:46 +0000 ROA not before: Fri 16 May 2025 23:32:46 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 142066 IP address blocks: 143.92.102.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.crl rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OvCdKMpIepMmYxpr6b2b26oY2nU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 22:29:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1547 (0x60b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D, serialNumber=3AF09D28CA487A9326631A6BE9BD9BDBAA18DA75 Validity Not Before: May 16 23:32:46 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6827cb1e-930b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c7:a2:47:da:6e:43:e1:af:7f:7c:1a:48:e4: c4:10:7c:0f:c0:d7:7d:c2:f8:b6:c0:ed:ce:37:e6: e5:e0:ea:03:75:0d:8a:16:d9:37:31:75:e1:fa:73: 7c:bc:4d:27:23:b3:78:0e:fa:ef:5f:f4:88:c2:7b: c3:f2:9a:ad:39:13:97:73:9a:fa:b2:cb:30:26:c3: 8c:84:e3:77:09:6e:0d:a2:6b:3e:92:5a:d4:f9:15: bb:0b:51:70:fe:71:07:94:5b:49:2d:25:06:e6:f8: 2c:64:72:f3:84:80:b2:99:11:06:44:c8:8d:9e:7b: c4:8a:03:46:b4:50:df:3b:5a:07:c7:90:77:09:4d: 33:19:f5:39:a8:36:cd:9a:0f:b7:31:93:7d:b1:2b: c8:3a:16:dd:5a:42:63:05:0a:87:c2:73:d7:ec:87: b6:1b:0f:cb:c8:8b:ff:77:fd:1e:92:9b:42:2d:f6: 86:cd:96:6b:3b:cf:01:dc:5c:4d:99:ca:bb:8a:3d: fc:45:b5:6a:bf:14:f3:bc:5a:17:a5:56:d7:78:1c: c4:97:3a:78:03:15:e3:21:66:85:4b:42:cd:37:bb: c1:b9:b1:c8:1f:21:bc:83:f4:a7:07:0e:e1:af:38: cb:75:e4:06:a7:e5:2d:d1:65:dc:23:b5:f1:ed:88: fd:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:6A:41:8F:86:D8:8F:D0:FE:68:21:8F:24:7D:29:50:93:30:15:45 X509v3 Authority Key Identifier: keyid:3A:F0:9D:28:CA:48:7A:93:26:63:1A:6B:E9:BD:9B:DB:AA:18:DA:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/OvCdKMpIepMmYxpr6b2b26oY2nU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/OvCdKMpIepMmYxpr6b2b26oY2nU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/D359568CA8DC11EB979DA50EC4F9AE02/1A704D8CADB511EBB5CFE734C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 143.92.102.0/23 Signature Algorithm: sha256WithRSAEncryption a0:6d:1d:8f:5b:d1:07:e1:57:0b:91:1d:ef:ac:f0:94:d5:a3: e7:7d:2c:de:53:ff:85:97:95:b1:ee:38:d1:f6:99:fc:db:72: ec:8d:d6:b9:ae:bc:b4:d5:34:fd:b5:02:ab:a6:08:6c:01:4a: d7:01:f8:82:44:fb:16:79:85:53:92:cf:88:0f:2f:1d:e7:58: 29:b8:5d:68:cc:0c:ff:0f:8e:c3:17:22:6f:1b:95:1f:f7:87: 7b:ef:7e:a0:e7:ab:d3:5a:ad:7b:de:4a:4b:7d:46:50:9f:cd: 71:3a:e7:f8:52:34:f6:94:f1:f4:d3:f7:59:ce:ca:7d:64:b1: 0e:32:34:ae:72:06:3b:f4:bb:e9:ab:5a:e2:b2:6a:30:75:1e: de:62:7f:fb:ae:4f:43:b7:1f:72:a7:95:fc:a0:97:15:79:b0: e0:cc:19:7e:ed:3b:e1:8d:d4:4b:ea:f4:34:e2:c7:24:8b:bc: 12:db:c5:43:7d:d7:33:8f:d8:9c:a0:33:dc:94:0e:bc:8e:2f: 79:4a:ca:96:c5:c9:71:cb:da:9c:7b:b3:9b:21:5b:94:45:39: ba:7f:09:5e:46:5e:92:a4:2a:e6:43:8e:40:45:7f:92:3b:57: fd:6f:14:ea:9a:dc:72:51:6e:e2:69:5d:e1:b9:e8:0a:d8:1a: 2b:e2:92:16 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKDNBRjA5RDI4Q0E0ODdBOTMyNjYzMUE2QkU5QkQ5QkRC QUExOERBNzUwHhcNMjUwNTE2MjMzMjQ2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3Y2IxZS05MzBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArMeiR9puQ+Gvf3waSOTEEHwPwNd9wvi2wO3ON+bl4OoDdQ2KFtk3MXXh+nN8 vE0nI7N4DvrvX/SIwnvD8pqtOROXc5r6ssswJsOMhON3CW4Noms+klrU+RW7C1Fw /nEHlFtJLSUG5vgsZHLzhICymREGRMiNnnvEigNGtFDfO1oHx5B3CU0zGfU5qDbN mg+3MZN9sSvIOhbdWkJjBQqHwnPX7Ie2Gw/LyIv/d/0ekptCLfaGzZZrO88B3FxN mcq7ij38RbVqvxTzvFoXpVbXeBzElzp4AxXjIWaFS0LNN7vBubHIHyG8g/SnBw7h rzjLdeQGp+Ut0WXcI7Xx7Yj9uwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFlqQY+G 2I/Q/mghjyR9KVCTMBVFMB8GA1UdIwQYMBaAFDrwnSjKSHqTJmMaa+m9m9uqGNp1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC9EMzU5NTY4Q0E4 REMxMUVCOTc5REE1MEVDNEY5QUUwMi9PdkNkS01wSWVwTW1ZeHByNmIyYjI2b1ky blUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL092Q2RLTXBJZXBNbVl4cHI2YjJiMjZvWTJuVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUI3NEQvRDM1OTU2OENBOERDMTFFQjk3OURBNTBFQzRGOUFFMDIvMUE3MDREOENB REI1MTFFQkI1Q0ZFNzM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGPXGYwDQYJKoZIhvcNAQELBQADggEBAKBtHY9b0QfhVwuR He+s8JTVo+d9LN5T/4WXlbHuONH2mfzbcuyN1rmuvLTVNP21AqumCGwBStcB+IJE +xZ5hVOSz4gPLx3nWCm4XWjMDP8PjsMXIm8blR/3h3vvfqDnq9NarXveSkt9RlCf zXE65/hSNPaU8fTT91nOyn1ksQ4yNK5yBjv0u+mrWuKyajB1Ht5if/uuT0O3H3Kn lfyglxV5sODMGX7tO+GN1Evq9DTixySLvBLbxUN91zOP2JygM9yUDryOL3lKypbF yXHL2px7s5shW5RFObp/CV5GXpKkKuZDjkBFf5I7V/1vFOqa3HJRbuJpXeG56ArY GivikhY= -----END CERTIFICATE-----Generated at Tue Jun 17 06:49:11 2025 by rpki-client