$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/C24679DC741211F0808A8240C4F9AE02.roa File: C24679DC741211F0808A8240C4F9AE02.roa (raw, json) Hash identifier: 0sz+kpmtwGElJIZS+dbC02B4JWfvDxu2J1QwiI80uIU= Subject key identifier: 4A:AA:B2:8A:64:80:31:D3:3F:31:62:54:AC:23:F3:EE:8B:60:55:FA Certificate issuer: /CN=A91AC5BC/serialNumber=A145241D9830AF24A71567351255EC8E7ED53EFE Certificate serial: 22 Authority key identifier: A1:45:24:1D:98:30:AF:24:A7:15:67:35:12:55:EC:8E:7E:D5:3E:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/C24679DC741211F0808A8240C4F9AE02.roa Signing time: Fri 08 Aug 2025 04:47:17 +0000 ROA not before: Fri 08 Aug 2025 04:47:17 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 8075 IP address blocks: 163.223.72.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.crl rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Aug 2025 08:41:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC5BC, serialNumber=A145241D9830AF24A71567351255EC8E7ED53EFE Validity Not Before: Aug 8 04:47:17 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68958154-0a48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7d:92:8d:25:ae:3c:33:94:51:bd:12:e4:51: d6:74:16:21:da:1f:2c:ba:13:2b:5d:a0:aa:08:1d: b4:72:5d:d4:a9:b6:b4:c1:80:3b:b6:7a:12:a6:57: a4:75:2c:3d:9c:17:a3:62:48:36:92:df:6c:64:9a: 6d:eb:bd:04:2e:36:ae:70:07:5b:6e:c9:55:67:e0: 34:43:a2:85:8d:d2:ba:aa:92:cd:75:6c:bc:9d:ca: da:d8:d1:70:cd:41:f6:c8:fe:a2:fb:1d:a6:df:33: 60:d9:cb:29:52:94:08:5e:fa:03:74:79:b7:b3:31: f1:d2:ed:c6:75:96:4a:26:21:0b:f6:c5:d4:15:89: 60:39:c1:81:5b:2f:e5:e5:b8:74:08:55:7f:fa:be: ec:65:02:77:08:21:42:12:a1:47:5f:95:f1:fb:05: cf:23:7c:f6:ed:a4:f3:6c:3e:6b:04:0d:4c:07:dd: f8:98:fd:b5:c7:fc:2c:cd:d7:fa:55:31:a6:f2:8a: 52:7f:a2:ce:e9:24:cc:4b:76:7a:95:71:63:21:8b: d1:a4:a3:ac:25:47:de:78:54:ae:73:49:5c:fd:fe: 96:d4:a9:2a:6b:41:14:70:58:0a:3c:13:1f:72:b1: 03:30:8a:ca:1e:11:15:6b:3a:a4:d6:1b:59:b1:c7: 4d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:AA:B2:8A:64:80:31:D3:3F:31:62:54:AC:23:F3:EE:8B:60:55:FA X509v3 Authority Key Identifier: keyid:A1:45:24:1D:98:30:AF:24:A7:15:67:35:12:55:EC:8E:7E:D5:3E:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/oUUkHZgwrySnFWc1ElXsjn7VPv4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oUUkHZgwrySnFWc1ElXsjn7VPv4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC5BC/71E5D8BE59F211F0B4FAE95FC4F9AE02/C24679DC741211F0808A8240C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.223.72.0/23 Signature Algorithm: sha256WithRSAEncryption 91:14:0a:3e:56:f6:4c:f6:99:48:0a:c7:85:1f:ac:07:c4:73: c7:72:db:1f:7b:de:ff:78:42:27:68:e0:a0:07:df:f1:ec:69: 75:e8:9e:29:7c:75:a8:f0:48:c5:12:99:30:21:2f:6b:32:3d: e9:04:e0:fd:87:27:6b:1b:48:21:31:91:fe:13:15:71:56:15: a6:18:f1:18:13:25:95:01:11:8d:7b:9a:a6:89:0a:71:cd:fc: e4:f4:14:2e:a9:f3:05:d6:f4:4a:cf:6a:66:a0:34:80:0d:32: 47:83:1e:90:6e:8d:fc:30:15:ee:04:eb:8b:2b:bd:75:3c:26: fe:63:ee:3d:37:ab:c2:fc:5e:85:c9:86:8c:e6:97:9b:d3:be: da:98:cf:61:20:e5:9e:6e:27:b6:17:04:44:35:ea:e4:65:cd: 5f:be:44:67:38:b8:0b:22:72:0e:d3:72:fe:3f:28:70:d7:e4: ec:d6:7a:76:2e:75:ae:69:5f:be:f3:d2:24:0b:cc:02:fd:49: e1:18:a4:59:0a:b5:60:3d:b0:95:ee:fc:31:7f:8c:41:e8:f3: a3:b5:c4:af:7e:02:af:a4:4f:17:90:0c:23:92:ae:8b:38:83: 6a:cf:26:c3:ec:a4:a6:ed:3f:c8:4d:73:b2:8b:cf:26:83:40: 1c:fc:ab:75 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBIjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QzVCQzExMC8GA1UEBRMoQTE0NTI0MUQ5ODMwQUYyNEE3MTU2NzM1MTI1NUVDOEU3 RUQ1M0VGRTAeFw0yNTA4MDgwNDQ3MTdaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4OTU4MTU0LTBhNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCsfZKNJa48M5RRvRLkUdZ0FiHaHyy6EytdoKoIHbRyXdSptrTBgDu2ehKmV6R1 LD2cF6NiSDaS32xkmm3rvQQuNq5wB1tuyVVn4DRDooWN0rqqks11bLydytrY0XDN QfbI/qL7HabfM2DZyylSlAhe+gN0ebezMfHS7cZ1lkomIQv2xdQViWA5wYFbL+Xl uHQIVX/6vuxlAncIIUISoUdflfH7Bc8jfPbtpPNsPmsEDUwH3fiY/bXH/CzN1/pV MabyilJ/os7pJMxLdnqVcWMhi9Gko6wlR954VK5zSVz9/pbUqSprQRRwWAo8Ex9y sQMwisoeERVrOqTWG1mxx03vAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUSqqyimSA MdM/MWJUrCPz7otgVfowHwYDVR0jBBgwFoAUoUUkHZgwrySnFWc1ElXsjn7VPv4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFDNUJDLzcxRTVEOEJFNTlG MjExRjBCNEZBRTk1RkM0RjlBRTAyL29VVWtIWmd3cnlTbkZXYzFFbFhzam43VlB2 NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvb1VVa0haZ3dyeVNuRldjMUVsWHNqbjdWUHY0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzVCQy83MUU1RDhCRTU5RjIxMUYwQjRGQUU5NUZDNEY5QUUwMi9DMjQ2NzlEQzc0 MTIxMUYwODA4QTgyNDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaPfSDANBgkqhkiG9w0BAQsFAAOCAQEAkRQKPlb2TPaZSArH hR+sB8Rzx3LbH3ve/3hCJ2jgoAff8expdeieKXx1qPBIxRKZMCEvazI96QTg/Ycn axtIITGR/hMVcVYVphjxGBMllQERjXuapokKcc385PQULqnzBdb0Ss9qZqA0gA0y R4MekG6N/DAV7gTriyu9dTwm/mPuPTerwvxehcmGjOaXm9O+2pjPYSDlnm4nthcE RDXq5GXNX75EZzi4CyJyDtNy/j8ocNfk7NZ6di51rmlfvvPSJAvMAv1J4RikWQq1 YD2wle78MX+MQejzo7XEr34Cr6RPF5AMI5KuiziDas8mw+ykpu0/yE1zsovPJoNA HPyrdQ== -----END CERTIFICATE-----Generated at Wed Aug 13 13:25:32 2025 by rpki-client