$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/E2C0769466F311F0BAB87F38C4F9AE02.roa File: E2C0769466F311F0BAB87F38C4F9AE02.roa (raw, json) Hash identifier: 5zWVc3wXqfB69czjTeeDsjWlSnO6nNwU6Knu/X1TBzA= Subject key identifier: 78:1C:7C:D1:C2:C4:73:B9:B0:FC:24:9D:68:E9:E9:60:1B:5A:36:06 Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 027C Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/E2C0769466F311F0BAB87F38C4F9AE02.roa Signing time: Tue 22 Jul 2025 12:03:31 +0000 ROA not before: Tue 22 Jul 2025 12:03:31 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 45867 IP address blocks: 140.168.64.0/18 maxlen: 20 140.168.66.0/24 maxlen: 24 140.168.67.0/24 maxlen: 24 140.168.78.0/24 maxlen: 24 140.168.79.0/24 maxlen: 24 140.168.80.0/24 maxlen: 24 140.168.81.0/24 maxlen: 24 140.168.87.0/24 maxlen: 24 140.168.128.0/18 maxlen: 20 140.168.135.0/24 maxlen: 24 140.168.138.0/24 maxlen: 24 140.168.139.0/24 maxlen: 24 140.168.166.0/24 maxlen: 24 140.168.236.0/22 maxlen: 24 140.168.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 636 (0x27c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98, serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Jul 22 12:03:31 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=687f7e13-8588 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f8:ec:54:b7:6c:79:68:c9:c7:d7:64:b8:38: 27:2d:10:72:af:7d:53:35:8a:ee:e6:a5:19:28:d4: 61:89:45:fc:c1:6e:f3:1d:d5:25:52:e1:51:a3:68: 0b:9e:8d:d5:5e:9a:62:29:1e:25:c2:96:f6:32:92: f5:a6:58:aa:d5:58:51:ad:fb:2d:fb:7e:65:78:83: fe:1b:e7:8a:b2:c4:ff:21:48:f2:a9:44:51:fa:ac: 4b:07:38:23:18:58:c9:ac:12:ca:f7:a6:01:9a:54: f9:98:a4:4c:b6:ab:b6:e5:c0:7a:49:eb:cb:0f:be: c2:3c:6c:5d:85:08:ce:64:81:cb:40:ac:23:5e:e7: 3f:8e:94:e5:73:e9:3c:d6:6e:96:8c:fc:79:a5:60: fc:31:4b:b7:cb:85:73:b2:52:99:45:f9:4d:70:74: e1:6c:30:aa:8f:d6:7e:97:01:7a:11:94:90:bd:2b: 41:42:a1:9f:1f:81:11:1b:52:7a:eb:41:d3:f0:82: ba:eb:6c:f4:2e:3a:f2:4a:db:3e:c0:79:0b:a0:5f: 89:5a:27:e9:8a:cf:b6:44:eb:52:2f:b0:00:e1:39: a7:2d:1e:25:2d:d0:8c:12:5f:cd:16:16:7e:42:5b: e6:2a:54:40:79:a8:75:c5:78:09:e9:ae:81:85:80: dd:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:1C:7C:D1:C2:C4:73:B9:B0:FC:24:9D:68:E9:E9:60:1B:5A:36:06 X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/E2C0769466F311F0BAB87F38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.168.64.0-140.168.191.255 140.168.236.0/22 140.168.250.0/24 Signature Algorithm: sha256WithRSAEncryption 23:12:4b:cc:8a:21:21:17:44:f7:d0:0d:bc:e8:3a:b2:f3:73: d9:8b:fb:ce:fd:a1:bd:ff:ab:36:4e:fb:15:8d:44:bd:5f:d7: 8a:26:43:2e:fd:9a:c3:1e:6b:9e:78:97:0a:9f:2e:b3:7f:80: 91:9c:63:f9:75:14:43:c7:a5:9b:d3:2c:15:26:35:dd:30:c9: 40:e7:6c:b2:54:3a:38:48:13:59:02:44:e5:14:da:7b:10:c1: 26:d4:bc:98:c1:cf:39:89:b1:c3:2e:27:dd:17:84:a2:16:80: b6:a0:44:66:4f:f5:34:a9:88:55:c0:c3:60:c5:b2:0e:f7:63: 04:c3:de:c5:5d:ce:ff:99:df:18:20:ce:44:96:55:43:d5:1e: 99:3d:b8:47:2e:5b:1b:80:0c:5c:20:da:15:63:d8:46:9a:df: 38:89:a6:3c:de:85:25:0b:c8:62:d1:f8:c5:a6:d9:a0:83:6d: 1c:a8:d0:89:0f:d6:de:f0:97:32:1e:a7:cd:96:a2:a5:81:d9: 88:27:b5:3f:91:fb:7b:c7:0f:49:55:9d:d6:8e:a5:05:66:bc: 29:b7:8f:06:e5:05:a2:a7:06:83:fd:00:01:2f:2d:79:92:68: b1:32:37:a2:bf:34:b1:a9:fd:db:d7:25:e8:07:15:bd:d4:7d: 8a:2d:0a:9b -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICAnwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjUwNzIyMTIwMzMxWhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdmN2UxMy04NTg4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fjsVLdseWjJx9dkuDgnLRByr31TNYru5qUZKNRhiUX8wW7zHdUlUuFRo2gL no3VXppiKR4lwpb2MpL1pliq1VhRrfst+35leIP+G+eKssT/IUjyqURR+qxLBzgj GFjJrBLK96YBmlT5mKRMtqu25cB6SevLD77CPGxdhQjOZIHLQKwjXuc/jpTlc+k8 1m6WjPx5pWD8MUu3y4VzslKZRflNcHThbDCqj9Z+lwF6EZSQvStBQqGfH4ERG1J6 60HT8IK662z0LjrySts+wHkLoF+JWifpis+2ROtSL7AA4TmnLR4lLdCMEl/NFhZ+ QlvmKlRAeah1xXgJ6a6BhYDdDQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFHgcfNHC xHO5sPwknWjp6WAbWjYGMB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvRTJDMDc2OTQ2 NkYzMTFGMEJBQjg3RjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEBoyoQAMEBoyogAMEAoyo7AMEAIyo+jANBgkqhkiG9w0B AQsFAAOCAQEAIxJLzIohIRdE99ANvOg6svNz2Yv7zv2hvf+rNk77FY1EvV/XiiZD Lv2awx5rnniXCp8us3+AkZxj+XUUQ8elm9MsFSY13TDJQOdsslQ6OEgTWQJE5RTa exDBJtS8mMHPOYmxwy4n3ReEohaAtqBEZk/1NKmIVcDDYMWyDvdjBMPexV3O/5nf GCDORJZVQ9UemT24Ry5bG4AMXCDaFWPYRprfOImmPN6FJQvIYtH4xabZoINtHKjQ iQ/W3vCXMh6nzZaipYHZiCe1P5H7e8cPSVWd1o6lBWa8KbePBuUFoqcGg/0AAS8t eZJosTI3or80san929cl6AcVvdR9ii0Kmw== -----END CERTIFICATE-----Generated at Sat Aug 9 10:40:10 2025 by rpki-client