$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/F585B320A4ED11EFBA65C13CC4F9AE02.roa File: F585B320A4ED11EFBA65C13CC4F9AE02.roa (raw, json) Hash identifier: SIPjhCdz0Zmm6RS8ib8g9TJ4IJCqMFvTR5HVH5hTjJk= Subject key identifier: 6B:33:F8:AE:1E:D8:14:CA:DD:11:1F:91:A9:AF:D7:7B:5D:C7:70:49 Certificate issuer: /CN=A91C0BDE/serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Certificate serial: 0911 Authority key identifier: A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/F585B320A4ED11EFBA65C13CC4F9AE02.roa Signing time: Fri 30 May 2025 20:57:07 +0000 ROA not before: Fri 30 May 2025 20:57:07 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 131464 IP address blocks: 114.129.13.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 19:52:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2321 (0x911) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0BDE, serialNumber=A4B50BECD8BBA285587128D5919283DBE1690918 Validity Not Before: May 30 20:57:07 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=683a1ba3-90f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:d2:8a:54:63:ac:ee:8d:c8:2f:1c:83:72:a7: 21:87:5d:01:c3:62:af:ee:74:f0:cf:d7:73:0c:c4: 63:d6:09:ad:94:44:60:e3:61:b6:b7:b7:27:81:b3: 22:0c:7b:a7:11:b4:40:30:fb:1d:56:50:74:17:73: 12:99:ec:b1:bd:5a:b3:2c:34:9e:2d:f1:aa:c0:f2: 4d:d5:2a:d8:8e:e7:0d:6f:90:4d:e2:83:28:b1:82: 20:9a:39:56:87:38:04:b0:6c:e6:b8:03:db:4e:43: 7b:77:57:2f:0f:82:3e:9e:89:14:f7:9f:a7:14:12: 6b:37:c8:4a:48:30:67:7d:44:20:d3:46:e8:7a:74: a6:0f:e1:0a:7d:56:e3:a6:5b:74:18:e6:68:76:a8: a4:08:11:cf:2d:10:64:ba:07:73:3a:66:d1:40:d0: 80:5f:76:35:e7:82:77:51:81:e0:13:08:95:4d:c8: 8e:fa:2c:15:48:20:76:9e:04:f5:e3:5d:c4:b1:7c: 0a:30:87:28:cf:86:32:db:dd:e9:2f:7a:b6:d4:ff: 18:3f:ea:d6:9a:8a:ec:ce:31:e5:13:ab:60:b8:82: 33:d1:0d:4e:88:15:53:ae:44:71:d7:ab:47:78:e2: 4c:77:88:0a:1c:18:27:4b:35:d9:b9:6a:a3:8f:0a: 08:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:33:F8:AE:1E:D8:14:CA:DD:11:1F:91:A9:AF:D7:7B:5D:C7:70:49 X509v3 Authority Key Identifier: keyid:A4:B5:0B:EC:D8:BB:A2:85:58:71:28:D5:91:92:83:DB:E1:69:09:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pLUL7Ni7ooVYcSjVkZKD2-FpCRg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0BDE/7E5AC3E0897111EA92402A0AC4F9AE02/F585B320A4ED11EFBA65C13CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.129.13.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:50:b3:79:aa:fb:f8:18:ac:e8:c2:26:70:9b:34:24:8c:a9: 3b:8c:c8:0b:ca:f0:f3:14:5b:1e:2a:51:04:8f:44:95:e2:ec: 94:d2:fa:2e:23:38:17:f8:8e:22:13:28:7d:e7:5c:d1:2f:18: 2a:3b:45:7f:35:96:11:f3:0e:32:15:87:48:bf:a7:30:34:de: c6:09:c7:70:89:59:82:99:64:39:d9:ec:52:7f:a6:30:79:a3: 5d:1e:0a:19:88:95:5b:a3:6c:1d:b6:4a:9c:6c:f9:91:8e:53: 89:a1:d8:46:f3:84:74:52:07:e6:44:8d:5b:79:3e:25:ab:a7: 3f:b5:85:a3:da:c2:4e:1e:b9:14:94:8f:5f:62:59:56:56:d9: b0:cb:03:7b:af:73:b8:b3:d6:eb:96:ef:cc:62:9d:02:42:a4: 94:8a:ee:f9:6d:d7:c9:2e:5b:1b:cf:ab:98:5a:4f:92:e0:e9: 47:e4:ff:3f:ef:9b:19:16:d1:f7:8c:77:ef:bd:c6:85:6f:41: cb:e3:d8:e3:80:2d:0c:17:41:61:c1:89:7f:1b:5c:ef:9c:fc: e9:bd:6f:48:22:ad:fd:f4:c3:a3:4c:d5:7e:45:36:d2:98:35: 74:a2:3b:0e:f2:53:f0:e8:e2:0e:fe:e9:f0:2b:a4:39:98:99: 4f:29:6f:60 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBCREUxMTAvBgNVBAUTKEE0QjUwQkVDRDhCQkEyODU1ODcxMjhENTkxOTI4M0RC RTE2OTA5MTgwHhcNMjUwNTMwMjA1NzA3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhMWJhMy05MGY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA59KKVGOs7o3ILxyDcqchh10Bw2Kv7nTwz9dzDMRj1gmtlERg42G2t7cngbMi DHunEbRAMPsdVlB0F3MSmeyxvVqzLDSeLfGqwPJN1SrYjucNb5BN4oMosYIgmjlW hzgEsGzmuAPbTkN7d1cvD4I+nokU95+nFBJrN8hKSDBnfUQg00boenSmD+EKfVbj plt0GOZodqikCBHPLRBkugdzOmbRQNCAX3Y154J3UYHgEwiVTciO+iwVSCB2ngT1 413EsXwKMIcoz4Yy293pL3q21P8YP+rWmorszjHlE6tguIIz0Q1OiBVTrkRx16tH eOJMd4gKHBgnSzXZuWqjjwoIZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGsz+K4e 2BTK3REfkamv13tdx3BJMB8GA1UdIwQYMBaAFKS1C+zYu6KFWHEo1ZGSg9vhaQkY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEJERS83RTVBQzNFMDg5 NzExMUVBOTI0MDJBMEFDNEY5QUUwMi9wTFVMN05pN29vVlljU2pWa1pLRDItRnBD UmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3BMVUw3Tmk3b29WWWNTalZrWktEMi1GcENSZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBCREUvN0U1QUMzRTA4OTcxMTFFQTkyNDAyQTBBQzRGOUFFMDIvRjU4NUIzMjBB NEVEMTFFRkJBNjVDMTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABygQ0wDQYJKoZIhvcNAQELBQADggEBAJ5Qs3mq+/gYrOjC JnCbNCSMqTuMyAvK8PMUWx4qUQSPRJXi7JTS+i4jOBf4jiITKH3nXNEvGCo7RX81 lhHzDjIVh0i/pzA03sYJx3CJWYKZZDnZ7FJ/pjB5o10eChmIlVujbB22Spxs+ZGO U4mh2EbzhHRSB+ZEjVt5PiWrpz+1haPawk4euRSUj19iWVZW2bDLA3uvc7iz1uuW 78xinQJCpJSK7vlt18kuWxvPq5haT5Lg6Ufk/z/vmxkW0feMd++9xoVvQcvj2OOA LQwXQWHBiX8bXO+c/Om9b0girf30w6NM1X5FNtKYNXSiOw7yU/Do4g7+6fArpDmY mU8pb2A= -----END CERTIFICATE-----Generated at Sun Jun 15 07:18:58 2025 by rpki-client