$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/68C24072EAA611EE8F2E643CC4F9AE02.roa File: 68C24072EAA611EE8F2E643CC4F9AE02.roa (raw, json) Hash identifier: Sd/F6iDqdYutvcek8wnC8MIPl24l8+jwKRnTt8joH5I= Subject key identifier: 94:4A:A5:75:EF:FE:86:BD:FC:35:F5:BD:E2:09:7E:8C:A2:B6:F0:7B Certificate issuer: /CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Certificate serial: 025E Authority key identifier: 45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/68C24072EAA611EE8F2E643CC4F9AE02.roa Signing time: Thu 05 Jun 2025 03:10:50 +0000 ROA not before: Thu 05 Jun 2025 03:10:50 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 51847 IP address blocks: 123.108.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 02:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 606 (0x25e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6550, serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Validity Not Before: Jun 5 03:10:50 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68410aba-5cf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7d:f7:e4:57:bf:c8:01:a6:18:06:ff:bb:13: 4e:de:1f:84:46:07:94:64:7a:ef:a8:d7:f8:99:28: 61:17:51:db:d5:2f:17:42:5d:0f:3f:28:66:92:0a: 92:10:41:1f:14:01:1f:2c:74:00:a7:e8:2e:5a:82: 85:31:7a:9a:49:01:f8:34:65:79:4a:f6:ae:a2:dc: d4:96:17:00:5d:f6:72:17:ca:1d:1b:78:84:5b:a9: 18:d5:e4:82:8e:a3:5c:a2:1e:da:01:24:8e:27:5e: ae:8e:05:05:af:a0:82:59:3a:04:3f:7c:5f:ae:02: f4:37:64:00:da:de:27:77:37:8d:63:38:5d:d9:a7: d2:79:fd:ff:98:b9:e8:f7:d2:51:45:53:ed:31:15: a5:4a:2b:04:09:59:2f:f2:fe:c9:35:79:e5:b7:22: 9b:9d:ed:e9:08:79:b6:58:7c:10:13:14:bc:03:56: f2:14:f6:b8:ed:ee:c6:c2:86:de:87:79:1b:4c:d8: 15:3a:f0:da:47:9d:b4:45:6f:9c:81:fa:38:2c:c6: b3:84:6d:1a:11:b6:9e:66:57:aa:8d:5d:92:73:9a: 64:84:71:e0:38:39:69:3b:81:d2:8c:8d:d6:b0:b1: 13:38:b6:d2:e4:f5:f7:ef:e3:db:d8:65:3b:a4:00: 23:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:4A:A5:75:EF:FE:86:BD:FC:35:F5:BD:E2:09:7E:8C:A2:B6:F0:7B X509v3 Authority Key Identifier: keyid:45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/68C24072EAA611EE8F2E643CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.108.70.0/24 Signature Algorithm: sha256WithRSAEncryption 38:bb:4a:6a:a3:8d:28:45:65:cf:b5:17:5f:ff:82:ec:d6:c8: 78:9c:3a:3b:0d:3d:e3:d0:50:29:be:28:da:b8:43:36:97:c1: 11:8f:5f:00:90:21:93:b8:3a:e5:cd:7a:88:7a:97:52:f7:27: 4b:33:43:e5:34:50:0b:cc:c2:60:64:a0:fe:3a:82:04:62:18: 81:b6:0a:7e:5e:ff:d0:20:87:00:30:db:d9:8e:6a:c1:c8:b6: 2b:2b:5d:56:4c:64:f4:5e:c1:be:a1:1a:4d:dd:43:d1:16:18: 3c:73:ae:8f:55:a9:f2:17:ab:fa:28:d4:61:e1:c1:60:5d:e9: 8d:ac:20:cb:25:6c:27:d5:53:24:3f:f9:20:c3:9c:ea:30:3c: 28:84:1b:df:70:18:9d:b2:ce:94:ea:08:39:b3:64:dc:77:fb: f8:26:96:d8:de:51:7b:e6:f8:5d:99:59:9b:5a:ba:41:69:66: c6:cb:68:20:12:10:3c:a1:3f:8c:eb:55:04:41:45:2b:c5:07: 95:23:f2:9f:bb:af:ff:cc:32:81:eb:d8:e6:1c:5c:ab:d9:90: bb:5c:33:80:e7:bc:51:20:45:19:46:68:01:b1:38:6a:b3:ed: 87:aa:f9:35:8e:d7:e3:6a:2e:c6:0d:76:87:e6:b6:1d:c7:14: 58:31:8a:bd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NTAxMTAvBgNVBAUTKDQ1NkVFQTA2OTJDNkE0RjI2RjUzRDJEMjM3RDFDQjRE Q0Q3ODMzMDUwHhcNMjUwNjA1MDMxMDUwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQxMGFiYS01Y2Y1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03335Fe/yAGmGAb/uxNO3h+ERgeUZHrvqNf4mShhF1Hb1S8XQl0PPyhmkgqS EEEfFAEfLHQAp+guWoKFMXqaSQH4NGV5SvauotzUlhcAXfZyF8odG3iEW6kY1eSC jqNcoh7aASSOJ16ujgUFr6CCWToEP3xfrgL0N2QA2t4ndzeNYzhd2afSef3/mLno 99JRRVPtMRWlSisECVkv8v7JNXnltyKbne3pCHm2WHwQExS8A1byFPa47e7Gwobe h3kbTNgVOvDaR520RW+cgfo4LMazhG0aEbaeZleqjV2Sc5pkhHHgODlpO4HSjI3W sLETOLbS5PX37+Pb2GU7pAAjXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJRKpXXv /oa9/DX1veIJfoyitvB7MB8GA1UdIwQYMBaAFEVu6gaSxqTyb1PS0jfRy03NeDMF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU1MC84NDAwOTU0QUNF QzQxMUVEOEE4M0ZCMTFDNEY5QUUwMi9SVzdxQnBMR3BQSnZVOUxTTjlITFRjMTRN d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXN3FCcExHcFBKdlU5TFNOOUhMVGMxNE13VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY1NTAvODQwMDk1NEFDRUM0MTFFRDhBODNGQjExQzRGOUFFMDIvNjhDMjQwNzJF QUE2MTFFRThGMkU2NDNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB7bEYwDQYJKoZIhvcNAQELBQADggEBADi7SmqjjShFZc+1 F1//guzWyHicOjsNPePQUCm+KNq4QzaXwRGPXwCQIZO4OuXNeoh6l1L3J0szQ+U0 UAvMwmBkoP46ggRiGIG2Cn5e/9AghwAw29mOasHItisrXVZMZPRewb6hGk3dQ9EW GDxzro9VqfIXq/oo1GHhwWBd6Y2sIMslbCfVUyQ/+SDDnOowPCiEG99wGJ2yzpTq CDmzZNx3+/gmltjeUXvm+F2ZWZtaukFpZsbLaCASEDyhP4zrVQRBRSvFB5Uj8p+7 r//MMoHr2OYcXKvZkLtcM4DnvFEgRRlGaAGxOGqz7Yeq+TWO1+NqLsYNdofmth3H FFgxir0= -----END CERTIFICATE-----Generated at Fri Jun 20 07:32:15 2025 by rpki-client