$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/99D9487EEAFE11EE9EFB1977C4F9AE02.roa File: 99D9487EEAFE11EE9EFB1977C4F9AE02.roa (raw, json) Hash identifier: 8Xumr370JTWhp5Hg1rlZKTI/Noutl6B2DH8kHzYSO0U= Subject key identifier: D0:3A:F3:31:92:ED:52:23:72:3E:0B:7F:80:B2:FF:1F:EF:FD:D6:44 Certificate issuer: /CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Certificate serial: 0253 Authority key identifier: 45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/99D9487EEAFE11EE9EFB1977C4F9AE02.roa Signing time: Thu 05 Jun 2025 03:10:41 +0000 ROA not before: Thu 05 Jun 2025 03:10:41 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 151487 IP address blocks: 123.108.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 02:46:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 595 (0x253) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6550, serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Validity Not Before: Jun 5 03:10:41 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68410ab0-fb74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:45:83:6f:ea:4e:bf:cf:a4:1d:77:c1:6d:c4: 4d:e3:cd:68:9a:c9:c7:3d:bc:06:88:03:e7:0c:61: cc:f9:8c:15:18:e6:76:1d:b2:87:36:b2:2c:1c:7d: 7c:7b:11:d3:50:22:61:01:6b:f6:cb:e8:20:c7:07: d2:19:ec:5d:50:d5:50:5d:03:bb:c7:a0:ff:b9:2f: ac:53:0f:df:e2:9f:5f:e4:c7:36:86:4f:8a:cb:b0: 04:2e:b7:01:1a:b6:91:68:36:20:77:21:66:b5:fa: 47:b0:a7:90:32:e0:a7:0d:23:7a:f7:dd:fb:ee:99: bb:e7:cd:13:bd:52:18:d6:8d:5a:33:8c:3a:e1:8e: 6d:d1:a9:e7:75:47:07:6d:ce:ab:89:c0:14:a1:58: 57:c6:bf:74:11:f4:8a:a8:27:8f:c8:4a:b6:3f:e6: b6:c3:b9:b2:e5:8d:ce:86:49:02:39:f5:db:91:1b: 4e:6e:16:29:7f:85:6b:8a:fb:b2:be:29:06:b5:4a: 86:26:41:4d:d0:78:d9:a9:06:cd:db:a4:df:86:e5: 6e:66:c4:39:fb:35:be:f7:52:2b:98:2d:04:5a:d4: fe:20:8b:9d:52:db:b5:ef:6c:f4:13:3a:2d:c5:84: e9:c3:cc:75:ba:60:64:66:00:a6:60:43:7c:e3:cd: 30:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:3A:F3:31:92:ED:52:23:72:3E:0B:7F:80:B2:FF:1F:EF:FD:D6:44 X509v3 Authority Key Identifier: keyid:45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/99D9487EEAFE11EE9EFB1977C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.108.70.0/24 Signature Algorithm: sha256WithRSAEncryption ac:a7:fb:42:45:85:26:10:4c:bb:43:7f:3a:cc:0a:15:e9:52: 5d:0f:61:86:27:c2:94:48:a5:ff:4a:11:74:52:3e:fe:46:3e: e7:26:1c:8c:9e:77:f2:12:dc:eb:7e:a1:8c:01:08:47:8f:10: 3f:f2:55:85:b4:d6:0e:38:2d:eb:10:e2:93:db:ed:56:4e:b2: aa:5b:20:ed:88:96:9b:09:59:60:f0:ff:e3:33:7a:74:8d:fc: 2d:8b:95:a0:6f:5a:04:2b:a8:db:26:b0:91:18:cd:f2:ef:d2: 51:0c:f2:76:ce:72:58:ae:a2:3a:eb:99:4a:46:3d:26:b5:6d: 20:b1:1f:86:1f:4a:9e:4d:c1:0e:46:d5:12:64:24:05:b6:59: bd:82:55:05:07:38:62:95:13:0d:32:bc:b4:62:9d:f2:d9:92: bb:e9:84:bb:55:7c:19:9a:a5:91:cb:ea:52:b6:c2:98:6c:71: e5:70:04:b9:f7:85:23:a7:79:ed:d7:b8:9f:00:f6:2e:99:23: 24:f1:ac:57:f3:72:d7:9b:56:46:e9:02:38:6a:1a:ba:68:bf: 37:3e:bc:c7:e6:da:c0:c0:8d:b2:fd:d0:5f:bb:b8:e0:c6:20: 6a:78:98:61:34:1e:45:31:30:44:e8:f1:39:d3:5a:18:2c:ac: 0e:15:62:9c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NTAxMTAvBgNVBAUTKDQ1NkVFQTA2OTJDNkE0RjI2RjUzRDJEMjM3RDFDQjRE Q0Q3ODMzMDUwHhcNMjUwNjA1MDMxMDQxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQxMGFiMC1mYjc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5EWDb+pOv8+kHXfBbcRN481omsnHPbwGiAPnDGHM+YwVGOZ2HbKHNrIsHH18 exHTUCJhAWv2y+ggxwfSGexdUNVQXQO7x6D/uS+sUw/f4p9f5Mc2hk+Ky7AELrcB GraRaDYgdyFmtfpHsKeQMuCnDSN699377pm7580TvVIY1o1aM4w64Y5t0anndUcH bc6ricAUoVhXxr90EfSKqCePyEq2P+a2w7my5Y3OhkkCOfXbkRtObhYpf4Vrivuy vikGtUqGJkFN0HjZqQbN26TfhuVuZsQ5+zW+91IrmC0EWtT+IIudUtu172z0Ezot xYTpw8x1umBkZgCmYEN8480w8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFNA68zGS 7VIjcj4Lf4Cy/x/v/dZEMB8GA1UdIwQYMBaAFEVu6gaSxqTyb1PS0jfRy03NeDMF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU1MC84NDAwOTU0QUNF QzQxMUVEOEE4M0ZCMTFDNEY5QUUwMi9SVzdxQnBMR3BQSnZVOUxTTjlITFRjMTRN d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXN3FCcExHcFBKdlU5TFNOOUhMVGMxNE13VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY1NTAvODQwMDk1NEFDRUM0MTFFRDhBODNGQjExQzRGOUFFMDIvOTlEOTQ4N0VF QUZFMTFFRTlFRkIxOTc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB7bEYwDQYJKoZIhvcNAQELBQADggEBAKyn+0JFhSYQTLtD fzrMChXpUl0PYYYnwpRIpf9KEXRSPv5GPucmHIyed/IS3Ot+oYwBCEePED/yVYW0 1g44LesQ4pPb7VZOsqpbIO2IlpsJWWDw/+MzenSN/C2LlaBvWgQrqNsmsJEYzfLv 0lEM8nbOcliuojrrmUpGPSa1bSCxH4YfSp5NwQ5G1RJkJAW2Wb2CVQUHOGKVEw0y vLRinfLZkrvphLtVfBmapZHL6lK2wphsceVwBLn3hSOnee3XuJ8A9i6ZIyTxrFfz ctebVkbpAjhqGrpovzc+vMfm2sDAjbL90F+7uODGIGp4mGE0HkUxMETo8TnTWhgs rA4VYpw= -----END CERTIFICATE-----Generated at Fri Jun 20 00:53:19 2025 by rpki-client