$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/64120230B2C211EFA43BF057C4F9AE02.roa File: 64120230B2C211EFA43BF057C4F9AE02.roa (raw, json) Hash identifier: 9h3davUQ9pNDA3U7SYojAK+YEhrIBkhT56ukToleizY= Subject key identifier: B7:1F:30:70:58:15:47:FC:1A:A2:03:64:91:7D:5A:76:4D:B9:DB:B4 Certificate issuer: /CN=A91CE5A6/serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Certificate serial: 012E Authority key identifier: 62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/64120230B2C211EFA43BF057C4F9AE02.roa Signing time: Tue 15 Apr 2025 03:39:37 +0000 ROA not before: Tue 15 Apr 2025 03:39:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 1851 IP address blocks: 129.127.0.0/16 maxlen: 16 192.43.227.0/24 maxlen: 24 192.43.228.0/24 maxlen: 24 192.160.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Nov 2025 03:40:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 302 (0x12e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=62DDC285DA8B3E209EB00EAA3671845DAA6CF286 Validity Not Before: Apr 15 03:39:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67fdd4f8-a5a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:85:0a:10:01:8b:3e:03:14:69:de:5c:45:09: bf:ad:56:44:0b:33:3e:c8:e4:a3:fc:f6:f6:01:70: 62:43:0e:8a:6c:49:6d:7f:7e:c3:9b:5e:89:c0:eb: a2:cc:dc:11:2f:ab:eb:c3:05:18:64:df:70:35:cf: f2:76:b3:30:8c:d4:d4:3c:03:31:af:a1:b3:5d:aa: ca:6d:e3:c7:63:de:7f:62:53:48:fc:4c:5f:0a:7c: e0:79:ec:99:57:06:c0:e0:23:8c:a2:1c:4b:b9:2e: 07:d3:8c:5a:07:ad:bb:a4:d4:dc:2a:fd:89:5d:90: 55:c8:17:f3:f4:a0:6f:70:13:a3:8c:ad:71:9e:ed: 25:9b:55:f7:1b:57:c9:c4:71:59:9b:70:0c:ea:6a: c5:c9:1e:93:b5:d9:9a:0b:be:b1:a6:c6:c1:03:c4: 44:51:48:71:48:02:ef:e6:57:70:e2:ef:ce:84:dd: ea:33:55:e9:f1:4e:a6:6c:60:c7:26:fb:29:02:49: 63:8d:03:94:eb:9e:cf:43:ad:bf:3f:bc:62:08:f5: a7:9c:34:8d:7d:53:aa:3e:e9:b6:0e:ff:32:9e:d4: 89:15:a7:5d:c0:2c:1e:7a:5b:2a:3d:01:4e:38:79: eb:f8:b6:76:4d:7f:03:0c:09:9c:6d:46:a0:0a:09: ca:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:1F:30:70:58:15:47:FC:1A:A2:03:64:91:7D:5A:76:4D:B9:DB:B4 X509v3 Authority Key Identifier: keyid:62:DD:C2:85:DA:8B:3E:20:9E:B0:0E:AA:36:71:84:5D:AA:6C:F2:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/Yt3ChdqLPiCesA6qNnGEXaps8oY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Yt3ChdqLPiCesA6qNnGEXaps8oY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/AAB33E4C5B3F11EE8F1D3D6EC4F9AE02/64120230B2C211EFA43BF057C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 129.127.0.0/16 192.43.227.0-192.43.228.255 192.160.71.0/24 Signature Algorithm: sha256WithRSAEncryption 46:14:a1:b2:7f:eb:28:8e:d9:60:89:33:95:9b:ab:aa:40:3f: a7:a4:6c:3f:31:1c:e1:ef:56:95:e5:cd:0d:0e:00:77:af:66: fd:de:79:12:57:34:87:be:3c:60:6b:c7:70:2c:d7:18:ab:35: 01:56:d3:3f:be:61:a0:4d:a1:d3:9e:0d:da:54:84:e5:de:62: 3f:d8:e4:c6:0a:f3:ea:77:ab:ba:32:91:ce:81:78:25:bc:c8: 4e:f2:0b:27:3e:52:9d:cd:31:1c:09:d4:87:1a:4c:b3:f7:6e: ae:ff:45:e2:3a:29:01:f7:55:b1:b7:22:22:26:c8:1c:11:54: cd:8e:8d:33:14:47:23:7e:e4:2e:87:4b:bd:47:19:68:b3:67: 39:c1:7c:05:1d:cd:f9:b5:68:2d:f7:37:db:9c:92:8e:3d:02: df:54:02:27:c1:92:d5:37:11:f8:87:c5:2a:dd:93:43:3b:4e: 47:8a:4e:e5:11:4f:ca:35:2c:5f:96:d3:1c:ba:8a:fc:25:b8: db:97:cc:16:62:6f:1d:61:de:8c:28:aa:ef:5d:ac:43:ea:65: ea:88:ca:52:a0:56:4f:ef:9a:c5:e5:03:60:62:33:ed:7c:e5: 1b:a3:0e:67:8f:03:4c:ec:d8:cc:d0:3b:8d:7a:9a:55:7e:89: 09:1f:97:f5 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAS4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDYyRERDMjg1REE4QjNFMjA5RUIwMEVBQTM2NzE4NDVE QUE2Q0YyODYwHhcNMjUwNDE1MDMzOTM3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZkZDRmOC1hNWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxIUKEAGLPgMUad5cRQm/rVZECzM+yOSj/Pb2AXBiQw6KbEltf37Dm16JwOui zNwRL6vrwwUYZN9wNc/ydrMwjNTUPAMxr6GzXarKbePHY95/YlNI/ExfCnzgeeyZ VwbA4COMohxLuS4H04xaB627pNTcKv2JXZBVyBfz9KBvcBOjjK1xnu0lm1X3G1fJ xHFZm3AM6mrFyR6TtdmaC76xpsbBA8REUUhxSALv5ldw4u/OhN3qM1Xp8U6mbGDH JvspAkljjQOU657PQ62/P7xiCPWnnDSNfVOqPum2Dv8yntSJFaddwCweelsqPQFO OHnr+LZ2TX8DDAmcbUagCgnKzwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFLcfMHBY FUf8GqIDZJF9WnZNudu0MB8GA1UdIwQYMBaAFGLdwoXaiz4gnrAOqjZxhF2qbPKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9BQUIzM0U0QzVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9ZdDNDaGRxTFBpQ2VzQTZxTm5HRVhhcHM4 b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1l0M0NoZHFMUGlDZXNBNnFObkdFWGFwczhvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U1QTYvQUFCMzNFNEM1QjNGMTFFRThGMUQzRDZFQzRGOUFFMDIvNjQxMjAyMzBC MkMyMTFFRkE0M0JGMDU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMgYIKwYBBQUHAQcBAf8E IzAhMB8EAgABMBkDAwCBfzAMAwQAwCvjAwQAwCvkAwQAwKBHMA0GCSqGSIb3DQEB CwUAA4IBAQBGFKGyf+sojtlgiTOVm6uqQD+npGw/MRzh71aV5c0NDgB3r2b93nkS VzSHvjxga8dwLNcYqzUBVtM/vmGgTaHTng3aVITl3mI/2OTGCvPqd6u6MpHOgXgl vMhO8gsnPlKdzTEcCdSHGkyz926u/0XiOikB91WxtyIiJsgcEVTNjo0zFEcjfuQu h0u9Rxlos2c5wXwFHc35tWgt9zfbnJKOPQLfVAInwZLVNxH4h8Uq3ZNDO05Hik7l EU/KNSxfltMcuor8Jbjbl8wWYm8dYd6MKKrvXaxD6mXqiMpSoFZP75rF5QNgYjPt fOUbow5njwNM7NjM0DuNeppVfokJH5f1 -----END CERTIFICATE-----Generated at Wed Nov 5 07:52:30 2025 by rpki-client