$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/598351E2476011F097E14360C4F9AE02.roa File: 598351E2476011F097E14360C4F9AE02.roa (raw, json) Hash identifier: Z9kiwDBj6+SjMsFsgY7gi9FIlXbv7JHD5bPoLzc5FlA= Subject key identifier: 88:3E:FA:BA:B1:CF:9B:C3:EA:A1:65:8A:B2:3D:7D:B3:53:FB:12:F1 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0F28 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/598351E2476011F097E14360C4F9AE02.roa Signing time: Thu 12 Jun 2025 07:39:20 +0000 ROA not before: Thu 12 Jun 2025 07:39:20 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 16224 IP address blocks: 116.92.64.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 17:57:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3880 (0xf28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0, serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Jun 12 07:39:20 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=684a8427-604e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:38:16:c2:c7:6f:c0:fa:36:d3:63:8f:44:e7: 63:55:ae:c6:dc:ed:37:ca:51:b6:99:0a:d6:ae:11: 61:54:e2:1b:ba:e4:da:aa:e9:37:24:82:c0:03:9f: 3f:a1:6b:35:53:c1:a1:4b:18:02:f5:cc:24:37:5e: e4:dc:aa:a0:ff:ae:a8:cf:2f:d4:aa:75:d9:5b:c2: 10:f8:e7:cf:5f:a9:a3:da:b9:97:9f:0c:88:bf:1f: 7e:38:a9:ba:db:28:4a:55:d1:fb:3c:f2:29:e0:47: a7:d5:44:96:d7:d8:80:ce:b4:de:b7:70:9e:39:e6: 62:75:46:1e:a6:60:af:b4:e8:0a:cf:a8:96:63:2f: 38:c6:30:5a:43:7d:34:a1:91:8d:c4:ca:b6:4e:3f: 96:65:1c:5a:ac:76:25:6a:cc:aa:0e:23:9a:57:63: ff:bf:a8:0a:60:61:ae:87:bb:d3:10:2b:f0:4f:ee: 12:c8:a9:95:48:c8:85:1b:0b:61:64:e2:36:3e:f6: 72:41:95:a3:bb:f5:af:50:be:55:d3:ef:17:11:83: d8:18:d6:45:ba:97:4c:92:d7:b3:2f:80:91:14:1e: dc:a7:c8:a9:3f:14:08:91:2b:85:ea:76:73:ec:ee: 65:6e:2e:9e:f4:c0:f9:09:65:53:9e:31:ee:c2:cc: 81:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:3E:FA:BA:B1:CF:9B:C3:EA:A1:65:8A:B2:3D:7D:B3:53:FB:12:F1 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/598351E2476011F097E14360C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.92.64.0/21 Signature Algorithm: sha256WithRSAEncryption 99:58:9f:9a:ec:7f:71:77:0d:9e:2d:6e:3e:d3:b8:a9:69:04: c6:28:d7:6e:db:db:ba:02:d3:79:8e:0d:7e:5f:6a:59:a9:71: e2:e1:e9:81:24:26:ee:16:03:79:c2:54:5f:60:35:5c:ea:69: a2:f7:a4:22:3e:bc:48:30:1a:bc:62:2a:27:bb:52:28:18:27: 1f:42:4a:8d:c3:e2:26:41:1c:f2:33:bb:72:e7:35:eb:d4:c1: 3e:34:2d:87:9e:6b:b5:e7:46:47:b8:44:38:72:5a:5f:5e:df: df:cf:6e:69:a5:61:e5:dc:5c:15:23:b2:11:a1:0b:a6:32:c9: 17:c1:2c:74:ab:ef:84:39:e2:d7:39:d3:e3:cf:6f:dc:1a:e2: 89:18:3a:ce:31:33:e5:6e:94:08:ed:b8:19:e8:65:66:5c:38: c1:9c:65:10:8d:02:bc:fa:70:f8:ee:8c:0f:6e:5d:73:0a:26: 7b:b9:d9:07:f1:93:20:df:b2:8d:0c:b1:83:85:94:bd:a2:e5: ff:a2:26:56:9c:87:1f:80:a4:00:ef:6f:11:1d:c5:7d:76:1f: 14:68:7a:16:df:ab:c6:58:a0:38:3f:29:6f:c9:cb:45:e2:13: 6a:7a:a1:d3:a6:f0:2a:81:3a:b3:15:c4:9e:d7:68:a3:14:6d: 27:28:95:2c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDygwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjUwNjEyMDczOTIwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRhODQyNy02MDRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxDgWwsdvwPo202OPROdjVa7G3O03ylG2mQrWrhFhVOIbuuTaquk3JILAA58/ oWs1U8GhSxgC9cwkN17k3Kqg/66ozy/UqnXZW8IQ+OfPX6mj2rmXnwyIvx9+OKm6 2yhKVdH7PPIp4Een1USW19iAzrTet3CeOeZidUYepmCvtOgKz6iWYy84xjBaQ300 oZGNxMq2Tj+WZRxarHYlasyqDiOaV2P/v6gKYGGuh7vTECvwT+4SyKmVSMiFGwth ZOI2PvZyQZWju/WvUL5V0+8XEYPYGNZFupdMktezL4CRFB7cp8ipPxQIkSuF6nZz 7O5lbi6e9MD5CWVTnjHuwsyBVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIg++rqx z5vD6qFlirI9fbNT+xLxMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvNTk4MzUxRTI0 NzYwMTFGMDk3RTE0MzYwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN0XEAwDQYJKoZIhvcNAQELBQADggEBAJlYn5rsf3F3DZ4t bj7TuKlpBMYo127b27oC03mODX5falmpceLh6YEkJu4WA3nCVF9gNVzqaaL3pCI+ vEgwGrxiKie7UigYJx9CSo3D4iZBHPIzu3LnNevUwT40LYeea7XnRke4RDhyWl9e 39/PbmmlYeXcXBUjshGhC6YyyRfBLHSr74Q54tc50+PPb9wa4okYOs4xM+VulAjt uBnoZWZcOMGcZRCNArz6cPjujA9uXXMKJnu52QfxkyDfso0MsYOFlL2i5f+iJlac hx+ApADvbxEdxX12HxRoehbfq8ZYoDg/KW/Jy0XiE2p6odOm8CqBOrMVxJ7XaKMU bScolSw= -----END CERTIFICATE-----Generated at Thu Jun 19 05:31:56 2025 by rpki-client