$ rpki-client -vvf rpki.apnic.net/member_repository/A91D17E6/0594FAE21E5F11F09518664DC4F9AE02/BA5D351C4C0311F0ABCEF33AC4F9AE02.roa File: BA5D351C4C0311F0ABCEF33AC4F9AE02.roa (raw, json) Hash identifier: Kcq7bCUGmI5Bp+s4yhX/8VE1f6QaguT6MUZ8dIkMVNc= Subject key identifier: C9:6A:5E:59:B0:D1:D5:D2:7E:CD:FF:54:19:01:75:63:70:FE:1A:AE Certificate issuer: /CN=A91D17E6/serialNumber=162CCE86E2A3697E918B7CB5D56DA0A002C79371 Certificate serial: 20 Authority key identifier: 16:2C:CE:86:E2:A3:69:7E:91:8B:7C:B5:D5:6D:A0:A0:02:C7:93:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FizOhuKjaX6Ri3y11W2goALHk3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D17E6/0594FAE21E5F11F09518664DC4F9AE02/BA5D351C4C0311F0ABCEF33AC4F9AE02.roa Signing time: Wed 18 Jun 2025 05:18:54 +0000 ROA not before: Wed 18 Jun 2025 05:18:54 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 18024 IP address blocks: 163.227.30.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D17E6/0594FAE21E5F11F09518664DC4F9AE02/FizOhuKjaX6Ri3y11W2goALHk3E.crl rsync://rpki.apnic.net/member_repository/A91D17E6/0594FAE21E5F11F09518664DC4F9AE02/FizOhuKjaX6Ri3y11W2goALHk3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FizOhuKjaX6Ri3y11W2goALHk3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 07:14:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D17E6, serialNumber=162CCE86E2A3697E918B7CB5D56DA0A002C79371 Validity Not Before: Jun 18 05:18:54 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68524c3e-a14f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9a:18:1d:cc:a0:2a:c6:fa:43:20:16:12:1f: de:17:fe:d6:d5:59:b2:45:f1:f2:ad:26:68:54:25: 6b:4b:fe:f8:39:43:28:f2:ac:5a:83:b5:65:68:3a: 4d:d6:d1:1f:68:75:31:4b:12:54:8c:74:ae:6c:3a: 55:a6:8f:6a:fa:48:f1:0b:03:94:73:04:df:ad:fa: ae:20:2d:de:bb:5d:3f:01:91:20:f4:b9:f2:58:61: 91:d1:2c:53:8b:d1:51:0d:e0:6c:19:6b:ff:c1:92: 4d:72:d8:fa:06:47:88:19:db:04:ab:28:b9:f9:7b: 7e:7f:83:5a:6b:d7:8b:32:da:38:8b:d9:c5:04:37: 04:96:2d:9b:6d:67:6c:1c:f9:d3:3f:8a:30:3b:de: da:0b:56:48:b3:d3:01:fa:4e:ac:14:31:1a:fd:cc: 50:ba:32:b7:84:58:e8:60:de:a9:7a:88:ab:bc:e9: 28:b2:18:56:a8:b4:59:ec:2c:38:e1:35:42:6a:a5: 86:81:8f:c8:65:30:4b:89:13:99:40:80:fd:af:28: 19:bd:62:58:b3:f7:35:09:24:05:8d:49:3e:fc:db: 71:19:82:39:73:4f:cf:0d:43:64:37:13:73:70:6a: 5b:65:3e:c0:bc:6b:4d:ab:10:91:cb:ee:37:db:87: 62:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:6A:5E:59:B0:D1:D5:D2:7E:CD:FF:54:19:01:75:63:70:FE:1A:AE X509v3 Authority Key Identifier: keyid:16:2C:CE:86:E2:A3:69:7E:91:8B:7C:B5:D5:6D:A0:A0:02:C7:93:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D17E6/0594FAE21E5F11F09518664DC4F9AE02/FizOhuKjaX6Ri3y11W2goALHk3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FizOhuKjaX6Ri3y11W2goALHk3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D17E6/0594FAE21E5F11F09518664DC4F9AE02/BA5D351C4C0311F0ABCEF33AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.30.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:87:fe:7b:43:78:25:f5:6c:bb:d0:c7:e7:03:9b:2a:be:0b: 14:f1:52:b3:f4:bd:fb:8c:eb:d9:74:ce:5f:a6:88:e2:3e:fe: db:e5:97:42:d4:6d:fd:34:86:08:d2:e9:e8:a8:9f:7a:e3:4d: 30:94:dd:16:37:f6:d2:3f:70:e3:9e:17:7f:87:8d:d5:2a:ed: 21:69:68:08:64:a0:12:c5:fa:fd:10:7f:39:25:4a:85:eb:b7: de:ce:51:c7:ff:0e:59:e7:93:79:b4:ac:f4:de:3d:b4:7f:0f: 75:5d:71:a0:f8:0a:f5:50:c7:ff:f3:20:fd:a0:54:c9:d9:85: 8d:92:f6:55:db:12:e0:c5:9c:66:89:fa:6c:b8:fe:83:93:b9: 03:b7:62:34:9f:a9:47:28:ee:16:f1:c0:51:9a:3b:69:2e:62: 35:fd:32:21:f1:27:87:11:7b:5c:90:e2:32:b2:2c:1e:cc:70: 23:74:c7:ec:98:c4:02:6a:60:6a:ff:2b:99:27:6c:79:94:67: 2d:70:3e:46:6f:1c:a7:01:98:28:87:e6:31:dd:d3:61:97:3b: 35:07:6f:25:fb:4d:fa:b3:6a:1a:89:3f:84:80:59:f7:24:5e: bd:4d:2e:f7:b1:68:9f:14:9e:da:03:31:37:63:7b:6c:dd:10: a1:55:63:3b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE MTdFNjExMC8GA1UEBRMoMTYyQ0NFODZFMkEzNjk3RTkxOEI3Q0I1RDU2REEwQTAw MkM3OTM3MTAeFw0yNTA2MTgwNTE4NTRaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NTI0YzNlLWExNGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9mhgdzKAqxvpDIBYSH94X/tbVWbJF8fKtJmhUJWtL/vg5QyjyrFqDtWVoOk3W 0R9odTFLElSMdK5sOlWmj2r6SPELA5RzBN+t+q4gLd67XT8BkSD0ufJYYZHRLFOL 0VEN4GwZa//Bkk1y2PoGR4gZ2wSrKLn5e35/g1pr14sy2jiL2cUENwSWLZttZ2wc +dM/ijA73toLVkiz0wH6TqwUMRr9zFC6MreEWOhg3ql6iKu86SiyGFaotFnsLDjh NUJqpYaBj8hlMEuJE5lAgP2vKBm9Yliz9zUJJAWNST7823EZgjlzT88NQ2Q3E3Nw altlPsC8a02rEJHL7jfbh2IxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUyWpeWbDR 1dJ+zf9UGQF1Y3D+Gq4wHwYDVR0jBBgwFoAUFizOhuKjaX6Ri3y11W2goALHk3Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQxN0U2LzA1OTRGQUUyMUU1 RjExRjA5NTE4NjY0REM0RjlBRTAyL0Zpek9odUtqYVg2UmkzeTExVzJnb0FMSGsz RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRml6T2h1S2phWDZSaTN5MTFXMmdvQUxIazNFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE MTdFNi8wNTk0RkFFMjFFNUYxMUYwOTUxODY2NERDNEY5QUUwMi9CQTVEMzUxQzRD MDMxMUYwQUJDRUYzM0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaPjHjANBgkqhkiG9w0BAQsFAAOCAQEAD4f+e0N4JfVsu9DH 5wObKr4LFPFSs/S9+4zr2XTOX6aI4j7+2+WXQtRt/TSGCNLp6KifeuNNMJTdFjf2 0j9w454Xf4eN1SrtIWloCGSgEsX6/RB/OSVKheu33s5Rx/8OWeeTebSs9N49tH8P dV1xoPgK9VDH//Mg/aBUydmFjZL2VdsS4MWcZon6bLj+g5O5A7diNJ+pRyjuFvHA UZo7aS5iNf0yIfEnhxF7XJDiMrIsHsxwI3TH7JjEAmpgav8rmSdseZRnLXA+Rm8c pwGYKIfmMd3TYZc7NQdvJftN+rNqGok/hIBZ9yRevU0u97FonxSe2gMxN2N7bN0Q oVVjOw== -----END CERTIFICATE-----Generated at Thu Jun 19 09:41:49 2025 by rpki-client