$ rpki-client -vvf rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/FE60ECB0879311EB84047577C4F9AE02.roa File: FE60ECB0879311EB84047577C4F9AE02.roa (raw, json) Hash identifier: iVH3rhTgtUSo/JF63FQElE1NqUIp2qYoI3iOuK+LB04= Subject key identifier: F8:CD:4D:F6:15:61:9B:D0:30:87:0C:66:80:19:C5:8D:88:05:C9:CC Certificate issuer: /CN=A91D8B6F/serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Certificate serial: 0892 Authority key identifier: 9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/FE60ECB0879311EB84047577C4F9AE02.roa Signing time: Fri 08 Aug 2025 21:02:03 +0000 ROA not before: Fri 08 Aug 2025 21:02:03 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 18422 IP address blocks: 140.96.0.0/16 maxlen: 19 140.96.0.0/18 maxlen: 24 140.96.2.0/24 maxlen: 24 140.96.4.0/23 maxlen: 23 140.96.4.0/24 maxlen: 24 140.96.10.0/23 maxlen: 24 140.96.64.0/19 maxlen: 23 140.96.64.0/20 maxlen: 24 140.96.80.0/21 maxlen: 24 140.96.88.0/22 maxlen: 24 140.96.92.0/23 maxlen: 24 140.96.94.0/24 maxlen: 24 140.96.100.0/22 maxlen: 24 140.96.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2194 (0x892) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D8B6F, serialNumber=9C428B84073EBE782EED33F92E40DD7361A09CAA Validity Not Before: Aug 8 21:02:03 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689665cb-98f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:54:d0:8b:4b:71:bd:7a:7e:c0:6d:c3:91:3f: b1:33:09:27:6b:2f:24:23:4a:32:55:e1:71:db:34: cd:e9:51:c5:87:4d:95:97:f1:4e:80:4b:7a:f1:24: b0:d4:10:a3:b3:6e:15:24:8f:fb:c7:84:9f:33:b3: 42:95:64:45:f6:73:b3:60:bd:16:f0:05:3b:78:77: 7f:12:cb:35:03:9d:9e:4a:7a:6f:e8:5b:eb:d8:94: 63:f6:bd:74:fd:13:26:ce:db:22:51:d7:36:6e:8c: f6:79:4f:b1:8b:7a:8c:f3:45:25:7f:60:73:94:11: 02:e6:7c:03:e5:17:1d:b3:f3:1e:85:cc:e3:39:03: da:29:ef:d9:61:d1:aa:41:ee:04:94:bf:2b:fd:ac: d3:43:8d:07:13:ee:c2:02:b2:59:79:b1:11:f3:61: b3:6e:98:72:5c:f9:a2:63:1d:2a:0b:ae:6d:8c:d4: 09:d1:1f:da:eb:87:ff:fb:f4:1e:5c:12:d4:8e:c9: b2:a4:d7:bf:4d:42:64:19:e6:94:60:f0:3d:e7:34: 88:c7:0c:f9:2c:d9:d9:46:58:a1:db:b1:88:89:9a: 68:64:fc:1c:32:d4:45:b2:a8:cc:c6:ee:fa:1e:12: 23:a3:6a:dc:18:e7:0a:2e:95:71:23:bd:b5:ee:30: 22:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:CD:4D:F6:15:61:9B:D0:30:87:0C:66:80:19:C5:8D:88:05:C9:CC X509v3 Authority Key Identifier: keyid:9C:42:8B:84:07:3E:BE:78:2E:ED:33:F9:2E:40:DD:73:61:A0:9C:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/nEKLhAc-vngu7TP5LkDdc2GgnKo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/nEKLhAc-vngu7TP5LkDdc2GgnKo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D8B6F/E448BF18C4EF11EA87F43810C4F9AE02/FE60ECB0879311EB84047577C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.96.0.0/16 Signature Algorithm: sha256WithRSAEncryption 66:8a:bb:90:0b:43:3d:3f:66:9b:09:e5:4b:c1:14:92:7e:28: f7:e2:f3:3f:9b:e9:6a:26:7b:51:ae:2f:3a:1d:50:e9:d1:70: 68:52:6c:ff:fb:b5:4a:8b:6c:d2:de:cc:2a:1a:52:67:9e:b4: 2c:4a:66:aa:c5:1c:90:98:3a:a6:ce:61:7b:38:03:e6:7f:e0: df:10:2a:05:b9:63:c8:02:3c:27:4c:a1:bc:10:6e:36:a4:e1: af:a6:bc:2f:66:41:e5:24:e2:ff:7e:69:52:1e:7b:41:2b:b3: 6b:8b:01:f6:b3:15:88:96:63:f7:d3:e2:c0:b7:e9:15:b0:71: a7:09:1f:89:fc:ac:83:17:c3:b5:31:e8:b5:6a:5c:ee:19:79: 71:39:e6:6a:e5:3e:08:5d:50:b2:cb:8b:c5:66:43:74:be:47: c6:08:ae:07:64:b6:f7:69:fe:c9:78:0d:71:ff:87:0d:a6:54: 59:61:01:86:8f:0d:f6:38:01:bb:d0:c2:10:dc:17:13:31:07: c1:8d:9d:71:e7:4d:d6:ea:ad:58:17:b7:e6:13:13:64:c5:10: 52:67:55:72:5f:98:6c:bf:6a:f2:50:1a:c4:01:88:0f:28:cf: b4:3e:59:74:f5:0e:1e:90:26:6d:0a:c2:2f:79:ed:65:3a:b2: 80:2a:25:91 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICCJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDhCNkYxMTAvBgNVBAUTKDlDNDI4Qjg0MDczRUJFNzgyRUVEMzNGOTJFNDBERDcz NjFBMDlDQUEwHhcNMjUwODA4MjEwMjAzWhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2NjVjYi05OGY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2VTQi0txvXp+wG3DkT+xMwknay8kI0oyVeFx2zTN6VHFh02Vl/FOgEt68SSw 1BCjs24VJI/7x4SfM7NClWRF9nOzYL0W8AU7eHd/Ess1A52eSnpv6Fvr2JRj9r10 /RMmztsiUdc2boz2eU+xi3qM80Ulf2BzlBEC5nwD5Rcds/MehczjOQPaKe/ZYdGq Qe4ElL8r/azTQ40HE+7CArJZebER82GzbphyXPmiYx0qC65tjNQJ0R/a64f/+/Qe XBLUjsmypNe/TUJkGeaUYPA95zSIxwz5LNnZRlih27GIiZpoZPwcMtRFsqjMxu76 HhIjo2rcGOcKLpVxI7217jAiywIDAQABo4IClDCCApAwHQYDVR0OBBYEFPjNTfYV YZvQMIcMZoAZxY2IBcnMMB8GA1UdIwQYMBaAFJxCi4QHPr54Lu0z+S5A3XNhoJyq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOEI2Ri9FNDQ4QkYxOEM0 RUYxMUVBODdGNDM4MTBDNEY5QUUwMi9uRUtMaEFjLXZuZ3U3VFA1TGtEZGMyR2du S28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL25FS0xoQWMtdm5ndTdUUDVMa0RkYzJHZ25Lby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDhCNkYvRTQ0OEJGMThDNEVGMTFFQTg3RjQzODEwQzRGOUFFMDIvRkU2MEVDQjA4 NzkzMTFFQjg0MDQ3NTc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCMYDANBgkqhkiG9w0BAQsFAAOCAQEAZoq7kAtDPT9mmwnl S8EUkn4o9+LzP5vpaiZ7Ua4vOh1Q6dFwaFJs//u1Sots0t7MKhpSZ560LEpmqsUc kJg6ps5hezgD5n/g3xAqBbljyAI8J0yhvBBuNqThr6a8L2ZB5STi/35pUh57QSuz a4sB9rMViJZj99PiwLfpFbBxpwkfifysgxfDtTHotWpc7hl5cTnmauU+CF1QssuL xWZDdL5HxgiuB2S292n+yXgNcf+HDaZUWWEBho8N9jgBu9DCENwXEzEHwY2dcedN 1uqtWBe35hMTZMUQUmdVcl+YbL9q8lAaxAGIDyjPtD5ZdPUOHpAmbQrCL3ntZTqy gColkQ== -----END CERTIFICATE-----Generated at Sun Aug 10 04:58:04 2025 by rpki-client