$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/2AECA58494EE11EE84F9D73CC4F9AE02.roa File: 2AECA58494EE11EE84F9D73CC4F9AE02.roa (raw, json) Hash identifier: sck8zsR6Ll2dvtRynSaP+rCckHjFsxrRwW21LjTLuZc= Subject key identifier: A0:D1:F0:FE:AC:7C:20:1A:FB:68:51:93:38:6B:E3:19:78:22:CF:0A Certificate issuer: /CN=A91DC31B/serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8 Certificate serial: 073F Authority key identifier: 8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/2AECA58494EE11EE84F9D73CC4F9AE02.roa Signing time: Wed 11 Jun 2025 06:51:43 +0000 ROA not before: Wed 11 Jun 2025 06:51:43 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 19551 IP address blocks: 166.81.2.0/24 maxlen: 24 166.81.51.0/24 maxlen: 24 166.81.52.0/24 maxlen: 24 166.81.54.0/24 maxlen: 24 166.81.56.0/24 maxlen: 24 166.81.57.0/24 maxlen: 24 166.81.62.0/24 maxlen: 24 166.81.63.0/24 maxlen: 24 166.81.83.0/24 maxlen: 24 166.81.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 22:11:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1855 (0x73f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC31B, serialNumber=8B8AD5CA1C3E8B8CF468B5F496A91ABB0E48CFA8 Validity Not Before: Jun 11 06:51:43 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6849277e-21e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:ab:e4:d6:fa:04:e9:12:a1:c1:cd:f4:0e:29: 9e:89:91:7a:67:cc:4b:55:5c:d0:fc:62:3d:bf:6d: f9:84:cb:e1:eb:3c:c3:e8:64:4a:1d:b2:e5:5a:64: 41:20:3b:46:04:e6:c0:8c:43:8a:de:33:ad:ee:ce: 3e:f3:17:4e:8c:d6:54:ae:ed:a7:9f:77:4b:da:d8: ed:67:e0:2b:9f:3e:30:cd:38:df:ea:25:dd:21:6e: df:41:97:47:50:15:5a:97:67:a4:c2:5a:65:6c:f2: 84:53:3b:d1:04:18:98:6a:5c:95:e7:c7:a4:83:86: 1a:97:c5:53:3a:d3:5d:bd:46:ea:b9:a2:12:f2:c6: 05:5f:40:eb:75:20:43:71:bf:0d:9b:90:cd:a8:6a: ab:44:37:47:d2:fc:87:29:d0:39:af:c5:cd:b5:a6: 37:b2:dc:d8:40:32:9f:82:1f:23:84:3b:85:e2:b3: 10:d8:ea:43:67:8a:77:d4:c0:99:d8:0d:6a:f5:2a: 8b:2e:87:37:8b:4a:5c:40:41:ce:16:c9:96:9e:9e: ac:ec:23:7a:b6:f0:fd:6b:5e:26:73:dc:5e:8e:53: ef:3f:80:b2:66:60:36:a0:4c:b3:62:27:2a:8a:7d: 29:32:b3:a5:51:c2:0f:9b:f2:16:81:97:05:5c:91: 43:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:D1:F0:FE:AC:7C:20:1A:FB:68:51:93:38:6B:E3:19:78:22:CF:0A X509v3 Authority Key Identifier: keyid:8B:8A:D5:CA:1C:3E:8B:8C:F4:68:B5:F4:96:A9:1A:BB:0E:48:CF:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/i4rVyhw-i4z0aLX0lqkauw5Iz6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/i4rVyhw-i4z0aLX0lqkauw5Iz6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC31B/D0ECCD48893D11EB916DF022C4F9AE02/2AECA58494EE11EE84F9D73CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 166.81.2.0/24 166.81.51.0-166.81.52.255 166.81.54.0/24 166.81.56.0/23 166.81.62.0/23 166.81.83.0-166.81.84.255 Signature Algorithm: sha256WithRSAEncryption 15:d4:da:10:35:e0:66:78:de:f7:2a:c3:fd:f1:06:e4:86:76: 45:69:2f:3f:b5:a4:39:c2:62:05:c7:94:cb:9c:4e:ae:45:ed: bc:d4:ab:27:28:8c:be:26:62:8c:9a:30:ce:90:b4:47:09:45: f7:8b:08:a9:7a:79:a8:90:1e:33:72:a2:dd:06:97:09:3c:40: 06:55:7a:70:33:94:e2:f8:53:24:57:00:0f:ad:bb:d3:3e:17: e2:b2:ae:ba:2b:0f:c4:38:46:b3:19:f9:5c:95:01:16:0d:06: 1a:06:34:a6:f5:23:1b:39:fc:42:50:b4:87:5e:af:fe:77:cd: c3:d5:6d:25:4d:f1:3a:da:28:e6:55:ed:f0:31:0a:54:ab:c4: 07:ad:a1:4d:6a:8b:8b:6b:d6:01:b4:7a:58:76:77:98:2b:7c: ff:a7:f0:9d:f4:92:a9:a0:73:d2:c1:66:4a:8e:8a:e4:62:b7: c5:c6:9a:69:d0:27:de:53:eb:91:85:d7:7c:1d:7d:33:ab:72: 23:14:64:e4:82:b6:2e:9d:41:b8:1d:e8:7a:ee:be:18:90:80: 73:42:be:8f:1f:a5:4a:33:44:2a:84:0f:23:b0:00:e9:ba:bd: e4:02:89:4c:a0:c1:c4:6f:da:39:6f:f7:42:c8:4e:da:b5:43: 32:55:25:e2 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICBz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REMzMUIxMTAvBgNVBAUTKDhCOEFENUNBMUMzRThCOENGNDY4QjVGNDk2QTkxQUJC MEU0OENGQTgwHhcNMjUwNjExMDY1MTQzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ5Mjc3ZS0yMWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqvk1voE6RKhwc30DimeiZF6Z8xLVVzQ/GI9v235hMvh6zzD6GRKHbLlWmRB IDtGBObAjEOK3jOt7s4+8xdOjNZUru2nn3dL2tjtZ+Arnz4wzTjf6iXdIW7fQZdH UBVal2ekwlplbPKEUzvRBBiYalyV58ekg4Yal8VTOtNdvUbquaIS8sYFX0DrdSBD cb8Nm5DNqGqrRDdH0vyHKdA5r8XNtaY3stzYQDKfgh8jhDuF4rMQ2OpDZ4p31MCZ 2A1q9SqLLoc3i0pcQEHOFsmWnp6s7CN6tvD9a14mc9xejlPvP4CyZmA2oEyzYicq in0pMrOlUcIPm/IWgZcFXJFDywIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFKDR8P6s fCAa+2hRkzhr4xl4Is8KMB8GA1UdIwQYMBaAFIuK1cocPouM9Gi19JapGrsOSM+o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzMxQi9EMEVDQ0Q0ODg5 M0QxMUVCOTE2REYwMjJDNEY5QUUwMi9pNHJWeWh3LWk0ejBhTFgwbHFrYXV3NUl6 NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2k0clZ5aHctaTR6MGFMWDBscWthdXc1SXo2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REMzMUIvRDBFQ0NENDg4OTNEMTFFQjkxNkRGMDIyQzRGOUFFMDIvMkFFQ0E1ODQ5 NEVFMTFFRTg0RjlENzNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MDoEAgABMDQDBACmUQIwDAMEAKZRMwMEAKZRNAMEAKZRNgMEAaZROAMEAaZR PjAMAwQAplFTAwQAplFUMA0GCSqGSIb3DQEBCwUAA4IBAQAV1NoQNeBmeN73KsP9 8QbkhnZFaS8/taQ5wmIFx5TLnE6uRe281KsnKIy+JmKMmjDOkLRHCUX3iwipenmo kB4zcqLdBpcJPEAGVXpwM5Ti+FMkVwAPrbvTPhfisq66Kw/EOEazGflclQEWDQYa BjSm9SMbOfxCULSHXq/+d83D1W0lTfE62ijmVe3wMQpUq8QHraFNaouLa9YBtHpY dneYK3z/p/Cd9JKpoHPSwWZKjorkYrfFxppp0CfeU+uRhdd8HX0zq3IjFGTkgrYu nUG4Heh67r4YkIBzQr6PH6VKM0QqhA8jsADpur3kAolMoMHEb9o5b/dCyE7atUMy VSXi -----END CERTIFICATE-----Generated at Tue Jun 17 04:35:46 2025 by rpki-client