$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/00756F7E63F011EC987F5B19C4F9AE02.roa File: 00756F7E63F011EC987F5B19C4F9AE02.roa (raw, json) Hash identifier: IN0gc9PJxJ33qBabtfsH0oOyy1CZdnLejFeFWz0Ut3w= Subject key identifier: C4:50:03:DA:F6:6A:32:67:0B:83:A7:EA:57:58:EC:C9:53:49:B5:15 Certificate issuer: /CN=A91DDCB6/serialNumber=18DC531D44F05962E97F23845736141D3E02681B Certificate serial: 06C0 Authority key identifier: 18:DC:53:1D:44:F0:59:62:E9:7F:23:84:57:36:14:1D:3E:02:68:1B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GNxTHUTwWWLpfyOEVzYUHT4CaBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/00756F7E63F011EC987F5B19C4F9AE02.roa Signing time: Tue 22 Jul 2025 07:46:31 +0000 ROA not before: Tue 22 Jul 2025 07:46:31 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 132420 IP address blocks: 91.203.132.0/22 maxlen: 24 151.185.32.0/19 maxlen: 24 217.18.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/GNxTHUTwWWLpfyOEVzYUHT4CaBs.crl rsync://rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/GNxTHUTwWWLpfyOEVzYUHT4CaBs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GNxTHUTwWWLpfyOEVzYUHT4CaBs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1728 (0x6c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCB6, serialNumber=18DC531D44F05962E97F23845736141D3E02681B Validity Not Before: Jul 22 07:46:31 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=687f41d7-c68c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:82:d7:33:25:7c:a8:43:fb:6a:5a:fd:fd:92: 44:ca:7d:e9:5b:d5:5b:ca:d4:e8:85:9e:b0:aa:eb: 9e:a5:8c:fd:ca:43:a9:9a:34:4a:52:8a:25:87:4e: b8:ae:a5:5e:47:11:46:08:b9:6a:f3:0f:09:da:d1: 71:ff:af:be:2d:e4:ae:97:fb:ae:cc:b6:8b:bc:79: 63:d4:88:53:eb:63:fd:9b:45:e0:e4:34:7c:bd:77: 4c:dd:0a:56:6f:75:c2:df:90:d0:ba:78:3a:75:91: 32:a6:86:49:50:92:3a:15:c7:9d:1d:b4:1c:7d:d5: 1e:4b:03:47:d5:22:d1:ed:0b:e8:ba:c2:4a:e9:23: d3:92:cf:ef:45:ce:f5:b1:7a:dc:c6:c7:30:a7:f4: 1b:e9:8c:e1:56:28:06:1c:30:c9:d0:ed:44:b9:ab: dd:07:0c:1f:e4:a6:47:cc:7d:a6:01:37:89:b8:af: f7:42:db:2d:d5:c6:3d:10:1e:b5:e0:75:b4:b7:c8: 98:02:a7:73:46:1d:3e:2d:33:88:ee:68:00:c6:c6: 07:eb:7f:6d:3d:a8:e4:20:28:2f:56:e7:11:3a:74: 61:4e:bd:62:4b:2e:f4:2e:a6:d9:bd:8a:f8:3b:ef: 56:ca:de:8d:76:66:a1:cf:d7:f8:89:9a:1b:2c:4d: 56:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:50:03:DA:F6:6A:32:67:0B:83:A7:EA:57:58:EC:C9:53:49:B5:15 X509v3 Authority Key Identifier: keyid:18:DC:53:1D:44:F0:59:62:E9:7F:23:84:57:36:14:1D:3E:02:68:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/GNxTHUTwWWLpfyOEVzYUHT4CaBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GNxTHUTwWWLpfyOEVzYUHT4CaBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/00756F7E63F011EC987F5B19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 91.203.132.0/22 151.185.32.0/19 217.18.52.0/22 Signature Algorithm: sha256WithRSAEncryption 15:a5:97:66:20:ce:c9:06:cb:1f:40:b4:b8:d3:43:90:43:a4: ed:67:20:3e:1e:7e:94:3c:4d:0d:5d:31:44:8f:ba:e5:f8:84: f8:c0:b5:61:f6:d1:5a:df:6b:57:9f:8b:f0:af:f4:39:6e:66: 72:a3:0c:91:48:77:35:0b:66:22:82:fa:c3:97:c0:0c:dc:08: d8:b6:b8:51:f2:44:91:e1:fa:f5:fb:10:a1:db:f1:71:71:76: bf:8d:de:bc:81:74:cc:15:1e:15:bf:ba:d2:c7:9f:1f:a4:28: e5:f2:1c:6e:6e:68:9b:0c:18:19:50:ac:aa:76:e6:7a:09:83: bd:23:8b:95:40:e0:a8:6f:30:d8:6e:7a:a3:45:30:af:7c:6d: a4:e1:99:55:e3:fe:54:46:18:b0:ce:9a:14:da:d0:81:c0:82: 4a:66:db:91:2b:b4:bb:6d:d7:f4:3d:30:de:a0:b6:7e:8b:61: 03:1b:f3:91:e3:43:0a:ea:9e:85:0a:f3:ab:d4:aa:b6:a2:1f: d5:2f:be:8f:68:10:e6:9d:ad:e8:eb:91:f7:bb:e5:bb:c4:41: a6:43:6b:0c:16:2a:1c:fc:1e:b1:49:7d:61:c8:8d:26:c2:d9: 64:4b:f5:a6:9e:35:0e:4a:cd:17:c9:be:0e:7e:23:2f:47:61: 9c:51:44:82 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBsAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERDQjYxMTAvBgNVBAUTKDE4REM1MzFENDRGMDU5NjJFOTdGMjM4NDU3MzYxNDFE M0UwMjY4MUIwHhcNMjUwNzIyMDc0NjMxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODdmNDFkNy1jNjhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn4LXMyV8qEP7alr9/ZJEyn3pW9VbytTohZ6wquuepYz9ykOpmjRKUoolh064 rqVeRxFGCLlq8w8J2tFx/6++LeSul/uuzLaLvHlj1IhT62P9m0Xg5DR8vXdM3QpW b3XC35DQung6dZEypoZJUJI6FcedHbQcfdUeSwNH1SLR7QvousJK6SPTks/vRc71 sXrcxscwp/Qb6YzhVigGHDDJ0O1EuavdBwwf5KZHzH2mATeJuK/3Qtst1cY9EB61 4HW0t8iYAqdzRh0+LTOI7mgAxsYH639tPajkICgvVucROnRhTr1iSy70LqbZvYr4 O+9Wyt6Ndmahz9f4iZobLE1WTQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFMRQA9r2 ajJnC4On6ldY7MlTSbUVMB8GA1UdIwQYMBaAFBjcUx1E8Fli6X8jhFc2FB0+Amgb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERENCNi82RTlBQzgwNjcx RDgxMUVCODA0NzcyMURDNEY5QUUwMi9HTnhUSFVUd1dXTHBmeU9FVnpZVUhUNENh QnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0dOeFRIVVR3V1dMcGZ5T0VWellVSFQ0Q2FCcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RERDQjYvNkU5QUM4MDY3MUQ4MTFFQjgwNDc3MjFEQzRGOUFFMDIvMDA3NTZGN0U2 M0YwMTFFQzk4N0Y1QjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJby4QDBAWXuSADBALZEjQwDQYJKoZIhvcNAQELBQADggEB ABWll2YgzskGyx9AtLjTQ5BDpO1nID4efpQ8TQ1dMUSPuuX4hPjAtWH20Vrfa1ef i/Cv9DluZnKjDJFIdzULZiKC+sOXwAzcCNi2uFHyRJHh+vX7EKHb8XFxdr+N3ryB dMwVHhW/utLHnx+kKOXyHG5uaJsMGBlQrKp25noJg70ji5VA4KhvMNhueqNFMK98 baThmVXj/lRGGLDOmhTa0IHAgkpm25ErtLtt1/Q9MN6gtn6LYQMb85HjQwrqnoUK 86vUqraiH9Uvvo9oEOadrejrkfe75bvEQaZDawwWKhz8HrFJfWHIjSbC2WRL9aae NQ5KzRfJvg5+Iy9HYZxRRII= -----END CERTIFICATE-----Generated at Sun Aug 10 19:51:32 2025 by rpki-client