$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/A64C29AA3D9811EE88B2694CC4F9AE02.roa File: A64C29AA3D9811EE88B2694CC4F9AE02.roa (raw, json) Hash identifier: /yoDz91aVKDMVKQFN5vWqL0kcfwjMSXqa0ohs5b1IqQ= Subject key identifier: 65:CF:04:8A:AE:07:84:1B:3E:D2:B5:DB:8D:3C:74:96:EA:D4:00:D4 Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Certificate serial: 08BE Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/A64C29AA3D9811EE88B2694CC4F9AE02.roa Signing time: Wed 18 Jun 2025 21:07:54 +0000 ROA not before: Wed 18 Jun 2025 21:07:54 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 36131 IP address blocks: 169.136.68.0/24 maxlen: 24 169.136.69.0/24 maxlen: 24 169.136.70.0/24 maxlen: 24 169.136.71.0/24 maxlen: 24 169.136.72.0/24 maxlen: 24 169.136.73.0/24 maxlen: 24 169.136.128.0/24 maxlen: 24 169.136.130.0/24 maxlen: 24 169.136.132.0/24 maxlen: 24 169.136.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 21:08:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2238 (0x8be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A, serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Validity Not Before: Jun 18 21:07:54 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68532aa9-bae5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f2:23:71:69:26:f3:f8:3a:ce:45:da:17:ce: fd:54:b1:13:39:1e:ce:ac:79:39:ac:67:cd:9f:72: 8a:4e:93:9b:89:f8:e2:7f:81:ce:42:5d:f1:15:53: ee:77:15:86:13:8e:c8:2f:e6:a2:f1:2f:14:17:e0: a7:fc:cf:97:bb:40:79:04:f1:55:07:4d:3c:d9:c5: 29:2b:6b:6f:f9:74:f0:02:ae:6b:bb:dd:d3:13:b6: 6d:7b:1c:f4:ec:c9:06:c6:31:0e:45:43:4c:60:0a: 8e:75:cd:31:13:54:16:fa:25:45:c1:f0:4a:0e:7f: 35:d5:56:ad:63:87:29:5e:50:a2:aa:f7:5e:8d:83: 2d:c4:23:7b:70:cd:81:99:22:b1:69:4e:70:89:75: a8:f0:83:21:dc:42:cd:7b:74:bb:5d:f8:59:a4:a0: 6d:13:70:16:8d:5f:42:3a:2a:37:08:b9:12:64:bd: 0f:cd:7e:86:bb:53:9a:14:8a:fb:0b:3b:03:7a:1e: 70:6c:06:25:95:50:8c:9f:56:7e:c6:5d:36:95:b4: 9b:65:78:94:7a:bd:21:db:a0:1c:18:02:79:d9:10: 2f:07:4a:19:8e:64:16:7e:97:8f:c8:94:0c:90:bb: 44:3c:71:b5:ff:fc:fd:8b:a0:11:bf:fd:be:28:26: 90:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:CF:04:8A:AE:07:84:1B:3E:D2:B5:DB:8D:3C:74:96:EA:D4:00:D4 X509v3 Authority Key Identifier: keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/A64C29AA3D9811EE88B2694CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 169.136.68.0-169.136.73.255 169.136.128.0/24 169.136.130.0/24 169.136.132.0/24 169.136.141.0/24 Signature Algorithm: sha256WithRSAEncryption 01:45:c2:76:cc:cc:f2:7b:71:d6:d2:b0:bd:07:f1:17:bc:04: af:14:b9:e3:a7:77:0c:f7:09:9d:47:fb:65:9c:a2:f9:95:f6: b6:cb:97:77:f4:41:93:ed:85:71:dd:70:cd:c6:d7:51:1f:17: 83:9d:6e:94:b3:51:ab:88:e6:f3:17:d8:48:98:3c:0a:bc:d6: 54:e7:59:b4:9c:4a:00:39:ef:57:b7:d0:e2:0c:9f:75:58:13: 7a:29:be:c9:6d:f9:d5:90:ac:63:54:52:e7:f1:ed:50:af:45: 35:ae:6b:32:cf:91:d9:d2:19:89:a9:8a:9a:5f:ad:44:c4:ee: d0:59:97:9f:25:17:47:ad:6b:b7:7e:a8:e5:7f:29:48:64:a3: 27:20:c1:65:24:e6:0c:2a:0e:00:cf:3f:e9:09:ec:ab:07:1e: 29:b9:53:3f:55:86:27:4c:b2:e5:77:0f:91:a6:99:93:7b:fc: 3b:c5:88:d5:fb:a6:a4:64:b7:42:05:0c:c4:85:96:49:2c:b4: ec:7b:00:96:29:e4:73:12:9c:67:0f:57:a4:40:04:e0:8c:1b: 16:e0:76:99:eb:07:6f:12:29:49:5a:fa:ba:ee:69:c2:55:1e: 94:03:b5:31:7e:aa:00:70:1a:5d:dd:eb:c0:bb:47:cb:a3:96: b0:c4:80:96 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICCL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDdFMjQ0MzEwRDdBNDU2RUIxMjdCOTI2QzQyRjI2RDc5 RTlBQ0RCODgwHhcNMjUwNjE4MjEwNzU0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUzMmFhOS1iYWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPIjcWkm8/g6zkXaF879VLETOR7OrHk5rGfNn3KKTpObifjif4HOQl3xFVPu dxWGE47IL+ai8S8UF+Cn/M+Xu0B5BPFVB0082cUpK2tv+XTwAq5ru93TE7Ztexz0 7MkGxjEORUNMYAqOdc0xE1QW+iVFwfBKDn811VatY4cpXlCiqvdejYMtxCN7cM2B mSKxaU5wiXWo8IMh3ELNe3S7XfhZpKBtE3AWjV9COio3CLkSZL0PzX6Gu1OaFIr7 CzsDeh5wbAYllVCMn1Z+xl02lbSbZXiUer0h26AcGAJ52RAvB0oZjmQWfpePyJQM kLtEPHG1//z9i6ARv/2+KCaQ5wIDAQABo4ICtTCCArEwHQYDVR0OBBYEFGXPBIqu B4QbPtK12408dJbq1ADUMB8GA1UdIwQYMBaAFH4kQxDXpFbrEnuSbELybXnprNuI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GN0RGQTcyRUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9maVJERU5la1Z1c1NlNUpzUXZKdGVlbXMy NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZpUkRFTmVrVnVzU2U1SnNRdkp0ZWVtczI0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRjdERkE3MkVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvQTY0QzI5QUEz RDk4MTFFRTg4QjI2OTRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMCwEAgABMCYwDAMEAqmIRAMEAamISAMEAKmIgAMEAKmIggMEAKmIhAMEAKmI jTANBgkqhkiG9w0BAQsFAAOCAQEAAUXCdszM8ntx1tKwvQfxF7wErxS546d3DPcJ nUf7ZZyi+ZX2tsuXd/RBk+2Fcd1wzcbXUR8Xg51ulLNRq4jm8xfYSJg8CrzWVOdZ tJxKADnvV7fQ4gyfdVgTeim+yW351ZCsY1RS5/HtUK9FNa5rMs+R2dIZiamKml+t RMTu0FmXnyUXR61rt36o5X8pSGSjJyDBZSTmDCoOAM8/6QnsqwceKblTP1WGJ0yy 5XcPkaaZk3v8O8WI1fumpGS3QgUMxIWWSSy07HsAlinkcxKcZw9XpEAE4IwbFuB2 mesHbxIpSVr6uu5pwlUelAO1MX6qAHAaXd3rwLtHy6OWsMSAlg== -----END CERTIFICATE-----Generated at Thu Jun 19 14:27:24 2025 by rpki-client