$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/B59B34B2A59511EFB1B8AF36C4F9AE02.roa File: B59B34B2A59511EFB1B8AF36C4F9AE02.roa (raw, json) Hash identifier: vWyefttpePLkPBEoycC5X0lmEGRfAIuwi2Ngs4ojIYc= Subject key identifier: DC:F9:52:EE:AC:0C:68:DC:F3:45:66:A1:BB:E4:A7:35:9C:7C:44:C3 Certificate issuer: /CN=A91DF93A/serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Certificate serial: 08BC Authority key identifier: 7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/B59B34B2A59511EFB1B8AF36C4F9AE02.roa Signing time: Wed 18 Jun 2025 21:07:52 +0000 ROA not before: Wed 18 Jun 2025 21:07:52 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 212879 IP address blocks: 169.136.64.0/24 maxlen: 24 169.136.65.0/24 maxlen: 24 169.136.67.0/24 maxlen: 24 169.136.72.0/24 maxlen: 24 169.136.133.0/24 maxlen: 24 169.136.142.0/24 maxlen: 24 169.136.145.0/24 maxlen: 24 169.136.146.0/24 maxlen: 24 169.136.147.0/24 maxlen: 24 169.136.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 21:08:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2236 (0x8bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A, serialNumber=7E244310D7A456EB127B926C42F26D79E9ACDB88 Validity Not Before: Jun 18 21:07:52 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68532aa8-405d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b4:5a:fd:04:44:43:43:59:1e:81:27:bd:53: e3:a4:5a:ee:90:64:de:25:ef:1f:fc:64:c8:03:37: b2:19:5b:f5:0a:c6:24:09:f0:9e:6e:b8:bd:b1:73: 6e:32:82:22:46:8d:2e:c0:6b:d2:07:be:df:a6:8e: 64:c7:af:bb:e5:6e:95:57:1c:e8:58:e6:b5:49:f2: c6:74:85:35:8e:c9:28:74:d5:49:45:74:ff:5e:32: 75:e3:1f:6c:7f:76:14:d5:fb:33:4c:45:34:25:c9: 07:89:36:c8:bb:1d:16:e1:e8:1a:ae:ab:e1:11:bc: 65:68:52:a3:30:17:5b:2a:4f:15:66:ea:10:89:07: 58:1b:2f:28:d9:5c:5b:90:2f:1d:b9:a3:f5:af:5b: d2:20:86:96:59:19:a1:a6:aa:b2:da:9f:a4:23:d4: 7a:0c:9b:c8:c3:1b:dd:ea:39:aa:05:e7:4a:30:c7: 05:77:95:38:c6:55:22:49:0f:6c:a9:45:14:1c:71: 4f:25:26:09:40:34:2c:94:88:36:12:ae:36:fc:2b: 56:f9:1a:7f:e1:3c:72:36:da:ef:19:b6:af:12:03: 78:0a:b3:40:8e:e4:a2:df:73:25:48:bf:4f:ae:56: 7b:dd:fd:db:3b:c6:0c:cf:c6:96:19:49:87:d7:43: 84:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:F9:52:EE:AC:0C:68:DC:F3:45:66:A1:BB:E4:A7:35:9C:7C:44:C3 X509v3 Authority Key Identifier: keyid:7E:24:43:10:D7:A4:56:EB:12:7B:92:6C:42:F2:6D:79:E9:AC:DB:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/fiRDENekVusSe5JsQvJteems24g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/fiRDENekVusSe5JsQvJteems24g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/F7DFA72EE5F311EAB3A91561C4F9AE02/B59B34B2A59511EFB1B8AF36C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 169.136.64.0/23 169.136.67.0/24 169.136.72.0/24 169.136.133.0/24 169.136.142.0/24 169.136.145.0-169.136.147.255 169.136.154.0/24 Signature Algorithm: sha256WithRSAEncryption 94:31:0e:d7:a9:a4:ae:1e:f5:3e:21:36:3a:f6:1f:97:73:67: 51:58:be:a3:43:90:bb:a0:d0:14:78:13:7d:5d:44:55:25:bb: 29:90:2e:fe:59:51:69:98:32:e7:36:06:1b:ba:b8:b0:5c:5c: 82:9a:d5:62:66:30:a7:9b:71:cd:6d:c7:9c:59:15:fb:5f:8b: d6:05:94:5e:53:1e:a2:dd:de:ac:54:55:a0:a6:cc:4d:3c:7b: 56:92:80:9a:5a:4f:a1:cd:c4:3b:df:52:b3:1b:7b:69:60:e8: 0e:e0:69:90:4e:71:79:b0:4d:f5:ac:1e:74:9b:c8:d7:f8:ee: e7:1d:6d:91:f8:5d:cc:2d:35:4c:77:41:ba:2f:11:3e:ec:b1: 42:8d:68:b2:62:6e:29:27:a8:a1:c5:98:56:e9:2c:02:7d:5e: c4:a9:2f:e6:de:12:a8:d2:fd:17:f9:7f:18:15:c5:a7:a0:2d: 96:35:f1:9d:ed:b0:23:98:d5:f5:cd:bc:2e:41:35:37:7f:86: 5a:95:60:19:82:da:68:7b:b5:dc:da:84:e8:cd:87:d4:a6:dc: d9:1f:59:9f:5e:8e:19:f6:16:fb:a5:07:bb:b0:50:c6:30:f9: 0d:23:33:c0:2d:3f:f7:77:86:7c:69:f9:32:4a:e2:4b:e8:8f: bc:19:e3:81 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICCLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDdFMjQ0MzEwRDdBNDU2RUIxMjdCOTI2QzQyRjI2RDc5 RTlBQ0RCODgwHhcNMjUwNjE4MjEwNzUyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUzMmFhOC00MDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbRa/QREQ0NZHoEnvVPjpFrukGTeJe8f/GTIAzeyGVv1CsYkCfCebri9sXNu MoIiRo0uwGvSB77fpo5kx6+75W6VVxzoWOa1SfLGdIU1jskodNVJRXT/XjJ14x9s f3YU1fszTEU0JckHiTbIux0W4egarqvhEbxlaFKjMBdbKk8VZuoQiQdYGy8o2Vxb kC8duaP1r1vSIIaWWRmhpqqy2p+kI9R6DJvIwxvd6jmqBedKMMcFd5U4xlUiSQ9s qUUUHHFPJSYJQDQslIg2Eq42/CtW+Rp/4TxyNtrvGbavEgN4CrNAjuSi33MlSL9P rlZ73f3bO8YMz8aWGUmH10OEWQIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFNz5Uu6s DGjc80VmobvkpzWcfETDMB8GA1UdIwQYMBaAFH4kQxDXpFbrEnuSbELybXnprNuI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GN0RGQTcyRUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9maVJERU5la1Z1c1NlNUpzUXZKdGVlbXMy NGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2ZpUkRFTmVrVnVzU2U1SnNRdkp0ZWVtczI0Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRjdERkE3MkVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvQjU5QjM0QjJB NTk1MTFFRkIxQjhBRjM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MDgEAgABMDIDBAGpiEADBACpiEMDBACpiEgDBACpiIUDBACpiI4wDAMEAKmI kQMEAqmIkAMEAKmImjANBgkqhkiG9w0BAQsFAAOCAQEAlDEO16mkrh71PiE2OvYf l3NnUVi+o0OQu6DQFHgTfV1EVSW7KZAu/llRaZgy5zYGG7q4sFxcgprVYmYwp5tx zW3HnFkV+1+L1gWUXlMeot3erFRVoKbMTTx7VpKAmlpPoc3EO99Ssxt7aWDoDuBp kE5xebBN9awedJvI1/ju5x1tkfhdzC01THdBui8RPuyxQo1osmJuKSeoocWYVuks An1exKkv5t4SqNL9F/l/GBXFp6AtljXxne2wI5jV9c28LkE1N3+GWpVgGYLaaHu1 3NqE6M2H1Kbc2R9Zn16OGfYW+6UHu7BQxjD5DSMzwC0/93eGfGn5MkriS+iPvBnj gQ== -----END CERTIFICATE-----Generated at Fri Jun 20 11:25:23 2025 by rpki-client