$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/743ABB72997011EAB50D6934C4F9AE02.roa File: 743ABB72997011EAB50D6934C4F9AE02.roa (raw, json) Hash identifier: begcncLwYIJtBCQ6VJWY520RlYMTXNEWKkPpgmPjKb8= Subject key identifier: 4F:83:3D:DC:92:FD:17:A4:EA:AD:9A:96:CB:23:D6:83:C0:78:7B:4A Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2792 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/743ABB72997011EAB50D6934C4F9AE02.roa Signing time: Tue 08 Apr 2025 15:53:44 +0000 ROA not before: Tue 08 Apr 2025 15:53:44 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 20940 IP address blocks: 124.106.175.0/24 maxlen: 24 202.138.183.0/24 maxlen: 24 2001:4450:40::/48 maxlen: 48 2001:4457:ff0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:53:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10130 (0x2792) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70, serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 8 15:53:44 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f54688-e36f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4c:e0:6d:d9:f0:60:14:ad:e6:c6:45:e9:d9: 09:80:62:58:94:1f:c4:2b:92:7b:82:27:6b:c1:34: 94:22:f4:cb:43:38:c9:86:75:17:52:d5:be:ae:96: f2:a9:25:8e:01:d4:b2:65:8a:81:da:33:57:25:1e: ae:97:42:25:49:e3:f0:e0:db:c6:55:3d:d3:d5:9e: 5d:d2:a0:b4:f1:3d:75:18:93:83:0a:04:1e:07:46: b8:77:2a:7c:91:32:9c:bc:1f:47:25:06:77:ed:0f: 41:25:49:46:02:38:4b:dd:f8:62:6c:db:7e:48:c2: 29:1e:2b:0d:67:70:b8:fa:d0:af:31:3c:85:a8:5a: f0:fd:b0:9a:55:80:e0:e6:24:37:15:b1:8c:d6:d2: 75:00:1e:37:aa:52:1a:51:5b:bd:31:0b:fb:10:08: df:25:fd:db:eb:99:da:0f:a9:ca:a4:1d:24:58:b8: 6e:c8:7e:88:fc:4e:88:7a:2f:71:db:f8:99:01:ec: 6b:45:83:22:89:b0:4c:eb:02:9a:41:e1:d7:61:4c: e3:8a:c0:4f:c4:e5:3c:f2:54:5c:ad:33:36:af:53: 23:c9:0a:35:fc:68:63:50:49:0f:f9:58:0b:6b:ee: b1:b9:3a:c2:35:e0:78:8a:a3:a3:e2:ab:39:a7:3d: 3b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:83:3D:DC:92:FD:17:A4:EA:AD:9A:96:CB:23:D6:83:C0:78:7B:4A X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/743ABB72997011EAB50D6934C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.106.175.0/24 202.138.183.0/24 IPv6: 2001:4450:40::/48 2001:4457:ff0::/48 Signature Algorithm: sha256WithRSAEncryption bc:5a:ca:bf:ad:12:19:7b:f9:33:e0:f8:64:23:18:f1:f3:dc: 4b:70:bc:3e:2b:aa:23:c0:14:ad:6b:af:c0:41:f7:9c:60:40: 52:e4:38:1a:6d:11:b4:7f:3e:d5:89:15:03:fe:13:dc:66:d7: bc:f9:8b:54:06:34:e4:b8:a9:3e:7f:77:c8:91:e4:17:60:4a: 0a:29:98:16:50:19:46:08:dc:87:d5:c3:29:2b:e6:15:03:b4: ed:e2:ca:9f:90:36:8f:23:5f:3e:ca:27:61:15:e9:ea:1c:f4: 85:81:b3:b3:f0:2f:2f:44:42:20:86:a8:16:4a:f5:91:68:59: 1a:48:41:76:26:e6:34:1e:14:dc:62:ef:70:c6:c2:4b:e5:9d: ad:96:06:ce:46:44:d8:87:0f:e8:53:8c:12:4d:80:9d:70:3a: e1:83:fb:e9:2c:ce:e9:4e:31:c9:1d:2f:66:d0:27:05:6c:6c: ce:87:4e:c4:37:ac:15:79:28:a1:ad:55:90:68:d3:db:af:27: f1:9b:f3:35:85:46:72:6d:51:c8:2c:ba:c5:55:5b:f6:c5:49: 18:69:56:68:fd:1f:a5:44:46:a3:3b:07:90:69:7e:15:69:ba: 25:63:0e:6f:e2:de:d7:66:44:1d:a3:f5:1d:01:19:63:b7:fb: 56:c0:dc:72 -----BEGIN CERTIFICATE----- MIIFkTCCBHmgAwIBAgICJ5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjUwNDA4MTU1MzQ0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NDY4OC1lMzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA10zgbdnwYBSt5sZF6dkJgGJYlB/EK5J7gidrwTSUIvTLQzjJhnUXUtW+rpby qSWOAdSyZYqB2jNXJR6ul0IlSePw4NvGVT3T1Z5d0qC08T11GJODCgQeB0a4dyp8 kTKcvB9HJQZ37Q9BJUlGAjhL3fhibNt+SMIpHisNZ3C4+tCvMTyFqFrw/bCaVYDg 5iQ3FbGM1tJ1AB43qlIaUVu9MQv7EAjfJf3b65naD6nKpB0kWLhuyH6I/E6Iei9x 2/iZAexrRYMiibBM6wKaQeHXYUzjisBPxOU88lRcrTM2r1MjyQo1/GhjUEkP+VgL a+6xuTrCNeB4iqOj4qs5pz07kwIDAQABo4ICtTCCArEwHQYDVR0OBBYEFE+DPdyS /Rek6q2alssj1oPAeHtKMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvNzQzQUJCNzI5 OTcwMTFFQUI1MEQ2OTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPwYIKwYBBQUHAQcBAf8E MDAuMBIEAgABMAwDBAB8aq8DBADKircwGAQCAAIwEgMHACABRFAAQAMHACABRFcP 8DANBgkqhkiG9w0BAQsFAAOCAQEAvFrKv60SGXv5M+D4ZCMY8fPcS3C8PiuqI8AU rWuvwEH3nGBAUuQ4Gm0RtH8+1YkVA/4T3GbXvPmLVAY05LipPn93yJHkF2BKCimY FlAZRgjch9XDKSvmFQO07eLKn5A2jyNfPsonYRXp6hz0hYGzs/AvL0RCIIaoFkr1 kWhZGkhBdibmNB4U3GLvcMbCS+WdrZYGzkZE2IcP6FOMEk2AnXA64YP76SzO6U4x yR0vZtAnBWxszodOxDesFXkooa1VkGjT268n8ZvzNYVGcm1RyCy6xVVb9sVJGGlW aP0fpURGozsHkGl+FWm6JWMOb+Le12ZEHaP1HQEZY7f7VsDccg== -----END CERTIFICATE-----Generated at Wed Nov 5 13:30:58 2025 by rpki-client