$ rpki-client -vvf rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/29D2F7BE0CA711ED98CF681AC4F9AE02.roa File: 29D2F7BE0CA711ED98CF681AC4F9AE02.roa (raw, json) Hash identifier: yEVRrXufQh+Qc/HqPk/jAvaqGmnT+PN1jZ/kXTfyo9A= Subject key identifier: 3F:A5:64:97:03:68:9E:24:11:32:9F:D1:5A:65:62:E6:3A:78:3D:36 Certificate issuer: /CN=A91E504E/serialNumber=04EE076A5DFA948C38F83C8CAC20FE0E8E86D80B Certificate serial: 03DA Authority key identifier: 04:EE:07:6A:5D:FA:94:8C:38:F8:3C:8C:AC:20:FE:0E:8E:86:D8:0B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BO4Hal36lIw4-DyMrCD-Do6G2As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/29D2F7BE0CA711ED98CF681AC4F9AE02.roa Signing time: Fri 01 Aug 2025 02:07:36 +0000 ROA not before: Fri 01 Aug 2025 02:07:36 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 133861 IP address blocks: 217.194.132.0/24 maxlen: 24 217.194.133.0/24 maxlen: 24 217.194.134.0/24 maxlen: 24 217.194.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/BO4Hal36lIw4-DyMrCD-Do6G2As.crl rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/BO4Hal36lIw4-DyMrCD-Do6G2As.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BO4Hal36lIw4-DyMrCD-Do6G2As.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 986 (0x3da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E504E, serialNumber=04EE076A5DFA948C38F83C8CAC20FE0E8E86D80B Validity Not Before: Aug 1 02:07:36 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=688c2168-597a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:41:90:04:22:84:28:b9:8e:37:e5:5a:e7:26: 3e:b0:09:f0:8e:ae:22:58:5b:c3:10:23:54:4d:e2: 95:83:f0:bd:b9:13:2f:f3:81:46:3c:68:08:1a:9e: dd:21:e1:8d:7a:3a:83:c6:ea:50:aa:97:70:62:f6: 16:b3:3a:de:88:e1:7c:a6:ff:60:5c:c4:18:88:a0: aa:a8:92:e2:23:89:8f:67:44:ca:f4:ca:69:a9:7b: 57:e3:dd:67:3e:6d:4f:c3:c7:45:18:c6:66:95:a2: 6f:26:aa:78:b2:c6:a3:a7:29:e5:dc:a3:f1:e8:74: 1b:72:a7:20:d7:60:16:b4:15:59:d0:cd:03:5c:33: b6:cb:a1:77:1f:ca:8e:d1:79:e2:bb:aa:8e:3d:76: a0:35:3e:b3:f1:8d:76:7e:1f:94:2a:a1:00:9f:ae: 85:21:be:4c:ba:e5:31:96:d4:85:3b:fb:e8:d6:a3: 22:3f:dd:ad:13:51:b6:2b:03:61:5f:11:e8:83:38: 66:b9:63:4c:f9:3d:4b:5a:b7:c1:8f:83:c7:59:9b: 6f:85:1d:af:3a:ca:63:50:ef:c7:05:3a:a3:ed:50: a5:2f:99:87:5d:73:fa:2e:4c:ba:b5:df:49:e6:88: 0c:60:f2:c5:87:3d:7a:96:48:0d:bd:22:da:d9:63: ac:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:A5:64:97:03:68:9E:24:11:32:9F:D1:5A:65:62:E6:3A:78:3D:36 X509v3 Authority Key Identifier: keyid:04:EE:07:6A:5D:FA:94:8C:38:F8:3C:8C:AC:20:FE:0E:8E:86:D8:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/BO4Hal36lIw4-DyMrCD-Do6G2As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/BO4Hal36lIw4-DyMrCD-Do6G2As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E504E/44A51948960811ECA04A0086C4F9AE02/29D2F7BE0CA711ED98CF681AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 217.194.132.0/22 Signature Algorithm: sha256WithRSAEncryption c6:4f:41:c4:2d:05:ee:26:87:61:2e:76:ad:85:3b:38:3c:fa: 6c:0c:62:b8:5c:10:93:27:ac:1c:89:c6:e4:ef:e6:ef:eb:0c: e9:f9:00:c7:68:c6:f7:c8:e5:af:74:db:d6:2d:f1:00:e2:55: fc:79:4a:59:2f:46:76:a2:1e:84:a7:1c:50:a4:8f:cc:ab:a4: 51:6c:d4:b4:1b:19:e7:ba:a9:ec:da:bb:4e:ec:8b:3b:ca:10: f3:66:80:a7:d1:5f:5b:8d:7f:41:0e:9c:32:94:25:d9:1a:e7: b1:27:8a:eb:e9:ad:4a:32:e5:e3:d1:39:a0:b4:39:f3:8e:17: e7:bd:eb:21:b7:50:85:1b:b7:8d:4c:f4:ec:10:4d:d7:55:5b: 0a:8b:c7:98:6f:71:26:c4:54:b2:df:31:41:88:1a:dc:c0:98: a9:b8:0f:f6:a1:5f:42:79:1c:d4:29:7e:36:e0:f5:bf:4b:ea: 67:70:57:c6:17:18:57:f6:fd:5a:47:19:78:f3:b7:13:9d:c0: a9:da:fc:33:3d:dd:80:5d:77:04:cf:d1:68:9b:f3:7b:71:02: 77:47:36:db:5d:f1:b8:28:80:c6:e6:9d:d2:5f:9c:60:52:b6: 20:eb:86:0d:d9:47:9b:5d:4b:8f:4a:5d:3a:f0:68:bc:64:e1: f2:65:86:b8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTUwNEUxMTAvBgNVBAUTKDA0RUUwNzZBNURGQTk0OEMzOEY4M0M4Q0FDMjBGRTBF OEU4NkQ4MEIwHhcNMjUwODAxMDIwNzM2WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODhjMjE2OC01OTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApUGQBCKEKLmON+Va5yY+sAnwjq4iWFvDECNUTeKVg/C9uRMv84FGPGgIGp7d IeGNejqDxupQqpdwYvYWszreiOF8pv9gXMQYiKCqqJLiI4mPZ0TK9MppqXtX491n Pm1Pw8dFGMZmlaJvJqp4ssajpynl3KPx6HQbcqcg12AWtBVZ0M0DXDO2y6F3H8qO 0Xniu6qOPXagNT6z8Y12fh+UKqEAn66FIb5MuuUxltSFO/vo1qMiP92tE1G2KwNh XxHogzhmuWNM+T1LWrfBj4PHWZtvhR2vOspjUO/HBTqj7VClL5mHXXP6Lky6td9J 5ogMYPLFhz16lkgNvSLa2WOsAQIDAQABo4IClTCCApEwHQYDVR0OBBYEFD+lZJcD aJ4kETKf0VplYuY6eD02MB8GA1UdIwQYMBaAFATuB2pd+pSMOPg8jKwg/g6OhtgL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTA0RS80NEE1MTk0ODk2 MDgxMUVDQTA0QTAwODZDNEY5QUUwMi9CTzRIYWwzNmxJdzQtRHlNckNELURvNkcy QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0JPNEhhbDM2bEl3NC1EeU1yQ0QtRG82RzJBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTUwNEUvNDRBNTE5NDg5NjA4MTFFQ0EwNEEwMDg2QzRGOUFFMDIvMjlEMkY3QkUw Q0E3MTFFRDk4Q0Y2ODFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALZwoQwDQYJKoZIhvcNAQELBQADggEBAMZPQcQtBe4mh2Eu dq2FOzg8+mwMYrhcEJMnrByJxuTv5u/rDOn5AMdoxvfI5a9029Yt8QDiVfx5Slkv RnaiHoSnHFCkj8yrpFFs1LQbGee6qezau07sizvKEPNmgKfRX1uNf0EOnDKUJdka 57EniuvprUoy5ePROaC0OfOOF+e96yG3UIUbt41M9OwQTddVWwqLx5hvcSbEVLLf MUGIGtzAmKm4D/ahX0J5HNQpfjbg9b9L6mdwV8YXGFf2/VpHGXjztxOdwKna/DM9 3YBddwTP0Wib83txAndHNttd8bgogMbmndJfnGBStiDrhg3ZR5tdS49KXTrwaLxk 4fJlhrg= -----END CERTIFICATE-----Generated at Sun Aug 10 18:19:18 2025 by rpki-client