$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/24B754BA9B7911EFBA9A2A42C4F9AE02.roa File: 24B754BA9B7911EFBA9A2A42C4F9AE02.roa (raw, json) Hash identifier: y4nldf+8SF0UXyvc5ZFdPynmdfFfU94WXlTR6JoprTg= Subject key identifier: 56:61:01:DA:C7:B3:AA:54:B3:A1:EA:EF:2E:35:1B:83:14:37:82:0D Certificate issuer: /CN=A91E6134/serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Certificate serial: 1123 Authority key identifier: 9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/24B754BA9B7911EFBA9A2A42C4F9AE02.roa Signing time: Wed 30 Jul 2025 07:53:31 +0000 ROA not before: Wed 30 Jul 2025 07:53:31 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 7029 IP address blocks: 139.190.192.0/19 maxlen: 19 139.190.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 09:02:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4387 (0x1123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=9A73F1A919FBF46C872E38805B1650B5F88276D3 Validity Not Before: Jul 30 07:53:31 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6889cf7b-9daa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:97:23:9e:eb:55:db:6b:99:0a:1a:77:4e:1d: 25:ac:f1:e0:f7:14:7d:56:b4:8d:f7:e1:2c:9d:85: 0e:d8:d4:95:2a:08:0d:04:2c:3e:87:79:cc:cd:bc: 87:41:f1:e7:ca:36:ad:14:7b:68:42:7f:62:34:aa: df:f4:de:dd:1d:79:31:e0:17:75:a1:7f:9a:3b:69: 04:70:8c:79:4d:41:52:81:de:43:51:9f:30:d7:fc: 76:e0:bd:2a:19:4e:81:cc:61:16:fb:27:24:14:69: f8:6e:7b:87:12:6e:92:7d:d5:18:91:7a:53:d0:e2: e3:7e:3a:a7:e6:a6:4d:5f:ec:96:0c:8f:0e:f3:59: f5:02:31:2b:0e:af:c2:10:c3:b9:89:92:87:8f:25: 2e:2a:da:fb:af:f9:0f:32:32:23:64:f4:0e:a8:58: bc:0b:59:ba:60:08:bc:77:b2:a0:07:07:e4:88:de: cc:f0:71:c8:63:a5:ea:52:31:66:43:3e:5f:f0:b2: 89:ba:90:15:4d:44:4b:b8:fe:94:7c:e7:06:9c:c8: 36:7a:30:c7:b1:63:45:50:42:ef:90:ee:a9:12:d0: e6:63:6f:cc:fb:08:63:72:f2:d8:af:95:33:1a:db: 5a:e4:b3:f3:45:9f:29:f6:a1:cf:7a:24:d3:63:66: 9a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:61:01:DA:C7:B3:AA:54:B3:A1:EA:EF:2E:35:1B:83:14:37:82:0D X509v3 Authority Key Identifier: keyid:9A:73:F1:A9:19:FB:F4:6C:87:2E:38:80:5B:16:50:B5:F8:82:76:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/mnPxqRn79GyHLjiAWxZQtfiCdtM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/mnPxqRn79GyHLjiAWxZQtfiCdtM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/57B3E0BCC2A811EAA7918A2EC4F9AE02/24B754BA9B7911EFBA9A2A42C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.190.192.0/19 139.190.240.0/20 Signature Algorithm: sha256WithRSAEncryption 5f:47:df:8f:ff:d3:2f:32:3a:31:80:98:f6:47:6a:91:4f:97: 1c:c9:21:6d:4a:1d:e2:b3:a9:6d:0e:92:a1:5c:15:be:7b:e5: 73:23:f9:12:51:d6:30:31:1a:35:36:ef:c4:81:f7:7f:b0:d2: 90:5f:20:b9:a6:8f:5d:f2:fa:ad:6c:a0:35:ff:42:85:82:27: 20:4c:63:84:0d:a6:6c:ef:81:5d:ca:15:15:98:ce:5b:23:cc: 25:68:df:3f:73:67:b7:bb:77:2f:b1:f6:b4:85:71:71:80:69: 33:1b:50:d8:1f:da:b1:f2:3f:9a:34:78:61:ca:13:b1:c8:23: 4d:e6:d2:3e:73:77:ba:55:73:03:50:ad:ff:30:b3:7e:a3:ea: 6e:2c:bc:5e:09:dc:30:2d:b3:ca:78:14:e7:8c:e0:7a:ba:a5: 66:52:38:c6:e4:68:07:2e:13:1f:6a:71:ce:b2:38:83:f6:ad: 93:02:6b:a7:70:c1:0b:ca:08:9c:ce:c9:14:1e:bf:45:2f:78: 09:c0:98:4d:1d:aa:a5:b3:92:b1:9c:e0:49:f3:26:9c:48:56: 8b:9d:0b:59:0b:7a:7a:fa:3f:5e:91:de:c1:60:1a:7e:2d:64: 4b:71:8a:09:49:0d:bc:3b:48:c4:2b:95:23:94:c4:60:63:59: 98:a3:6c:d3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICESMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDlBNzNGMUE5MTlGQkY0NkM4NzJFMzg4MDVCMTY1MEI1 Rjg4Mjc2RDMwHhcNMjUwNzMwMDc1MzMxWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg5Y2Y3Yi05ZGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2pcjnutV22uZChp3Th0lrPHg9xR9VrSN9+EsnYUO2NSVKggNBCw+h3nMzbyH QfHnyjatFHtoQn9iNKrf9N7dHXkx4Bd1oX+aO2kEcIx5TUFSgd5DUZ8w1/x24L0q GU6BzGEW+yckFGn4bnuHEm6SfdUYkXpT0OLjfjqn5qZNX+yWDI8O81n1AjErDq/C EMO5iZKHjyUuKtr7r/kPMjIjZPQOqFi8C1m6YAi8d7KgBwfkiN7M8HHIY6XqUjFm Qz5f8LKJupAVTURLuP6UfOcGnMg2ejDHsWNFUELvkO6pEtDmY2/M+whjcvLYr5Uz Gtta5LPzRZ8p9qHPeiTTY2aa9QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFZhAdrH s6pUs6Hq7y41G4MUN4INMB8GA1UdIwQYMBaAFJpz8akZ+/Rshy44gFsWULX4gnbT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81N0IzRTBCQ0My QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9tblB4cVJuNzlHeUhMamlBV3haUXRmaUNk dE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL21uUHhxUm43OUd5SExqaUFXeFpRdGZpQ2R0TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNTdCM0UwQkNDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvMjRCNzU0QkE5 Qjc5MTFFRkJBOUEyQTQyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAWLvsADBASLvvAwDQYJKoZIhvcNAQELBQADggEBAF9H34// 0y8yOjGAmPZHapFPlxzJIW1KHeKzqW0OkqFcFb575XMj+RJR1jAxGjU278SB93+w 0pBfILmmj13y+q1soDX/QoWCJyBMY4QNpmzvgV3KFRWYzlsjzCVo3z9zZ7e7dy+x 9rSFcXGAaTMbUNgf2rHyP5o0eGHKE7HII03m0j5zd7pVcwNQrf8ws36j6m4svF4J 3DAts8p4FOeM4Hq6pWZSOMbkaAcuEx9qcc6yOIP2rZMCa6dwwQvKCJzOyRQev0Uv eAnAmE0dqqWzkrGc4EnzJpxIVoudC1kLenr6P16R3sFgGn4tZEtxiglJDbw7SMQr lSOUxGBjWZijbNM= -----END CERTIFICATE-----Generated at Tue Nov 4 17:02:09 2025 by rpki-client