$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/AD4CF94A6D1711F085288D45C4F9AE02.roa File: AD4CF94A6D1711F085288D45C4F9AE02.roa (raw, json) Hash identifier: pJu8fJvPGWNBGFLFyKZvW8wCDFXLRMk1eEKwcDfxJhU= Subject key identifier: 98:85:39:B1:9F:14:59:BF:A4:85:F7:A5:36:38:11:28:F4:BC:DE:13 Certificate issuer: /CN=A91EA786/serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E Certificate serial: 0B97 Authority key identifier: 91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/AD4CF94A6D1711F085288D45C4F9AE02.roa Signing time: Wed 30 Jul 2025 08:55:58 +0000 ROA not before: Wed 30 Jul 2025 08:55:58 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 6453 IP address blocks: 49.124.195.0/24 maxlen: 24 49.124.203.0/24 maxlen: 24 49.124.211.0/24 maxlen: 24 49.124.214.0/24 maxlen: 24 115.164.0.0/24 maxlen: 24 115.164.2.0/24 maxlen: 24 115.164.4.0/24 maxlen: 24 115.164.5.0/24 maxlen: 24 115.164.64.0/24 maxlen: 24 115.164.128.0/24 maxlen: 24 115.164.132.0/24 maxlen: 24 115.164.142.0/24 maxlen: 24 182.62.210.0/24 maxlen: 24 182.63.7.0/24 maxlen: 24 182.63.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 19:19:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2967 (0xb97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA786, serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E Validity Not Before: Jul 30 08:55:58 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6889de1e-0762 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:9c:6b:0d:cf:01:a1:08:0f:3b:a2:9c:80:d3: b2:79:d5:93:93:b7:9b:e8:03:d1:19:87:63:c6:b9: 56:ba:88:a2:87:97:5b:fc:f1:9c:c2:7b:fc:8e:c1: 00:40:38:21:14:3f:21:57:ad:4a:a5:2f:f3:f9:f3: b1:79:a9:b9:ff:79:26:e1:49:b5:88:88:02:29:d6: 54:57:f5:f2:c7:a7:69:2e:ef:27:c9:c3:6d:e3:dd: 08:6d:c0:10:e8:6b:18:89:00:c9:35:ae:d3:bb:af: a4:25:9b:07:90:77:f7:5b:2c:05:a0:a6:85:8a:58: 4f:a8:ce:93:d3:e4:9f:34:f3:7d:09:95:ae:10:cc: a4:bc:d1:70:e6:e5:fb:4b:28:c0:f7:94:73:bd:ee: 04:b1:0e:9c:49:72:62:91:e7:92:ae:00:e3:4d:dd: a2:40:b5:f4:36:1d:77:1c:eb:47:b0:1a:e6:9a:f0: 3e:0d:26:b9:de:d6:6e:03:7c:b2:e5:20:58:46:b0: bf:1e:a9:28:3d:9b:25:4b:e2:39:62:ca:f4:a3:27: a7:32:58:eb:5f:d8:10:38:72:4c:26:a7:c9:b0:6f: 93:bc:67:6b:b1:ea:cb:88:c7:74:8e:9b:e3:fd:7f: 80:02:64:c3:77:31:29:f0:e4:1c:8b:5a:3b:14:6f: cf:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:85:39:B1:9F:14:59:BF:A4:85:F7:A5:36:38:11:28:F4:BC:DE:13 X509v3 Authority Key Identifier: keyid:91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/AD4CF94A6D1711F085288D45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.124.195.0/24 49.124.203.0/24 49.124.211.0/24 49.124.214.0/24 115.164.0.0/24 115.164.2.0/24 115.164.4.0/23 115.164.64.0/24 115.164.128.0/24 115.164.132.0/24 115.164.142.0/24 182.62.210.0/24 182.63.7.0/24 182.63.71.0/24 Signature Algorithm: sha256WithRSAEncryption e4:2e:0c:40:12:ac:ed:09:37:81:4a:cc:7d:cc:71:e1:23:f0: 70:7c:82:35:35:b3:41:55:db:c8:c3:10:1e:31:29:65:cb:07: 92:69:30:bd:6c:9f:4a:4f:ad:b6:cb:e8:97:26:b5:e9:1b:bb: 6a:21:e4:92:32:36:36:51:b0:0f:a2:23:7b:78:ab:41:11:d2: 35:ec:5e:39:42:6b:af:01:af:30:cb:04:32:5b:ed:fb:c8:93: f1:19:8f:9b:38:99:f8:b5:7e:3b:81:61:b1:68:8d:39:cd:69: fa:3d:ac:47:d9:50:e0:1c:bd:1a:53:ac:63:3b:75:bc:1d:a6: 5c:e9:89:98:d8:c5:e8:eb:49:6e:8f:c9:5f:1a:71:5d:54:74: c5:6d:c4:ab:92:5d:8b:40:7d:23:e1:46:9d:ea:ba:d4:a7:67: 50:e0:07:c4:b5:3e:d4:b4:a3:d8:fa:b4:9c:0e:7b:8f:e7:6a: d2:83:e3:9e:24:05:11:44:30:4a:5f:b8:d9:0f:df:58:43:22: 25:44:62:cc:72:27:a7:32:ac:dd:0f:4a:59:1c:98:83:da:01: fb:ea:43:5f:6c:2d:ec:5c:d6:58:74:67:eb:b4:a2:e3:29:6a: b3:8d:04:7f:83:c9:50:c1:08:a7:74:fe:86:9a:6e:3f:ac:41: b1:c1:96:c7 -----BEGIN CERTIFICATE----- MIIFvzCCBKegAwIBAgICC5cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3ODYxMTAvBgNVBAUTKDkxQzNDOTY2Nzc2RjAxMUZDNTM1MDIxRDg1RjVBRTdC RkJBREE1N0UwHhcNMjUwNzMwMDg1NTU4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg5ZGUxZS0wNzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuZxrDc8BoQgPO6KcgNOyedWTk7eb6APRGYdjxrlWuoiih5db/PGcwnv8jsEA QDghFD8hV61KpS/z+fOxeam5/3km4Um1iIgCKdZUV/Xyx6dpLu8nycNt490IbcAQ 6GsYiQDJNa7Tu6+kJZsHkHf3WywFoKaFilhPqM6T0+SfNPN9CZWuEMykvNFw5uX7 SyjA95Rzve4EsQ6cSXJikeeSrgDjTd2iQLX0Nh13HOtHsBrmmvA+DSa53tZuA3yy 5SBYRrC/HqkoPZslS+I5Ysr0oyenMljrX9gQOHJMJqfJsG+TvGdrserLiMd0jpvj /X+AAmTDdzEp8OQci1o7FG/PawIDAQABo4IC4zCCAt8wHQYDVR0OBBYEFJiFObGf FFm/pIX3pTY4ESj0vN4TMB8GA1UdIwQYMBaAFJHDyWZ3bwEfxTUCHYX1rnv7raV+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTc4Ni9CMEQ3MjNFRTM1 REExMUVBQUI4ODQ4NEFDNEY5QUUwMi9rY1BKWm5kdkFSX0ZOUUlkaGZXdWVfdXRw WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tjUEpabmR2QVJfRk5RSWRoZld1ZV91dHBYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE3ODYvQjBENzIzRUUzNURBMTFFQUFCODg0ODRBQzRGOUFFMDIvQUQ0Q0Y5NEE2 RDE3MTFGMDg1Mjg4RDQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbQYIKwYBBQUHAQcBAf8E XjBcMFoEAgABMFQDBAAxfMMDBAAxfMsDBAAxfNMDBAAxfNYDBABzpAADBABzpAID BAFzpAQDBABzpEADBABzpIADBABzpIQDBABzpI4DBAC2PtIDBAC2PwcDBAC2P0cw DQYJKoZIhvcNAQELBQADggEBAOQuDEASrO0JN4FKzH3MceEj8HB8gjU1s0FV28jD EB4xKWXLB5JpML1sn0pPrbbL6Jcmtekbu2oh5JIyNjZRsA+iI3t4q0ER0jXsXjlC a68BrzDLBDJb7fvIk/EZj5s4mfi1fjuBYbFojTnNafo9rEfZUOAcvRpTrGM7dbwd plzpiZjYxejrSW6PyV8acV1UdMVtxKuSXYtAfSPhRp3qutSnZ1DgB8S1PtS0o9j6 tJwOe4/natKD454kBRFEMEpfuNkP31hDIiVEYsxyJ6cyrN0PSlkcmIPaAfvqQ19s Lexc1lh0Z+u0ouMparONBH+DyVDBCKd0/oaabj+sQbHBlsc= -----END CERTIFICATE-----Generated at Fri Aug 8 19:31:36 2025 by rpki-client