$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa File: FD6881C4438111ECBC63AC7BC4F9AE02.roa (raw, json) Hash identifier: 6woHYe/tgX7hOYRpnsQ9Pua6fYgJOc4X3CcznLEDaPo= Subject key identifier: 8F:F8:40:27:99:23:DE:60:6D:19:E8:AF:E9:CF:E0:99:3B:62:CD:69 Certificate issuer: /CN=A91EDB37/serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Certificate serial: 0749 Authority key identifier: 95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa Signing time: Sun 27 Jul 2025 14:59:51 +0000 ROA not before: Sun 27 Jul 2025 14:59:51 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 62610 IP address blocks: 129.227.143.0/24 maxlen: 24 156.59.73.0/24 maxlen: 24 156.59.123.0/24 maxlen: 24 156.59.146.0/24 maxlen: 24 156.59.184.0/24 maxlen: 24 162.128.82.0/24 maxlen: 24 162.128.83.0/24 maxlen: 24 162.128.84.0/24 maxlen: 24 162.128.85.0/24 maxlen: 24 162.128.86.0/24 maxlen: 24 162.128.87.0/24 maxlen: 24 162.128.90.0/24 maxlen: 24 162.128.91.0/24 maxlen: 24 162.128.92.0/24 maxlen: 24 162.128.93.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1865 (0x749) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDB37, serialNumber=95FEBE93A33A3394BD1F60DCBBDDB9FDE072B7F3 Validity Not Before: Jul 27 14:59:51 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68863ee7-ad21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:23:3c:1f:71:7b:2b:8f:84:7d:f5:db:76:da: 75:5d:da:6e:9d:81:7b:03:eb:02:5b:a0:b9:21:02: 43:8a:8f:62:40:a3:4b:a0:0f:e6:1f:8f:70:59:90: 17:6e:b4:c8:64:c2:d5:99:58:ec:87:f6:b5:f5:cb: 89:68:4a:9b:da:3c:3a:9b:32:6a:27:18:df:de:df: 58:97:04:db:6c:2d:9a:02:4f:69:be:59:48:37:24: 5d:53:33:c2:05:1b:ad:7b:a0:ec:46:6c:71:6d:e3: c1:7c:7d:96:d9:73:83:0a:f3:48:2c:12:a7:11:8c: ae:da:73:8a:3e:b0:4e:c0:f2:73:48:56:37:05:68: 8c:09:b0:ef:ee:f8:be:30:a6:34:97:27:1f:71:c4: af:68:05:21:67:30:a2:04:36:5d:7a:81:a9:e2:e6: 42:3e:8f:45:6c:61:7f:cc:96:f2:eb:5d:4e:15:bb: f8:58:62:43:98:01:07:3f:3c:d6:8a:c1:c3:66:91: dd:66:fc:0d:7b:f4:1f:7d:20:a7:3b:89:83:fd:d7: e7:f7:83:b5:3e:e2:48:5f:ec:1d:7a:ff:e2:5c:4d: d5:f5:52:ba:0c:87:21:0d:e6:8c:9c:c3:f6:1a:3a: 96:05:ac:be:74:20:24:4c:ff:01:11:38:4a:ef:5d: d5:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F8:40:27:99:23:DE:60:6D:19:E8:AF:E9:CF:E0:99:3B:62:CD:69 X509v3 Authority Key Identifier: keyid:95:FE:BE:93:A3:3A:33:94:BD:1F:60:DC:BB:DD:B9:FD:E0:72:B7:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/lf6-k6M6M5S9H2Dcu925_eByt_M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lf6-k6M6M5S9H2Dcu925_eByt_M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDB37/4DE635E078A011EB950D3175C4F9AE02/FD6881C4438111ECBC63AC7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 129.227.143.0/24 156.59.73.0/24 156.59.123.0/24 156.59.146.0/24 156.59.184.0/24 162.128.82.0-162.128.87.255 162.128.90.0-162.128.93.255 Signature Algorithm: sha256WithRSAEncryption 01:2b:44:c6:67:fe:eb:69:82:15:2c:ec:ac:48:76:6a:5c:57: b6:d1:97:75:0c:53:98:0a:d0:d0:dd:96:a6:6a:c7:2f:71:fd: 2d:10:87:48:a7:11:b8:28:ee:17:2d:48:fb:d2:c8:93:58:7b: c4:ab:59:70:a8:5c:b3:b0:ae:c2:19:b7:99:eb:08:f0:80:07: d5:c8:1d:43:d5:02:36:99:cc:34:ee:71:eb:1a:f9:35:b6:25: ee:92:a6:35:1f:a4:bb:b1:05:19:66:80:38:a3:aa:e7:63:4c: c0:fd:a1:ff:bd:f8:aa:a2:e5:b4:f7:1f:40:e7:c6:b3:26:02: fb:29:a1:f6:ff:4f:f0:d1:67:36:71:70:ca:9d:d5:54:c1:78: 18:6c:d8:04:d6:a4:43:05:88:55:c8:a0:af:c5:95:05:7f:20: f3:e0:bc:25:89:a4:6e:87:93:be:5f:6a:87:7d:ff:4a:b5:8d: 27:46:33:40:51:72:10:8a:26:1f:47:0a:9a:a5:f7:6b:ac:f8: 61:9b:a2:ad:f2:c9:6e:ac:73:b6:b1:eb:9c:39:72:6f:9a:e7: da:a2:b3:f5:79:19:24:fb:61:3c:2c:1f:4f:17:b0:94:7f:1e: 4d:99:5a:a6:76:e9:a5:dd:46:94:0e:5f:76:07:67:cd:5e:4c: ef:8f:3f:bb -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgICB0kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RURCMzcxMTAvBgNVBAUTKDk1RkVCRTkzQTMzQTMzOTRCRDFGNjBEQ0JCRERCOUZE RTA3MkI3RjMwHhcNMjUwNzI3MTQ1OTUxWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODg2M2VlNy1hZDIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsCM8H3F7K4+EffXbdtp1XdpunYF7A+sCW6C5IQJDio9iQKNLoA/mH49wWZAX brTIZMLVmVjsh/a19cuJaEqb2jw6mzJqJxjf3t9YlwTbbC2aAk9pvllINyRdUzPC BRute6DsRmxxbePBfH2W2XODCvNILBKnEYyu2nOKPrBOwPJzSFY3BWiMCbDv7vi+ MKY0lycfccSvaAUhZzCiBDZdeoGp4uZCPo9FbGF/zJby611OFbv4WGJDmAEHPzzW isHDZpHdZvwNe/QffSCnO4mD/dfn94O1PuJIX+wdev/iXE3V9VK6DIchDeaMnMP2 GjqWBay+dCAkTP8BEThK713VuQIDAQABo4ICyTCCAsUwHQYDVR0OBBYEFI/4QCeZ I95gbRnor+nP4Jk7Ys1pMB8GA1UdIwQYMBaAFJX+vpOjOjOUvR9g3Lvduf3gcrfz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFREIzNy80REU2MzVFMDc4 QTAxMUVCOTUwRDMxNzVDNEY5QUUwMi9sZjYtazZNNk01UzlIMkRjdTkyNV9lQnl0 X00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xmNi1rNk02TTVTOUgyRGN1OTI1X2VCeXRfTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RURCMzcvNERFNjM1RTA3OEEwMTFFQjk1MEQzMTc1QzRGOUFFMDIvRkQ2ODgxQzQ0 MzgxMTFFQ0JDNjNBQzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUwYIKwYBBQUHAQcBAf8E RDBCMEAEAgABMDoDBACB448DBACcO0kDBACcO3sDBACcO5IDBACcO7gwDAMEAaKA UgMEA6KAUDAMAwQBooBaAwQBooBcMA0GCSqGSIb3DQEBCwUAA4IBAQABK0TGZ/7r aYIVLOysSHZqXFe20Zd1DFOYCtDQ3Zamascvcf0tEIdIpxG4KO4XLUj70siTWHvE q1lwqFyzsK7CGbeZ6wjwgAfVyB1D1QI2mcw07nHrGvk1tiXukqY1H6S7sQUZZoA4 o6rnY0zA/aH/vfiqouW09x9A58azJgL7KaH2/0/w0Wc2cXDKndVUwXgYbNgE1qRD BYhVyKCvxZUFfyDz4LwliaRuh5O+X2qHff9KtY0nRjNAUXIQiiYfRwqapfdrrPhh m6Kt8slurHO2seucOXJvmufaorP1eRkk+2E8LB9PF7CUfx5NmVqmduml3UaUDl92 B2fNXkzvjz+7 -----END CERTIFICATE-----Generated at Sun Aug 10 18:27:01 2025 by rpki-client