$ rpki-client -vvf rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/24E20F9E6B7011F0ACA1BB56C4F9AE02.roa File: 24E20F9E6B7011F0ACA1BB56C4F9AE02.roa (raw, json) Hash identifier: LBvJJ/XeKAW7YpPt8QijWt6ARJJn+Uyg1XhvCYuwjks= Subject key identifier: 61:D4:BE:70:3F:0B:D2:89:9C:53:CB:01:40:D6:43:99:EB:D6:D4:B4 Certificate issuer: /CN=A91F08FA/serialNumber=0B9237E3B086B58C3CD9CE6FD49AC261F7D525A3 Certificate serial: 5D Authority key identifier: 0B:92:37:E3:B0:86:B5:8C:3C:D9:CE:6F:D4:9A:C2:61:F7:D5:25:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C5I347CGtYw82c5v1JrCYffVJaM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/24E20F9E6B7011F0ACA1BB56C4F9AE02.roa Signing time: Mon 28 Jul 2025 05:03:05 +0000 ROA not before: Mon 28 Jul 2025 05:03:05 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 8075 IP address blocks: 163.61.89.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.crl rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C5I347CGtYw82c5v1JrCYffVJaM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 93 (0x5d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F08FA, serialNumber=0B9237E3B086B58C3CD9CE6FD49AC261F7D525A3 Validity Not Before: Jul 28 05:03:05 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68870489-787f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:3f:93:c0:41:8e:22:d2:7b:96:89:48:d8:fa: 9d:26:25:93:ca:50:26:38:70:ad:ab:b4:bf:9d:9e: e9:ee:39:27:f3:37:98:4c:68:1a:c0:4d:43:17:e3: ef:05:80:d7:87:86:00:26:17:93:ce:19:5c:fb:24: 72:8e:1e:a1:cd:6c:a4:53:db:c9:37:b3:1b:51:cb: c5:a3:3b:9a:56:cd:37:d8:d8:f2:8b:75:b2:aa:21: fe:4f:1e:7c:34:b0:6b:78:da:f4:ba:1c:00:55:ac: 6e:c5:4e:a7:66:94:2b:69:8f:e0:6e:c9:84:0d:f8: 9f:6c:1d:c4:5e:49:29:8c:e6:e0:cf:b0:92:b0:98: 7d:7e:c9:4d:22:b2:b1:05:b6:68:66:2e:7a:c5:fc: 50:e8:0e:fe:01:ad:ac:d8:f7:04:69:54:db:92:c8: 90:64:14:8f:15:b0:2e:ba:c8:31:29:97:61:18:4b: 6c:04:00:f0:b5:17:c2:71:b7:cb:42:c0:b6:36:d3: 33:5c:10:c5:c4:78:5c:8a:dc:ac:d6:a1:78:5b:5e: e9:68:12:86:62:6c:b4:c3:49:8c:16:96:9a:49:25: d5:45:a4:1c:52:15:07:59:b7:36:38:b2:d5:f4:59: bd:c9:45:d5:98:e7:ed:54:d7:26:40:24:47:1c:65: b4:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D4:BE:70:3F:0B:D2:89:9C:53:CB:01:40:D6:43:99:EB:D6:D4:B4 X509v3 Authority Key Identifier: keyid:0B:92:37:E3:B0:86:B5:8C:3C:D9:CE:6F:D4:9A:C2:61:F7:D5:25:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/C5I347CGtYw82c5v1JrCYffVJaM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C5I347CGtYw82c5v1JrCYffVJaM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F08FA/D37F625CE73D11EF8A046217C4F9AE02/24E20F9E6B7011F0ACA1BB56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.61.89.0/24 Signature Algorithm: sha256WithRSAEncryption 66:b7:0a:90:d2:5d:bd:bc:24:99:7b:99:5a:15:3e:1c:21:d7: 5a:0f:db:15:33:c6:92:10:e3:07:52:9b:ff:d3:6f:8a:eb:e6: e1:bc:17:e0:f2:ab:11:75:a2:4b:21:28:a3:9e:83:d2:4e:ed: 41:76:eb:61:1a:d5:91:0b:9c:0d:73:62:4f:47:7e:6d:1f:d7: 74:e3:75:cf:5d:04:33:52:b0:e7:e2:7c:3a:e1:de:b4:81:6f: 51:24:21:f9:82:a9:3b:26:08:ea:d4:b9:09:9b:fa:ef:34:8b: a0:2b:a8:a1:29:5e:ba:f9:80:6d:50:e0:06:7e:ed:f1:be:11: be:96:b1:87:77:09:6e:9a:70:5e:cc:18:52:4a:63:f2:f2:85: e4:18:02:59:52:f0:77:d9:67:a2:07:16:b4:13:b0:7d:f9:15: 0f:65:57:f2:33:ec:71:40:28:34:3f:af:e2:9d:3f:b7:6c:b4: cd:36:aa:42:a9:86:3b:49:59:27:b8:29:4a:c4:c0:57:47:e9: b5:7e:fd:0b:16:f7:8e:ee:93:9c:43:4b:d3:b2:e2:41:2c:b2: 75:fa:cc:5c:ce:7a:b3:47:06:fb:a5:4c:bf:3f:8a:8e:4f:cf: 50:8f:85:c2:5a:33:65:79:60:9c:cc:0c:cc:cb:5c:d8:09:78: d9:52:96:17 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBXTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MDhGQTExMC8GA1UEBRMoMEI5MjM3RTNCMDg2QjU4QzNDRDlDRTZGRDQ5QUMyNjFG N0Q1MjVBMzAeFw0yNTA3MjgwNTAzMDVaFw0yNjA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY4ODcwNDg5LTc4N2YwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDrP5PAQY4i0nuWiUjY+p0mJZPKUCY4cK2rtL+dnunuOSfzN5hMaBrATUMX4+8F gNeHhgAmF5POGVz7JHKOHqHNbKRT28k3sxtRy8WjO5pWzTfY2PKLdbKqIf5PHnw0 sGt42vS6HABVrG7FTqdmlCtpj+BuyYQN+J9sHcReSSmM5uDPsJKwmH1+yU0isrEF tmhmLnrF/FDoDv4BrazY9wRpVNuSyJBkFI8VsC66yDEpl2EYS2wEAPC1F8Jxt8tC wLY20zNcEMXEeFyK3KzWoXhbXuloEoZibLTDSYwWlppJJdVFpBxSFQdZtzY4stX0 Wb3JRdWY5+1U1yZAJEccZbQ5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUYdS+cD8L 0omcU8sBQNZDmevW1LQwHwYDVR0jBBgwFoAUC5I347CGtYw82c5v1JrCYffVJaMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYwOEZBL0QzN0Y2MjVDRTcz RDExRUY4QTA0NjIxN0M0RjlBRTAyL0M1STM0N0NHdFl3ODJjNXYxSnJDWWZmVkph TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQzVJMzQ3Q0d0WXc4MmM1djFKckNZZmZWSmFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MDhGQS9EMzdGNjI1Q0U3M0QxMUVGOEEwNDYyMTdDNEY5QUUwMi8yNEUyMEY5RTZC NzAxMUYwQUNBMUJCNTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKM9WTANBgkqhkiG9w0BAQsFAAOCAQEAZrcKkNJdvbwkmXuZ WhU+HCHXWg/bFTPGkhDjB1Kb/9Nviuvm4bwX4PKrEXWiSyEoo56D0k7tQXbrYRrV kQucDXNiT0d+bR/XdON1z10EM1Kw5+J8OuHetIFvUSQh+YKpOyYI6tS5CZv67zSL oCuooSleuvmAbVDgBn7t8b4Rvpaxh3cJbppwXswYUkpj8vKF5BgCWVLwd9lnogcW tBOwffkVD2VX8jPscUAoND+v4p0/t2y0zTaqQqmGO0lZJ7gpSsTAV0fptX79Cxb3 ju6TnENL07LiQSyydfrMXM56s0cG+6VMvz+Kjk/PUI+FwlozZXlgnMwMzMtc2Al4 2VKWFw== -----END CERTIFICATE-----Generated at Sun Aug 10 04:51:07 2025 by rpki-client