$ rpki-client -vvf rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/70A77C348D6C11EBAFD23A2EC4F9AE02.roa File: 70A77C348D6C11EBAFD23A2EC4F9AE02.roa (raw, json) Hash identifier: A5KK9SQwb+EDWJ4jMnTUQq3SJ0SvbTU26Y/s1pM+n+I= Subject key identifier: C6:D5:7D:97:B4:AF:92:5E:E1:8D:C6:E7:7C:B7:A0:42:BA:72:E6:11 Certificate issuer: /CN=A91F277D/serialNumber=BBC103561AFD7A93036D1C72DD4C0A7C2A4E29CE Certificate serial: 0668 Authority key identifier: BB:C1:03:56:1A:FD:7A:93:03:6D:1C:72:DD:4C:0A:7C:2A:4E:29:CE Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/70A77C348D6C11EBAFD23A2EC4F9AE02.roa Signing time: Fri 06 Jun 2025 05:09:39 +0000 ROA not before: Fri 06 Jun 2025 05:09:39 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 1221 IP address blocks: 139.163.18.0/24 maxlen: 24 139.163.40.0/24 maxlen: 24 139.163.83.0/24 maxlen: 24 139.163.85.0/24 maxlen: 24 139.163.131.0/24 maxlen: 24 139.163.132.0/24 maxlen: 24 139.163.133.0/24 maxlen: 24 139.163.137.0/24 maxlen: 24 139.163.138.0/24 maxlen: 24 139.163.139.0/24 maxlen: 24 139.163.250.0/24 maxlen: 24 168.134.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.crl rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 22:00:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1640 (0x668) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F277D, serialNumber=BBC103561AFD7A93036D1C72DD4C0A7C2A4E29CE Validity Not Before: Jun 6 05:09:39 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=68427813-704d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:21:77:d7:ed:63:2a:90:48:44:cd:82:10:f4: 25:44:ed:3f:b0:75:66:23:c0:d5:76:7e:34:02:f3: a0:20:68:05:e6:ef:23:25:c5:21:09:46:ec:f0:62: d5:b7:14:da:b2:44:a2:a1:a1:81:f4:28:d8:07:72: bc:22:bd:e1:d4:a7:4d:9e:0b:0d:af:7b:f5:56:d1: aa:8e:e3:3d:e2:4c:ca:5a:d1:24:02:e8:0d:25:7d: e7:56:27:65:df:6f:37:3f:31:af:48:09:2a:40:e3: bb:8e:9c:fa:db:70:92:85:38:fb:88:55:fc:36:71: 5f:4c:c7:2f:56:64:78:df:d3:d5:45:83:df:4a:4b: 39:9e:19:db:fb:97:ef:ce:d7:13:ad:78:6a:31:28: 45:a8:f9:b1:b5:b0:65:88:3c:24:0a:17:1e:cf:f0: d7:b8:dd:01:57:69:08:eb:25:b6:d4:4f:44:36:ed: 96:a5:b9:df:ac:22:23:c7:d3:59:fc:45:02:21:b1: ce:7c:55:4f:21:e7:cf:a4:25:53:22:0b:cc:ef:c8: cf:49:19:3e:87:99:cb:a3:e2:76:06:be:99:1c:d3: 10:1d:ca:ba:b0:42:3c:e7:ee:7e:04:30:2e:b8:e5: 94:db:78:57:1d:c3:5e:bc:7c:14:a8:d3:56:19:80: 6f:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:D5:7D:97:B4:AF:92:5E:E1:8D:C6:E7:7C:B7:A0:42:BA:72:E6:11 X509v3 Authority Key Identifier: keyid:BB:C1:03:56:1A:FD:7A:93:03:6D:1C:72:DD:4C:0A:7C:2A:4E:29:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/u8EDVhr9epMDbRxy3UwKfCpOKc4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/u8EDVhr9epMDbRxy3UwKfCpOKc4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F277D/78A1D08E8D6B11EB9840E05FC4F9AE02/70A77C348D6C11EBAFD23A2EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 139.163.18.0/24 139.163.40.0/24 139.163.83.0/24 139.163.85.0/24 139.163.131.0-139.163.133.255 139.163.137.0-139.163.139.255 139.163.250.0/24 168.134.0.0/24 Signature Algorithm: sha256WithRSAEncryption b4:f1:b1:ac:6b:bd:e8:f0:eb:f8:c9:60:25:6f:42:4e:fe:fb: 54:4d:b4:bf:43:91:f7:06:ff:37:1c:7b:cd:69:91:b3:b6:0d: 2c:51:75:fb:0b:d3:13:a7:9a:7c:e2:55:bc:4c:48:b8:cc:8c: 30:19:60:0a:b8:27:78:c6:1c:2d:4e:05:09:88:04:8c:b8:17: ac:10:df:cf:e3:4d:a9:d9:8a:9a:cf:31:45:0f:9e:ad:e9:14: ac:e3:11:46:7d:de:4c:07:98:8a:ab:4c:9d:d2:53:a7:5f:94: 60:33:e3:bb:4a:ea:85:b8:64:58:c4:e6:30:1a:12:56:cd:fc: ee:ac:d4:4b:a3:73:e8:56:32:1d:9e:44:e4:d8:f7:37:0f:02: 85:8c:b2:15:7c:f0:c0:37:c9:4e:a5:3c:5a:34:dd:41:d5:29: 24:4f:ab:cb:a6:38:90:bb:d5:dc:35:10:4a:d2:5e:bc:ad:74: 0e:e5:51:13:40:66:e9:16:6f:0d:91:84:a7:51:5c:c7:5e:6c: 73:a5:66:b1:d2:13:aa:01:3d:ab:bc:d1:b7:61:7a:ca:91:0a: 12:40:4f:3a:a0:58:ad:17:39:35:45:a8:90:db:37:33:6e:44: f5:6c:3e:52:42:5d:51:4a:14:67:74:06:27:4f:e7:e2:13:5d: 82:70:9d:fa -----BEGIN CERTIFICATE----- MIIFqzCCBJOgAwIBAgICBmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjI3N0QxMTAvBgNVBAUTKEJCQzEwMzU2MUFGRDdBOTMwMzZEMUM3MkRENEMwQTdD MkE0RTI5Q0UwHhcNMjUwNjA2MDUwOTM5WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQyNzgxMy03MDRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7iF31+1jKpBIRM2CEPQlRO0/sHVmI8DVdn40AvOgIGgF5u8jJcUhCUbs8GLV txTaskSioaGB9CjYB3K8Ir3h1KdNngsNr3v1VtGqjuM94kzKWtEkAugNJX3nVidl 3283PzGvSAkqQOO7jpz623CShTj7iFX8NnFfTMcvVmR439PVRYPfSks5nhnb+5fv ztcTrXhqMShFqPmxtbBliDwkChcez/DXuN0BV2kI6yW21E9ENu2WpbnfrCIjx9NZ /EUCIbHOfFVPIefPpCVTIgvM78jPSRk+h5nLo+J2Br6ZHNMQHcq6sEI85+5+BDAu uOWU23hXHcNevHwUqNNWGYBvVwIDAQABo4ICzzCCAsswHQYDVR0OBBYEFMbVfZe0 r5Je4Y3G53y3oEK6cuYRMB8GA1UdIwQYMBaAFLvBA1Ya/XqTA20cct1MCnwqTinO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMjc3RC83OEExRDA4RThE NkIxMUVCOTg0MEUwNUZDNEY5QUUwMi91OEVEVmhyOWVwTURiUnh5M1V3S2ZDcE9L YzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3U4RURWaHI5ZXBNRGJSeHkzVXdLZkNwT0tjNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjI3N0QvNzhBMUQwOEU4RDZCMTFFQjk4NDBFMDVGQzRGOUFFMDIvNzBBNzdDMzQ4 RDZDMTFFQkFGRDIzQTJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWQYIKwYBBQUHAQcBAf8E SjBIMEYEAgABMEADBACLoxIDBACLoygDBACLo1MDBACLo1UwDAMEAIujgwMEAYuj hDAMAwQAi6OJAwQCi6OIAwQAi6P6AwQAqIYAMA0GCSqGSIb3DQEBCwUAA4IBAQC0 8bGsa73o8Ov4yWAlb0JO/vtUTbS/Q5H3Bv83HHvNaZGztg0sUXX7C9MTp5p84lW8 TEi4zIwwGWAKuCd4xhwtTgUJiASMuBesEN/P402p2YqazzFFD56t6RSs4xFGfd5M B5iKq0yd0lOnX5RgM+O7SuqFuGRYxOYwGhJWzfzurNRLo3PoVjIdnkTk2Pc3DwKF jLIVfPDAN8lOpTxaNN1B1SkkT6vLpjiQu9XcNRBK0l68rXQO5VETQGbpFm8NkYSn UVzHXmxzpWax0hOqAT2rvNG3YXrKkQoSQE86oFitFzk1RaiQ2zczbkT1bD5SQl1R ShRndAYnT+fiE12CcJ36 -----END CERTIFICATE-----Generated at Tue Nov 4 16:59:58 2025 by rpki-client