$ rpki-client -vvf rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/30857DB6CBA211ECAE233133C4F9AE02.roa File: 30857DB6CBA211ECAE233133C4F9AE02.roa (raw, json) Hash identifier: eSlTAoQ5k0fFKiHMdeu9X90T/rFtlTnA6Fx/5ofc1sU= Subject key identifier: 0E:4F:3A:24:02:1B:D2:6F:00:93:82:E3:08:F5:F9:79:35:37:2D:80 Certificate issuer: /CN=A91F731E/serialNumber=90603E354DB568B3CA42900E703011E79662892E Certificate serial: 0624 Authority key identifier: 90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/30857DB6CBA211ECAE233133C4F9AE02.roa Signing time: Fri 08 Aug 2025 16:24:14 +0000 ROA not before: Fri 08 Aug 2025 16:24:14 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 149812 IP address blocks: 72.9.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 05:57:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1572 (0x624) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F731E, serialNumber=90603E354DB568B3CA42900E703011E79662892E Validity Not Before: Aug 8 16:24:14 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=689624ae-9768 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:eb:fa:9a:c2:2b:5b:c2:8e:6e:23:2c:92:7c: 9c:8e:24:93:6a:44:60:f6:76:3f:d4:aa:82:1b:db: e4:17:40:50:8c:27:65:ae:58:00:06:3a:ba:b6:c8: 62:aa:0b:dc:e6:12:d7:c6:89:4d:d1:a3:8d:8e:0c: e9:57:b9:40:19:54:85:0e:8b:dc:ea:b0:78:85:c1: c5:6c:8f:a6:7c:0b:2d:bb:49:85:4f:78:7a:da:bd: e1:08:36:8e:02:4d:27:01:51:f5:3f:6f:d9:fb:6f: 32:9b:72:ea:c1:58:69:2b:45:55:d8:8b:8d:e7:2c: 4e:09:4f:1e:08:25:cb:5c:96:d0:fe:3c:ca:21:5a: a7:bf:29:d4:35:5d:ab:d3:c8:3c:a2:e8:41:b1:1a: d3:60:ee:0b:29:70:f5:98:7d:6c:79:11:32:a6:c0: 99:27:e7:78:af:5e:60:8c:c1:3a:3f:29:60:39:c5: c6:2b:1a:20:f8:2f:b1:cf:11:53:1c:ab:b5:89:2f: 59:38:96:40:79:2c:3b:21:1d:2f:1a:d1:a9:2a:ec: 82:02:dc:ea:14:05:bf:a5:cc:cd:c7:d8:d3:93:23: 6a:fe:8f:e0:e2:5c:79:4d:b3:df:b6:96:dc:68:4a: 73:3a:e2:51:fe:92:97:5a:34:e1:65:b3:c6:76:dd: 3b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:4F:3A:24:02:1B:D2:6F:00:93:82:E3:08:F5:F9:79:35:37:2D:80 X509v3 Authority Key Identifier: keyid:90:60:3E:35:4D:B5:68:B3:CA:42:90:0E:70:30:11:E7:96:62:89:2E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/kGA-NU21aLPKQpAOcDAR55ZiiS4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kGA-NU21aLPKQpAOcDAR55ZiiS4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F731E/EAA19CB4B2DC11EB8621CB56C4F9AE02/30857DB6CBA211ECAE233133C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 72.9.143.0/24 Signature Algorithm: sha256WithRSAEncryption 35:a1:82:b5:20:07:2d:d6:0b:35:7b:50:28:06:a7:d8:7d:4b: 36:4a:c2:03:a7:c1:97:68:f9:8b:da:61:fc:e2:64:2d:97:7d: a1:87:27:9e:a7:4a:37:ca:20:16:af:42:c1:35:2a:97:a0:4c: 51:7e:55:9b:3d:0a:de:b7:59:c9:6e:76:d9:c1:4e:2c:85:0c: 6a:bb:98:07:8a:85:c9:78:eb:a9:55:df:ae:d1:e2:44:e9:1e: 8f:5f:aa:ff:7b:1a:d6:17:3c:31:9d:9d:88:af:24:c8:2a:e2: 63:2d:71:bf:e2:8a:89:91:dc:a5:00:b8:bb:ff:2e:84:73:d0: e0:86:4c:7b:14:fe:7a:ba:29:cd:28:b4:3d:4f:16:e7:4b:bf: 3f:4b:0a:ac:1d:25:71:35:91:29:df:7c:2a:76:1a:15:49:4a: 72:d0:0a:4e:df:a6:45:51:b8:13:bf:67:78:6b:84:ee:45:d7: c7:8d:a5:1a:7d:72:13:21:29:79:80:1d:fc:d9:81:8b:10:1d: bd:e6:5a:4d:a0:33:55:75:e3:af:f8:5e:77:ba:61:d3:90:ca: ad:23:8a:96:a2:a5:0a:de:93:2d:20:6e:01:28:2e:d6:13:2f: c4:88:90:1a:58:f8:bd:48:81:8d:a3:f0:ac:da:51:96:1d:86: 2f:89:5f:0c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjczMUUxMTAvBgNVBAUTKDkwNjAzRTM1NERCNTY4QjNDQTQyOTAwRTcwMzAxMUU3 OTY2Mjg5MkUwHhcNMjUwODA4MTYyNDE0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk2MjRhZS05NzY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Ov6msIrW8KObiMsknycjiSTakRg9nY/1KqCG9vkF0BQjCdlrlgABjq6tshi qgvc5hLXxolN0aONjgzpV7lAGVSFDovc6rB4hcHFbI+mfAstu0mFT3h62r3hCDaO Ak0nAVH1P2/Z+28ym3LqwVhpK0VV2IuN5yxOCU8eCCXLXJbQ/jzKIVqnvynUNV2r 08g8ouhBsRrTYO4LKXD1mH1seREypsCZJ+d4r15gjME6PylgOcXGKxog+C+xzxFT HKu1iS9ZOJZAeSw7IR0vGtGpKuyCAtzqFAW/pczNx9jTkyNq/o/g4lx5TbPftpbc aEpzOuJR/pKXWjThZbPGdt07wQIDAQABo4IClTCCApEwHQYDVR0OBBYEFA5POiQC G9JvAJOC4wj1+Xk1Ny2AMB8GA1UdIwQYMBaAFJBgPjVNtWizykKQDnAwEeeWYoku MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzMxRS9FQUExOUNCNEIy REMxMUVCODYyMUNCNTZDNEY5QUUwMi9rR0EtTlUyMWFMUEtRcEFPY0RBUjU1Wmlp UzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2tHQS1OVTIxYUxQS1FwQU9jREFSNTVaaWlTNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjczMUUvRUFBMTlDQjRCMkRDMTFFQjg2MjFDQjU2QzRGOUFFMDIvMzA4NTdEQjZD QkEyMTFFQ0FFMjMzMTMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABICY8wDQYJKoZIhvcNAQELBQADggEBADWhgrUgBy3WCzV7 UCgGp9h9SzZKwgOnwZdo+YvaYfziZC2XfaGHJ56nSjfKIBavQsE1KpegTFF+VZs9 Ct63WcludtnBTiyFDGq7mAeKhcl466lV367R4kTpHo9fqv97GtYXPDGdnYivJMgq 4mMtcb/iiomR3KUAuLv/LoRz0OCGTHsU/nq6Kc0otD1PFudLvz9LCqwdJXE1kSnf fCp2GhVJSnLQCk7fpkVRuBO/Z3hrhO5F18eNpRp9chMhKXmAHfzZgYsQHb3mWk2g M1V146/4Xne6YdOQyq0jipaipQreky0gbgEoLtYTL8SIkBpY+L1IgY2j8KzaUZYd hi+JXww= -----END CERTIFICATE-----Generated at Sun Aug 10 05:35:15 2025 by rpki-client