$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/C9104DDAF63511EE9461F649C4F9AE02.roa File: C9104DDAF63511EE9461F649C4F9AE02.roa (raw, json) Hash identifier: TaB3OvJnz9ArxOptFYPHLTX84/AbjBqjhsX8r+So7FU= Subject key identifier: 7F:20:C0:D1:00:9A:A4:CE:6E:66:00:1B:7A:3D:CC:67:79:D3:8B:95 Certificate issuer: /CN=A91FCA1E/serialNumber=8E650A712DC84F22B89B8F18B864C29F9DD713C5 Certificate serial: E6 Authority key identifier: 8E:65:0A:71:2D:C8:4F:22:B8:9B:8F:18:B8:64:C2:9F:9D:D7:13:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jmUKcS3ITyK4m48YuGTCn53XE8U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/C9104DDAF63511EE9461F649C4F9AE02.roa Signing time: Fri 13 Jun 2025 10:14:54 +0000 ROA not before: Fri 13 Jun 2025 10:14:54 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 4797 IP address blocks: 202.81.136.0/24 maxlen: 24 202.81.139.0/24 maxlen: 24 202.81.147.0/24 maxlen: 24 202.81.148.0/24 maxlen: 24 202.81.149.0/24 maxlen: 24 202.81.150.0/24 maxlen: 24 202.81.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/jmUKcS3ITyK4m48YuGTCn53XE8U.crl rsync://rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/jmUKcS3ITyK4m48YuGTCn53XE8U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jmUKcS3ITyK4m48YuGTCn53XE8U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 04:28:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCA1E, serialNumber=8E650A712DC84F22B89B8F18B864C29F9DD713C5 Validity Not Before: Jun 13 10:14:54 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=684bfa1e-07df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:e3:12:92:1a:34:43:d2:1b:42:7a:b2:f0:85: 7a:c0:93:b3:b2:22:d9:15:19:6c:58:78:be:ed:ab: b9:b2:83:7f:7c:e0:34:45:31:d7:c8:bf:10:31:b9: 3d:51:a1:a2:ff:26:a4:2d:3b:9d:48:0c:06:ca:67: 0c:63:a0:56:f0:1d:6f:01:c8:bc:95:96:fa:ff:73: 9b:06:75:69:32:5d:f9:06:9a:33:9e:07:f5:9e:a0: d1:87:24:5c:69:0e:ab:85:db:01:fe:59:34:63:27: 21:da:5f:06:e3:22:16:89:e8:f2:fe:92:de:32:a8: 3e:76:a6:62:d8:40:c4:c7:62:04:c0:e2:c5:55:a1: 92:49:5f:a6:db:e6:cb:6f:a8:01:f8:a8:10:0d:aa: 80:9f:bd:ba:6d:d4:7e:be:d4:41:03:30:d9:6c:89: 69:b2:b6:44:a3:cf:a6:da:78:26:91:de:3f:85:a4: 75:50:5e:12:9e:c3:31:79:c5:d9:8e:d0:03:1b:57: 3f:e6:ea:97:1c:6e:61:27:06:94:f9:f0:60:0a:85: b4:6b:bf:dc:b5:18:d0:72:b3:d0:6a:92:9e:34:4a: c0:dc:83:98:17:61:0f:19:6d:e0:58:2c:2b:9f:75: b0:e3:f9:41:ce:6b:06:c7:4a:82:ed:42:15:44:0a: 7a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:20:C0:D1:00:9A:A4:CE:6E:66:00:1B:7A:3D:CC:67:79:D3:8B:95 X509v3 Authority Key Identifier: keyid:8E:65:0A:71:2D:C8:4F:22:B8:9B:8F:18:B8:64:C2:9F:9D:D7:13:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/jmUKcS3ITyK4m48YuGTCn53XE8U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jmUKcS3ITyK4m48YuGTCn53XE8U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCA1E/F0062F28F63411EE8AEAC747C4F9AE02/C9104DDAF63511EE9461F649C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.81.136.0/24 202.81.139.0/24 202.81.147.0-202.81.150.255 202.81.152.0/24 Signature Algorithm: sha256WithRSAEncryption 72:b2:da:15:e1:c1:92:63:99:2a:25:0f:13:1b:32:73:6a:1e: f5:4b:0b:fb:c9:6a:b4:11:e5:bc:ec:a2:0c:8c:37:87:b2:b5: 2b:64:46:a4:bc:e2:4c:96:9e:31:f3:9e:55:55:84:cb:94:c6: 2a:b7:64:82:2d:35:96:31:97:a8:59:eb:54:7b:90:dd:56:fd: 04:44:a5:d2:42:ac:ca:66:c4:3c:b9:1e:eb:6a:7f:06:9a:b7: 2a:48:0e:47:6b:a2:3c:bf:ee:2c:21:d8:07:77:7e:0f:0e:8e: 1b:ab:5a:e3:d3:0d:5d:2b:4e:75:1b:68:55:50:49:85:89:ab: 2a:28:15:08:8e:22:e5:b8:ad:97:ef:21:b4:7c:fe:9d:9a:03: be:bd:8b:71:4e:bf:de:84:58:38:ce:52:39:f9:44:7a:5e:b1: 36:b7:11:bd:9b:71:27:d8:8e:8e:2d:35:c0:13:03:6f:81:c0: 10:9f:c0:8a:6f:bf:84:c0:0e:58:30:30:c4:e3:b1:88:46:a2: 66:ae:ad:81:b2:64:46:bd:e7:08:1b:92:b8:ba:b6:72:c6:a9: fc:f4:9e:08:53:cd:20:84:ee:7c:0e:e0:e8:18:0a:0f:d0:1f: 57:b7:d6:4b:20:80:9b:6e:70:5c:54:75:b1:4a:b6:ed:1e:fb: 84:0d:22:79 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkNBMUUxMTAvBgNVBAUTKDhFNjUwQTcxMkRDODRGMjJCODlCOEYxOEI4NjRDMjlG OURENzEzQzUwHhcNMjUwNjEzMTAxNDU0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRiZmExZS0wN2RmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+OMSkho0Q9IbQnqy8IV6wJOzsiLZFRlsWHi+7au5soN/fOA0RTHXyL8QMbk9 UaGi/yakLTudSAwGymcMY6BW8B1vAci8lZb6/3ObBnVpMl35Bpozngf1nqDRhyRc aQ6rhdsB/lk0Yych2l8G4yIWiejy/pLeMqg+dqZi2EDEx2IEwOLFVaGSSV+m2+bL b6gB+KgQDaqAn726bdR+vtRBAzDZbIlpsrZEo8+m2ngmkd4/haR1UF4SnsMxecXZ jtADG1c/5uqXHG5hJwaU+fBgCoW0a7/ctRjQcrPQapKeNErA3IOYF2EPGW3gWCwr n3Ww4/lBzmsGx0qC7UIVRAp6pwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFH8gwNEA mqTObmYAG3o9zGd504uVMB8GA1UdIwQYMBaAFI5lCnEtyE8iuJuPGLhkwp+d1xPF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQ0ExRS9GMDA2MkYyOEY2 MzQxMUVFOEFFQUM3NDdDNEY5QUUwMi9qbVVLY1MzSVR5SzRtNDhZdUdUQ241M1hF OFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ptVUtjUzNJVHlLNG00OFl1R1RDbjUzWEU4VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkNBMUUvRjAwNjJGMjhGNjM0MTFFRThBRUFDNzQ3QzRGOUFFMDIvQzkxMDREREFG NjM1MTFFRTk0NjFGNjQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBADKUYgDBADKUYswDAMEAMpRkwMEAMpRlgMEAMpRmDANBgkq hkiG9w0BAQsFAAOCAQEAcrLaFeHBkmOZKiUPExsyc2oe9UsL+8lqtBHlvOyiDIw3 h7K1K2RGpLziTJaeMfOeVVWEy5TGKrdkgi01ljGXqFnrVHuQ3Vb9BESl0kKsymbE PLke62p/Bpq3KkgOR2uiPL/uLCHYB3d+Dw6OG6ta49MNXStOdRtoVVBJhYmrKigV CI4i5bitl+8htHz+nZoDvr2LcU6/3oRYOM5SOflEel6xNrcRvZtxJ9iOji01wBMD b4HAEJ/Aim+/hMAOWDAwxOOxiEaiZq6tgbJkRr3nCBuSuLq2csap/PSeCFPNIITu fA7g6BgKD9AfV7fWSyCAm25wXFR1sUq27R77hA0ieQ== -----END CERTIFICATE-----Generated at Wed Jun 18 18:21:59 2025 by rpki-client