$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/B74426C88AA711EB876EF84BC4F9AE02.roa File: B74426C88AA711EB876EF84BC4F9AE02.roa (raw, json) Hash identifier: I8xUhuaKZwm6lPAAKATroItwpWXb2vxsxqVz/BIgbyE= Subject key identifier: 39:A9:5A:6B:CA:48:7B:5F:41:12:2C:75:47:C4:DC:68:D8:3C:8E:5C Certificate issuer: /CN=A91FEE70/serialNumber=FA94DE39088EC38A52B692279A42C4AFFB5B73B1 Certificate serial: 0C21 Authority key identifier: FA:94:DE:39:08:8E:C3:8A:52:B6:92:27:9A:42:C4:AF:FB:5B:73:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-pTeOQiOw4pStpInmkLEr_tbc7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/B74426C88AA711EB876EF84BC4F9AE02.roa Signing time: Tue 08 Apr 2025 18:57:33 +0000 ROA not before: Tue 08 Apr 2025 18:57:33 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 203.2.170.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/-pTeOQiOw4pStpInmkLEr_tbc7E.crl rsync://rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/-pTeOQiOw4pStpInmkLEr_tbc7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-pTeOQiOw4pStpInmkLEr_tbc7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Nov 2025 18:27:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3105 (0xc21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEE70, serialNumber=FA94DE39088EC38A52B692279A42C4AFFB5B73B1 Validity Not Before: Apr 8 18:57:33 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67f5719d-9117 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4b:55:9a:36:8a:4b:29:e9:77:92:ac:b1:a5: be:75:4b:f2:82:32:b7:8c:78:51:fd:06:a4:a9:bb: 72:cf:6c:ea:5c:1b:73:24:6e:68:88:b3:a0:74:a3: 9b:6b:3b:92:15:ce:10:b4:1a:9e:cf:0a:3d:59:1f: 33:40:1a:08:8c:db:57:ba:30:6b:f1:19:63:ad:e0: a3:8c:02:f7:77:f2:52:1b:99:12:26:81:71:d2:5e: f9:eb:02:65:4b:ea:c0:15:87:4a:66:0a:4b:38:b4: b3:16:50:ca:62:ca:83:da:d0:c8:4c:a0:1e:63:5b: 03:47:b1:c2:e7:7b:34:67:e9:33:8a:9b:2f:b6:74: 17:dd:84:7d:39:7d:07:ed:a4:2a:8d:77:89:3a:d5: ec:bf:b5:09:6b:53:de:82:b3:d8:d1:fb:48:92:f3: 45:44:b5:0b:1a:1c:25:5e:b9:e9:fe:7f:97:91:64: 5f:0a:5a:08:2c:af:05:4c:4b:25:45:59:e3:f1:50: a7:24:34:a7:47:06:94:5d:33:b6:14:e5:91:b8:91: 82:7f:b9:c5:73:2b:61:74:99:8d:59:e1:a0:4c:67: f2:a5:35:05:40:b8:13:80:da:2b:88:1a:de:84:a7: 47:a5:f6:d7:39:19:f5:26:67:49:bb:b9:bd:70:13: d3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:A9:5A:6B:CA:48:7B:5F:41:12:2C:75:47:C4:DC:68:D8:3C:8E:5C X509v3 Authority Key Identifier: keyid:FA:94:DE:39:08:8E:C3:8A:52:B6:92:27:9A:42:C4:AF:FB:5B:73:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/-pTeOQiOw4pStpInmkLEr_tbc7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-pTeOQiOw4pStpInmkLEr_tbc7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEE70/0910D1A009E811EAA630164FC4F9AE02/B74426C88AA711EB876EF84BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.2.170.0/24 Signature Algorithm: sha256WithRSAEncryption 8f:8a:fd:e1:c3:d6:29:93:cf:44:07:50:29:8b:88:62:98:b3: f2:09:29:ba:82:27:94:60:bd:0d:98:37:84:cb:76:3e:70:2b: 9d:f9:a6:57:17:af:7e:d4:2b:16:e8:65:69:f4:bf:50:6a:a3: 23:1a:0a:62:58:13:22:c0:d5:eb:a9:f6:e0:ba:47:ae:47:14: f1:69:c0:13:7c:54:82:c8:bf:52:45:88:7b:eb:b2:4e:f3:38: 86:e6:50:b7:01:8b:46:39:5d:fa:92:c9:c8:60:75:d0:48:cc: 21:d1:ec:2d:80:70:d8:bf:87:82:0f:3a:2c:18:d8:03:f6:54: b5:18:0f:b3:8a:55:0e:e1:0a:38:68:b4:cb:5c:81:da:39:b7: 76:ba:a0:3f:83:47:39:55:00:52:36:58:d6:ad:58:03:75:3d: 7d:9d:3c:ad:23:58:e5:d8:b5:23:a2:88:44:b3:c7:b9:b3:4b: 0d:2c:5a:10:a4:11:b6:62:6e:30:83:ae:db:51:c5:2f:17:70: 6a:67:ac:0a:83:48:70:ea:25:c8:3f:f3:1f:a8:f1:68:b6:42: da:3e:09:e8:02:3d:ce:7b:f1:e3:5d:4c:63:38:e1:f1:c9:82: 8c:22:96:39:ff:08:bd:5f:61:86:4c:c2:2a:9f:b7:f8:c4:21: 64:2a:dd:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDCEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVFNzAxMTAvBgNVBAUTKEZBOTRERTM5MDg4RUMzOEE1MkI2OTIyNzlBNDJDNEFG RkI1QjczQjEwHhcNMjUwNDA4MTg1NzMzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y1NzE5ZC05MTE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp0tVmjaKSynpd5KssaW+dUvygjK3jHhR/Qakqbtyz2zqXBtzJG5oiLOgdKOb azuSFc4QtBqezwo9WR8zQBoIjNtXujBr8RljreCjjAL3d/JSG5kSJoFx0l756wJl S+rAFYdKZgpLOLSzFlDKYsqD2tDITKAeY1sDR7HC53s0Z+kzipsvtnQX3YR9OX0H 7aQqjXeJOtXsv7UJa1PegrPY0ftIkvNFRLULGhwlXrnp/n+XkWRfCloILK8FTEsl RVnj8VCnJDSnRwaUXTO2FOWRuJGCf7nFcythdJmNWeGgTGfypTUFQLgTgNoriBre hKdHpfbXORn1JmdJu7m9cBPTIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDmpWmvK SHtfQRIsdUfE3GjYPI5cMB8GA1UdIwQYMBaAFPqU3jkIjsOKUraSJ5pCxK/7W3Ox MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUU3MC8wOTEwRDFBMDA5 RTgxMUVBQTYzMDE2NEZDNEY5QUUwMi8tcFRlT1FpT3c0cFN0cElubWtMRXJfdGJj N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1wVGVPUWlPdzRwU3RwSW5ta0xFcl90YmM3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkVFNzAvMDkxMEQxQTAwOUU4MTFFQUE2MzAxNjRGQzRGOUFFMDIvQjc0NDI2Qzg4 QUE3MTFFQjg3NkVGODRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLAqowDQYJKoZIhvcNAQELBQADggEBAI+K/eHD1imTz0QH UCmLiGKYs/IJKbqCJ5RgvQ2YN4TLdj5wK535plcXr37UKxboZWn0v1BqoyMaCmJY EyLA1eup9uC6R65HFPFpwBN8VILIv1JFiHvrsk7zOIbmULcBi0Y5XfqSychgddBI zCHR7C2AcNi/h4IPOiwY2AP2VLUYD7OKVQ7hCjhotMtcgdo5t3a6oD+DRzlVAFI2 WNatWAN1PX2dPK0jWOXYtSOiiESzx7mzSw0sWhCkEbZibjCDrttRxS8XcGpnrAqD SHDqJcg/8x+o8Wi2Qto+CegCPc578eNdTGM44fHJgowiljn/CL1fYYZMwiqft/jE IWQq3YI= -----END CERTIFICATE-----Generated at Tue Nov 4 19:01:48 2025 by rpki-client