$ rpki-client -vvf rpki.apnic.net/member_repository/A91384DF/AE164B62037611EFACA7F921C4F9AE02/69BCFB40037711EFBE813223C4F9AE02.roa File: 69BCFB40037711EFBE813223C4F9AE02.roa (raw, json) Hash identifier: su08LeFa0desNztEPIYwzNBVHUg3OxH6645OovpEUEM= Subject key identifier: 66:87:DA:66:E1:8E:C5:22:6D:EE:3F:02:02:C2:F0:C6:9A:F1:99:14 Certificate issuer: /CN=A91384DF/serialNumber=AC9789F28AF168B26C50964615DF06D7EC7202E3 Certificate serial: E1 Authority key identifier: AC:97:89:F2:8A:F1:68:B2:6C:50:96:46:15:DF:06:D7:EC:72:02:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJeJ8orxaLJsUJZGFd8G1-xyAuM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91384DF/AE164B62037611EFACA7F921C4F9AE02/69BCFB40037711EFBE813223C4F9AE02.roa Signing time: Tue 01 Jul 2025 06:12:09 +0000 ROA not before: Tue 01 Jul 2025 06:12:09 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 152717 IP address blocks: 202.49.33.0/24 maxlen: 24 2001:df3:bbc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91384DF/AE164B62037611EFACA7F921C4F9AE02/rJeJ8orxaLJsUJZGFd8G1-xyAuM.crl rsync://rpki.apnic.net/member_repository/A91384DF/AE164B62037611EFACA7F921C4F9AE02/rJeJ8orxaLJsUJZGFd8G1-xyAuM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJeJ8orxaLJsUJZGFd8G1-xyAuM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 225 (0xe1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91384DF, serialNumber=AC9789F28AF168B26C50964615DF06D7EC7202E3 Validity Not Before: Jul 1 06:12:09 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=68637c38-6eb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:90:6b:39:8d:c2:dd:25:ef:66:db:8c:cc:d7: 2c:04:e8:75:2b:a4:f7:27:ad:f2:42:49:d2:05:3b: 9d:4c:fe:a2:cf:b3:e0:f2:1e:c9:3e:25:15:03:9a: 71:2b:61:ab:b2:ba:1c:f5:a6:22:0c:f0:c9:f1:33: c8:83:0c:6b:94:5d:c3:4e:aa:cf:f2:01:10:b0:52: 53:bb:65:e5:4d:5f:f6:7d:44:ea:40:6b:0c:44:77: fd:bc:9f:5a:15:f9:36:2f:22:e2:2b:a6:6d:56:46: 77:bb:64:b5:86:76:ca:93:ea:a5:e6:2e:62:d0:4b: df:81:73:a2:b6:01:93:e4:79:4c:45:05:83:ff:d6: dc:3d:10:ef:78:b6:30:3e:5a:86:fc:07:d9:d3:80: 02:7e:af:72:76:56:19:7f:3b:76:70:da:b0:1f:cf: d9:f3:49:5d:5a:52:54:58:2e:75:c6:fd:07:91:08: bf:1b:66:2e:db:bb:d9:fe:4f:b9:f5:fe:37:48:a0: 16:ff:f4:44:14:42:79:a9:a1:26:25:60:bb:e7:6d: c8:52:f6:3e:d9:68:89:a7:0f:49:74:a4:76:38:7c: b1:e0:54:58:b5:ac:ec:4e:19:6b:30:c9:ee:55:a4: 47:87:41:c0:f9:69:5e:00:3a:ca:2a:32:62:66:ec: 43:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:87:DA:66:E1:8E:C5:22:6D:EE:3F:02:02:C2:F0:C6:9A:F1:99:14 X509v3 Authority Key Identifier: keyid:AC:97:89:F2:8A:F1:68:B2:6C:50:96:46:15:DF:06:D7:EC:72:02:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91384DF/AE164B62037611EFACA7F921C4F9AE02/rJeJ8orxaLJsUJZGFd8G1-xyAuM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJeJ8orxaLJsUJZGFd8G1-xyAuM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91384DF/AE164B62037611EFACA7F921C4F9AE02/69BCFB40037711EFBE813223C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.49.33.0/24 IPv6: 2001:df3:bbc0::/48 Signature Algorithm: sha256WithRSAEncryption 52:20:e9:47:04:9d:26:28:d9:4c:ba:96:c0:04:d0:f3:ed:43: 76:2d:3d:7b:40:e9:4e:8b:fc:b9:6e:31:36:fc:a9:1a:f2:87: 39:0e:59:36:d3:7e:4f:ae:5a:db:4f:24:e2:1e:de:38:44:5c: 19:ed:6f:34:0f:e0:1a:b5:4f:bc:f9:d3:0e:5c:b9:35:d3:17: 8f:e5:78:5c:9b:42:28:48:93:63:f6:48:c4:38:83:a3:83:f4: 5f:a2:26:39:6c:dc:b2:92:e9:ad:38:7e:66:8d:20:6e:74:21: d3:90:a5:a2:bb:83:e8:0c:f2:e9:bb:c5:9f:6f:23:a6:a8:1e: ac:a1:4a:ad:7c:2d:fc:99:c4:97:00:f3:38:94:08:08:88:11: 84:47:4b:5a:43:59:0d:c2:23:e8:86:6b:40:fa:dd:d0:74:22: 4a:25:e3:2b:d6:47:88:dd:31:55:7f:c0:fc:7a:4b:3b:09:8b: ee:8d:78:79:97:ab:1d:71:ef:d2:ce:2d:87:58:be:59:27:90: 7c:c6:50:7d:aa:2e:73:67:27:3e:9e:cb:86:1f:6b:39:81:60: 61:fe:a0:b4:d3:1f:01:7c:76:bd:f4:92:55:bb:2f:66:8a:bf: 32:34:90:c2:a8:e4:ee:be:5d:5d:a5:d5:54:3a:e5:04:f0:51: 0a:3e:97:80 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAOEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzg0REYxMTAvBgNVBAUTKEFDOTc4OUYyOEFGMTY4QjI2QzUwOTY0NjE1REYwNkQ3 RUM3MjAyRTMwHhcNMjUwNzAxMDYxMjA5WhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzN2MzOC02ZWI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxpBrOY3C3SXvZtuMzNcsBOh1K6T3J63yQknSBTudTP6iz7Pg8h7JPiUVA5px K2Grsroc9aYiDPDJ8TPIgwxrlF3DTqrP8gEQsFJTu2XlTV/2fUTqQGsMRHf9vJ9a Ffk2LyLiK6ZtVkZ3u2S1hnbKk+ql5i5i0EvfgXOitgGT5HlMRQWD/9bcPRDveLYw PlqG/AfZ04ACfq9ydlYZfzt2cNqwH8/Z80ldWlJUWC51xv0HkQi/G2Yu27vZ/k+5 9f43SKAW//REFEJ5qaEmJWC7523IUvY+2WiJpw9JdKR2OHyx4FRYtazsThlrMMnu VaRHh0HA+WleADrKKjJiZuxD3wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGaH2mbh jsUibe4/AgLC8Maa8ZkUMB8GA1UdIwQYMBaAFKyXifKK8WiybFCWRhXfBtfscgLj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzODRERi9BRTE2NEI2MjAz NzYxMUVGQUNBN0Y5MjFDNEY5QUUwMi9ySmVKOG9yeGFMSnNVSlpHRmQ4RzEteHlB dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JKZUo4b3J4YUxKc1VKWkdGZDhHMS14eUF1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzg0REYvQUUxNjRCNjIwMzc2MTFFRkFDQTdGOTIxQzRGOUFFMDIvNjlCQ0ZCNDAw Mzc3MTFFRkJFODEzMjIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKMSEwDwQCAAIwCQMHACABDfO7wDANBgkqhkiG9w0BAQsF AAOCAQEAUiDpRwSdJijZTLqWwATQ8+1Ddi09e0DpTov8uW4xNvypGvKHOQ5ZNtN+ T65a208k4h7eOERcGe1vNA/gGrVPvPnTDly5NdMXj+V4XJtCKEiTY/ZIxDiDo4P0 X6ImOWzcspLprTh+Zo0gbnQh05CloruD6Azy6bvFn28jpqgerKFKrXwt/JnElwDz OJQICIgRhEdLWkNZDcIj6IZrQPrd0HQiSiXjK9ZHiN0xVX/A/HpLOwmL7o14eZer HXHv0s4th1i+WSeQfMZQfaouc2cnPp7Lhh9rOYFgYf6gtNMfAXx2vfSSVbsvZoq/ MjSQwqjk7r5dXaXVVDrlBPBRCj6XgA== -----END CERTIFICATE-----Generated at Thu Jul 3 11:47:43 2025 by rpki-client