$ rpki-client -vvf rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/62923A1EF2B711EDAA29717AC4F9AE02.roa File: 62923A1EF2B711EDAA29717AC4F9AE02.roa (raw, json) Hash identifier: oxGjZ2qP5KAlzJWT8zUJKcB63LEiuvqe3on36ROaH3g= Subject key identifier: 46:DD:1C:3A:86:82:15:85:75:45:7C:6C:8D:93:F5:78:4B:BA:73:50 Certificate issuer: /CN=A91579E2/serialNumber=3B62407E2E54F42F8090E2C0D86FD2C3A61330B3 Certificate serial: 0194 Authority key identifier: 3B:62:40:7E:2E:54:F4:2F:80:90:E2:C0:D8:6F:D2:C3:A6:13:30:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/62923A1EF2B711EDAA29717AC4F9AE02.roa Signing time: Thu 03 Jul 2025 03:39:02 +0000 ROA not before: Thu 03 Jul 2025 03:39:02 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 151208 IP address blocks: 103.133.88.0/23 maxlen: 24 2400:faa0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.crl rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 404 (0x194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91579E2, serialNumber=3B62407E2E54F42F8090E2C0D86FD2C3A61330B3 Validity Not Before: Jul 3 03:39:02 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6865fb56-7fb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:7c:ff:d1:74:92:fb:8d:d1:71:6b:53:bf:09: d3:23:f6:90:b5:00:49:68:a8:cd:22:ae:d2:cf:8d: 9c:a2:3d:c0:71:66:76:20:b7:3b:81:cf:2e:de:42: 84:16:6a:a5:07:e5:3b:da:0e:a3:aa:1d:ba:48:01: c4:3f:f1:c6:5b:ee:28:3c:6a:bb:35:a0:b9:9c:ba: 40:66:99:c3:df:57:f5:79:55:88:cd:21:b0:ae:c1: d3:6e:43:a0:c3:7a:3f:db:e1:4d:56:f0:85:9c:c7: a5:eb:ee:68:0e:d2:db:d4:82:3b:4b:84:42:ee:7f: 98:8a:fa:b6:58:cb:4b:5e:a2:d5:72:a4:94:2c:cd: 9e:b3:62:d6:48:8a:e8:9e:81:e3:df:11:b8:94:9f: be:59:87:61:ce:7d:53:9a:46:a9:46:92:c8:59:7d: ae:fe:08:f0:b3:83:ec:1c:5a:3a:67:c8:28:6a:2e: 78:0a:ab:38:3c:b5:56:19:45:af:fd:54:7e:9d:30: d1:be:26:34:eb:ee:ae:59:d4:64:35:ea:ec:02:47: 7e:b5:49:9b:35:f6:c9:49:36:7e:f4:b2:a6:67:44: 1d:9f:e4:67:7b:ba:14:b0:49:db:b8:b9:6e:b8:11: 90:90:ea:d2:d4:08:05:66:00:98:91:ea:36:b0:f5: 7a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:DD:1C:3A:86:82:15:85:75:45:7C:6C:8D:93:F5:78:4B:BA:73:50 X509v3 Authority Key Identifier: keyid:3B:62:40:7E:2E:54:F4:2F:80:90:E2:C0:D8:6F:D2:C3:A6:13:30:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/O2JAfi5U9C-AkOLA2G_Sw6YTMLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91579E2/73AF2F7AF2B011EDA42B4470C4F9AE02/62923A1EF2B711EDAA29717AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.133.88.0/23 IPv6: 2400:faa0::/32 Signature Algorithm: sha256WithRSAEncryption a4:b7:3f:97:3b:36:e4:a8:cd:d0:7e:a1:a4:97:38:e3:97:b9: bb:11:49:77:b2:4f:ba:fc:1f:ec:0e:44:be:0b:a3:72:35:89: 4b:90:2a:fb:ad:3d:25:f0:5e:c4:7b:17:1f:b2:b4:87:60:34: 37:72:88:3f:43:2f:f3:f1:e8:60:ef:96:d9:c6:f7:25:8c:f3: 83:7a:70:57:7a:86:d2:55:2f:c3:3b:d8:d5:0c:f7:75:0e:e6: 4e:f1:98:76:01:50:d4:2e:cd:da:9e:b0:ad:6c:5a:8e:97:c8: 3c:25:a4:d5:43:3f:f2:63:21:c0:c9:19:98:33:c0:3d:5e:b5: f6:c9:d6:fb:f5:45:da:6f:3b:42:b0:1d:46:ee:43:df:1d:55: 34:37:db:cc:92:90:dd:71:d7:5e:03:25:72:3a:44:7f:55:1b: 4d:03:ef:e5:fa:31:94:14:b5:50:3e:69:19:82:75:24:47:c9: eb:3f:96:e9:02:22:6b:1e:a0:72:70:f5:34:10:70:c5:53:6d: 9a:14:6d:ef:f0:bc:ef:82:80:04:6f:7e:7b:22:f3:5a:98:6f: b9:dc:6b:b0:61:03:81:8a:a8:4b:f5:27:da:52:27:6f:f5:c2: 5e:53:df:7a:17:99:1e:7f:2d:67:e0:9c:92:dd:20:22:3b:91: 42:fd:87:a9 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTc5RTIxMTAvBgNVBAUTKDNCNjI0MDdFMkU1NEY0MkY4MDkwRTJDMEQ4NkZEMkMz QTYxMzMwQjMwHhcNMjUwNzAzMDMzOTAyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1ZmI1Ni03ZmI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr3z/0XSS+43RcWtTvwnTI/aQtQBJaKjNIq7Sz42coj3AcWZ2ILc7gc8u3kKE FmqlB+U72g6jqh26SAHEP/HGW+4oPGq7NaC5nLpAZpnD31f1eVWIzSGwrsHTbkOg w3o/2+FNVvCFnMel6+5oDtLb1II7S4RC7n+Yivq2WMtLXqLVcqSULM2es2LWSIro noHj3xG4lJ++WYdhzn1TmkapRpLIWX2u/gjws4PsHFo6Z8goai54Cqs4PLVWGUWv /VR+nTDRviY06+6uWdRkNersAkd+tUmbNfbJSTZ+9LKmZ0Qdn+Rne7oUsEnbuLlu uBGQkOrS1AgFZgCYkeo2sPV6OQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEbdHDqG ghWFdUV8bI2T9XhLunNQMB8GA1UdIwQYMBaAFDtiQH4uVPQvgJDiwNhv0sOmEzCz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NzlFMi83M0FGMkY3QUYy QjAxMUVEQTQyQjQ0NzBDNEY5QUUwMi9PMkpBZmk1VTlDLUFrT0xBMkdfU3c2WVRN TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL08ySkFmaTVVOUMtQWtPTEEyR19TdzZZVE1MTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTc5RTIvNzNBRjJGN0FGMkIwMTFFREE0MkI0NDcwQzRGOUFFMDIvNjI5MjNBMUVG MkI3MTFFREFBMjk3MTdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnhVgwDQQCAAIwBwMFACQA+qAwDQYJKoZIhvcNAQELBQAD ggEBAKS3P5c7NuSozdB+oaSXOOOXubsRSXeyT7r8H+wORL4Lo3I1iUuQKvutPSXw XsR7Fx+ytIdgNDdyiD9DL/Px6GDvltnG9yWM84N6cFd6htJVL8M72NUM93UO5k7x mHYBUNQuzdqesK1sWo6XyDwlpNVDP/JjIcDJGZgzwD1etfbJ1vv1RdpvO0KwHUbu Q98dVTQ328ySkN1x114DJXI6RH9VG00D7+X6MZQUtVA+aRmCdSRHyes/lukCImse oHJw9TQQcMVTbZoUbe/wvO+CgARvfnsi81qYb7nca7BhA4GKqEv1J9pSJ2/1wl5T 33oXmR5/LWfgnJLdICI7kUL9h6k= -----END CERTIFICATE-----Generated at Sat Jul 5 20:58:55 2025 by rpki-client