$ rpki-client -vvf rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/3A0818A6A6C711E9933CF621C4F9AE02.roa File: 3A0818A6A6C711E9933CF621C4F9AE02.roa (raw, json) Hash identifier: utwoHGpdCAj4Fmr//A9NQPq/Muvduh7CzdYTs9q3Yzo= Subject key identifier: 21:23:C9:AD:98:D4:BC:11:C0:9F:14:98:05:D3:E8:AD:F3:0C:D0:A5 Certificate issuer: /CN=A91619BE/serialNumber=C316319585EE2CF247B5350371467DC269DC9CE5 Certificate serial: 34D7 Authority key identifier: C3:16:31:95:85:EE:2C:F2:47:B5:35:03:71:46:7D:C2:69:DC:9C:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wxYxlYXuLPJHtTUDcUZ9wmncnOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/3A0818A6A6C711E9933CF621C4F9AE02.roa Signing time: Wed 02 Jul 2025 14:50:28 +0000 ROA not before: Wed 02 Jul 2025 14:50:28 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 59235 IP address blocks: 202.57.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/wxYxlYXuLPJHtTUDcUZ9wmncnOU.crl rsync://rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/wxYxlYXuLPJHtTUDcUZ9wmncnOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wxYxlYXuLPJHtTUDcUZ9wmncnOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:50:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13527 (0x34d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91619BE, serialNumber=C316319585EE2CF247B5350371467DC269DC9CE5 Validity Not Before: Jul 2 14:50:28 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68654734-2b86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:22:35:44:02:f0:92:40:8d:31:df:e2:9d:3e: 48:5f:94:7e:93:6e:47:23:fe:c5:6e:10:c6:0d:0f: 45:4a:21:7d:26:d0:ef:c8:5a:bc:cb:6f:c9:06:41: 98:dc:48:f3:3e:bc:fb:16:36:7c:ca:08:39:d0:ca: 7b:d7:17:34:2f:e4:3b:75:70:7a:b8:67:64:dd:f8: c2:55:2b:7b:2b:91:bd:d4:27:77:49:4d:43:aa:55: bd:f4:59:a1:73:4f:af:a3:c7:cf:8b:a2:e3:c5:96: ac:2f:c2:04:a7:7e:3b:e1:a6:c0:58:10:2e:fb:10: 5a:c0:82:c4:10:6f:bb:c9:56:63:84:0b:d2:df:d3: 6a:2a:33:d1:8d:00:68:c7:05:df:c6:73:d0:cc:65: 8a:23:32:3e:c6:0d:e5:54:48:40:1b:ae:d2:08:97: 59:b5:3f:fc:8b:4c:b8:1b:26:18:d2:f3:aa:a0:13: 7c:c5:ac:bc:99:9d:89:ac:6c:92:e0:b7:e5:77:0d: 84:80:9c:15:25:4e:a9:ee:a5:7e:8b:de:3c:58:7c: 03:be:64:38:ef:9f:e8:bd:0c:e5:88:3c:af:46:20: 76:3e:ed:83:b4:54:45:4a:73:46:3c:a7:86:79:ac: b7:6c:78:b6:d0:be:8a:1f:76:05:3b:cc:b8:83:27: 73:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:23:C9:AD:98:D4:BC:11:C0:9F:14:98:05:D3:E8:AD:F3:0C:D0:A5 X509v3 Authority Key Identifier: keyid:C3:16:31:95:85:EE:2C:F2:47:B5:35:03:71:46:7D:C2:69:DC:9C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/wxYxlYXuLPJHtTUDcUZ9wmncnOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wxYxlYXuLPJHtTUDcUZ9wmncnOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91619BE/752991C61D8511E293861BDC08B02CD2/3A0818A6A6C711E9933CF621C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.57.56.0/24 Signature Algorithm: sha256WithRSAEncryption 51:b2:cb:99:79:79:c0:fe:da:40:7c:77:b3:28:96:08:ef:e0: 53:81:ef:db:42:ec:d0:34:41:0f:15:9f:b5:a3:01:34:04:6e: d5:20:a6:0a:c0:58:97:3e:3c:7e:09:03:60:b0:65:b7:e8:69: 75:bb:b6:b2:1d:63:b6:e1:a9:66:7d:15:18:fd:57:4e:e0:cd: 9f:dd:71:4b:2a:99:cb:58:0d:2d:d4:a6:14:e0:16:55:20:8c: c7:21:75:b8:6d:93:fe:d3:22:58:be:62:f9:80:a2:a1:97:b9: 00:6c:01:7e:ee:7a:8c:b3:a0:3d:ba:77:f2:93:c6:a5:2b:9b: 45:af:27:3e:4b:67:40:95:db:3e:9f:e3:d1:d9:7f:46:4f:23: 5b:49:85:95:ea:6c:cd:6b:64:e4:e2:01:62:65:91:57:0c:fb: 78:5c:c2:1c:7e:18:99:26:61:08:a8:ae:36:3f:c9:cd:8d:58: a9:4c:6c:39:d1:a7:6f:9d:f7:78:f0:26:94:20:a1:d6:6f:eb: 8a:37:24:45:18:bf:3e:06:9b:ee:a6:d4:a5:76:4a:ef:a6:14: 78:6b:bc:ce:61:e5:91:fa:25:3f:35:eb:30:4a:54:0f:8d:09: 3e:a7:91:d6:7f:ae:8d:08:d5:17:e7:9e:eb:73:7b:b5:e5:7b: 85:00:6b:77 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNNcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE5QkUxMTAvBgNVBAUTKEMzMTYzMTk1ODVFRTJDRjI0N0I1MzUwMzcxNDY3REMy NjlEQzlDRTUwHhcNMjUwNzAyMTQ1MDI4WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1NDczNC0yYjg2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuiI1RALwkkCNMd/inT5IX5R+k25HI/7FbhDGDQ9FSiF9JtDvyFq8y2/JBkGY 3EjzPrz7FjZ8ygg50Mp71xc0L+Q7dXB6uGdk3fjCVSt7K5G91Cd3SU1DqlW99Fmh c0+vo8fPi6LjxZasL8IEp3474abAWBAu+xBawILEEG+7yVZjhAvS39NqKjPRjQBo xwXfxnPQzGWKIzI+xg3lVEhAG67SCJdZtT/8i0y4GyYY0vOqoBN8xay8mZ2JrGyS 4Lfldw2EgJwVJU6p7qV+i948WHwDvmQ475/ovQzliDyvRiB2Pu2DtFRFSnNGPKeG eay3bHi20L6KH3YFO8y4gydzxwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCEjya2Y 1LwRwJ8UmAXT6K3zDNClMB8GA1UdIwQYMBaAFMMWMZWF7izyR7U1A3FGfcJp3Jzl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTlCRS83NTI5OTFDNjFE ODUxMUUyOTM4NjFCREMwOEIwMkNEMi93eFl4bFlYdUxQSkh0VFVEY1VaOXdtbmNu T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d4WXhsWVh1TFBKSHRUVURjVVo5d21uY25PVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE5QkUvNzUyOTkxQzYxRDg1MTFFMjkzODYxQkRDMDhCMDJDRDIvM0EwODE4QTZB NkM3MTFFOTkzM0NGNjIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKOTgwDQYJKoZIhvcNAQELBQADggEBAFGyy5l5ecD+2kB8 d7Molgjv4FOB79tC7NA0QQ8Vn7WjATQEbtUgpgrAWJc+PH4JA2CwZbfoaXW7trId Y7bhqWZ9FRj9V07gzZ/dcUsqmctYDS3UphTgFlUgjMchdbhtk/7TIli+YvmAoqGX uQBsAX7ueoyzoD26d/KTxqUrm0WvJz5LZ0CV2z6f49HZf0ZPI1tJhZXqbM1rZOTi AWJlkVcM+3hcwhx+GJkmYQiorjY/yc2NWKlMbDnRp2+d93jwJpQgodZv64o3JEUY vz4Gm+6m1KV2Su+mFHhrvM5h5ZH6JT816zBKVA+NCT6nkdZ/ro0I1Rfnnutze7Xl e4UAa3c= -----END CERTIFICATE-----Generated at Wed Jul 2 21:55:04 2025 by rpki-client