$ rpki-client -vvf rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/544F13A6B78111EF84611770C4F9AE02.roa File: 544F13A6B78111EF84611770C4F9AE02.roa (raw, json) Hash identifier: n2ZNps1Q9cQsfWAtJjRE5AUYafhco8sajICleXYU/Io= Subject key identifier: 41:02:17:AB:CE:B2:67:54:F5:8A:E5:E8:24:E7:84:75:D7:FF:6B:5A Certificate issuer: /CN=A919536C/serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Certificate serial: 01AB Authority key identifier: A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/544F13A6B78111EF84611770C4F9AE02.roa Signing time: Mon 23 Jun 2025 03:22:14 +0000 ROA not before: Mon 23 Jun 2025 03:22:14 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 136393 IP address blocks: 96.30.64.0/21 maxlen: 21 96.30.64.0/22 maxlen: 23 96.30.64.0/24 maxlen: 24 96.30.68.0/23 maxlen: 23 96.30.70.0/23 maxlen: 23 96.30.72.0/23 maxlen: 23 96.30.79.0/24 maxlen: 24 96.30.84.0/22 maxlen: 23 96.30.100.0/22 maxlen: 23 96.30.107.0/24 maxlen: 24 96.30.108.0/23 maxlen: 23 96.30.111.0/24 maxlen: 24 146.88.36.0/22 maxlen: 22 146.88.36.0/24 maxlen: 24 146.88.37.0/24 maxlen: 24 146.88.38.0/23 maxlen: 23 146.88.42.0/23 maxlen: 23 146.88.44.0/22 maxlen: 23 146.88.52.0/22 maxlen: 24 161.82.186.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 427 (0x1ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919536C, serialNumber=A090E520BF9D51F2FDCEED413AF27AC758F6AE1D Validity Not Before: Jun 23 03:22:14 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6858c865-fbb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e8:f2:b7:4e:22:2f:80:d1:f9:62:2a:21:a4: d6:2a:a2:a4:a1:8b:67:2c:95:88:6e:ea:1f:30:02: ba:c8:9c:7c:f1:97:c2:ee:97:e5:5d:66:7a:b9:f6: 0f:1c:ee:ef:04:e9:24:aa:4c:9b:13:83:22:42:94: 21:34:da:48:c2:15:ca:7d:17:ac:19:b6:bc:1b:96: 7f:e8:5b:29:b6:c9:ef:9b:6b:db:83:da:f2:9e:ed: 4c:0d:61:0a:a1:7f:ac:f6:46:66:26:0d:7e:44:96: 5d:8b:97:c0:de:b0:33:16:68:9a:fa:7c:41:f3:55: 44:3f:a7:38:51:f9:4b:1b:c3:22:19:91:da:1a:1b: fe:bc:36:33:a3:09:b5:a9:ea:8e:4b:e9:fb:ee:23: b1:dc:9d:80:1f:1a:b0:3b:59:f2:56:0e:d9:70:37: f3:11:d0:38:76:90:17:a9:ee:f0:a3:fb:c3:5e:54: be:b7:e4:02:0f:de:77:01:fb:cd:b6:aa:5d:4c:84: 31:68:0c:19:3f:fa:12:53:56:03:ad:58:99:ae:03: 4c:78:ee:71:de:ab:60:81:50:bb:1a:12:fb:8e:3b: 1b:c4:1c:b7:3d:4b:4e:42:e7:43:4a:b2:7e:e3:49: 18:af:1a:83:86:75:e0:b5:73:09:65:25:cf:24:b6: 9e:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:02:17:AB:CE:B2:67:54:F5:8A:E5:E8:24:E7:84:75:D7:FF:6B:5A X509v3 Authority Key Identifier: keyid:A0:90:E5:20:BF:9D:51:F2:FD:CE:ED:41:3A:F2:7A:C7:58:F6:AE:1D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/oJDlIL-dUfL9zu1BOvJ6x1j2rh0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919536C/75B98BF0366011EE88E0F530C4F9AE02/544F13A6B78111EF84611770C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 96.30.64.0-96.30.73.255 96.30.79.0/24 96.30.84.0/22 96.30.100.0/22 96.30.107.0-96.30.109.255 96.30.111.0/24 146.88.36.0/22 146.88.42.0-146.88.47.255 146.88.52.0/22 161.82.186.0/23 Signature Algorithm: sha256WithRSAEncryption c0:52:bd:61:ba:b6:4f:50:56:2c:e5:63:4d:d6:32:6c:4c:8b: 48:4b:bb:02:83:f2:7e:b5:76:32:46:c9:77:de:55:66:fa:db: 82:44:5d:a1:66:d9:3e:7a:e7:9c:41:ef:06:51:11:ba:2d:bd: 64:30:44:6e:d7:5f:5f:74:6d:ca:f4:63:30:ef:b9:a9:88:ec: 0a:17:0f:26:77:c1:3e:7b:d8:bb:50:ee:b5:2d:8a:2f:90:12: 83:f5:88:da:f6:f9:4f:14:3a:50:ce:6d:10:9b:2a:27:7e:68: 93:3b:c5:a5:7c:1a:2f:5a:fd:c4:00:b6:e8:88:61:3f:a7:1b: c0:71:e1:38:e9:d2:9a:fb:eb:68:6a:da:0a:dc:39:10:e2:be: 70:ce:79:11:ac:70:97:ee:11:9f:6e:1d:9e:0f:55:e6:0a:b6: 4e:93:46:f6:30:d7:35:38:4e:18:c8:80:87:54:01:72:3f:15: d2:bf:49:d1:cc:e1:9b:4a:7b:d5:4c:24:f9:18:76:08:9c:43: b5:2e:74:62:20:b0:9f:f5:de:a1:b8:7a:d9:eb:7b:11:09:9e: 9c:71:0c:5d:45:e6:39:71:02:3f:99:da:e6:0a:46:5c:87:5a: 0d:5e:8b:4c:1d:5b:be:69:47:af:20:3a:5e:35:26:9b:54:de: 2a:07:0e:13 -----BEGIN CERTIFICATE----- MIIFvzCCBKegAwIBAgICAaswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTUzNkMxMTAvBgNVBAUTKEEwOTBFNTIwQkY5RDUxRjJGRENFRUQ0MTNBRjI3QUM3 NThGNkFFMUQwHhcNMjUwNjIzMDMyMjE0WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODU4Yzg2NS1mYmIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuOjyt04iL4DR+WIqIaTWKqKkoYtnLJWIbuofMAK6yJx88ZfC7pflXWZ6ufYP HO7vBOkkqkybE4MiQpQhNNpIwhXKfResGba8G5Z/6Fsptsnvm2vbg9rynu1MDWEK oX+s9kZmJg1+RJZdi5fA3rAzFmia+nxB81VEP6c4UflLG8MiGZHaGhv+vDYzowm1 qeqOS+n77iOx3J2AHxqwO1nyVg7ZcDfzEdA4dpAXqe7wo/vDXlS+t+QCD953AfvN tqpdTIQxaAwZP/oSU1YDrViZrgNMeO5x3qtggVC7GhL7jjsbxBy3PUtOQudDSrJ+ 40kYrxqDhnXgtXMJZSXPJLaevQIDAQABo4IC4zCCAt8wHQYDVR0OBBYEFEECF6vO smdU9Yrl6CTnhHXX/2taMB8GA1UdIwQYMBaAFKCQ5SC/nVHy/c7tQTryesdY9q4d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTM2Qy83NUI5OEJGMDM2 NjAxMUVFODhFMEY1MzBDNEY5QUUwMi9vSkRsSUwtZFVmTDl6dTFCT3ZKNngxajJy aDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29KRGxJTC1kVWZMOXp1MUJPdko2eDFqMnJoMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTUzNkMvNzVCOThCRjAzNjYwMTFFRTg4RTBGNTMwQzRGOUFFMDIvNTQ0RjEzQTZC NzgxMTFFRjg0NjExNzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbQYIKwYBBQUHAQcBAf8E XjBcMFoEAgABMFQwDAMEBmAeQAMEAWAeSAMEAGAeTwMEAmAeVAMEAmAeZDAMAwQA YB5rAwQBYB5sAwQAYB5vAwQCklgkMAwDBAGSWCoDBASSWCADBAKSWDQDBAGhUrow DQYJKoZIhvcNAQELBQADggEBAMBSvWG6tk9QVizlY03WMmxMi0hLuwKD8n61djJG yXfeVWb624JEXaFm2T5655xB7wZREbotvWQwRG7XX190bcr0YzDvuamI7AoXDyZ3 wT572LtQ7rUtii+QEoP1iNr2+U8UOlDObRCbKid+aJM7xaV8Gi9a/cQAtuiIYT+n G8Bx4Tjp0pr762hq2grcORDivnDOeRGscJfuEZ9uHZ4PVeYKtk6TRvYw1zU4ThjI gIdUAXI/FdK/SdHM4ZtKe9VMJPkYdgicQ7UudGIgsJ/13qG4etnrexEJnpxxDF1F 5jlxAj+Z2uYKRlyHWg1ei0wdW75pR68gOl41JptU3ioHDhM= -----END CERTIFICATE-----Generated at Fri Jul 4 04:40:07 2025 by rpki-client