$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2F4FE7325B7C11EDAAFAB831C4F9AE02.roa File: 2F4FE7325B7C11EDAAFAB831C4F9AE02.roa (raw, json) Hash identifier: JI7/VMpNwJi4JTM3hdmA2otFXIkGdb1UEZF29e+5G6g= Subject key identifier: 29:35:CE:AE:A2:2E:99:10:FC:CC:38:3F:71:42:82:3B:0D:C4:AC:3F Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 026B Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2F4FE7325B7C11EDAAFAB831C4F9AE02.roa Signing time: Tue 01 Jul 2025 03:08:59 +0000 ROA not before: Tue 01 Jul 2025 03:08:59 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 65501 IP address blocks: 140.168.244.0/22 maxlen: 22 140.168.244.0/24 maxlen: 24 140.168.245.0/24 maxlen: 24 140.168.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:09:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 619 (0x26b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98, serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Jul 1 03:08:59 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=6863514b-c412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a4:4b:3f:e2:1a:a5:d5:a5:bb:c1:8d:67:27: 37:b2:eb:5e:ae:cb:a7:5b:06:c9:d9:fe:41:43:25: c2:a7:17:1c:4a:db:51:c1:5c:d7:45:29:13:ee:b6: 44:6c:89:cd:ec:45:39:09:f1:26:da:7d:d9:f1:bd: 65:e4:e9:ab:67:a4:e2:16:e0:6e:1c:91:3f:e6:fd: a5:10:b2:f2:60:48:c9:5e:fd:72:b6:30:f6:71:3a: 24:99:b9:dc:c7:6f:07:86:fd:cc:a2:e0:79:af:cd: b1:99:ab:e4:34:a4:cf:33:fd:aa:64:f1:05:c8:0c: 4b:17:64:8a:72:08:4e:21:c0:96:14:f5:96:6b:09: e9:50:08:4a:c3:21:3a:cb:b9:a5:07:4c:df:64:17: 60:21:31:4e:b7:45:0a:32:12:b7:36:38:e0:55:06: 19:f1:fe:14:66:42:92:f6:e3:00:a6:2d:76:e2:c0: b8:40:99:99:e6:c4:0f:f3:1e:82:ab:8d:11:f4:4d: 9e:15:89:0e:54:90:85:1b:e3:8e:02:59:f7:15:80: 82:74:99:20:a4:21:da:af:c5:36:f1:94:33:83:97: d3:54:12:71:93:4d:ce:60:ed:e6:f5:ed:cf:ab:8a: 58:76:06:4f:d1:d5:b8:84:4b:21:7e:28:d9:aa:28: b7:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:35:CE:AE:A2:2E:99:10:FC:CC:38:3F:71:42:82:3B:0D:C4:AC:3F X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2F4FE7325B7C11EDAAFAB831C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.168.244.0/22 Signature Algorithm: sha256WithRSAEncryption 63:d6:5b:d0:a4:77:9a:ac:eb:80:79:73:77:40:e4:6b:dd:c8: 21:d5:9c:94:b4:81:3b:35:c8:f2:9b:83:4f:12:2a:e4:12:61: 6b:6c:fb:10:3d:3c:0c:f2:84:db:42:88:25:25:0a:1c:0e:73: 01:92:f8:b8:17:dc:da:76:f4:41:f1:5c:6f:f3:31:e6:30:2c: 06:17:1c:b2:c6:c6:13:ba:f2:0d:1d:2c:bb:21:16:66:ac:96: e7:7d:e0:7f:fb:1f:11:e1:cb:aa:1f:a2:b1:bd:9f:a7:12:45: 56:f0:65:bd:a2:f8:85:50:0e:2e:5e:3a:17:dc:96:02:f8:08: 0a:47:e0:fa:5a:e3:7e:c2:7f:f4:e3:b3:33:bd:bc:ba:6d:1e: 63:c7:ab:13:a3:e9:e2:fe:db:99:28:35:bf:7b:4d:0b:6b:49: 52:b0:62:dc:ce:ed:3a:97:ea:eb:14:37:d2:a2:a5:e8:1c:3c: 22:be:22:99:74:ff:ce:88:70:fc:12:ce:45:a0:0d:13:35:e4: d8:8f:21:7f:79:5e:96:de:86:11:c6:67:83:08:17:46:67:9d: 74:e6:af:af:e4:bd:d8:bf:8d:4b:ab:e2:66:c8:f7:06:e3:d6: 7a:8b:54:be:82:d7:56:20:e0:65:4d:95:d2:ea:f7:7e:e4:5f: 71:a1:4a:30 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAmswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjUwNzAxMDMwODU5WhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzNTE0Yi1jNDEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqRLP+IapdWlu8GNZyc3sutersunWwbJ2f5BQyXCpxccSttRwVzXRSkT7rZE bInN7EU5CfEm2n3Z8b1l5OmrZ6TiFuBuHJE/5v2lELLyYEjJXv1ytjD2cTokmbnc x28Hhv3MouB5r82xmavkNKTPM/2qZPEFyAxLF2SKcghOIcCWFPWWawnpUAhKwyE6 y7mlB0zfZBdgITFOt0UKMhK3NjjgVQYZ8f4UZkKS9uMApi124sC4QJmZ5sQP8x6C q40R9E2eFYkOVJCFG+OOAln3FYCCdJkgpCHar8U28ZQzg5fTVBJxk03OYO3m9e3P q4pYdgZP0dW4hEshfijZqii3DwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCk1zq6i LpkQ/Mw4P3FCgjsNxKw/MB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvMkY0RkU3MzI1 QjdDMTFFREFBRkFCODMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKMqPQwDQYJKoZIhvcNAQELBQADggEBAGPWW9Ckd5qs64B5 c3dA5GvdyCHVnJS0gTs1yPKbg08SKuQSYWts+xA9PAzyhNtCiCUlChwOcwGS+LgX 3Np29EHxXG/zMeYwLAYXHLLGxhO68g0dLLshFmaslud94H/7HxHhy6oforG9n6cS RVbwZb2i+IVQDi5eOhfclgL4CApH4Ppa437Cf/TjszO9vLptHmPHqxOj6eL+25ko Nb97TQtrSVKwYtzO7TqX6usUN9KipegcPCK+Ipl0/86IcPwSzkWgDRM15NiPIX95 XpbehhHGZ4MIF0ZnnXTmr6/kvdi/jUur4mbI9wbj1nqLVL6C11Yg4GVNldLq937k X3GhSjA= -----END CERTIFICATE-----Generated at Wed Jul 2 22:40:25 2025 by rpki-client