$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa File: 2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa (raw, json) Hash identifier: xDTqUqT1kIUmz8RtVDNj1figux9es0r/Ivvx61/pp9g= Subject key identifier: B5:7F:6D:11:5F:F2:0B:33:4E:A9:5D:E1:2B:12:00:77:66:5A:26:67 Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 026C Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa Signing time: Tue 01 Jul 2025 03:09:00 +0000 ROA not before: Tue 01 Jul 2025 03:09:00 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 65510 IP address blocks: 140.168.64.0/19 maxlen: 19 140.168.78.0/24 maxlen: 24 140.168.79.0/24 maxlen: 24 140.168.87.0/24 maxlen: 24 140.168.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:09:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 620 (0x26c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98, serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Jul 1 03:09:00 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=6863514c-50a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:bc:7b:4e:5b:02:3b:f3:ee:59:19:58:9e:ec: fa:43:e8:ce:e5:c6:57:6a:fa:a6:71:28:ea:1a:68: 85:b7:4e:66:9d:dd:33:30:26:30:f3:a4:81:76:03: 1f:c1:6b:fe:4e:fb:e8:59:9e:2d:aa:9a:01:45:1e: 69:72:6e:e8:5f:c1:be:ca:ab:55:97:5f:d0:5d:d3: 45:23:a1:4c:e1:d3:65:d7:e2:44:55:97:70:9f:b4: 6c:fe:b2:6d:28:d4:f8:27:60:a8:24:94:bf:0f:a6: 42:54:56:04:c6:4e:e9:22:b2:68:54:64:97:27:37: 4c:e9:aa:78:f1:4b:db:59:e8:56:a2:a7:b0:75:cd: 2d:fa:d8:b0:a2:a9:e4:2c:2a:7c:1a:27:01:bd:48: 2c:ba:7f:ad:82:5e:3a:3d:9a:c5:1a:a6:8a:b0:8d: c0:41:8c:98:36:e1:31:d3:f2:e8:64:af:7c:54:ce: 5d:33:64:fe:38:8d:8c:cb:75:4e:7d:eb:e0:d8:82: 43:c7:3f:97:e8:65:13:fa:cb:ef:e5:f7:e0:f1:de: 28:56:fa:d8:6d:af:aa:a1:72:06:8e:dc:1b:fd:9a: a4:82:8f:c7:c1:15:fd:52:5f:74:af:25:32:64:bb: ab:5b:de:16:f0:e3:29:f3:8c:35:b9:d1:34:cf:4f: e8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:7F:6D:11:5F:F2:0B:33:4E:A9:5D:E1:2B:12:00:77:66:5A:26:67 X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/2FD8A46E5B7C11EDAAFAB831C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.168.64.0/18 Signature Algorithm: sha256WithRSAEncryption 10:d9:bf:9f:a1:17:42:19:5b:80:51:5e:47:18:6c:83:34:5c: 0b:42:be:0b:ab:ff:12:98:88:9d:0d:67:3a:12:92:2a:4a:cc: 52:10:dd:8f:95:92:86:ec:7a:08:41:00:c2:d5:29:91:23:a9: 8a:28:6d:13:17:56:83:08:76:b4:7d:c4:57:45:c7:cd:3e:b9: 12:d2:97:50:91:e6:33:da:bd:18:53:d3:2d:e6:e0:bd:b8:c6: 89:c8:b0:db:fd:49:2b:21:e6:51:63:72:8d:ff:1c:10:28:ea: 30:c1:8d:67:dc:b6:3d:93:91:44:59:07:a4:ee:14:b4:5b:4a: 0c:42:87:af:55:60:de:2b:04:a0:da:1f:96:f1:01:6c:bd:24: 1b:e7:b5:d3:39:1a:f3:41:dd:30:3e:ae:29:95:95:d5:21:38: 8c:18:b1:3b:48:1e:04:9f:c5:40:dd:42:4f:d8:c3:63:54:5a: e6:06:e6:c3:87:e6:b3:25:89:22:93:42:c9:fa:44:39:58:1c: 0c:50:d8:4a:22:d7:d1:ab:4b:b0:bf:9d:07:53:31:18:26:ff: c2:35:95:3a:ad:6d:10:17:88:ae:4f:73:dc:29:80:80:57:66: 0b:91:24:bb:56:2e:98:8c:fa:b2:37:3a:1e:73:b9:c6:a9:81: 03:3b:d9:e5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAmwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjUwNzAxMDMwOTAwWhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzNTE0Yy01MGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAorx7TlsCO/PuWRlYnuz6Q+jO5cZXavqmcSjqGmiFt05mnd0zMCYw86SBdgMf wWv+TvvoWZ4tqpoBRR5pcm7oX8G+yqtVl1/QXdNFI6FM4dNl1+JEVZdwn7Rs/rJt KNT4J2CoJJS/D6ZCVFYExk7pIrJoVGSXJzdM6ap48UvbWehWoqewdc0t+tiwoqnk LCp8GicBvUgsun+tgl46PZrFGqaKsI3AQYyYNuEx0/LoZK98VM5dM2T+OI2My3VO fevg2IJDxz+X6GUT+svv5ffg8d4oVvrYba+qoXIGjtwb/Zqkgo/HwRX9Ul90ryUy ZLurW94W8OMp84w1udE0z0/ovwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLV/bRFf 8gszTqld4SsSAHdmWiZnMB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvMkZEOEE0NkU1 QjdDMTFFREFBRkFCODMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAaMqEAwDQYJKoZIhvcNAQELBQADggEBABDZv5+hF0IZW4BR XkcYbIM0XAtCvgur/xKYiJ0NZzoSkipKzFIQ3Y+VkobseghBAMLVKZEjqYoobRMX VoMIdrR9xFdFx80+uRLSl1CR5jPavRhT0y3m4L24xonIsNv9SSsh5lFjco3/HBAo 6jDBjWfctj2TkURZB6TuFLRbSgxCh69VYN4rBKDaH5bxAWy9JBvntdM5GvNB3TA+ rimVldUhOIwYsTtIHgSfxUDdQk/Yw2NUWuYG5sOH5rMliSKTQsn6RDlYHAxQ2Eoi 19GrS7C/nQdTMRgm/8I1lTqtbRAXiK5Pc9wpgIBXZguRJLtWLpiM+rI3Oh5zucap gQM72eU= -----END CERTIFICATE-----Generated at Wed Jul 2 15:06:51 2025 by rpki-client