$ rpki-client -vvf rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/77E7AC0E492611EDAF439D83C4F9AE02.roa File: 77E7AC0E492611EDAF439D83C4F9AE02.roa (raw, json) Hash identifier: m/lCeZPbzI4IUTU7gNKG3Pc87gLIw4AUvkAgjskQsFI= Subject key identifier: 14:94:E0:7B:AB:C2:07:D4:8F:9B:F0:2D:85:52:B0:D9:DC:92:98:EE Certificate issuer: /CN=A91ADB98/serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Certificate serial: 0268 Authority key identifier: 66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/77E7AC0E492611EDAF439D83C4F9AE02.roa Signing time: Tue 01 Jul 2025 03:08:57 +0000 ROA not before: Tue 01 Jul 2025 03:08:57 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 136140 IP address blocks: 140.168.240.0/24 maxlen: 24 140.168.241.0/24 maxlen: 24 140.168.242.0/24 maxlen: 24 140.168.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 08 Jul 2025 03:09:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 616 (0x268) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ADB98, serialNumber=661C64E293B87F473AF61D89DE48FC4538570157 Validity Not Before: Jul 1 03:08:57 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=68635148-a96c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:be:12:1a:7a:30:da:2e:72:1b:b2:48:c2:3d: 69:4f:fb:a6:6f:a9:cd:0a:b2:7b:75:60:f3:75:c8: 21:19:c9:b0:24:b5:b3:81:42:84:97:88:14:bf:e5: e1:26:98:dc:82:b5:c7:53:4a:a4:61:85:1c:3e:7d: 96:0b:59:c3:b9:f3:a4:1a:fa:d8:43:56:24:50:b6: ae:8b:ee:01:84:fc:b1:7e:43:be:9d:5f:98:f0:e2: 53:42:4e:09:7e:4c:17:7b:bb:80:36:db:f0:f6:a1: 22:4e:ec:3c:3f:ab:e1:68:12:71:23:d5:bf:f7:aa: 53:30:ef:e5:2b:3f:90:9c:ad:28:34:82:60:eb:1b: 20:b9:cc:0b:10:02:0b:63:b3:f2:f4:d4:bb:0e:51: c0:7a:39:ee:71:07:07:07:28:d6:17:78:e7:44:63: 63:21:3c:91:e1:2d:aa:4f:d8:f8:ac:8e:b0:af:68: 46:7a:f2:de:88:dd:0f:f0:a3:76:33:b1:82:62:30: c7:47:3a:27:6e:12:2b:0c:4b:06:44:c9:e3:99:cf: 22:e2:4f:91:0d:83:b8:6f:eb:0c:e2:e2:bb:c4:fc: 80:5f:10:b4:02:da:08:6c:64:94:03:8f:c4:fe:5f: ff:96:0c:95:e3:a6:2b:f5:54:d7:10:69:f8:05:c8: 05:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:94:E0:7B:AB:C2:07:D4:8F:9B:F0:2D:85:52:B0:D9:DC:92:98:EE X509v3 Authority Key Identifier: keyid:66:1C:64:E2:93:B8:7F:47:3A:F6:1D:89:DE:48:FC:45:38:57:01:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/Zhxk4pO4f0c69h2J3kj8RThXAVc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Zhxk4pO4f0c69h2J3kj8RThXAVc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ADB98/D93E93DC492111EDABD59C53C4F9AE02/77E7AC0E492611EDAF439D83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 140.168.240.0/22 Signature Algorithm: sha256WithRSAEncryption 52:38:9f:88:1a:b3:3a:7b:3d:6d:83:5c:d4:48:b6:57:9e:17: 60:d0:08:01:ba:d3:d9:3d:32:41:1e:d9:df:29:98:97:f0:b1: 5c:24:a2:2d:eb:10:4b:6e:2a:7f:29:0e:d5:e8:44:1a:8d:91: 10:ac:31:50:a5:ec:53:7b:36:04:28:a5:c3:45:ad:00:82:94: 91:a8:22:4d:24:34:c1:47:79:69:f8:de:33:60:2c:3e:c3:92: a5:57:28:f1:e7:a6:a6:65:b8:00:ed:8d:dc:24:77:4d:f6:7f: 5b:15:94:16:67:af:0a:73:82:d0:db:40:3c:b8:d7:64:f7:18: f3:0f:54:9c:a5:7b:4f:f1:dd:bf:27:a4:ad:70:d2:2c:06:ce: 6a:0f:ab:ee:37:b0:33:ea:d0:fb:54:af:2e:ad:34:1b:5b:ed: 4e:33:a6:65:e1:62:a5:89:f2:ab:42:e1:ab:f4:81:f5:3e:38: 5b:91:ff:79:2a:80:de:e0:a9:25:29:07:82:9d:a4:7c:1f:b9: 09:72:cb:6c:72:54:ef:45:58:54:54:b5:03:26:72:97:78:e7: bd:56:d7:39:ec:f7:80:f8:3c:37:0f:b4:e1:af:3a:83:7a:86: cf:29:75:bc:c4:9d:41:74:02:ac:e2:83:81:08:50:f9:e0:60: 7c:c0:b3:6c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QURCOTgxMTAvBgNVBAUTKDY2MUM2NEUyOTNCODdGNDczQUY2MUQ4OURFNDhGQzQ1 Mzg1NzAxNTcwHhcNMjUwNzAxMDMwODU3WhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzNTE0OC1hOTZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4L4SGnow2i5yG7JIwj1pT/umb6nNCrJ7dWDzdcghGcmwJLWzgUKEl4gUv+Xh JpjcgrXHU0qkYYUcPn2WC1nDufOkGvrYQ1YkULaui+4BhPyxfkO+nV+Y8OJTQk4J fkwXe7uANtvw9qEiTuw8P6vhaBJxI9W/96pTMO/lKz+QnK0oNIJg6xsgucwLEAIL Y7Py9NS7DlHAejnucQcHByjWF3jnRGNjITyR4S2qT9j4rI6wr2hGevLeiN0P8KN2 M7GCYjDHRzonbhIrDEsGRMnjmc8i4k+RDYO4b+sM4uK7xPyAXxC0AtoIbGSUA4/E /l//lgyV46Yr9VTXEGn4BcgFnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBSU4Hur wgfUj5vwLYVSsNnckpjuMB8GA1UdIwQYMBaAFGYcZOKTuH9HOvYdid5I/EU4VwFX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBREI5OC9EOTNFOTNEQzQ5 MjExMUVEQUJENTlDNTNDNEY5QUUwMi9aaHhrNHBPNGYwYzY5aDJKM2tqOFJUaFhB VmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1poeGs0cE80ZjBjNjloMkoza2o4UlRoWEFWYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QURCOTgvRDkzRTkzREM0OTIxMTFFREFCRDU5QzUzQzRGOUFFMDIvNzdFN0FDMEU0 OTI2MTFFREFGNDM5RDgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKMqPAwDQYJKoZIhvcNAQELBQADggEBAFI4n4gaszp7PW2D XNRItleeF2DQCAG609k9MkEe2d8pmJfwsVwkoi3rEEtuKn8pDtXoRBqNkRCsMVCl 7FN7NgQopcNFrQCClJGoIk0kNMFHeWn43jNgLD7DkqVXKPHnpqZluADtjdwkd032 f1sVlBZnrwpzgtDbQDy412T3GPMPVJyle0/x3b8npK1w0iwGzmoPq+43sDPq0PtU ry6tNBtb7U4zpmXhYqWJ8qtC4av0gfU+OFuR/3kqgN7gqSUpB4KdpHwfuQlyy2xy VO9FWFRUtQMmcpd4571W1zns94D4PDcPtOGvOoN6hs8pdbzEnUF0Aqzig4EIUPng YHzAs2w= -----END CERTIFICATE-----Generated at Wed Jul 2 21:06:08 2025 by rpki-client