$ rpki-client -vvf rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/445DB498796011EFA7E9391DC4F9AE02.roa File: 445DB498796011EFA7E9391DC4F9AE02.roa (raw, json) Hash identifier: y2HnmFKLeU4s/eNm7GPocJExjA2nL97alljgrOteoRQ= Subject key identifier: BC:30:6C:9A:09:9E:9A:3A:59:17:39:65:BE:90:CE:44:84:8F:CB:D8 Certificate issuer: /CN=A91B01C7/serialNumber=E8DF8D5E4C84DA87D729A73C1C4E8611381AB2C1 Certificate serial: 2A41 Authority key identifier: E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/445DB498796011EFA7E9391DC4F9AE02.roa Signing time: Wed 02 Jul 2025 15:52:40 +0000 ROA not before: Wed 02 Jul 2025 15:52:40 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 138420 IP address blocks: 43.245.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.crl rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:52:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10817 (0x2a41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B01C7, serialNumber=E8DF8D5E4C84DA87D729A73C1C4E8611381AB2C1 Validity Not Before: Jul 2 15:52:40 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=686555c7-4ff5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:cd:3f:47:41:5d:33:8b:e1:64:af:2d:de:f9: bd:e2:39:08:cc:70:10:ef:61:38:ba:aa:30:c3:f0: cc:b5:ef:0a:bc:f9:05:77:9e:75:e0:a6:1a:6a:6b: ca:d9:da:44:16:6c:01:c7:82:11:05:bb:18:bb:d9: 06:b8:cd:a6:35:cf:bc:3d:f9:52:7f:37:1f:16:72: 87:66:a0:6f:f9:13:e4:84:f3:dc:29:bc:f2:8c:cd: a0:83:e0:e5:d8:51:50:05:52:3b:41:d0:ab:7d:67: 28:5e:25:a0:8e:6a:c5:c4:8e:13:a5:aa:75:e1:08: c8:53:58:15:5a:e3:7f:cd:76:06:ea:a0:7b:12:33: fe:c6:f7:4f:fb:3b:f7:ab:61:f0:f0:eb:38:42:1b: f5:2c:1b:3e:be:88:f4:04:e1:5f:bd:67:67:d8:19: f6:3d:de:f9:67:04:13:17:86:4e:b9:da:94:77:8a: 1e:94:63:77:a7:06:d1:dd:5e:c9:71:6b:f0:27:64: ce:5e:a6:57:3e:28:9e:6f:57:20:18:3e:05:e8:02: 87:94:9a:52:bd:f7:19:e5:40:8a:c1:bc:a1:be:8b: 52:a8:35:c3:03:32:1a:0a:00:72:8a:e9:3f:8d:ab: c6:a9:ca:07:f2:5c:2b:f9:c6:59:cf:4f:c8:2e:55: 74:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:30:6C:9A:09:9E:9A:3A:59:17:39:65:BE:90:CE:44:84:8F:CB:D8 X509v3 Authority Key Identifier: keyid:E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/445DB498796011EFA7E9391DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.195.0/24 Signature Algorithm: sha256WithRSAEncryption 34:2b:98:52:ce:d1:77:18:4c:21:8e:71:12:ff:1e:35:eb:ce: 25:79:da:45:8d:a3:40:5d:c0:21:ff:6a:c1:06:7e:f8:16:4a: 4c:f2:62:22:88:d3:ca:37:ae:a8:08:da:5d:12:89:59:1c:b8: f4:71:4b:76:74:be:07:69:21:1f:67:7c:15:8b:7f:47:7e:4f: 0e:91:ff:66:12:df:88:2c:b3:5a:a0:c8:99:e5:74:04:d8:cc: 87:b4:26:80:b3:90:9f:9d:79:08:95:01:b8:17:be:25:1e:65: 26:ef:f1:c5:3c:8d:53:19:bb:2b:ec:62:5f:7a:6a:54:a1:7c: ef:c8:6d:48:11:2a:c7:25:29:d2:ce:2c:19:dc:85:97:ef:e6: b7:89:76:67:13:96:ea:8c:71:40:25:ee:9f:dc:30:94:9c:ce: c3:81:be:cb:e3:c6:ec:4d:97:77:b9:3d:0f:4c:5e:f5:96:fc: da:7d:28:64:f5:3e:09:f1:8a:e8:c7:3b:7a:62:06:1f:87:78: 66:c0:4a:97:76:ed:54:f3:ac:96:a4:00:ab:cd:29:94:d3:b7: 6d:54:fb:72:28:2d:bd:67:4b:11:76:4f:c0:05:f3:bc:50:37: 8a:6d:d6:69:73:82:6c:e4:c4:8e:82:ce:21:eb:c1:11:04:40: f4:f3:f8:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKkEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAxQzcxMTAvBgNVBAUTKEU4REY4RDVFNEM4NERBODdENzI5QTczQzFDNEU4NjEx MzgxQUIyQzEwHhcNMjUwNzAyMTU1MjQwWhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1NTVjNy00ZmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs80/R0FdM4vhZK8t3vm94jkIzHAQ72E4uqoww/DMte8KvPkFd5514KYaamvK 2dpEFmwBx4IRBbsYu9kGuM2mNc+8PflSfzcfFnKHZqBv+RPkhPPcKbzyjM2gg+Dl 2FFQBVI7QdCrfWcoXiWgjmrFxI4Tpap14QjIU1gVWuN/zXYG6qB7EjP+xvdP+zv3 q2Hw8Os4Qhv1LBs+voj0BOFfvWdn2Bn2Pd75ZwQTF4ZOudqUd4oelGN3pwbR3V7J cWvwJ2TOXqZXPiieb1cgGD4F6AKHlJpSvfcZ5UCKwbyhvotSqDXDAzIaCgByiuk/ javGqcoH8lwr+cZZz0/ILlV0EwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLwwbJoJ npo6WRc5Zb6QzkSEj8vYMB8GA1UdIwQYMBaAFOjfjV5MhNqH1ymnPBxOhhE4GrLB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDFDNy85N0NGMjBGQTMz MjMxMUU0QTZFNzQ5MTFDNEY5QUUwMi82Ti1OWGt5RTJvZlhLYWM4SEU2R0VUZ2Fz c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZOLU5Ya3lFMm9mWEthYzhIRTZHRVRnYXNzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjAxQzcvOTdDRjIwRkEzMzIzMTFFNEE2RTc0OTExQzRGOUFFMDIvNDQ1REI0OTg3 OTYwMTFFRkE3RTkzOTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr9cMwDQYJKoZIhvcNAQELBQADggEBADQrmFLO0XcYTCGO cRL/HjXrziV52kWNo0BdwCH/asEGfvgWSkzyYiKI08o3rqgI2l0SiVkcuPRxS3Z0 vgdpIR9nfBWLf0d+Tw6R/2YS34gss1qgyJnldATYzIe0JoCzkJ+deQiVAbgXviUe ZSbv8cU8jVMZuyvsYl96alShfO/IbUgRKsclKdLOLBnchZfv5reJdmcTluqMcUAl 7p/cMJSczsOBvsvjxuxNl3e5PQ9MXvWW/Np9KGT1PgnxiujHO3piBh+HeGbASpd2 7VTzrJakAKvNKZTTt21U+3IoLb1nSxF2T8AF87xQN4pt1mlzgmzkxI6CziHrwREE QPTz+PU= -----END CERTIFICATE-----Generated at Thu Jul 3 13:31:17 2025 by rpki-client