$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4E11/7BCF81281CA811EFA5030B4DC4F9AE02/A2939A381CB711EF8F98240CC4F9AE02.roa File: A2939A381CB711EF8F98240CC4F9AE02.roa (raw, json) Hash identifier: h1iGqKYaoNj3rvyh2GNyWQUuRTq6Az6gkGmiqF75xZw= Subject key identifier: AA:E2:7B:4E:C9:86:5E:3E:9E:F1:2D:0F:F3:27:F3:18:8B:CA:CE:CE Certificate issuer: /CN=A91B4E11/serialNumber=B794F99733EEFC3FA0003F688F64C9C3539266B5 Certificate serial: CE Authority key identifier: B7:94:F9:97:33:EE:FC:3F:A0:00:3F:68:8F:64:C9:C3:53:92:66:B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t5T5lzPu_D-gAD9oj2TJw1OSZrU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4E11/7BCF81281CA811EFA5030B4DC4F9AE02/A2939A381CB711EF8F98240CC4F9AE02.roa Signing time: Fri 27 Jun 2025 05:45:32 +0000 ROA not before: Fri 27 Jun 2025 05:45:32 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 152852 IP address blocks: 202.61.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4E11/7BCF81281CA811EFA5030B4DC4F9AE02/t5T5lzPu_D-gAD9oj2TJw1OSZrU.crl rsync://rpki.apnic.net/member_repository/A91B4E11/7BCF81281CA811EFA5030B4DC4F9AE02/t5T5lzPu_D-gAD9oj2TJw1OSZrU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t5T5lzPu_D-gAD9oj2TJw1OSZrU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 206 (0xce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4E11, serialNumber=B794F99733EEFC3FA0003F688F64C9C3539266B5 Validity Not Before: Jun 27 05:45:32 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=685e2ffc-85c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:cc:1e:7e:79:3e:08:f8:09:c1:7d:f9:d1:ad: 43:6e:67:4b:ef:75:9d:e5:ee:ea:07:98:ac:33:0e: 5d:d0:76:1b:a3:0f:40:2c:aa:3b:97:5c:07:c5:c6: c7:2a:3d:e4:10:28:38:3d:1e:e3:9f:c2:36:e8:a1: b8:3e:59:4a:3c:d3:00:d1:43:6b:cb:7f:18:4e:03: 3d:08:98:9b:00:72:87:4d:28:dc:28:07:a9:26:58: a0:ef:31:1c:9c:70:45:b6:b8:fd:5c:15:45:f3:30: d0:91:10:78:02:03:74:8f:86:c2:8f:23:c7:11:bb: 50:b6:16:26:4e:3b:e2:97:f5:d8:bb:c2:3b:3c:23: 10:b6:f8:73:4e:9a:27:3a:01:ab:b7:8d:d4:8a:08: 5d:28:de:f6:1e:3b:6a:39:a6:84:f1:48:f4:51:a0: 69:d3:d8:b7:d9:0b:74:78:16:c0:cc:20:fc:87:d9: 3e:50:80:fc:28:dc:d5:44:50:61:ee:05:f1:a0:c4: 20:ba:db:1e:f5:ac:a8:b5:91:92:3e:f1:0f:c3:ef: d7:86:f3:1f:c6:b9:b2:b1:9e:46:5b:2d:4b:91:30: ce:43:75:24:6c:eb:13:f5:83:07:2d:17:d6:0e:ab: 52:1a:f3:28:a0:7d:3b:43:97:6d:75:aa:2f:ca:f1: d5:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E2:7B:4E:C9:86:5E:3E:9E:F1:2D:0F:F3:27:F3:18:8B:CA:CE:CE X509v3 Authority Key Identifier: keyid:B7:94:F9:97:33:EE:FC:3F:A0:00:3F:68:8F:64:C9:C3:53:92:66:B5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4E11/7BCF81281CA811EFA5030B4DC4F9AE02/t5T5lzPu_D-gAD9oj2TJw1OSZrU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t5T5lzPu_D-gAD9oj2TJw1OSZrU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4E11/7BCF81281CA811EFA5030B4DC4F9AE02/A2939A381CB711EF8F98240CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.61.118.0/24 Signature Algorithm: sha256WithRSAEncryption 0b:57:95:d3:13:e6:b1:a6:11:9f:cd:e7:4f:14:03:12:6b:b5: 8f:89:71:f7:04:19:38:5f:2e:62:b9:43:8f:90:59:b6:13:ec: 44:58:2e:1a:d1:93:d9:65:61:a4:95:b2:33:2a:11:d6:03:85: 0f:18:0c:bd:95:a9:3a:1e:2a:7f:0a:23:23:9b:d1:e5:1f:24: ef:c0:3b:10:24:56:81:59:1f:8a:33:61:71:b8:2c:2f:40:5e: 44:dc:d1:ef:18:30:71:de:16:ad:68:da:51:99:6d:e9:2e:3e: 6a:d7:ae:98:ce:ed:2a:6c:4a:8a:6c:03:e1:90:b5:b0:5a:16: 26:08:6f:3d:11:38:b8:2d:ec:54:5d:48:82:f0:49:8c:ce:0a: a2:92:78:ab:47:6e:bb:c0:ca:bb:81:d1:1e:39:1a:44:1a:37: 31:b1:45:02:79:e0:7e:bf:d8:40:35:0b:28:bd:de:de:e7:53: b0:d0:b4:c7:01:89:cf:83:ae:fe:e7:5d:37:f4:7f:d9:d0:9b: 37:f6:aa:81:d4:54:c5:5f:43:70:3f:be:fc:ab:33:e0:06:51: fe:ae:dd:44:df:80:d6:f3:7a:28:02:64:1a:04:88:e1:c2:a9: ee:47:78:12:0e:ee:65:98:97:3c:f4:be:6f:7b:04:54:4f:22: 56:60:b0:8c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjRFMTExMTAvBgNVBAUTKEI3OTRGOTk3MzNFRUZDM0ZBMDAwM0Y2ODhGNjRDOUMz NTM5MjY2QjUwHhcNMjUwNjI3MDU0NTMyWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODVlMmZmYy04NWMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsswefnk+CPgJwX350a1DbmdL73Wd5e7qB5isMw5d0HYbow9ALKo7l1wHxcbH Kj3kECg4PR7jn8I26KG4PllKPNMA0UNry38YTgM9CJibAHKHTSjcKAepJlig7zEc nHBFtrj9XBVF8zDQkRB4AgN0j4bCjyPHEbtQthYmTjvil/XYu8I7PCMQtvhzTpon OgGrt43UighdKN72HjtqOaaE8Uj0UaBp09i32Qt0eBbAzCD8h9k+UID8KNzVRFBh 7gXxoMQgutse9ayotZGSPvEPw+/XhvMfxrmysZ5GWy1LkTDOQ3UkbOsT9YMHLRfW DqtSGvMooH07Q5dtdaovyvHVCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKrie07J hl4+nvEtD/Mn8xiLys7OMB8GA1UdIwQYMBaAFLeU+Zcz7vw/oAA/aI9kycNTkma1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEUxMS83QkNGODEyODFD QTgxMUVGQTUwMzBCNERDNEY5QUUwMi90NVQ1bHpQdV9ELWdBRDlvajJUSncxT1Na clUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q1VDVselB1X0QtZ0FEOW9qMlRKdzFPU1pyVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjRFMTEvN0JDRjgxMjgxQ0E4MTFFRkE1MDMwQjREQzRGOUFFMDIvQTI5MzlBMzgx Q0I3MTFFRjhGOTgyNDBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKPXYwDQYJKoZIhvcNAQELBQADggEBAAtXldMT5rGmEZ/N 508UAxJrtY+JcfcEGThfLmK5Q4+QWbYT7ERYLhrRk9llYaSVsjMqEdYDhQ8YDL2V qToeKn8KIyOb0eUfJO/AOxAkVoFZH4ozYXG4LC9AXkTc0e8YMHHeFq1o2lGZbeku PmrXrpjO7SpsSopsA+GQtbBaFiYIbz0ROLgt7FRdSILwSYzOCqKSeKtHbrvAyruB 0R45GkQaNzGxRQJ54H6/2EA1Cyi93t7nU7DQtMcBic+Drv7nXTf0f9nQmzf2qoHU VMVfQ3A/vvyrM+AGUf6u3UTfgNbzeigCZBoEiOHCqe5HeBIO7mWYlzz0vm97BFRP IlZgsIw= -----END CERTIFICATE-----Generated at Fri Jul 4 22:33:15 2025 by rpki-client