$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/D66D72562EAB11EF9B369566C4F9AE02.roa File: D66D72562EAB11EF9B369566C4F9AE02.roa (raw, json) Hash identifier: iVqZPKyDqQducLQTxL6bBlV8UAL5mtY7QS4Lu05AYB4= Subject key identifier: D8:98:31:34:1F:89:3E:F0:74:81:C2:A5:F1:1F:82:DA:CC:1E:F5:C6 Certificate issuer: /CN=A91B7BDC/serialNumber=EF25A925BFBD4CBAEF52456AB3B309B747040DFE Certificate serial: 012D Authority key identifier: EF:25:A9:25:BF:BD:4C:BA:EF:52:45:6A:B3:B3:09:B7:47:04:0D:FE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/7yWpJb-9TLrvUkVqs7MJt0cEDf4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/D66D72562EAB11EF9B369566C4F9AE02.roa Signing time: Thu 21 Aug 2025 15:43:38 +0000 ROA not before: Thu 21 Aug 2025 15:43:38 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132139 IP address blocks: 185.81.70.0/24 maxlen: 24 185.81.70.176/29 maxlen: 29 185.81.70.184/29 maxlen: 29 185.81.70.192/29 maxlen: 29 185.81.70.200/29 maxlen: 29 185.81.70.208/29 maxlen: 29 185.81.70.216/29 maxlen: 29 185.81.70.224/31 maxlen: 31 185.81.70.226/31 maxlen: 31 185.81.70.236/31 maxlen: 31 185.81.70.238/31 maxlen: 31 185.81.70.240/29 maxlen: 29 185.81.70.248/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/7yWpJb-9TLrvUkVqs7MJt0cEDf4.crl rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/7yWpJb-9TLrvUkVqs7MJt0cEDf4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/7yWpJb-9TLrvUkVqs7MJt0cEDf4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 00:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 301 (0x12d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7BDC, serialNumber=EF25A925BFBD4CBAEF52456AB3B309B747040DFE Validity Not Before: Aug 21 15:43:38 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68a73eaa-e819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a9:bb:6a:97:ef:10:bc:57:cd:38:05:e5:62: 03:a2:04:2d:17:45:2f:a0:26:5d:61:d0:5a:a8:5f: 8c:78:73:5f:63:9f:d1:a2:f5:66:77:21:aa:46:45: e8:c7:0b:3e:07:c4:5c:b8:a5:9e:53:0e:3e:f7:29: f7:de:31:64:87:e2:dc:cb:c9:ca:45:a5:9e:38:3f: 69:fa:a8:46:c1:00:82:86:9c:fd:24:2f:a8:f0:a8: 77:a4:1b:2e:87:ec:47:8f:ce:ff:9d:c2:f5:12:8f: 74:bf:68:e8:a7:b5:10:da:30:9d:e8:a7:53:4f:7c: c5:d0:74:cb:ff:aa:9b:7c:22:32:ae:bb:f7:52:a5: b2:20:b1:af:7f:3f:aa:4e:fd:57:14:c8:cc:08:fb: 0c:76:ef:8a:81:3e:c8:9a:60:9d:5f:f5:1e:18:49: 78:c6:fa:78:54:b1:75:56:4a:ce:74:e3:fd:2f:b2: 20:05:29:fa:66:a5:bb:6c:bd:d5:ef:45:f1:04:ad: a0:81:5e:4c:f0:6c:ab:60:fc:94:fd:36:c4:a2:ff: ed:2e:c0:96:01:57:db:f5:d5:fe:82:56:5a:e7:a1: 4e:24:cd:11:61:f6:20:7e:24:1a:c6:22:36:85:20: 72:97:e5:ef:90:55:d3:83:e5:4c:5d:af:96:5b:26: 11:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:98:31:34:1F:89:3E:F0:74:81:C2:A5:F1:1F:82:DA:CC:1E:F5:C6 X509v3 Authority Key Identifier: keyid:EF:25:A9:25:BF:BD:4C:BA:EF:52:45:6A:B3:B3:09:B7:47:04:0D:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/7yWpJb-9TLrvUkVqs7MJt0cEDf4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/7yWpJb-9TLrvUkVqs7MJt0cEDf4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7BDC/79EE0BC4E27211EEB83D606BC4F9AE02/D66D72562EAB11EF9B369566C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.81.70.0/24 Signature Algorithm: sha256WithRSAEncryption 93:10:d5:98:46:b7:37:bc:72:a5:da:c2:28:49:63:00:ba:98: 53:3b:45:13:47:5b:c6:2d:6a:c5:35:6c:93:df:7a:39:91:29: 17:ca:f2:a9:4c:e8:23:9e:d3:ac:65:6e:93:d6:05:a4:68:71: fb:a0:03:97:f1:3e:bd:32:3a:e5:48:5d:17:86:b0:ed:14:7e: c2:ac:9f:d0:df:6b:dc:fc:19:b4:7c:47:fb:dc:11:5f:85:e8: 16:33:a4:65:9c:e4:b0:57:2f:59:96:84:80:8d:7e:65:07:d5: 57:7d:d4:49:b3:95:44:b0:70:93:ac:a4:ec:eb:ec:71:d6:ad: 45:d2:28:e2:9b:47:1b:85:47:af:e8:55:9c:31:38:c8:3f:ee: 22:5d:ea:ef:87:24:83:f5:bd:28:19:81:bf:b0:43:db:19:30: 0e:de:79:c4:3d:71:2d:24:2e:0b:0c:e8:72:77:02:b6:60:36: 2c:72:5f:c8:ff:00:d8:3f:5c:bc:d6:d2:39:c2:4d:45:dc:b6: 41:0c:0e:6a:a3:4e:f3:6b:e0:1f:9d:9f:89:cd:50:43:90:f0: e7:6e:ea:75:c9:2d:c1:74:d8:c7:17:38:a3:4e:81:fe:ed:c0: aa:e5:df:66:ad:86:d3:77:5f:e2:b5:be:da:6d:3f:87:b8:0d: ed:28:59:4e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjdCREMxMTAvBgNVBAUTKEVGMjVBOTI1QkZCRDRDQkFFRjUyNDU2QUIzQjMwOUI3 NDcwNDBERkUwHhcNMjUwODIxMTU0MzM4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OGE3M2VhYS1lODE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtKm7apfvELxXzTgF5WIDogQtF0UvoCZdYdBaqF+MeHNfY5/RovVmdyGqRkXo xws+B8RcuKWeUw4+9yn33jFkh+Lcy8nKRaWeOD9p+qhGwQCChpz9JC+o8Kh3pBsu h+xHj87/ncL1Eo90v2jop7UQ2jCd6KdTT3zF0HTL/6qbfCIyrrv3UqWyILGvfz+q Tv1XFMjMCPsMdu+KgT7ImmCdX/UeGEl4xvp4VLF1VkrOdOP9L7IgBSn6ZqW7bL3V 70XxBK2ggV5M8GyrYPyU/TbEov/tLsCWAVfb9dX+glZa56FOJM0RYfYgfiQaxiI2 hSByl+XvkFXTg+VMXa+WWyYRhQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNiYMTQf iT7wdIHCpfEfgtrMHvXGMB8GA1UdIwQYMBaAFO8lqSW/vUy671JFarOzCbdHBA3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCN0JEQy83OUVFMEJDNEUy NzIxMUVFQjgzRDYwNkJDNEY5QUUwMi83eVdwSmItOVRMcnZVa1ZxczdNSnQwY0VE ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyLzd5V3BKYi05VExydlVrVnFzN01KdDBjRURmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjdCREMvNzlFRTBCQzRFMjcyMTFFRUI4M0Q2MDZCQzRGOUFFMDIvRDY2RDcyNTYy RUFCMTFFRjlCMzY5NTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAC5UUYwDQYJKoZIhvcNAQELBQADggEBAJMQ1ZhGtze8cqXa wihJYwC6mFM7RRNHW8YtasU1bJPfejmRKRfK8qlM6COe06xlbpPWBaRocfugA5fx Pr0yOuVIXReGsO0UfsKsn9Dfa9z8GbR8R/vcEV+F6BYzpGWc5LBXL1mWhICNfmUH 1Vd91EmzlUSwcJOspOzr7HHWrUXSKOKbRxuFR6/oVZwxOMg/7iJd6u+HJIP1vSgZ gb+wQ9sZMA7eecQ9cS0kLgsM6HJ3ArZgNixyX8j/ANg/XLzW0jnCTUXctkEMDmqj TvNr4B+dn4nNUEOQ8Odu6nXJLcF02McXOKNOgf7twKrl32athtN3X+K1vtptP4e4 De0oWU4= -----END CERTIFICATE-----Generated at Sat Aug 23 19:37:39 2025 by rpki-client