$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/E0147FC48AB811EB92252D18C4F9AE02.roa File: E0147FC48AB811EB92252D18C4F9AE02.roa (raw, json) Hash identifier: FMGsjw+zb4BAxOok7Eo9lBYnKlRt1Jj6P6TD4xPnTaw= Subject key identifier: 56:7B:59:B2:BF:50:E4:F2:54:26:25:C3:40:27:4D:7C:BE:B2:7C:ED Certificate issuer: /CN=A91B9B0D/serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773 Certificate serial: 0663 Authority key identifier: D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/E0147FC48AB811EB92252D18C4F9AE02.roa Signing time: Mon 30 Jun 2025 23:20:33 +0000 ROA not before: Mon 30 Jun 2025 23:20:33 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 24390 IP address blocks: 144.120.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 22:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1635 (0x663) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B0D, serialNumber=D9C66B0E420B9134173D553D16AA0B146B774773 Validity Not Before: Jun 30 23:20:33 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=68631bc0-530a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:5a:43:d0:60:79:c6:ad:60:45:b4:68:93:a6: b3:99:5b:e7:c1:0f:22:1b:12:7d:8f:c0:90:be:85: 04:78:dd:72:3b:6c:de:55:70:ed:ad:66:f3:b7:83: 16:9d:38:86:f0:4a:df:7a:5f:f4:d6:66:64:a5:ad: c9:47:7d:98:55:e4:de:42:29:fe:bc:7d:ad:ec:f2: f1:96:d0:e3:b0:b0:ee:2c:0a:96:e2:19:73:52:b2: 36:22:96:38:8f:8e:bb:ad:62:54:94:02:51:8a:0b: 30:93:fd:7e:08:f1:1f:42:5b:ca:ee:05:26:94:dc: d7:cc:2c:49:1f:29:1d:78:c3:dd:ee:8b:fd:be:66: 9e:8d:76:66:8e:15:00:95:97:cf:5f:87:a0:e2:46: 0a:40:e8:8e:db:85:85:8f:c3:dc:f0:12:63:57:ab: 18:6a:06:aa:d2:0a:ad:22:78:5d:09:ae:ce:e9:9f: 69:db:87:81:32:9d:3c:27:73:60:f2:30:49:e8:fb: a2:98:06:91:b2:cf:59:f6:74:06:21:2e:37:07:c7: b1:76:4d:b2:4c:eb:d7:3e:7a:2a:d4:50:af:f2:27: f5:1c:cc:58:0c:dd:c1:f5:69:5e:6c:b0:cd:c9:b6: 5c:94:fc:80:0b:20:04:2d:30:95:6f:e8:6e:b6:07: e7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:7B:59:B2:BF:50:E4:F2:54:26:25:C3:40:27:4D:7C:BE:B2:7C:ED X509v3 Authority Key Identifier: keyid:D9:C6:6B:0E:42:0B:91:34:17:3D:55:3D:16:AA:0B:14:6B:77:47:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/2cZrDkILkTQXPVU9FqoLFGt3R3M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2cZrDkILkTQXPVU9FqoLFGt3R3M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B0D/98B7280E8AB611EB8237D414C4F9AE02/E0147FC48AB811EB92252D18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 144.120.0.0/16 Signature Algorithm: sha256WithRSAEncryption 47:e1:c3:1e:c2:01:c7:4c:8d:1b:aa:fc:b8:3f:23:fc:0a:7c: f4:a5:91:13:e8:07:98:a3:21:27:62:0e:00:2d:37:8d:34:a1: 70:54:4e:b2:e4:7f:87:89:70:07:6a:41:a2:37:e9:8e:cb:9c: 33:96:21:11:ca:e0:42:f1:0e:79:50:57:09:5b:79:be:ae:b9: b7:c6:49:49:a6:ba:77:eb:30:f7:b4:b1:38:68:26:9a:2a:d0: 23:26:34:13:71:8e:40:06:25:7b:cb:63:62:98:89:0a:ce:3b: 1e:01:d2:d8:88:6a:b3:79:da:0b:f0:82:bd:14:74:d0:98:f0: fb:b9:24:7c:23:69:b5:2b:23:78:db:4f:01:49:44:6f:7f:2c: 78:96:9b:b9:da:21:90:07:71:d9:54:26:ce:f1:ff:57:7a:1e: e5:49:4d:5c:72:2b:46:cb:e8:78:87:4f:d7:59:81:68:b3:ea: 2d:45:b9:4d:88:a7:52:f0:05:c8:fe:7b:49:f3:79:05:0c:07: 4b:e0:eb:a2:65:ca:42:47:c1:ea:39:d1:55:f5:03:1b:55:cb: 15:bc:06:58:d6:8f:95:d9:e2:01:97:dc:6c:e5:11:cb:be:53: e4:7e:29:17:25:05:1f:60:fb:2a:04:aa:3f:60:31:49:67:c7: 98:ba:bc:e5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICBmMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMEQxMTAvBgNVBAUTKEQ5QzY2QjBFNDIwQjkxMzQxNzNENTUzRDE2QUEwQjE0 NkI3NzQ3NzMwHhcNMjUwNjMwMjMyMDMzWhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYzMWJjMC01MzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFpD0GB5xq1gRbRok6azmVvnwQ8iGxJ9j8CQvoUEeN1yO2zeVXDtrWbzt4MW nTiG8Erfel/01mZkpa3JR32YVeTeQin+vH2t7PLxltDjsLDuLAqW4hlzUrI2IpY4 j467rWJUlAJRigswk/1+CPEfQlvK7gUmlNzXzCxJHykdeMPd7ov9vmaejXZmjhUA lZfPX4eg4kYKQOiO24WFj8Pc8BJjV6sYagaq0gqtInhdCa7O6Z9p24eBMp08J3Ng 8jBJ6PuimAaRss9Z9nQGIS43B8exdk2yTOvXPnoq1FCv8if1HMxYDN3B9WlebLDN ybZclPyACyAELTCVb+hutgfnuwIDAQABo4IClDCCApAwHQYDVR0OBBYEFFZ7WbK/ UOTyVCYlw0AnTXy+snztMB8GA1UdIwQYMBaAFNnGaw5CC5E0Fz1VPRaqCxRrd0dz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIwRC85OEI3MjgwRThB QjYxMUVCODIzN0Q0MTRDNEY5QUUwMi8yY1pyRGtJTGtUUVhQVlU5RnFvTEZHdDNS M00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJjWnJEa0lMa1RRWFBWVTlGcW9MRkd0M1IzTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlCMEQvOThCNzI4MEU4QUI2MTFFQjgyMzdENDE0QzRGOUFFMDIvRTAxNDdGQzQ4 QUI4MTFFQjkyMjUyRDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCQeDANBgkqhkiG9w0BAQsFAAOCAQEAR+HDHsIBx0yNG6r8 uD8j/Ap89KWRE+gHmKMhJ2IOAC03jTShcFROsuR/h4lwB2pBojfpjsucM5YhEcrg QvEOeVBXCVt5vq65t8ZJSaa6d+sw97SxOGgmmirQIyY0E3GOQAYle8tjYpiJCs47 HgHS2Ihqs3naC/CCvRR00Jjw+7kkfCNptSsjeNtPAUlEb38seJabudohkAdx2VQm zvH/V3oe5UlNXHIrRsvoeIdP11mBaLPqLUW5TYinUvAFyP57SfN5BQwHS+DromXK QkfB6jnRVfUDG1XLFbwGWNaPldniAZfcbOURy75T5H4pFyUFH2D7KgSqP2AxSWfH mLq85Q== -----END CERTIFICATE-----Generated at Thu Jul 3 13:23:17 2025 by rpki-client