$ rpki-client -vvf rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/A0DEDD52FDF811EEA4D57274C4F9AE02.roa File: A0DEDD52FDF811EEA4D57274C4F9AE02.roa (raw, json) Hash identifier: 5LwG+YuvnWBKIRnuTBcbel0b3f9GalJtz9Pj2RCQeu4= Subject key identifier: C0:01:64:B2:E3:0F:71:44:FC:C2:59:8E:50:8F:2F:0C:68:13:1C:F8 Certificate issuer: /CN=A91BEBE9/serialNumber=0FAB4EF9828F4AF267C16D8AD4710A8EEC9BBBAE Certificate serial: 0191 Authority key identifier: 0F:AB:4E:F9:82:8F:4A:F2:67:C1:6D:8A:D4:71:0A:8E:EC:9B:BB:AE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D6tO-YKPSvJnwW2K1HEKjuybu64.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/A0DEDD52FDF811EEA4D57274C4F9AE02.roa Signing time: Sun 29 Jun 2025 02:50:47 +0000 ROA not before: Sun 29 Jun 2025 02:50:47 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 14618 IP address blocks: 217.10.231.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/D6tO-YKPSvJnwW2K1HEKjuybu64.crl rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/D6tO-YKPSvJnwW2K1HEKjuybu64.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D6tO-YKPSvJnwW2K1HEKjuybu64.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 401 (0x191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BEBE9, serialNumber=0FAB4EF9828F4AF267C16D8AD4710A8EEC9BBBAE Validity Not Before: Jun 29 02:50:47 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6860aa07-3319 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:32:0a:4e:ea:3f:c1:6f:7f:16:04:74:74:fc: ac:02:5c:ff:39:64:fe:07:93:21:3e:03:1c:12:86: 02:78:7f:3f:31:91:fd:3a:d0:ff:cc:3f:ab:74:27: c8:a4:f6:61:32:a8:7c:88:37:fb:c0:e6:7f:5c:69: a9:05:cc:62:14:31:b8:d2:5f:89:66:5d:0f:a3:99: 2c:b1:fb:3b:22:3c:ac:92:f8:79:64:29:df:32:26: f5:61:86:e3:91:69:8f:ef:6a:1a:f4:1a:3e:fb:0c: 44:4b:cb:36:80:26:75:c4:9c:b5:8a:8f:29:bc:fb: fd:aa:b5:ea:9f:7d:15:09:df:38:7b:f4:15:d3:58: aa:93:0b:16:59:f7:01:81:63:57:f8:a5:5f:bb:78: 61:0b:9f:28:e1:c9:14:6c:36:48:15:24:9f:1b:ce: 8a:88:1f:eb:85:ec:35:69:72:0c:af:04:1a:b3:7c: f3:c6:a3:93:d4:74:09:ba:3d:99:12:5e:c3:91:1d: 9b:cd:87:ef:13:ee:d1:61:ad:35:2b:e3:ff:22:df: df:cc:a3:63:4e:1a:7e:c2:66:39:de:8c:fb:44:33: c2:3f:78:e8:70:a9:9a:1d:1a:5d:50:51:aa:7d:eb: 03:1c:0e:cd:bb:05:2c:85:20:63:3d:93:4a:a8:29: 3e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:01:64:B2:E3:0F:71:44:FC:C2:59:8E:50:8F:2F:0C:68:13:1C:F8 X509v3 Authority Key Identifier: keyid:0F:AB:4E:F9:82:8F:4A:F2:67:C1:6D:8A:D4:71:0A:8E:EC:9B:BB:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/D6tO-YKPSvJnwW2K1HEKjuybu64.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/D6tO-YKPSvJnwW2K1HEKjuybu64.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BEBE9/94C9B878005D11EEBE7A9241C4F9AE02/A0DEDD52FDF811EEA4D57274C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 217.10.231.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:7d:23:27:3b:2b:20:0f:a7:6b:98:1a:2a:0c:3f:71:dc:a9: 2f:20:ec:7e:eb:41:62:bd:0b:4b:54:d6:53:11:25:0f:ce:ce: a9:df:00:a2:f1:81:8f:a0:95:79:c4:16:fa:d3:e7:59:8d:cd: a8:77:10:22:fd:82:92:d9:72:a5:ba:f0:c5:e7:52:3a:aa:ec: 77:9e:77:bb:3d:51:23:7e:b2:df:1a:ab:4a:4a:85:d4:d0:16: 81:be:6f:83:09:e3:33:a8:24:75:49:7f:db:6e:fa:73:27:17: 43:7e:90:4d:b0:55:ac:4c:ed:0e:50:89:33:9f:5a:0c:0c:f3: 97:f3:bb:ad:8d:67:d3:69:b0:d7:4d:e7:18:8f:49:38:82:50: 17:dc:07:8b:35:12:7e:83:80:1c:f2:bd:1d:a1:8f:d4:05:33: c8:95:8c:96:93:1b:17:a4:b2:48:0d:42:a6:65:6c:26:fb:af: c7:45:c7:8a:3b:30:6d:76:37:00:0e:f1:e9:50:1a:9b:7e:50: 8a:15:35:38:e1:ae:b3:f2:e0:d0:ea:ee:80:b1:39:9b:30:e5: 9e:01:18:64:6d:7a:1b:8d:f8:7b:5e:3d:85:38:f6:c2:a5:91: f8:ec:56:fe:01:f4:5c:68:42:cc:ea:09:fe:2f:e6:a3:24:02: 26:0b:fd:03 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAZEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkVCRTkxMTAvBgNVBAUTKDBGQUI0RUY5ODI4RjRBRjI2N0MxNkQ4QUQ0NzEwQThF RUM5QkJCQUUwHhcNMjUwNjI5MDI1MDQ3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYwYWEwNy0zMzE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4jIKTuo/wW9/FgR0dPysAlz/OWT+B5MhPgMcEoYCeH8/MZH9OtD/zD+rdCfI pPZhMqh8iDf7wOZ/XGmpBcxiFDG40l+JZl0Po5kssfs7Ijyskvh5ZCnfMib1YYbj kWmP72oa9Bo++wxES8s2gCZ1xJy1io8pvPv9qrXqn30VCd84e/QV01iqkwsWWfcB gWNX+KVfu3hhC58o4ckUbDZIFSSfG86KiB/rhew1aXIMrwQas3zzxqOT1HQJuj2Z El7DkR2bzYfvE+7RYa01K+P/It/fzKNjThp+wmY53oz7RDPCP3jocKmaHRpdUFGq fesDHA7NuwUshSBjPZNKqCk+7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFMABZLLj D3FE/MJZjlCPLwxoExz4MB8GA1UdIwQYMBaAFA+rTvmCj0ryZ8FtitRxCo7sm7uu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRUJFOS85NEM5Qjg3ODAw NUQxMUVFQkU3QTkyNDFDNEY5QUUwMi9ENnRPLVlLUFN2Sm53VzJLMUhFS2p1eWJ1 NjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0Q2dE8tWUtQU3ZKbndXMksxSEVLanV5YnU2NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkVCRTkvOTRDOUI4NzgwMDVEMTFFRUJFN0E5MjQxQzRGOUFFMDIvQTBERURENTJG REY4MTFFRUE0RDU3Mjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADZCucwDQYJKoZIhvcNAQELBQADggEBAA99Iyc7KyAPp2uY GioMP3HcqS8g7H7rQWK9C0tU1lMRJQ/OzqnfAKLxgY+glXnEFvrT51mNzah3ECL9 gpLZcqW68MXnUjqq7Heed7s9USN+st8aq0pKhdTQFoG+b4MJ4zOoJHVJf9tu+nMn F0N+kE2wVaxM7Q5QiTOfWgwM85fzu62NZ9NpsNdN5xiPSTiCUBfcB4s1En6DgBzy vR2hj9QFM8iVjJaTGxekskgNQqZlbCb7r8dFx4o7MG12NwAO8elQGpt+UIoVNTjh rrPy4NDq7oCxOZsw5Z4BGGRtehuN+HtePYU49sKlkfjsVv4B9FxoQszqCf4v5qMk AiYL/QM= -----END CERTIFICATE-----Generated at Thu Jul 3 23:57:08 2025 by rpki-client