$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/54098620A37B11EFAC4F8E3CC4F9AE02.roa File: 54098620A37B11EFAC4F8E3CC4F9AE02.roa (raw, json) Hash identifier: FXrJzxpIMY/mjFWppW9CWCLKoy10/on9Vdnxt1X4PXY= Subject key identifier: 85:73:72:74:48:B0:BE:D5:08:16:2E:DC:75:2F:E9:B6:68:0B:0E:13 Certificate issuer: /CN=A91C1FCC/serialNumber=08D256D426CA2171FCE817C64523F832A36917BD Certificate serial: 0A61 Authority key identifier: 08:D2:56:D4:26:CA:21:71:FC:E8:17:C6:45:23:F8:32:A3:69:17:BD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/54098620A37B11EFAC4F8E3CC4F9AE02.roa Signing time: Sat 28 Jun 2025 19:54:47 +0000 ROA not before: Sat 28 Jun 2025 19:54:47 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 150371 IP address blocks: 123.253.93.0/24 maxlen: 24 123.253.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.crl rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 19:59:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2657 (0xa61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1FCC, serialNumber=08D256D426CA2171FCE817C64523F832A36917BD Validity Not Before: Jun 28 19:54:47 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68604887-8dcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:53:14:b1:2f:db:3b:56:f1:1e:97:0d:f5:ac: ea:2f:7b:a2:b0:54:bb:71:3c:12:e0:43:bc:0b:4a: 02:87:58:c1:ef:b7:bb:5d:b7:72:84:68:e7:d8:dd: 8d:a9:38:88:76:82:83:0d:32:c2:26:18:5d:ec:08: 28:06:5a:4d:6b:32:f4:46:dc:bb:1c:a2:ca:13:94: be:66:3d:04:41:29:b7:dd:8a:b5:37:5e:1e:0a:dc: 19:ed:f1:a4:9a:c3:29:d6:2a:17:04:e1:95:b0:a9: a9:eb:92:13:cc:c7:ab:ad:a5:4a:46:09:7a:36:d1: e6:10:fc:75:81:2b:db:15:00:cb:e0:b2:ac:d2:a6: 92:42:50:82:e2:00:bf:7e:9b:2a:4e:6c:d4:d2:fd: 05:49:71:39:d7:f2:73:d8:06:95:c1:3a:47:83:42: f8:40:ce:b3:ea:68:91:f4:7b:f1:24:7d:63:5d:59: b2:99:c9:fd:83:22:47:55:e0:2c:be:db:6a:23:d6: 53:6d:cf:96:66:77:73:85:cd:51:b0:a8:85:31:f4: 6e:5f:6d:9d:c5:89:58:89:28:7f:8f:3a:f8:7c:ce: fb:64:b6:69:2b:a4:e2:57:17:bd:5e:a0:d6:eb:65: 2b:ba:bf:9c:a4:b8:ad:2d:37:a4:a8:31:67:af:ec: d6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:73:72:74:48:B0:BE:D5:08:16:2E:DC:75:2F:E9:B6:68:0B:0E:13 X509v3 Authority Key Identifier: keyid:08:D2:56:D4:26:CA:21:71:FC:E8:17:C6:45:23:F8:32:A3:69:17:BD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/CNJW1CbKIXH86BfGRSP4MqNpF70.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CNJW1CbKIXH86BfGRSP4MqNpF70.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1FCC/CDBC5986730911EAA8820030C4F9AE02/54098620A37B11EFAC4F8E3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.253.93.0/24 123.253.95.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:ca:0b:fe:51:05:90:50:64:0d:45:9b:b7:2f:17:75:8a:fe: e6:01:15:d7:31:87:3d:38:fd:e8:37:a1:ff:2f:95:15:12:89: 47:a0:bb:05:e2:9a:df:f9:03:3e:8b:3d:f8:d3:b2:2a:c9:f1: 84:8f:bd:12:5a:a1:95:77:c8:30:9b:b7:46:79:5c:81:2a:a9: 9b:02:17:84:45:82:c0:e7:39:6f:d4:7c:c7:3d:db:68:17:8d: 61:d6:4a:e0:92:a9:15:80:0c:63:1a:c8:27:85:27:4c:35:ec: 3a:f7:b8:1d:0e:5b:ca:c6:8d:0a:0e:55:c2:4c:25:5b:37:29: 8a:d8:78:ae:53:1d:8d:df:24:34:21:6a:dc:93:80:04:b0:14: b8:24:af:8c:3d:b8:13:5d:a6:0d:ee:9b:7a:97:97:2b:cc:38: 30:80:87:e9:90:7f:15:ca:af:ea:0d:f8:22:6c:d9:63:e6:81: 33:6f:2b:e9:94:c6:3c:17:20:df:e1:71:43:79:d0:52:3b:2a: 7b:35:d8:20:26:27:6a:51:04:c3:7c:66:9d:6f:11:b6:70:da: 36:29:22:ae:fb:3b:f2:b5:60:2e:83:83:39:44:97:7f:07:e3: db:fc:b6:b8:48:19:47:1d:94:d4:1d:41:bd:9c:4d:6f:f7:53: ce:62:4d:86 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFGQ0MxMTAvBgNVBAUTKDA4RDI1NkQ0MjZDQTIxNzFGQ0U4MTdDNjQ1MjNGODMy QTM2OTE3QkQwHhcNMjUwNjI4MTk1NDQ3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYwNDg4Ny04ZGNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqFMUsS/bO1bxHpcN9azqL3uisFS7cTwS4EO8C0oCh1jB77e7XbdyhGjn2N2N qTiIdoKDDTLCJhhd7AgoBlpNazL0Rty7HKLKE5S+Zj0EQSm33Yq1N14eCtwZ7fGk msMp1ioXBOGVsKmp65ITzMerraVKRgl6NtHmEPx1gSvbFQDL4LKs0qaSQlCC4gC/ fpsqTmzU0v0FSXE51/Jz2AaVwTpHg0L4QM6z6miR9HvxJH1jXVmymcn9gyJHVeAs vttqI9ZTbc+WZndzhc1RsKiFMfRuX22dxYlYiSh/jzr4fM77ZLZpK6TiVxe9XqDW 62Urur+cpLitLTekqDFnr+zWKwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIVzcnRI sL7VCBYu3HUv6bZoCw4TMB8GA1UdIwQYMBaAFAjSVtQmyiFx/OgXxkUj+DKjaRe9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUZDQy9DREJDNTk4Njcz MDkxMUVBQTg4MjAwMzBDNEY5QUUwMi9DTkpXMUNiS0lYSDg2QmZHUlNQNE1xTnBG NzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NOSlcxQ2JLSVhIODZCZkdSU1A0TXFOcEY3MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzFGQ0MvQ0RCQzU5ODY3MzA5MTFFQUE4ODIwMDMwQzRGOUFFMDIvNTQwOTg2MjBB MzdCMTFFRkFDNEY4RTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB7/V0DBAB7/V8wDQYJKoZIhvcNAQELBQADggEBAA3KC/5R BZBQZA1Fm7cvF3WK/uYBFdcxhz04/eg3of8vlRUSiUeguwXimt/5Az6LPfjTsirJ 8YSPvRJaoZV3yDCbt0Z5XIEqqZsCF4RFgsDnOW/UfMc922gXjWHWSuCSqRWADGMa yCeFJ0w17Dr3uB0OW8rGjQoOVcJMJVs3KYrYeK5THY3fJDQhatyTgASwFLgkr4w9 uBNdpg3um3qXlyvMODCAh+mQfxXKr+oN+CJs2WPmgTNvK+mUxjwXIN/hcUN50FI7 Kns12CAmJ2pRBMN8Zp1vEbZw2jYpIq77O/K1YC6DgzlEl38H49v8trhIGUcdlNQd Qb2cTW/3U85iTYY= -----END CERTIFICATE-----Generated at Thu Jul 3 11:26:21 2025 by rpki-client