$ rpki-client -vvf rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/AC34FBD61C0111EC8ADBF80CC4F9AE02.roa File: AC34FBD61C0111EC8ADBF80CC4F9AE02.roa (raw, json) Hash identifier: ptNgrWHvzJHQ4AbkataHwe2RnXoFWeh5k6roCCdUJ6s= Subject key identifier: A9:47:02:18:92:DC:03:36:A6:00:72:95:19:58:DB:7A:E2:5E:10:CA Certificate issuer: /CN=A91C23C5/serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Certificate serial: 1D59 Authority key identifier: 27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/AC34FBD61C0111EC8ADBF80CC4F9AE02.roa Signing time: Thu 14 Aug 2025 16:24:37 +0000 ROA not before: Thu 14 Aug 2025 16:24:37 +0000 ROA not after: Sat 31 Oct 2026 00:00:00 +0000 asID: 4638 IP address blocks: 45.112.224.0/22 maxlen: 24 103.52.88.0/22 maxlen: 24 119.235.64.0/19 maxlen: 24 119.235.96.0/21 maxlen: 24 202.62.118.0/23 maxlen: 24 202.62.120.0/22 maxlen: 24 202.62.124.0/22 maxlen: 24 210.7.0.0/19 maxlen: 24 2403:4600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 16:11:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7513 (0x1d59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C23C5, serialNumber=2734047D6E978D509BA8A51A6F1064878F4775DA Validity Not Before: Aug 14 16:24:37 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=689e0dc5-5432 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:6d:80:3c:f1:af:9f:6c:af:5b:60:9a:25:95: 5e:71:6a:43:20:c5:88:35:45:ad:e8:6e:da:ff:8b: 53:a9:c3:97:9e:ad:55:f0:28:d0:44:02:79:71:46: df:b1:62:df:ff:3c:29:5d:b4:dd:2c:83:6f:63:24: 64:56:17:02:e3:bb:59:f5:1a:23:ac:42:c7:4d:c1: 7e:29:22:89:50:90:8d:ce:6a:b9:d9:c1:3d:d0:47: 8a:16:6e:82:49:29:a0:ad:21:82:0a:2c:43:5c:1e: 1a:3b:66:ab:e0:bd:a3:85:b5:5e:c5:d9:52:8c:3b: d5:49:95:36:28:65:68:d9:ed:75:2e:b9:f3:41:37: f0:74:84:bc:21:2f:f4:31:e7:60:d6:8e:21:1a:25: 55:53:84:1e:d0:50:c2:e3:e8:68:0c:75:bd:16:b8: f5:c7:88:6d:cb:99:12:04:51:9a:8b:78:c0:78:3c: 62:19:c4:c4:fe:7a:62:9b:49:ba:ca:2d:fb:1d:57: be:6a:a9:c6:82:97:86:48:b2:2e:d2:7b:60:e5:c1: f8:b0:8e:8f:c4:83:69:cc:46:c8:79:cf:27:21:cd: 1b:b8:c1:f0:f4:f2:50:59:c0:30:be:a8:d5:16:55: d4:b9:f6:63:3e:92:c8:f2:46:98:42:68:fc:ea:56: 9c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:47:02:18:92:DC:03:36:A6:00:72:95:19:58:DB:7A:E2:5E:10:CA X509v3 Authority Key Identifier: keyid:27:34:04:7D:6E:97:8D:50:9B:A8:A5:1A:6F:10:64:87:8F:47:75:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/JzQEfW6XjVCbqKUabxBkh49Hddo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JzQEfW6XjVCbqKUabxBkh49Hddo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C23C5/831A20FEB5C311E6B5143A2AC4F9AE02/AC34FBD61C0111EC8ADBF80CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.112.224.0/22 103.52.88.0/22 119.235.64.0-119.235.103.255 202.62.118.0-202.62.127.255 210.7.0.0/19 IPv6: 2403:4600::/32 Signature Algorithm: sha256WithRSAEncryption 4f:6e:b9:f1:1b:1e:0d:14:be:f5:9e:eb:d5:45:d6:88:c8:5c: 5d:55:e0:19:05:5d:e2:6f:6e:aa:4a:b4:64:16:ef:11:ea:7c: d0:6c:72:88:51:1e:1a:39:b7:8a:ab:c6:55:af:4a:74:3b:d1: a1:d0:ae:6e:d3:ac:f2:33:53:fa:fc:6a:d1:01:3d:c3:a9:9c: 7e:87:f6:b9:60:d5:67:d2:85:11:34:12:e9:cb:af:a2:8a:e7: 2b:99:e0:fc:8f:d1:49:16:01:8c:75:57:5b:1f:1f:e7:2c:73: 6c:40:5f:7e:5e:21:33:95:95:f2:77:e0:de:c4:00:b7:2f:24: 73:79:ef:be:1d:d8:f1:1d:f8:40:68:64:18:ab:8b:2e:27:fe: bc:cb:3d:0d:b2:2e:10:dc:d8:d4:bb:1d:68:35:6f:9c:10:63: c1:5f:8c:86:c9:3b:da:b6:c0:40:d8:a9:0d:dd:c9:57:43:e9: 1c:da:bf:e7:79:4d:1c:e6:8d:58:f0:8b:bf:85:f6:14:05:2e: 36:f3:7e:bb:86:98:9a:2f:b9:67:0c:01:5b:33:e1:dc:b4:7e: 29:f4:b4:4d:10:3b:77:b1:19:65:b6:f5:a8:c4:aa:40:cc:41: 85:1d:41:3d:df:e1:1d:7e:6e:a3:20:1a:f1:57:70:20:cc:5f: 0a:d2:a5:d0 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgICHVkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIzQzUxMTAvBgNVBAUTKDI3MzQwNDdENkU5NzhENTA5QkE4QTUxQTZGMTA2NDg3 OEY0Nzc1REEwHhcNMjUwODE0MTYyNDM3WhcNMjYxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODllMGRjNS01NDMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4W2APPGvn2yvW2CaJZVecWpDIMWINUWt6G7a/4tTqcOXnq1V8CjQRAJ5cUbf sWLf/zwpXbTdLINvYyRkVhcC47tZ9RojrELHTcF+KSKJUJCNzmq52cE90EeKFm6C SSmgrSGCCixDXB4aO2ar4L2jhbVexdlSjDvVSZU2KGVo2e11LrnzQTfwdIS8IS/0 Medg1o4hGiVVU4Qe0FDC4+hoDHW9Frj1x4hty5kSBFGai3jAeDxiGcTE/npim0m6 yi37HVe+aqnGgpeGSLIu0ntg5cH4sI6PxINpzEbIec8nIc0buMHw9PJQWcAwvqjV FlXUufZjPpLI8kaYQmj86laccwIDAQABo4ICzDCCAsgwHQYDVR0OBBYEFKlHAhiS 3AM2pgBylRlY23riXhDKMB8GA1UdIwQYMBaAFCc0BH1ul41Qm6ilGm8QZIePR3Xa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjNDNS84MzFBMjBGRUI1 QzMxMUU2QjUxNDNBMkFDNEY5QUUwMi9KelFFZlc2WGpWQ2JxS1VhYnhCa2g0OUhk ZG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0p6UUVmVzZYalZDYnFLVWFieEJraDQ5SGRkby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzIzQzUvODMxQTIwRkVCNUMzMTFFNkI1MTQzQTJBQzRGOUFFMDIvQUMzNEZCRDYx QzAxMTFFQzhBREJGODBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVgYIKwYBBQUHAQcBAf8E RzBFMDQEAgABMC4DBAItcOADBAJnNFgwDAMEBnfrQAMEA3frYDAMAwQByj52AwQH yj4AAwQF0gcAMA0EAgACMAcDBQAkA0YAMA0GCSqGSIb3DQEBCwUAA4IBAQBPbrnx Gx4NFL71nuvVRdaIyFxdVeAZBV3ib26qSrRkFu8R6nzQbHKIUR4aObeKq8ZVr0p0 O9Gh0K5u06zyM1P6/GrRAT3DqZx+h/a5YNVn0oURNBLpy6+iiucrmeD8j9FJFgGM dVdbHx/nLHNsQF9+XiEzlZXyd+DexAC3LyRzee++HdjxHfhAaGQYq4suJ/68yz0N si4Q3NjUux1oNW+cEGPBX4yGyTvatsBA2KkN3clXQ+kc2r/neU0c5o1Y8Iu/hfYU BS428367hpiaL7lnDAFbM+HctH4p9LRNEDt3sRlltvWoxKpAzEGFHUE93+Edfm6j IBrxV3AgzF8K0qXQ -----END CERTIFICATE-----Generated at Sat Aug 23 19:47:18 2025 by rpki-client