$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/94855EA0357711EDB81B8A34C4F9AE02.roa File: 94855EA0357711EDB81B8A34C4F9AE02.roa (raw, json) Hash identifier: rj4BSUozmBkphVBEoUkEwSqqxoFitssfBqyMGi95Tf8= Subject key identifier: 74:F8:D0:30:41:5B:F7:AE:15:81:8D:71:DB:9F:C1:CE:69:09:D6:1C Certificate issuer: /CN=A91C31A2/serialNumber=40E58263972B9E24142BAA9B5AFA053481A3719E Certificate serial: 025E Authority key identifier: 40:E5:82:63:97:2B:9E:24:14:2B:AA:9B:5A:FA:05:34:81:A3:71:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/94855EA0357711EDB81B8A34C4F9AE02.roa Signing time: Thu 07 Aug 2025 08:37:01 +0000 ROA not before: Thu 07 Aug 2025 08:37:01 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 63199 IP address blocks: 164.52.26.0/24 maxlen: 24 164.52.27.0/24 maxlen: 24 164.52.62.0/23 maxlen: 24 164.52.78.0/24 maxlen: 24 164.52.79.0/24 maxlen: 24 164.52.81.0/24 maxlen: 24 164.52.96.0/24 maxlen: 24 164.52.99.0/24 maxlen: 24 164.52.105.0/24 maxlen: 24 164.52.118.0/24 maxlen: 24 164.52.121.0/24 maxlen: 24 164.52.122.0/24 maxlen: 24 164.52.123.0/24 maxlen: 24 164.52.126.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.crl rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Aug 2025 02:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 606 (0x25e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31A2, serialNumber=40E58263972B9E24142BAA9B5AFA053481A3719E Validity Not Before: Aug 7 08:37:01 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=689465ac-fc15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:83:e2:d0:e1:25:42:bb:59:62:7d:62:5d:e0: 30:bd:fd:05:07:67:93:55:30:69:86:f7:9b:59:32: a5:71:ca:64:98:31:e5:fe:14:0b:24:48:d9:47:c2: 8d:33:5e:13:1b:9a:04:8b:a3:a5:15:ee:fe:9b:b1: 4d:0f:b1:97:13:46:55:02:11:52:d4:3f:e4:58:3a: a1:92:a5:49:60:b9:06:23:ac:13:8c:e0:bd:46:44: a4:5a:2a:b6:13:3b:c0:90:39:2d:95:0d:72:61:31: 3c:02:4d:0a:0a:03:6f:33:36:00:f8:b0:80:41:ea: ae:18:52:c2:2e:94:35:d8:e9:a0:e7:58:b9:af:e8: 75:71:9a:e2:fa:4e:49:79:26:0e:e3:ef:08:e7:36: 79:81:cd:2e:54:bc:65:ce:49:57:8e:2a:a9:0a:26: 8c:f0:93:a0:24:8e:62:6f:ac:d8:24:8b:3d:f8:bd: 3c:2c:01:00:7c:4c:cd:97:48:c3:92:6f:7f:4f:5e: 25:cd:78:1c:14:69:17:eb:7a:64:6a:b0:69:ef:f5: 67:02:10:5f:2c:03:c7:07:05:af:fa:de:6f:b1:25: 0d:52:b7:9c:13:c2:9e:2e:0b:77:98:a4:7c:77:25: 11:44:2e:57:cb:c0:74:16:23:8a:a7:a3:f7:a8:e2: 9f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:F8:D0:30:41:5B:F7:AE:15:81:8D:71:DB:9F:C1:CE:69:09:D6:1C X509v3 Authority Key Identifier: keyid:40:E5:82:63:97:2B:9E:24:14:2B:AA:9B:5A:FA:05:34:81:A3:71:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/94855EA0357711EDB81B8A34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 164.52.26.0/23 164.52.62.0/23 164.52.78.0/23 164.52.81.0/24 164.52.96.0/24 164.52.99.0/24 164.52.105.0/24 164.52.118.0/24 164.52.121.0-164.52.123.255 164.52.126.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:8f:58:33:7d:d2:79:20:bc:43:19:b1:6f:d6:35:f8:14:c6: b2:a8:0e:05:4b:6f:88:f2:c8:23:93:31:c4:f8:f0:5e:e8:8d: 7e:b6:37:c9:b6:21:47:cb:6b:69:20:15:1d:7c:a7:3b:af:49: 7d:a4:c4:41:24:b8:ab:9b:0f:05:99:a4:16:82:cd:67:cf:5e: 57:41:a8:26:f9:08:ff:10:e3:39:69:68:54:be:00:64:96:2d: 6f:f0:30:55:21:29:f9:4e:a8:93:5e:8a:b1:3d:4e:7b:32:8f: 54:d6:98:f8:1e:12:28:e8:2f:96:e6:31:61:d4:19:6d:9e:a9: 57:5a:ed:24:1c:c5:24:58:18:ce:1b:94:43:f4:ed:9c:b1:b9: d9:6a:64:13:bd:3c:19:96:48:1e:72:65:d5:f9:20:b8:f9:04: dc:46:e2:d7:8f:55:e3:a9:1e:a5:81:b3:65:f5:95:c4:83:61: 5e:23:0e:4d:e7:08:c9:da:cb:e9:10:6c:ce:b6:8b:30:a5:4c: 9c:76:7e:c0:2d:00:cd:c8:e1:13:30:ff:95:95:d4:12:e2:47: f9:a5:fd:c2:d1:2e:7b:e1:63:3d:1a:5b:9a:8c:62:96:96:a0: 21:b6:31:d9:f5:70:2e:31:59:3a:33:e1:4f:44:d8:3b:ab:01: 96:11:72:33 -----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgICAl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQTIxMTAvBgNVBAUTKDQwRTU4MjYzOTcyQjlFMjQxNDJCQUE5QjVBRkEwNTM0 ODFBMzcxOUUwHhcNMjUwODA3MDgzNzAxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODk0NjVhYy1mYzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2YPi0OElQrtZYn1iXeAwvf0FB2eTVTBphvebWTKlccpkmDHl/hQLJEjZR8KN M14TG5oEi6OlFe7+m7FND7GXE0ZVAhFS1D/kWDqhkqVJYLkGI6wTjOC9RkSkWiq2 EzvAkDktlQ1yYTE8Ak0KCgNvMzYA+LCAQequGFLCLpQ12Omg51i5r+h1cZri+k5J eSYO4+8I5zZ5gc0uVLxlzklXjiqpCiaM8JOgJI5ib6zYJIs9+L08LAEAfEzNl0jD km9/T14lzXgcFGkX63pkarBp7/VnAhBfLAPHBwWv+t5vsSUNUrecE8KeLgt3mKR8 dyURRC5Xy8B0FiOKp6P3qOKf6wIDAQABo4IC0zCCAs8wHQYDVR0OBBYEFHT40DBB W/euFYGNcdufwc5pCdYcMB8GA1UdIwQYMBaAFEDlgmOXK54kFCuqm1r6BTSBo3Ge MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFBMi9ENDc2RUQ3NjM1 NzIxMUVEQUU5Nzc4MzlDNEY5QUUwMi9RT1dDWTVjcm5pUVVLNnFiV3ZvRk5JR2pj WjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FPV0NZNWNybmlRVUs2cWJXdm9GTklHamNaNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMxQTIvRDQ3NkVENzYzNTcyMTFFREFFOTc3ODM5QzRGOUFFMDIvOTQ4NTVFQTAz NTc3MTFFREI4MUI4QTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXQYIKwYBBQUHAQcBAf8E TjBMMEoEAgABMEQDBAGkNBoDBAGkND4DBAGkNE4DBACkNFEDBACkNGADBACkNGMD BACkNGkDBACkNHYwDAMEAKQ0eQMEAqQ0eAMEAaQ0fjANBgkqhkiG9w0BAQsFAAOC AQEAXI9YM33SeSC8Qxmxb9Y1+BTGsqgOBUtviPLII5MxxPjwXuiNfrY3ybYhR8tr aSAVHXynO69JfaTEQSS4q5sPBZmkFoLNZ89eV0GoJvkI/xDjOWloVL4AZJYtb/Aw VSEp+U6ok16KsT1OezKPVNaY+B4SKOgvluYxYdQZbZ6pV1rtJBzFJFgYzhuUQ/Tt nLG52WpkE708GZZIHnJl1fkguPkE3Ebi149V46kepYGzZfWVxINhXiMOTecIydrL 6RBszraLMKVMnHZ+wC0AzcjhEzD/lZXUEuJH+aX9wtEue+FjPRpbmoxilpagIbYx 2fVwLjFZOjPhT0TYO6sBlhFyMw== -----END CERTIFICATE-----Generated at Sat Aug 23 09:16:22 2025 by rpki-client