$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8485/2DBCEF46B41211EFB8E6E773C4F9AE02/A59FFB3EB7D711EF9ED0C324C4F9AE02.roa File: A59FFB3EB7D711EF9ED0C324C4F9AE02.roa (raw, json) Hash identifier: qXU62xBJEhF8s34iW9kLJHW6sq1BX3PHBxT3tX/weaA= Subject key identifier: DA:69:AF:EE:D1:17:AD:4A:69:A5:1D:8E:3B:F2:1B:0C:93:59:5E:45 Certificate issuer: /CN=A91C8485/serialNumber=A588786E2FD88CFAAF53AAA296C364460EE6EA6D Certificate serial: 70 Authority key identifier: A5:88:78:6E:2F:D8:8C:FA:AF:53:AA:A2:96:C3:64:46:0E:E6:EA:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pYh4bi_YjPqvU6qilsNkRg7m6m0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8485/2DBCEF46B41211EFB8E6E773C4F9AE02/A59FFB3EB7D711EF9ED0C324C4F9AE02.roa Signing time: Tue 01 Jul 2025 07:43:38 +0000 ROA not before: Tue 01 Jul 2025 07:43:38 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 40310 IP address blocks: 45.248.140.0/24 maxlen: 24 45.248.142.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8485/2DBCEF46B41211EFB8E6E773C4F9AE02/pYh4bi_YjPqvU6qilsNkRg7m6m0.crl rsync://rpki.apnic.net/member_repository/A91C8485/2DBCEF46B41211EFB8E6E773C4F9AE02/pYh4bi_YjPqvU6qilsNkRg7m6m0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pYh4bi_YjPqvU6qilsNkRg7m6m0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 112 (0x70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8485, serialNumber=A588786E2FD88CFAAF53AAA296C364460EE6EA6D Validity Not Before: Jul 1 07:43:38 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=686391aa-d166 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:22:97:fd:e6:1d:f8:e6:e7:63:77:f3:1d:74: ae:53:ff:9c:c5:d6:0a:4c:5f:68:bd:dd:cb:c4:6b: 69:e5:95:44:f1:ee:fa:f2:5c:6d:38:db:cb:0b:12: dc:8e:15:fb:02:c5:e5:8a:e7:52:9a:e2:d2:bf:e2: aa:a1:be:f5:98:f8:8a:28:20:da:c1:6e:99:94:15: e1:8c:a4:ac:8d:ac:cf:2b:06:e3:43:84:49:0a:b3: 5f:28:0f:c1:aa:2e:49:7e:8d:cb:f5:cb:78:f6:46: 99:41:d6:2a:7a:92:da:64:fd:b4:67:21:15:08:a0: b4:8b:a3:9e:59:c4:58:1b:0e:a8:b4:ef:30:ae:ec: 73:08:55:37:95:95:03:ef:38:b3:89:a2:58:09:c2: 8e:2d:74:f8:ea:29:25:6e:63:d3:31:d3:82:de:c9: 0d:e4:09:1d:ad:ad:24:36:45:10:2f:5c:fb:c3:07: 3b:8a:42:b3:fd:8b:2e:53:b2:35:ed:f4:11:7e:dd: f1:4c:7c:ea:41:4b:3f:d7:3f:42:2c:02:b4:04:a0: a0:db:8a:eb:75:9d:6d:62:5f:77:2f:ae:20:75:4a: 9c:80:52:d3:f6:9d:ae:d8:ef:ad:ed:1d:52:26:25: 6c:97:48:38:1c:f2:90:e8:5a:42:27:22:0d:92:98: 1c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:69:AF:EE:D1:17:AD:4A:69:A5:1D:8E:3B:F2:1B:0C:93:59:5E:45 X509v3 Authority Key Identifier: keyid:A5:88:78:6E:2F:D8:8C:FA:AF:53:AA:A2:96:C3:64:46:0E:E6:EA:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8485/2DBCEF46B41211EFB8E6E773C4F9AE02/pYh4bi_YjPqvU6qilsNkRg7m6m0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pYh4bi_YjPqvU6qilsNkRg7m6m0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8485/2DBCEF46B41211EFB8E6E773C4F9AE02/A59FFB3EB7D711EF9ED0C324C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.248.140.0/24 45.248.142.0/23 Signature Algorithm: sha256WithRSAEncryption 82:c9:f5:58:b1:c4:49:44:a7:6d:be:f7:11:82:b2:5b:5a:d6: 53:c2:e0:19:58:77:bf:64:18:32:47:50:a4:fe:9e:41:a3:4f: 15:98:a9:0a:d7:21:9e:35:32:9d:70:95:72:fd:ee:11:c1:a7: 84:08:a4:66:a4:18:86:3b:d0:8e:0b:8c:da:98:08:3f:e2:90: f2:91:d3:10:6c:78:dc:90:54:b2:89:c9:c8:13:6f:1b:7c:90: 2b:f2:f0:ed:bf:6b:a8:fd:d0:18:c1:25:74:f0:2a:6f:9c:6f: f2:b4:71:de:db:73:42:af:b3:c9:8e:b2:68:d1:20:89:ed:3e: de:96:9b:6f:31:c9:4f:86:5c:7f:e8:4c:df:30:ca:0c:f8:34: 81:fd:40:3d:a6:48:94:34:a4:ee:2b:da:7f:cf:f7:15:2a:fa: 82:c2:fa:d3:9e:fd:d1:e4:89:e9:92:8f:7c:f6:fe:2e:db:0a: 25:b2:4b:1d:3c:7d:b5:9a:ca:4d:ea:91:26:4a:0b:fc:4c:c3: 81:55:b0:55:db:a0:3d:6f:31:d1:bb:e4:a6:ec:9c:4d:d6:8c: 2a:d6:d8:07:84:9b:7b:6a:a5:69:d8:ad:93:18:26:2d:b5:80: c2:4f:81:72:27:25:47:b9:00:1a:27:d4:37:63:88:38:bc:4c: da:07:6a:71 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBcDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD ODQ4NTExMC8GA1UEBRMoQTU4ODc4NkUyRkQ4OENGQUFGNTNBQUEyOTZDMzY0NDYw RUU2RUE2RDAeFw0yNTA3MDEwNzQzMzhaFw0yNjA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NjM5MWFhLWQxNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwIpf95h345udjd/MddK5T/5zF1gpMX2i93cvEa2nllUTx7vryXG0428sLEtyO FfsCxeWK51Ka4tK/4qqhvvWY+IooINrBbpmUFeGMpKyNrM8rBuNDhEkKs18oD8Gq Lkl+jcv1y3j2RplB1ip6ktpk/bRnIRUIoLSLo55ZxFgbDqi07zCu7HMIVTeVlQPv OLOJolgJwo4tdPjqKSVuY9Mx04LeyQ3kCR2trSQ2RRAvXPvDBzuKQrP9iy5TsjXt 9BF+3fFMfOpBSz/XP0IsArQEoKDbiut1nW1iX3cvriB1SpyAUtP2na7Y763tHVIm JWyXSDgc8pDoWkInIg2SmBwBAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU2mmv7tEX rUpppR2OO/IbDJNZXkUwHwYDVR0jBBgwFoAUpYh4bi/YjPqvU6qilsNkRg7m6m0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM4NDg1LzJEQkNFRjQ2QjQx MjExRUZCOEU2RTc3M0M0RjlBRTAyL3BZaDRiaV9ZalBxdlU2cWlsc05rUmc3bTZt MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcFloNGJpX1lqUHF2VTZxaWxzTmtSZzdtNm0wLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD ODQ4NS8yREJDRUY0NkI0MTIxMUVGQjhFNkU3NzNDNEY5QUUwMi9BNTlGRkIzRUI3 RDcxMUVGOUVEMEMzMjRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAC34jAMEAS34jjANBgkqhkiG9w0BAQsFAAOCAQEAgsn1WLHE SUSnbb73EYKyW1rWU8LgGVh3v2QYMkdQpP6eQaNPFZipCtchnjUynXCVcv3uEcGn hAikZqQYhjvQjguM2pgIP+KQ8pHTEGx43JBUsonJyBNvG3yQK/Lw7b9rqP3QGMEl dPAqb5xv8rRx3ttzQq+zyY6yaNEgie0+3pabbzHJT4Zcf+hM3zDKDPg0gf1APaZI lDSk7ivaf8/3FSr6gsL605790eSJ6ZKPfPb+LtsKJbJLHTx9tZrKTeqRJkoL/EzD gVWwVdugPW8x0bvkpuycTdaMKtbYB4Sbe2qladitkxgmLbWAwk+BciclR7kAGifU N2OIOLxM2gdqcQ== -----END CERTIFICATE-----Generated at Fri Jul 4 08:05:19 2025 by rpki-client