$ rpki-client -vvf rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa File: 9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa (raw, json) Hash identifier: ASBYl23bkyFf4r9vJSPXkAo/YYzd1cAPrmJW3FNKskU= Subject key identifier: CA:7A:00:FE:94:20:8A:22:8D:34:F0:EA:EF:27:CB:81:FA:48:49:0A Certificate issuer: /CN=A91C8530/serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Certificate serial: 08DC Authority key identifier: DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa Signing time: Tue 10 Jun 2025 20:46:33 +0000 ROA not before: Tue 10 Jun 2025 20:46:33 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 45918 IP address blocks: 116.193.10.0/23 maxlen: 23 116.193.12.0/23 maxlen: 23 116.193.14.0/23 maxlen: 23 116.193.14.0/24 maxlen: 24 116.193.15.0/24 maxlen: 24 2401:9100::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:40:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2268 (0x8dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C8530, serialNumber=DF8A4E6117BCA368940D68E9854798B966609DD4 Validity Not Before: Jun 10 20:46:33 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=684899a8-c84a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a4:1b:36:2f:6c:a7:51:e5:4e:d2:51:a1:b9: 83:40:f3:92:bb:09:ae:c2:8f:66:be:a8:15:6c:c5: cc:50:93:22:5b:51:df:41:dd:9b:71:59:d1:72:24: 6e:aa:76:9a:77:27:83:b9:31:f0:cb:71:d2:35:be: 0b:a5:a2:86:e3:f8:6c:a1:d9:51:5e:f3:9a:6a:e0: b4:e1:03:6f:c7:20:21:d3:de:65:7e:a3:da:1c:45: 63:35:11:90:83:3e:41:38:bf:12:62:59:e2:5a:f7: 92:c5:49:cd:2f:0a:c5:87:1c:d3:cb:11:2a:97:11: 39:58:0e:00:5a:e3:5a:db:d0:16:66:bc:31:3a:55: ed:f4:e8:52:b7:21:2b:6b:bb:7e:c2:e5:11:a2:b5: 57:1c:de:67:26:9f:d1:30:f8:e3:47:f8:89:c3:f6: 87:10:a2:a1:7f:f1:20:00:fc:a1:dc:56:6d:de:f1: 56:43:15:83:b4:17:a7:70:cf:09:a3:6a:0d:ea:25: aa:d7:ab:2a:ac:2b:c7:f5:35:bc:15:be:a6:a8:e4: 72:ce:18:0a:2c:3d:0f:15:e6:da:98:c7:4e:67:bb: 18:f9:d2:3f:6b:e8:9a:70:01:9b:1a:10:e3:4f:82: d3:c9:13:3c:50:c5:ea:fa:a1:42:93:24:93:95:97: 55:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:7A:00:FE:94:20:8A:22:8D:34:F0:EA:EF:27:CB:81:FA:48:49:0A X509v3 Authority Key Identifier: keyid:DF:8A:4E:61:17:BC:A3:68:94:0D:68:E9:85:47:98:B9:66:60:9D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/34pOYRe8o2iUDWjphUeYuWZgndQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/34pOYRe8o2iUDWjphUeYuWZgndQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C8530/18F66D86B1E611EAAA91335AC4F9AE02/9BD30C5EB1E711EA86EFFD5EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.193.10.0-116.193.15.255 IPv6: 2401:9100::/32 Signature Algorithm: sha256WithRSAEncryption 90:40:29:e7:45:e6:5f:a2:25:78:c6:4a:2f:25:8e:65:c5:ab: 5d:6b:50:a2:c5:32:d9:26:29:36:a9:de:3d:7a:c9:7a:a7:62: c0:4e:06:c3:a3:1f:3e:ea:21:85:57:89:73:1f:cb:e6:b0:6f: 6f:5c:b1:1e:99:e3:70:64:f8:1b:e4:46:76:cd:b9:42:c3:f2: 1d:ff:41:27:d4:8a:37:70:a2:96:e6:1a:64:f8:8a:6b:0b:02: 6c:f5:96:41:fc:e7:71:46:4d:d5:76:08:5c:b9:4f:c3:08:3d: b1:f8:a1:87:f9:25:07:17:5f:9f:d9:fc:71:56:98:46:fc:c7: df:e5:95:61:9b:86:a8:b7:f5:5e:a1:4a:ac:fa:41:77:2c:3c: 52:11:1d:89:cf:2a:21:da:aa:40:b1:56:7e:0e:e7:93:01:ec: 16:ae:6a:8a:cc:a7:a7:bf:f6:47:f0:a3:77:3d:42:98:a5:17: 16:5b:e4:3a:c2:b4:4b:26:31:5a:01:f3:45:cb:f0:03:4e:81: 3f:b5:e5:a9:5c:61:84:3d:ed:f2:0c:4f:ab:90:c6:3c:50:0f: 88:f3:34:43:7d:e2:cc:13:73:5d:74:31:c6:0a:66:f1:15:ad: 1b:1b:83:c7:d5:11:ce:c9:8c:90:97:55:57:b8:f7:9f:86:43: 75:85:df:41 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCNwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg1MzAxMTAvBgNVBAUTKERGOEE0RTYxMTdCQ0EzNjg5NDBENjhFOTg1NDc5OEI5 NjY2MDlERDQwHhcNMjUwNjEwMjA0NjMzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ4OTlhOC1jODRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3aQbNi9sp1HlTtJRobmDQPOSuwmuwo9mvqgVbMXMUJMiW1HfQd2bcVnRciRu qnaadyeDuTHwy3HSNb4LpaKG4/hsodlRXvOaauC04QNvxyAh095lfqPaHEVjNRGQ gz5BOL8SYlniWveSxUnNLwrFhxzTyxEqlxE5WA4AWuNa29AWZrwxOlXt9OhStyEr a7t+wuURorVXHN5nJp/RMPjjR/iJw/aHEKKhf/EgAPyh3FZt3vFWQxWDtBencM8J o2oN6iWq16sqrCvH9TW8Fb6mqORyzhgKLD0PFebamMdOZ7sY+dI/a+iacAGbGhDj T4LTyRM8UMXq+qFCkySTlZdVMwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFMp6AP6U IIoijTTw6u8ny4H6SEkKMB8GA1UdIwQYMBaAFN+KTmEXvKNolA1o6YVHmLlmYJ3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODUzMC8xOEY2NkQ4NkIx RTYxMUVBQUE5MTMzNUFDNEY5QUUwMi8zNHBPWVJlOG8yaVVEV2pwaFVlWXVXWmdu ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzM0cE9ZUmU4bzJpVURXanBoVWVZdVdaZ25kUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzg1MzAvMThGNjZEODZCMUU2MTFFQUFBOTEzMzVBQzRGOUFFMDIvOUJEMzBDNUVC MUU3MTFFQTg2RUZGRDVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBQEAgABMA4wDAMEAXTBCgMEBHTBADANBAIAAjAHAwUAJAGRADANBgkqhkiG 9w0BAQsFAAOCAQEAkEAp50XmX6IleMZKLyWOZcWrXWtQosUy2SYpNqnePXrJeqdi wE4Gw6MfPuohhVeJcx/L5rBvb1yxHpnjcGT4G+RGds25QsPyHf9BJ9SKN3CiluYa ZPiKawsCbPWWQfzncUZN1XYIXLlPwwg9sfihh/klBxdfn9n8cVaYRvzH3+WVYZuG qLf1XqFKrPpBdyw8UhEdic8qIdqqQLFWfg7nkwHsFq5qisynp7/2R/Cjdz1CmKUX FlvkOsK0SyYxWgHzRcvwA06BP7XlqVxhhD3t8gxPq5DGPFAPiPM0Q33izBNzXXQx xgpm8RWtGxuDx9URzsmMkJdVV7j3n4ZDdYXfQQ== -----END CERTIFICATE-----Generated at Thu Jul 3 10:47:34 2025 by rpki-client