$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/BDA493A24F6211F0BEBA9A1EC4F9AE02.roa File: BDA493A24F6211F0BEBA9A1EC4F9AE02.roa (raw, json) Hash identifier: dRXB3QC7YqCROgx2X7ZnRm6lNHfbbszGkLMLxQOaMCY= Subject key identifier: 03:8D:E5:E7:A5:6C:AB:BE:BB:1A:F1:5E:D9:AB:CB:17:68:FC:9E:D0 Certificate issuer: /CN=A91CB063/serialNumber=BEDB4D31C801C78B1EFA3487639D0355AC91354B Certificate serial: 58 Authority key identifier: BE:DB:4D:31:C8:01:C7:8B:1E:FA:34:87:63:9D:03:55:AC:91:35:4B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vttNMcgBx4se-jSHY50DVayRNUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/BDA493A24F6211F0BEBA9A1EC4F9AE02.roa Signing time: Sun 22 Jun 2025 12:16:36 +0000 ROA not before: Sun 22 Jun 2025 12:16:36 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 137496 IP address blocks: 161.248.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/vttNMcgBx4se-jSHY50DVayRNUs.crl rsync://rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/vttNMcgBx4se-jSHY50DVayRNUs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vttNMcgBx4se-jSHY50DVayRNUs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB063, serialNumber=BEDB4D31C801C78B1EFA3487639D0355AC91354B Validity Not Before: Jun 22 12:16:36 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=6857f423-ceb4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a0:b3:4e:84:d7:25:14:3d:34:86:f8:33:b4: 0e:a5:1d:71:a7:dd:b5:b3:ff:f5:7c:e9:57:68:4d: 42:13:50:cd:c0:66:28:78:85:b5:07:15:f6:6b:da: 12:5b:b3:2e:76:92:8c:5a:b2:8b:f3:64:f9:a0:17: 36:82:d0:82:f0:63:2c:cf:1c:b6:7b:71:31:7b:7a: 39:4a:4f:e2:8f:d8:56:46:1f:50:18:e6:2a:f4:3e: ba:15:98:2d:e6:7b:d4:af:75:c5:7d:8c:b2:64:72: a0:53:77:bb:40:4e:b3:e3:a0:cd:88:61:f7:22:fa: 9f:35:74:9e:ef:37:e7:b6:1c:52:2f:ae:44:9c:61: 6c:f5:26:61:35:1f:fb:7b:15:83:74:7a:d3:a0:c8: e9:b5:17:32:82:13:ac:02:d1:36:a3:f0:f9:ab:8d: b3:a7:54:80:81:1e:67:c6:21:cb:fb:57:5f:df:89: 23:b7:7f:c1:a0:9d:73:ba:fb:68:2b:af:d1:c7:fd: 6e:49:34:27:df:f2:74:66:98:c6:36:05:61:8d:cd: 51:c2:08:ca:d2:58:a1:f1:c6:29:d3:2d:3d:cf:4b: 5f:9b:27:64:c7:03:42:39:50:e7:09:8e:48:4b:8a: b8:d6:e0:ca:bf:d6:40:c1:d1:5b:3b:c3:cc:8a:a0: 93:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:8D:E5:E7:A5:6C:AB:BE:BB:1A:F1:5E:D9:AB:CB:17:68:FC:9E:D0 X509v3 Authority Key Identifier: keyid:BE:DB:4D:31:C8:01:C7:8B:1E:FA:34:87:63:9D:03:55:AC:91:35:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/vttNMcgBx4se-jSHY50DVayRNUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vttNMcgBx4se-jSHY50DVayRNUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/BDA493A24F6211F0BEBA9A1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.221.0/24 Signature Algorithm: sha256WithRSAEncryption a6:86:c5:90:e0:f6:ca:02:82:8d:96:5e:96:63:c2:e3:29:fc: 4d:78:29:e7:ff:b7:18:b4:c4:f7:ab:13:31:83:a0:6f:82:38: 4a:0e:63:8e:0b:99:b6:e1:7d:66:e6:46:af:e0:22:5f:a0:c6: cd:6d:fc:b7:f1:d0:24:8a:30:81:0f:dc:a8:f2:0c:e7:e0:ea: 76:c6:c5:48:50:4b:ff:bc:8a:3f:7e:ca:90:62:f3:e8:67:24: 5c:f3:7b:76:cd:fe:08:b5:28:bb:0c:c6:13:55:cc:78:b9:9f: 38:ae:23:28:af:d5:95:d0:10:b7:13:ef:16:cd:ea:bb:9e:f1: 57:b2:7f:9b:0d:aa:15:94:b7:d4:67:53:32:8b:02:ab:e6:03: 00:e0:4e:2b:bb:e0:b9:3a:98:a2:a0:11:81:9c:38:5c:fe:cb: d5:8c:90:f8:42:dc:c5:15:77:73:54:53:5b:36:25:f6:28:c2: eb:e1:94:02:17:c6:c7:56:7d:6f:92:f5:29:c7:3d:bb:39:b4: 79:9a:be:be:f2:f2:98:8e:dd:d2:2c:6e:8e:ce:98:4c:bb:8d: 75:78:ad:7b:03:6a:ef:e6:85:88:3c:3e:ac:aa:e7:2d:ff:f7: 23:28:ec:e8:14:5c:8c:3e:31:cf:f8:cd:15:91:4b:a7:51:1a: fc:83:b2:54 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjA2MzExMC8GA1UEBRMoQkVEQjREMzFDODAxQzc4QjFFRkEzNDg3NjM5RDAzNTVB QzkxMzU0QjAeFw0yNTA2MjIxMjE2MzZaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NTdmNDIzLWNlYjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC3oLNOhNclFD00hvgztA6lHXGn3bWz//V86VdoTUITUM3AZih4hbUHFfZr2hJb sy52koxasovzZPmgFzaC0ILwYyzPHLZ7cTF7ejlKT+KP2FZGH1AY5ir0ProVmC3m e9SvdcV9jLJkcqBTd7tATrPjoM2IYfci+p81dJ7vN+e2HFIvrkScYWz1JmE1H/t7 FYN0etOgyOm1FzKCE6wC0Taj8PmrjbOnVICBHmfGIcv7V1/fiSO3f8GgnXO6+2gr r9HH/W5JNCff8nRmmMY2BWGNzVHCCMrSWKHxxinTLT3PS1+bJ2THA0I5UOcJjkhL irjW4Mq/1kDB0Vs7w8yKoJOTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUA43l56Vs q767GvFe2avLF2j8ntAwHwYDVR0jBBgwFoAUvttNMcgBx4se+jSHY50DVayRNUsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCMDYzLzYzQjQ3NjAyRDZF RDExRUY5RDlCRjM2QUM0RjlBRTAyL3Z0dE5NY2dCeDRzZS1qU0hZNTBEVmF5Uk5V cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdnR0Tk1jZ0J4NHNlLWpTSFk1MERWYXlSTlVzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjA2My82M0I0NzYwMkQ2RUQxMUVGOUQ5QkYzNkFDNEY5QUUwMi9CREE0OTNBMjRG NjIxMUYwQkVCQTlBMUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKH43TANBgkqhkiG9w0BAQsFAAOCAQEApobFkOD2ygKCjZZe lmPC4yn8TXgp5/+3GLTE96sTMYOgb4I4Sg5jjguZtuF9ZuZGr+AiX6DGzW38t/HQ JIowgQ/cqPIM5+DqdsbFSFBL/7yKP37KkGLz6GckXPN7ds3+CLUouwzGE1XMeLmf OK4jKK/VldAQtxPvFs3qu57xV7J/mw2qFZS31GdTMosCq+YDAOBOK7vguTqYoqAR gZw4XP7L1YyQ+ELcxRV3c1RTWzYl9ijC6+GUAhfGx1Z9b5L1Kcc9uzm0eZq+vvLy mI7d0ixujs6YTLuNdXitewNq7+aFiDw+rKrnLf/3Iyjs6BRcjD4xz/jNFZFLp1Ea /IOyVA== -----END CERTIFICATE-----Generated at Fri Jul 4 10:10:30 2025 by rpki-client