$ rpki-client -vvf rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/D99266FE4F7911F095AB2D46C4F9AE02.roa File: D99266FE4F7911F095AB2D46C4F9AE02.roa (raw, json) Hash identifier: al+hawxdd/Lfvjm9XY3Pf4WOTHr8q+SKzXdyvZRDRqM= Subject key identifier: 05:F9:C1:A3:2B:FD:22:61:08:FB:C2:BF:E0:53:11:CD:DD:88:41:0F Certificate issuer: /CN=A91CB063/serialNumber=BEDB4D31C801C78B1EFA3487639D0355AC91354B Certificate serial: 5A Authority key identifier: BE:DB:4D:31:C8:01:C7:8B:1E:FA:34:87:63:9D:03:55:AC:91:35:4B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vttNMcgBx4se-jSHY50DVayRNUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/D99266FE4F7911F095AB2D46C4F9AE02.roa Signing time: Sun 22 Jun 2025 15:02:01 +0000 ROA not before: Sun 22 Jun 2025 15:02:01 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 153530 IP address blocks: 161.248.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/vttNMcgBx4se-jSHY50DVayRNUs.crl rsync://rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/vttNMcgBx4se-jSHY50DVayRNUs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vttNMcgBx4se-jSHY50DVayRNUs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 90 (0x5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CB063, serialNumber=BEDB4D31C801C78B1EFA3487639D0355AC91354B Validity Not Before: Jun 22 15:02:01 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=68581ae9-17db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:94:ac:2e:d1:7b:44:4d:b1:33:a9:19:78:f3: ac:e7:2a:ba:79:2b:4c:03:f7:62:a9:5a:a1:49:b0: 23:97:c8:f3:42:cc:64:94:19:94:54:c5:7a:51:e5: 1b:c6:69:67:98:13:b9:c2:26:85:f7:2c:e5:fc:93: 53:41:ce:c5:7f:c6:db:f3:5a:52:9c:0d:d5:95:c9: 26:3d:66:fc:5d:8d:2c:25:89:a8:73:77:41:55:fa: 14:36:92:bc:a2:be:d8:f0:5f:68:f1:08:2e:10:21: d5:9c:cd:7c:d3:59:f5:50:dd:65:74:3d:dc:f8:d3: 4f:19:be:2f:d8:81:ab:2b:30:a9:bb:19:c3:2e:fe: 81:58:12:85:92:1d:52:0e:10:c0:47:81:be:d0:d2: 41:68:10:77:f6:9e:ed:5d:50:8b:ea:11:b7:78:74: 5d:04:c8:7a:03:79:f5:5a:9d:11:f3:26:37:3b:38: b2:27:15:fe:a4:65:71:e2:a5:f3:74:77:4f:f7:3f: 55:c5:8d:fd:13:18:16:c0:a9:61:aa:a2:06:42:5d: e3:ad:ed:fb:13:b7:73:de:6c:65:89:df:0f:1b:dc: 3f:c3:47:56:bb:36:35:5c:5b:51:48:29:ea:d3:75: fa:46:c1:62:aa:7a:79:18:79:5a:9e:22:9f:1b:0d: 72:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:F9:C1:A3:2B:FD:22:61:08:FB:C2:BF:E0:53:11:CD:DD:88:41:0F X509v3 Authority Key Identifier: keyid:BE:DB:4D:31:C8:01:C7:8B:1E:FA:34:87:63:9D:03:55:AC:91:35:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/vttNMcgBx4se-jSHY50DVayRNUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/vttNMcgBx4se-jSHY50DVayRNUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CB063/63B47602D6ED11EF9D9BF36AC4F9AE02/D99266FE4F7911F095AB2D46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 161.248.220.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:f4:f3:c0:a0:1d:12:7c:b9:02:08:3b:b5:f3:7e:c8:f7:e7: f9:69:95:3b:dd:de:f4:28:e9:be:5d:82:df:4f:a8:16:9e:29: 47:f0:f9:32:29:c9:32:34:f5:f5:b6:de:e9:ed:4c:01:f6:ed: ff:17:80:ec:b5:95:b3:4b:d0:6f:8c:9f:0e:5b:a1:a4:4b:75: 7b:e4:b6:64:5d:b2:08:fe:eb:79:bf:35:62:95:a2:2f:b3:61: 9b:24:95:22:7c:4d:ae:c6:ea:c8:e6:41:75:2f:33:0a:11:f0: 76:10:58:59:d1:53:da:c6:2d:e6:bc:02:44:6e:c8:15:37:25: 3f:7e:b3:ab:2e:e4:86:02:d3:00:3c:de:54:f9:49:59:df:3f: b5:ca:0b:ae:2d:72:51:7c:e7:f5:9d:ee:a4:59:5c:26:2c:d8: b3:3f:fc:48:ed:be:c0:e9:09:34:3c:78:3e:89:4b:d9:51:50: 65:19:88:83:f9:07:55:2c:79:ff:bd:f5:4b:54:17:97:6e:32: 33:ff:e5:97:1e:45:38:83:17:b0:b2:72:b2:76:43:e4:7c:93: 6e:ef:94:d6:94:f0:01:4e:94:f2:8f:fb:07:c5:0d:48:fd:b4: 94:fb:91:65:ee:72:9a:64:ca:90:9d:b9:b5:37:0c:57:36:0f: 86:c1:fc:8c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBWjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD QjA2MzExMC8GA1UEBRMoQkVEQjREMzFDODAxQzc4QjFFRkEzNDg3NjM5RDAzNTVB QzkxMzU0QjAeFw0yNTA2MjIxNTAyMDFaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NTgxYWU5LTE3ZGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDJlKwu0XtETbEzqRl486znKrp5K0wD92KpWqFJsCOXyPNCzGSUGZRUxXpR5RvG aWeYE7nCJoX3LOX8k1NBzsV/xtvzWlKcDdWVySY9ZvxdjSwliahzd0FV+hQ2kryi vtjwX2jxCC4QIdWczXzTWfVQ3WV0Pdz4008Zvi/YgasrMKm7GcMu/oFYEoWSHVIO EMBHgb7Q0kFoEHf2nu1dUIvqEbd4dF0EyHoDefVanRHzJjc7OLInFf6kZXHipfN0 d0/3P1XFjf0TGBbAqWGqogZCXeOt7fsTt3PebGWJ3w8b3D/DR1a7NjVcW1FIKerT dfpGwWKqenkYeVqeIp8bDXL7AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUBfnBoyv9 ImEI+8K/4FMRzd2IQQ8wHwYDVR0jBBgwFoAUvttNMcgBx4se+jSHY50DVayRNUsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNCMDYzLzYzQjQ3NjAyRDZF RDExRUY5RDlCRjM2QUM0RjlBRTAyL3Z0dE5NY2dCeDRzZS1qU0hZNTBEVmF5Uk5V cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvdnR0Tk1jZ0J4NHNlLWpTSFk1MERWYXlSTlVzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QjA2My82M0I0NzYwMkQ2RUQxMUVGOUQ5QkYzNkFDNEY5QUUwMi9EOTkyNjZGRTRG NzkxMUYwOTVBQjJENDZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKH43DANBgkqhkiG9w0BAQsFAAOCAQEAa/TzwKAdEny5Agg7 tfN+yPfn+WmVO93e9Cjpvl2C30+oFp4pR/D5MinJMjT19bbe6e1MAfbt/xeA7LWV s0vQb4yfDluhpEt1e+S2ZF2yCP7reb81YpWiL7NhmySVInxNrsbqyOZBdS8zChHw dhBYWdFT2sYt5rwCRG7IFTclP36zqy7khgLTADzeVPlJWd8/tcoLri1yUXzn9Z3u pFlcJizYsz/8SO2+wOkJNDx4PolL2VFQZRmIg/kHVSx5/731S1QXl24yM//llx5F OIMXsLJysnZD5HyTbu+U1pTwAU6U8o/7B8UNSP20lPuRZe5ymmTKkJ25tTcMVzYP hsH8jA== -----END CERTIFICATE-----Generated at Fri Jul 4 17:26:24 2025 by rpki-client