$ rpki-client -vvf rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/F74BBA0E307C11F09D502B0DC4F9AE02.roa File: F74BBA0E307C11F09D502B0DC4F9AE02.roa (raw, json) Hash identifier: d3PjCVBRKgC1+JvdFEYaeqrj1baQnHcY98Ezzh8yqZU= Subject key identifier: 30:3A:E5:EF:B8:72:22:97:8E:15:6D:42:61:00:7C:E3:D9:C0:7B:9F Certificate issuer: /CN=A91D73BB/serialNumber=937A1B5FEB0A293360EA4E8847352E7FD36CC7A5 Certificate serial: E9 Authority key identifier: 93:7A:1B:5F:EB:0A:29:33:60:EA:4E:88:47:35:2E:7F:D3:6C:C7:A5 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/F74BBA0E307C11F09D502B0DC4F9AE02.roa Signing time: Wed 14 May 2025 04:36:52 +0000 ROA not before: Wed 14 May 2025 04:36:52 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 133045 IP address blocks: 148.195.145.0/24 maxlen: 24 148.195.230.0/24 maxlen: 24 159.73.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.crl rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 04:51:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D73BB, serialNumber=937A1B5FEB0A293360EA4E8847352E7FD36CC7A5 Validity Not Before: May 14 04:36:52 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=68241de4-8204 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:2a:e9:5b:a7:5d:70:40:e2:b6:f0:c7:f1:4c: c8:87:76:c5:24:55:c3:40:c9:ae:73:4a:9c:b7:4f: 2b:3d:ab:47:82:77:bf:37:5f:8e:c8:30:a2:14:e0: 51:ee:83:ee:e3:6c:74:d6:32:3a:de:47:9c:57:06: 16:aa:82:3c:e4:ed:b1:42:6c:4b:7f:fb:d4:4c:61: 2a:17:95:57:0d:9f:e9:68:a5:9e:9b:07:a0:28:bb: 3f:45:b9:29:88:ad:a6:d8:71:1a:19:25:cb:91:e9: 09:46:31:cd:7d:f2:ac:32:6a:21:1b:5e:05:bb:90: 62:ab:b7:b8:42:53:24:33:d4:a8:dd:22:19:42:eb: 69:ea:39:3d:36:94:26:cd:de:d0:c2:e6:26:77:68: 17:66:b7:e3:43:9c:a7:80:e0:bc:d1:cf:fa:fe:04: 7f:06:82:25:be:52:a1:15:8b:d5:39:b7:d8:c5:85: c2:ff:6d:36:7e:e5:ee:ce:72:34:87:9c:2f:28:3c: 25:94:e0:ab:81:ef:8a:1d:80:0e:61:b8:40:6a:14: f9:90:f4:cc:e4:0b:53:a6:82:2a:11:27:b7:cf:4f: 3c:16:d4:06:f3:a1:c7:14:08:53:86:ec:a4:8a:af: 6e:8e:0e:1c:4b:41:0d:5c:0e:34:28:1b:6a:1e:2e: 33:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:3A:E5:EF:B8:72:22:97:8E:15:6D:42:61:00:7C:E3:D9:C0:7B:9F X509v3 Authority Key Identifier: keyid:93:7A:1B:5F:EB:0A:29:33:60:EA:4E:88:47:35:2E:7F:D3:6C:C7:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/k3obX-sKKTNg6k6IRzUuf9Nsx6U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/k3obX-sKKTNg6k6IRzUuf9Nsx6U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D73BB/7ED57586E18D11EE990FEC4FC4F9AE02/F74BBA0E307C11F09D502B0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 148.195.145.0/24 148.195.230.0/24 159.73.0.0/16 Signature Algorithm: sha256WithRSAEncryption 66:f8:f1:14:77:24:9f:03:fe:2c:a1:3b:81:de:68:3f:b4:d0: 46:7d:29:b0:51:e8:a6:4a:49:44:12:26:28:b5:0d:27:cc:b3: e7:d0:52:7b:5b:da:13:9b:6f:a9:c8:f2:5f:1f:72:62:41:0f: c7:58:6b:dd:78:af:56:19:dd:61:5f:75:c5:fa:e3:41:17:03: c9:1e:a2:cb:f5:25:a6:c9:e7:89:9a:60:ec:08:6f:2b:f8:ec: 37:b1:28:1a:82:bf:21:30:47:72:7c:52:fe:97:a9:a9:15:a4: 4d:fa:21:1b:4c:87:e6:21:b1:55:3f:c9:67:1e:77:d9:58:d3: c3:13:1d:e3:8a:d9:de:a2:bc:e0:88:a9:22:f1:30:49:32:b8: 72:d7:15:c0:e7:00:de:fa:51:36:31:f8:0d:6a:ca:26:ff:11: 03:3d:28:ed:6c:86:48:85:38:f0:87:4c:f8:5c:33:6e:ff:1a: 57:02:3b:83:10:0a:c6:e6:a4:24:35:70:15:1f:66:24:33:a6: 9e:8c:11:d5:2c:99:08:04:54:d6:c3:8c:c4:8b:2b:4e:de:bc: a2:15:41:27:12:37:18:08:9b:5a:ab:59:6a:5b:83:5a:5b:96: 35:ef:0f:4f:fb:ca:16:43:14:95:6f:f8:40:67:e6:b1:e6:40: 6f:0a:bd:5f -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDczQkIxMTAvBgNVBAUTKDkzN0ExQjVGRUIwQTI5MzM2MEVBNEU4ODQ3MzUyRTdG RDM2Q0M3QTUwHhcNMjUwNTE0MDQzNjUyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI0MWRlNC04MjA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuirpW6ddcEDitvDH8UzIh3bFJFXDQMmuc0qct08rPatHgne/N1+OyDCiFOBR 7oPu42x01jI63kecVwYWqoI85O2xQmxLf/vUTGEqF5VXDZ/paKWemwegKLs/Rbkp iK2m2HEaGSXLkekJRjHNffKsMmohG14Fu5Biq7e4QlMkM9So3SIZQutp6jk9NpQm zd7QwuYmd2gXZrfjQ5yngOC80c/6/gR/BoIlvlKhFYvVObfYxYXC/202fuXuznI0 h5wvKDwllOCrge+KHYAOYbhAahT5kPTM5AtTpoIqESe3z088FtQG86HHFAhThuyk iq9ujg4cS0ENXA40KBtqHi4z8QIDAQABo4ICoDCCApwwHQYDVR0OBBYEFDA65e+4 ciKXjhVtQmEAfOPZwHufMB8GA1UdIwQYMBaAFJN6G1/rCikzYOpOiEc1Ln/TbMel MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzNCQi83RUQ1NzU4NkUx OEQxMUVFOTkwRkVDNEZDNEY5QUUwMi9rM29iWC1zS0tUTmc2azZJUnpVdWY5TnN4 NlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2szb2JYLXNLS1ROZzZrNklSelV1ZjlOc3g2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDczQkIvN0VENTc1ODZFMThEMTFFRTk5MEZFQzRGQzRGOUFFMDIvRjc0QkJBMEUz MDdDMTFGMDlENTAyQjBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKgYIKwYBBQUHAQcBAf8E GzAZMBcEAgABMBEDBACUw5EDBACUw+YDAwCfSTANBgkqhkiG9w0BAQsFAAOCAQEA ZvjxFHcknwP+LKE7gd5oP7TQRn0psFHopkpJRBImKLUNJ8yz59BSe1vaE5tvqcjy Xx9yYkEPx1hr3XivVhndYV91xfrjQRcDyR6iy/UlpsnniZpg7AhvK/jsN7EoGoK/ ITBHcnxS/pepqRWkTfohG0yH5iGxVT/JZx532VjTwxMd44rZ3qK84IipIvEwSTK4 ctcVwOcA3vpRNjH4DWrKJv8RAz0o7WyGSIU48IdM+Fwzbv8aVwI7gxAKxuakJDVw FR9mJDOmnowR1SyZCARU1sOMxIsrTt68ohVBJxI3GAibWqtZaluDWluWNe8PT/vK FkMUlW/4QGfmseZAbwq9Xw== -----END CERTIFICATE-----Generated at Thu May 15 17:08:10 2025 by rpki-client