$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/28D471BA06B611EBBBFD6B2CC4F9AE02.roa File: 28D471BA06B611EBBBFD6B2CC4F9AE02.roa (raw, json) Hash identifier: qTxqjLafp1eHZVEFc07aPaguHdK/MmmTaVfaOIj+sXA= Subject key identifier: 92:BD:35:7A:BA:67:4B:DF:B1:FB:7A:52:E8:56:CF:99:A2:4A:3D:30 Certificate issuer: /CN=A91DA13E/serialNumber=67F3B9FAAA10D20CB017F07FCC9A154D88B663A0 Certificate serial: 07BE Authority key identifier: 67:F3:B9:FA:AA:10:D2:0C:B0:17:F0:7F:CC:9A:15:4D:88:B6:63:A0 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/28D471BA06B611EBBBFD6B2CC4F9AE02.roa Signing time: Wed 02 Jul 2025 22:01:24 +0000 ROA not before: Wed 02 Jul 2025 22:01:24 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 55720 IP address blocks: 185.93.164.0/24 maxlen: 24 185.93.165.0/24 maxlen: 24 185.93.166.0/24 maxlen: 24 185.93.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Aug 2025 21:18:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1982 (0x7be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA13E, serialNumber=67F3B9FAAA10D20CB017F07FCC9A154D88B663A0 Validity Not Before: Jul 2 22:01:24 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=6865ac33-9347 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4c:64:3d:10:25:29:db:fb:68:b0:e3:10:7c: 54:12:e4:8c:5e:f6:be:dc:d0:f7:6c:11:4a:42:f0: 02:cc:60:ad:7b:ae:6c:f9:2d:3f:1a:60:29:c9:84: e8:1b:9e:8a:45:c3:d5:84:e3:ca:9a:44:af:c0:5e: b0:65:52:11:7a:65:93:39:71:83:35:73:bf:69:36: a3:6a:9a:ca:c0:d7:f1:0a:61:02:6a:ad:f9:fe:3d: 73:d5:c5:59:e9:35:cb:5f:8d:8d:5d:40:6e:20:64: b6:d6:9f:d4:2a:56:fa:53:f6:28:dc:27:0d:08:f0: 41:6a:f9:ef:f7:dc:f6:99:76:57:41:d7:21:6f:47: 23:fe:2e:a0:ef:37:99:de:34:e8:de:0a:e2:ee:f0: 55:0a:ce:00:18:77:02:d6:52:37:6d:49:44:18:b7: 7c:ab:d0:34:69:92:e5:2d:51:da:82:df:a1:9e:74: cc:f8:05:81:b4:71:e2:89:ec:e0:bc:50:c5:b6:a8: 5e:4f:f0:c9:18:77:ff:04:9c:77:54:0f:75:37:3a: 8e:7d:ad:e8:6f:a4:cc:9e:96:41:41:59:ca:08:0d: 24:6b:2a:e7:13:9c:35:1f:87:6f:f8:5e:03:d2:14: 04:7d:36:54:df:2c:cb:06:da:97:17:08:e4:72:0a: 92:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:BD:35:7A:BA:67:4B:DF:B1:FB:7A:52:E8:56:CF:99:A2:4A:3D:30 X509v3 Authority Key Identifier: keyid:67:F3:B9:FA:AA:10:D2:0C:B0:17:F0:7F:CC:9A:15:4D:88:B6:63:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/Z_O5-qoQ0gywF_B_zJoVTYi2Y6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA13E/4E8531CA06B511EB9372D32BC4F9AE02/28D471BA06B611EBBBFD6B2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.93.164.0/22 Signature Algorithm: sha256WithRSAEncryption 46:6e:c8:1e:d6:58:b2:7c:a4:5f:cb:11:fa:f3:21:3c:87:cd: 31:02:e3:10:6a:58:2c:78:15:cb:43:24:b4:c6:db:c6:d0:19: 32:8f:a9:eb:92:c7:17:ec:01:5f:6b:07:a9:e1:63:e5:ab:55: 16:86:99:f7:d9:d0:2d:83:a9:52:6d:2d:dd:dc:84:df:56:d7: ec:f3:b6:c7:5e:00:fc:6b:46:f3:92:e0:a9:cd:42:00:50:1e: d3:d7:fe:2b:5e:1d:c0:0a:d9:b6:97:99:ae:dd:91:9d:b3:3a: 22:2a:c9:dd:3e:cb:b0:7e:c4:16:ce:b6:b2:7c:d2:bd:5e:2d: 46:30:13:6f:23:00:f2:13:db:5d:68:af:9c:20:1b:49:19:9b: 3d:61:44:f6:fe:30:99:c4:cc:f1:42:f5:42:95:49:df:60:7f: ab:91:e7:bf:7f:8a:a6:1a:93:0d:00:10:42:17:76:de:4d:77: b8:7a:d2:cb:9f:8a:a7:2d:08:ec:9e:34:0a:df:37:ba:f8:ab: 87:e7:fc:99:95:46:4e:c2:ad:6c:02:89:bc:d6:93:f7:e1:4e: b0:02:d5:09:c1:ea:57:95:29:de:b6:e7:2a:ed:d4:f6:a6:be: 60:65:a6:41:dd:1e:26:ac:91:e8:60:5b:aa:99:88:0d:ba:0f: fb:b3:4f:1f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB74wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExM0UxMTAvBgNVBAUTKDY3RjNCOUZBQUExMEQyMENCMDE3RjA3RkNDOUExNTRE ODhCNjYzQTAwHhcNMjUwNzAyMjIwMTI0WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1YWMzMy05MzQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu0xkPRAlKdv7aLDjEHxUEuSMXva+3ND3bBFKQvACzGCte65s+S0/GmApyYTo G56KRcPVhOPKmkSvwF6wZVIRemWTOXGDNXO/aTajaprKwNfxCmECaq35/j1z1cVZ 6TXLX42NXUBuIGS21p/UKlb6U/Yo3CcNCPBBavnv99z2mXZXQdchb0cj/i6g7zeZ 3jTo3gri7vBVCs4AGHcC1lI3bUlEGLd8q9A0aZLlLVHagt+hnnTM+AWBtHHiiezg vFDFtqheT/DJGHf/BJx3VA91NzqOfa3ob6TMnpZBQVnKCA0kayrnE5w1H4dv+F4D 0hQEfTZU3yzLBtqXFwjkcgqSfQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJK9NXq6 Z0vfsft6UuhWz5miSj0wMB8GA1UdIwQYMBaAFGfzufqqENIMsBfwf8yaFU2ItmOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEzRS80RTg1MzFDQTA2 QjUxMUVCOTM3MkQzMkJDNEY5QUUwMi9aX081LXFvUTBneXdGX0JfekpvVlRZaTJZ NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL1pfTzUtcW9RMGd5d0ZfQl96Sm9WVFlpMlk2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REExM0UvNEU4NTMxQ0EwNkI1MTFFQjkzNzJEMzJCQzRGOUFFMDIvMjhENDcxQkEw NkI2MTFFQkJCRkQ2QjJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK5XaQwDQYJKoZIhvcNAQELBQADggEBAEZuyB7WWLJ8pF/L EfrzITyHzTEC4xBqWCx4FctDJLTG28bQGTKPqeuSxxfsAV9rB6nhY+WrVRaGmffZ 0C2DqVJtLd3chN9W1+zztsdeAPxrRvOS4KnNQgBQHtPX/iteHcAK2baXma7dkZ2z OiIqyd0+y7B+xBbOtrJ80r1eLUYwE28jAPIT211or5wgG0kZmz1hRPb+MJnEzPFC 9UKVSd9gf6uR579/iqYakw0AEEIXdt5Nd7h60sufiqctCOyeNArfN7r4q4fn/JmV Rk7CrWwCibzWk/fhTrAC1QnB6leVKd625yrt1PamvmBlpkHdHiaskehgW6qZiA26 D/uzTx8= -----END CERTIFICATE-----Generated at Sat Aug 23 22:35:50 2025 by rpki-client