$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/F8C02F3CDA4E11EC9C09A446C4F9AE02.roa File: F8C02F3CDA4E11EC9C09A446C4F9AE02.roa (raw, json) Hash identifier: fQqKRj97YwSX01j4RLkIYLyoFuesKb4QSmD9wM54Hnc= Subject key identifier: 23:79:77:D4:BE:81:41:72:17:AD:93:79:47:B3:B3:2E:15:C7:94:5D Certificate issuer: /CN=A91DF93A/serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260 Certificate serial: 08BF Authority key identifier: 07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/F8C02F3CDA4E11EC9C09A446C4F9AE02.roa Signing time: Wed 18 Jun 2025 21:07:59 +0000 ROA not before: Wed 18 Jun 2025 21:07:59 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 36131 IP address blocks: 164.90.99.0/24 maxlen: 24 164.90.100.0/24 maxlen: 24 164.90.101.0/24 maxlen: 24 164.90.118.0/24 maxlen: 24 164.90.119.0/24 maxlen: 24 164.90.120.0/24 maxlen: 24 202.63.47.0/24 maxlen: 24 202.63.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.crl rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 20:34:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2239 (0x8bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF93A, serialNumber=07A1C08545CACC65E0882D49E9F2F8CFD2BE8260 Validity Not Before: Jun 18 21:07:59 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68532aaf-b57f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:be:87:fc:10:1e:ff:84:1c:70:f5:c3:c2:f8: 8f:45:19:d9:fb:2c:7f:3a:b1:6c:e0:43:1a:78:12: 09:ab:68:81:79:59:7b:e3:f5:3a:7d:4b:36:f6:38: 80:e5:1d:26:f7:ae:07:b9:da:b5:23:dd:4c:b9:4d: dc:39:d1:a3:73:85:d1:50:90:b8:2b:bf:36:56:ee: 6b:ab:4f:f6:04:1b:96:7e:78:87:ab:52:58:c4:a5: ac:f2:2a:b6:ec:54:65:01:0b:0c:7a:38:12:0f:2b: ff:52:4a:0f:a1:50:cf:5c:7b:25:13:58:7d:fc:1a: be:59:c0:7b:ab:63:ba:04:03:6c:8d:c6:98:bb:c1: 6e:1f:57:9e:16:2a:9c:cf:77:e2:89:6b:cd:58:c3: 5a:97:63:f0:07:0f:d5:38:6a:66:6f:7d:42:12:9f: 4a:2d:58:18:19:26:85:c7:d5:c2:95:1c:3c:a8:e3: e6:7c:d7:78:9d:00:b2:ec:e8:c8:35:e7:c0:75:8e: b0:55:ee:3b:00:92:33:f7:14:f7:43:d4:d1:00:e7: f9:3e:cf:6c:da:60:f3:04:a9:0e:5a:ff:97:25:1c: c2:5c:6a:6a:68:5d:ea:3f:80:8b:e0:c4:4b:84:6b: 20:5d:a5:dd:9e:bc:79:29:64:ef:14:02:4c:6b:25: c8:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:79:77:D4:BE:81:41:72:17:AD:93:79:47:B3:B3:2E:15:C7:94:5D X509v3 Authority Key Identifier: keyid:07:A1:C0:85:45:CA:CC:65:E0:88:2D:49:E9:F2:F8:CF:D2:BE:82:60 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/B6HAhUXKzGXgiC1J6fL4z9K-gmA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B6HAhUXKzGXgiC1J6fL4z9K-gmA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF93A/FF51E59EE5F311EAB3A91561C4F9AE02/F8C02F3CDA4E11EC9C09A446C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 164.90.99.0-164.90.101.255 164.90.118.0-164.90.120.255 202.63.47.0-202.63.48.255 Signature Algorithm: sha256WithRSAEncryption 27:2c:09:5a:43:2f:62:0c:a6:11:42:d4:99:a5:8b:f4:94:70: 51:78:91:7a:50:2b:c4:dd:48:80:af:fc:23:98:4d:7a:3c:03: df:ba:20:40:21:60:77:d8:72:d3:d2:15:36:e1:a7:60:66:28: b1:5d:a1:63:25:87:76:0f:ce:28:83:e3:0c:be:b3:22:6b:14: 91:05:ad:92:53:fd:d6:8f:3d:24:77:c2:da:fc:d3:e9:32:64: 32:69:39:69:a1:4f:7b:19:0c:ca:75:32:f0:0c:6a:dc:4b:b3: 5d:f9:a4:b8:e2:b3:02:ca:6f:a4:31:f1:c4:2f:bb:b7:47:72: 06:34:22:b2:65:46:20:bb:1e:ff:63:a0:c1:86:c3:6a:6f:f3: 2f:76:bc:ef:d9:27:44:15:41:7c:1e:45:e2:da:42:b7:29:ad: ea:09:b8:f4:34:73:b9:03:c5:a8:39:53:16:0c:85:cf:b0:6c: f3:6e:3b:9f:71:04:8d:66:8c:e0:6b:76:c5:b6:a2:44:5e:f7: 6f:19:fd:8c:38:c4:8b:69:93:2f:ff:ae:57:09:e9:74:4e:d5: 69:1e:17:89:51:d5:e3:10:e8:52:f1:cd:3d:f8:b3:9c:42:de: 74:71:c5:6e:2a:73:f8:24:3c:1f:57:4f:ae:19:fa:5e:9c:23: db:4f:76:e1 -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgICCL8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REY5M0ExMTAvBgNVBAUTKDA3QTFDMDg1NDVDQUNDNjVFMDg4MkQ0OUU5RjJGOENG RDJCRTgyNjAwHhcNMjUwNjE4MjEwNzU5WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUzMmFhZi1iNTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1r6H/BAe/4QccPXDwviPRRnZ+yx/OrFs4EMaeBIJq2iBeVl74/U6fUs29jiA 5R0m964Hudq1I91MuU3cOdGjc4XRUJC4K782Vu5rq0/2BBuWfniHq1JYxKWs8iq2 7FRlAQsMejgSDyv/UkoPoVDPXHslE1h9/Bq+WcB7q2O6BANsjcaYu8FuH1eeFiqc z3fiiWvNWMNal2PwBw/VOGpmb31CEp9KLVgYGSaFx9XClRw8qOPmfNd4nQCy7OjI NefAdY6wVe47AJIz9xT3Q9TRAOf5Ps9s2mDzBKkOWv+XJRzCXGpqaF3qP4CL4MRL hGsgXaXdnrx5KWTvFAJMayXIXwIDAQABo4ICuTCCArUwHQYDVR0OBBYEFCN5d9S+ gUFyF62TeUezsy4Vx5RdMB8GA1UdIwQYMBaAFAehwIVFysxl4IgtSeny+M/SvoJg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjkzQS9GRjUxRTU5RUU1 RjMxMUVBQjNBOTE1NjFDNEY5QUUwMi9CNkhBaFVYS3pHWGdpQzFKNmZMNHo5Sy1n bUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0I2SEFoVVhLekdYZ2lDMUo2Zkw0ejlLLWdtQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REY5M0EvRkY1MUU1OUVFNUYzMTFFQUIzQTkxNTYxQzRGOUFFMDIvRjhDMDJGM0NE QTRFMTFFQzlDMDlBNDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQwYIKwYBBQUHAQcBAf8E NDAyMDAEAgABMCowDAMEAKRaYwMEAaRaZDAMAwQBpFp2AwQApFp4MAwDBADKPy8D BADKPzAwDQYJKoZIhvcNAQELBQADggEBACcsCVpDL2IMphFC1Jmli/SUcFF4kXpQ K8TdSICv/COYTXo8A9+6IEAhYHfYctPSFTbhp2BmKLFdoWMlh3YPziiD4wy+syJr FJEFrZJT/daPPSR3wtr80+kyZDJpOWmhT3sZDMp1MvAMatxLs135pLjiswLKb6Qx 8cQvu7dHcgY0IrJlRiC7Hv9joMGGw2pv8y92vO/ZJ0QVQXweReLaQrcpreoJuPQ0 c7kDxag5UxYMhc+wbPNuO59xBI1mjOBrdsW2okRe928Z/Yw4xItpky//rlcJ6XRO 1WkeF4lR1eMQ6FLxzT34s5xC3nRxxW4qc/gkPB9XT64Z+l6cI9tPduE= -----END CERTIFICATE-----Generated at Sun Jun 29 20:16:14 2025 by rpki-client