$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/3204348A383611E6B2282B5DC4F9AE02.roa File: 3204348A383611E6B2282B5DC4F9AE02.roa (raw, json) Hash identifier: ls3D3B0qMoaDuK9w5uGgZ5eY+SJvp9CyLR4mx4nye6A= Subject key identifier: B9:D5:3C:8E:ED:AF:A8:96:70:BE:D9:11:AB:AA:9A:AD:26:BB:F3:3B Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3624 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/3204348A383611E6B2282B5DC4F9AE02.roa Signing time: Mon 30 Jun 2025 14:20:13 +0000 ROA not before: Mon 30 Jun 2025 14:20:13 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 135535 IP address blocks: 61.45.250.0/24 maxlen: 24 2401:4601:250::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13860 (0x3624) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Jun 30 14:20:13 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=68629d1d-5564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:4f:61:d4:c6:5e:d1:d9:19:e6:44:a3:49:17: 3f:97:d3:b3:9c:6e:32:0d:cd:0d:b1:fb:7b:ef:e7: 09:15:5d:94:dc:db:bb:1e:01:af:c5:45:d4:92:ef: 3c:c4:ab:6c:e4:dd:b6:8a:b3:c8:bf:ea:fd:89:6b: 8e:12:4c:41:8a:79:db:2d:89:d4:3d:da:2c:ff:ad: 3c:50:f4:ac:de:55:6c:85:e7:2b:42:2e:a5:ba:a1: 6a:4d:57:7d:56:7f:dd:1b:8d:83:44:fb:56:f1:18: ea:5c:c4:77:a0:36:33:09:55:e7:11:3d:f2:f7:26: 7d:3d:02:2e:dd:80:e6:44:74:d1:c6:ef:ab:13:25: fa:2d:c3:54:32:bf:60:16:e3:96:5a:33:56:fa:f7: c5:a7:6b:80:76:ee:bb:59:3a:31:38:3a:48:57:5c: b4:65:af:a1:1e:4c:df:9f:40:c6:1a:be:14:65:a0: 57:f6:21:d0:f4:65:eb:65:60:5d:bc:95:ba:75:b3: 63:7f:e4:28:e1:b3:3d:a2:7e:4c:5f:5d:be:1d:b2: af:1b:6a:77:01:a0:dd:f7:1b:72:d3:0d:5c:84:2d: d2:af:19:66:b5:e3:a0:e5:42:4b:1e:a7:35:5a:77: 72:25:9e:3b:19:9f:33:0e:5b:08:fc:21:84:ad:eb: 8f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:D5:3C:8E:ED:AF:A8:96:70:BE:D9:11:AB:AA:9A:AD:26:BB:F3:3B X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/3204348A383611E6B2282B5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.250.0/24 IPv6: 2401:4601:250::/48 Signature Algorithm: sha256WithRSAEncryption 9a:e4:7f:da:d9:e9:83:6d:c7:f1:1e:9b:21:3a:d5:93:0e:d6: 6c:3f:c8:7f:1f:2a:ac:77:f6:fb:1f:29:d2:3f:86:b9:5c:fe: 3f:63:67:f9:97:b8:dd:17:79:07:ef:28:0e:7b:59:14:01:80: 1a:88:0d:03:14:94:67:94:3f:a1:bc:ed:24:08:b9:7c:b0:73: c3:fc:a1:51:30:ee:09:a5:8b:55:e6:1b:7c:d6:8d:52:6a:e6: f3:8b:fb:5c:2d:9c:7f:58:de:ff:85:e3:ad:f6:bb:0d:69:f2: 61:18:05:20:7a:8f:0a:27:e4:82:d7:17:f0:65:be:d4:97:92: e5:15:db:ce:dd:2e:12:51:4e:c3:1f:16:5e:f8:03:81:fe:5f: 82:05:d3:22:dd:a0:c5:57:dd:b1:27:e3:b9:b7:e7:21:b7:6c: a6:2b:36:59:ea:3d:04:53:31:7c:47:b9:c4:f7:87:c2:c3:39: e7:be:be:34:0e:61:b0:13:da:5c:be:7f:ed:3f:8c:96:34:eb: 6d:55:c3:39:89:9f:4e:7c:0a:a6:c5:38:f1:04:5b:6b:7f:41: d0:1a:d0:73:b7:ea:92:34:9c:09:a4:f9:7b:75:45:21:37:19: 1f:a1:c5:b2:75:db:fa:f9:d8:87:25:f8:7a:7f:23:1e:94:a7: c3:f3:34:3e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNiQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwNjMwMTQyMDEzWhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyOWQxZC01NTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvk9h1MZe0dkZ5kSjSRc/l9OznG4yDc0Nsft77+cJFV2U3Nu7HgGvxUXUku88 xKts5N22irPIv+r9iWuOEkxBinnbLYnUPdos/608UPSs3lVshecrQi6luqFqTVd9 Vn/dG42DRPtW8RjqXMR3oDYzCVXnET3y9yZ9PQIu3YDmRHTRxu+rEyX6LcNUMr9g FuOWWjNW+vfFp2uAdu67WToxODpIV1y0Za+hHkzfn0DGGr4UZaBX9iHQ9GXrZWBd vJW6dbNjf+Qo4bM9on5MX12+HbKvG2p3AaDd9xty0w1chC3SrxlmteOg5UJLHqc1 WndyJZ47GZ8zDlsI/CGEreuPmQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLnVPI7t r6iWcL7ZEauqmq0mu/M7MB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvMzIwNDM0OEEz ODM2MTFFNkIyMjgyQjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAA9LfowDwQCAAIwCQMHACQBRgECUDANBgkqhkiG9w0BAQsF AAOCAQEAmuR/2tnpg23H8R6bITrVkw7WbD/Ifx8qrHf2+x8p0j+GuVz+P2Nn+Ze4 3Rd5B+8oDntZFAGAGogNAxSUZ5Q/obztJAi5fLBzw/yhUTDuCaWLVeYbfNaNUmrm 84v7XC2cf1je/4Xjrfa7DWnyYRgFIHqPCifkgtcX8GW+1JeS5RXbzt0uElFOwx8W XvgDgf5fggXTIt2gxVfdsSfjubfnIbdspis2Weo9BFMxfEe5xPeHwsM5576+NA5h sBPaXL5/7T+MljTrbVXDOYmfTnwKpsU48QRba39B0BrQc7fqkjScCaT5e3VFITcZ H6HFsnXb+vnYhyX4en8jHpSnw/M0Pg== -----END CERTIFICATE-----Generated at Thu Jul 3 13:08:27 2025 by rpki-client