$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/328EDB76383611E6B2282B5DC4F9AE02.roa File: 328EDB76383611E6B2282B5DC4F9AE02.roa (raw, json) Hash identifier: GzXfr4YWUVHSzpZQvdoC1TFhpGmAGgBOPMRMQ/ex3H4= Subject key identifier: ED:88:1C:77:C1:8A:51:7E:C9:BF:84:71:85:E8:B4:BC:FD:3E:E1:B8 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3625 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/328EDB76383611E6B2282B5DC4F9AE02.roa Signing time: Mon 30 Jun 2025 14:20:14 +0000 ROA not before: Mon 30 Jun 2025 14:20:14 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 135536 IP address blocks: 61.45.251.0/24 maxlen: 24 2401:4601:251::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13861 (0x3625) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Jun 30 14:20:14 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=68629d1e-a4e2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bb:fc:f7:6a:53:c5:1f:52:db:de:c9:dc:12: 76:56:3b:a5:59:9c:82:7a:cd:84:4f:98:38:35:7f: 94:c4:8e:8a:30:f3:df:c9:55:48:97:23:59:77:71: 11:b0:38:ba:b1:48:98:c4:d8:89:df:45:89:17:38: 80:ee:df:9d:87:e1:cf:c6:61:2d:58:1c:91:55:43: 86:f5:d6:e3:ed:ef:46:52:0f:08:12:b5:3a:29:6b: 20:ac:63:95:e3:82:53:60:37:ed:ee:32:2f:27:64: 6a:f2:21:b1:14:49:de:43:1c:2c:89:4f:70:14:23: eb:96:ff:ad:29:a9:1a:c8:d4:85:00:f4:8a:8d:6b: 58:ee:91:59:d9:cd:36:a0:e8:08:8e:94:62:61:ce: 9e:4f:8e:a2:3f:99:ca:93:b0:d5:1a:54:3a:1d:d3: 45:dc:ff:b3:c3:cb:f2:3c:08:72:e2:e5:21:87:93: d6:7d:09:75:95:22:0d:70:49:04:81:43:75:35:ec: ed:3b:1d:5b:59:7c:db:d1:7f:f3:df:f2:e5:ff:f8: 5f:f4:c4:80:bc:17:69:23:9f:9a:7f:5d:f9:f2:4a: 38:12:4a:4c:cb:a0:e0:af:f0:31:50:4c:6e:6d:ca: 79:69:ba:4f:9e:e6:25:42:df:89:22:35:91:59:a9: 5f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:88:1C:77:C1:8A:51:7E:C9:BF:84:71:85:E8:B4:BC:FD:3E:E1:B8 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/328EDB76383611E6B2282B5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.251.0/24 IPv6: 2401:4601:251::/48 Signature Algorithm: sha256WithRSAEncryption 34:e8:da:cc:01:f0:79:20:9e:40:4c:24:4d:d0:ae:a4:eb:09: 69:8e:11:4e:22:cc:44:3d:79:e2:e4:fb:0f:5a:17:ff:03:e6: 4f:d9:41:0e:1f:f2:6c:0a:54:d7:68:b1:5a:2f:fd:4c:7d:ea: 0c:cc:4f:22:64:71:3d:40:33:38:0b:30:49:21:ca:5f:29:00: 7a:a6:80:fb:ee:e4:68:0a:ca:af:34:06:40:5f:41:27:bf:df: c3:6b:00:78:da:4e:b2:98:94:a0:2c:df:16:85:b1:70:94:45: 9b:77:c7:93:c0:a3:88:3c:d6:43:2b:f8:e3:34:9c:ed:17:d5: 57:d9:4d:a0:80:55:1f:1d:b0:4b:6c:2b:da:1e:f2:3c:a0:da: df:cc:8e:2a:07:99:76:72:09:e2:eb:02:a9:01:fb:ed:1c:7a: 12:d5:a8:f2:a4:03:f9:a2:65:70:b1:58:31:1b:76:47:b0:7b: 2a:b4:ef:7f:30:23:1d:27:ba:a6:b7:b7:bf:79:51:58:f1:f7: 93:16:9c:1f:1a:33:af:a3:9a:f0:29:5c:57:a0:8e:79:e2:c3: 42:68:83:81:67:d8:56:8d:6d:bb:c6:7e:d2:1f:ba:ad:4f:f7: 37:c7:6b:3f:63:a6:37:e7:05:11:66:ae:f5:b1:44:91:26:59: 2f:18:d1:2e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwNjMwMTQyMDE0WhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyOWQxZS1hNGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7v892pTxR9S297J3BJ2VjulWZyCes2ET5g4NX+UxI6KMPPfyVVIlyNZd3ER sDi6sUiYxNiJ30WJFziA7t+dh+HPxmEtWByRVUOG9dbj7e9GUg8IErU6KWsgrGOV 44JTYDft7jIvJ2Rq8iGxFEneQxwsiU9wFCPrlv+tKakayNSFAPSKjWtY7pFZ2c02 oOgIjpRiYc6eT46iP5nKk7DVGlQ6HdNF3P+zw8vyPAhy4uUhh5PWfQl1lSINcEkE gUN1NeztOx1bWXzb0X/z3/Ll//hf9MSAvBdpI5+af1358ko4EkpMy6Dgr/AxUExu bcp5abpPnuYlQt+JIjWRWalfpwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFO2IHHfB ilF+yb+EcYXotLz9PuG4MB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvMzI4RURCNzYz ODM2MTFFNkIyMjgyQjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAA9LfswDwQCAAIwCQMHACQBRgECUTANBgkqhkiG9w0BAQsF AAOCAQEANOjazAHweSCeQEwkTdCupOsJaY4RTiLMRD154uT7D1oX/wPmT9lBDh/y bApU12ixWi/9TH3qDMxPImRxPUAzOAswSSHKXykAeqaA++7kaArKrzQGQF9BJ7/f w2sAeNpOspiUoCzfFoWxcJRFm3fHk8CjiDzWQyv44zSc7RfVV9lNoIBVHx2wS2wr 2h7yPKDa38yOKgeZdnIJ4usCqQH77Rx6EtWo8qQD+aJlcLFYMRt2R7B7KrTvfzAj HSe6pre3v3lRWPH3kxacHxozr6Oa8ClcV6COeeLDQmiDgWfYVo1tu8Z+0h+6rU/3 N8drP2OmN+cFEWau9bFEkSZZLxjRLg== -----END CERTIFICATE-----Generated at Thu Jul 3 13:15:14 2025 by rpki-client