$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/331F345A383611E6B2282B5DC4F9AE02.roa File: 331F345A383611E6B2282B5DC4F9AE02.roa (raw, json) Hash identifier: ONbBKi5oc2lvv+jkklAdH08GL4vyG52+/DptD9K/oRU= Subject key identifier: 88:6F:D1:D1:89:95:ED:9A:BC:E4:25:31:44:7C:11:40:69:0B:16:06 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3626 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/331F345A383611E6B2282B5DC4F9AE02.roa Signing time: Mon 30 Jun 2025 14:20:15 +0000 ROA not before: Mon 30 Jun 2025 14:20:15 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 135537 IP address blocks: 61.45.252.0/24 maxlen: 24 2401:4601:252::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13862 (0x3626) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Jun 30 14:20:15 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=68629d1e-3de2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:5f:98:af:34:fe:a9:25:b6:18:8f:fd:b6:81: c4:c6:05:47:51:41:31:9e:3a:83:05:3f:8c:06:45: 71:e5:d5:35:a7:a2:9f:68:fd:5c:29:7a:30:46:c4: 3d:e4:0c:94:d4:e3:0e:dc:63:85:b0:11:18:63:a3: 83:a6:80:61:be:ef:1d:26:8b:95:d5:0c:bc:5b:63: d4:6b:21:9b:fb:9c:a7:d4:f1:15:25:45:3e:3b:6e: 46:4b:8d:7d:b4:fa:c2:e7:e7:19:60:d1:8e:c2:6e: 34:21:38:3e:84:ec:72:f0:50:47:f3:95:26:3b:28: 32:da:34:61:41:44:3d:d3:1b:f1:51:33:99:31:31: 26:73:52:1a:a4:93:a0:90:75:10:e8:92:ce:7c:59: 40:aa:d1:1b:32:39:41:36:8c:eb:4b:4d:59:c0:5c: bc:35:e1:43:42:2f:26:0f:1a:9f:7f:7b:56:bc:de: 7f:5d:02:75:be:39:4f:ca:84:e4:49:63:d4:48:68: f9:41:b2:21:af:56:cf:a6:d3:0e:41:f8:06:f9:f4: f1:1c:2a:9e:15:39:da:7e:34:6c:b3:6a:3a:e8:a0: b9:6f:5b:c2:40:1a:b3:e1:36:f3:c2:02:13:2e:53: 89:f6:60:e6:68:35:ef:0c:f6:bb:03:45:93:bf:8a: 80:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:6F:D1:D1:89:95:ED:9A:BC:E4:25:31:44:7C:11:40:69:0B:16:06 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/331F345A383611E6B2282B5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.252.0/24 IPv6: 2401:4601:252::/48 Signature Algorithm: sha256WithRSAEncryption 38:d4:a4:a7:0d:d3:8d:64:99:4a:2f:52:7a:25:1c:46:dd:1d: d9:77:6e:c6:83:6b:26:4c:c3:32:3d:e9:e0:75:25:c8:b0:9d: a0:0a:81:b4:0f:8e:bb:59:03:9e:a4:30:35:49:67:ba:51:df: 19:e1:39:96:be:a7:7a:c7:80:51:ba:d7:dc:8d:87:95:02:4f: ad:bb:17:8a:2c:5a:6c:f2:fb:89:dc:9c:35:55:d7:7e:f7:fd: 4f:56:76:37:f0:03:f5:c9:cc:e1:bb:cb:4d:cb:07:c3:ad:fb: 37:6d:a7:a1:87:2d:02:6b:af:3a:ce:49:73:8e:7c:d3:01:b0: 4e:88:84:d2:41:6a:81:3d:63:18:ff:3b:b9:0d:7e:c6:4e:d6: 48:ed:66:2f:75:c0:2a:0b:23:a7:d0:a2:3d:c7:48:ad:f8:c2: 65:8c:1d:08:66:a2:52:ab:fb:ee:b7:40:f8:9a:f6:3d:2f:30: b2:c7:83:93:b2:36:17:98:ee:0e:7b:65:d9:51:e1:77:43:35: af:ac:b3:63:8d:93:20:60:0f:b1:4e:c1:1f:0b:81:04:a5:e0: 1c:7f:1c:88:0e:b5:a2:90:7c:1f:3a:a9:ad:e8:7b:4d:65:2c: 97:20:c3:b0:44:28:15:c0:c4:3e:e6:19:1e:59:f9:f4:c3:1b: 58:5c:1f:32 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNiYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwNjMwMTQyMDE1WhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyOWQxZS0zZGUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4l+YrzT+qSW2GI/9toHExgVHUUExnjqDBT+MBkVx5dU1p6KfaP1cKXowRsQ9 5AyU1OMO3GOFsBEYY6ODpoBhvu8dJouV1Qy8W2PUayGb+5yn1PEVJUU+O25GS419 tPrC5+cZYNGOwm40ITg+hOxy8FBH85UmOygy2jRhQUQ90xvxUTOZMTEmc1IapJOg kHUQ6JLOfFlAqtEbMjlBNozrS01ZwFy8NeFDQi8mDxqff3tWvN5/XQJ1vjlPyoTk SWPUSGj5QbIhr1bPptMOQfgG+fTxHCqeFTnafjRss2o66KC5b1vCQBqz4TbzwgIT LlOJ9mDmaDXvDPa7A0WTv4qAWQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIhv0dGJ le2avOQlMUR8EUBpCxYGMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvMzMxRjM0NUEz ODM2MTFFNkIyMjgyQjVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAA9LfwwDwQCAAIwCQMHACQBRgECUjANBgkqhkiG9w0BAQsF AAOCAQEAONSkpw3TjWSZSi9SeiUcRt0d2XduxoNrJkzDMj3p4HUlyLCdoAqBtA+O u1kDnqQwNUlnulHfGeE5lr6neseAUbrX3I2HlQJPrbsXiixabPL7idycNVXXfvf9 T1Z2N/AD9cnM4bvLTcsHw637N22noYctAmuvOs5Jc4580wGwToiE0kFqgT1jGP87 uQ1+xk7WSO1mL3XAKgsjp9CiPcdIrfjCZYwdCGaiUqv77rdA+Jr2PS8wsseDk7I2 F5juDntl2VHhd0M1r6yzY42TIGAPsU7BHwuBBKXgHH8ciA61opB8Hzqpreh7TWUs lyDDsEQoFcDEPuYZHln59MMbWFwfMg== -----END CERTIFICATE-----Generated at Thu Jul 3 13:08:14 2025 by rpki-client