$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/4703352E2BC311EEA3EEFA66C4F9AE02.roa File: 4703352E2BC311EEA3EEFA66C4F9AE02.roa (raw, json) Hash identifier: vGmHulSbJNNSRKDRkCSlexuZ8gppAxWgoNUfgpqDDQo= Subject key identifier: 33:98:6E:B8:CC:CF:27:37:CE:0E:A7:5F:5F:94:CB:C2:6C:85:EC:DE Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3622 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/4703352E2BC311EEA3EEFA66C4F9AE02.roa Signing time: Mon 30 Jun 2025 14:20:12 +0000 ROA not before: Mon 30 Jun 2025 14:20:12 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 135533 IP address blocks: 61.45.248.0/24 maxlen: 24 2401:4601:248::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13858 (0x3622) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Jun 30 14:20:12 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=68629d1b-702d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:bd:f9:57:e0:ac:e8:82:59:c4:29:52:26:30: 5c:a4:77:d7:47:54:ca:d3:f5:8d:2d:b3:33:7a:6b: c8:a1:f1:2c:20:35:f0:60:d5:77:bf:3a:a1:e8:0f: 15:1e:a3:ec:f0:02:e5:98:6a:e0:a8:c6:48:59:a4: 9e:ee:6b:e7:9c:cc:af:96:0a:46:c6:fb:49:50:7f: 96:62:ca:6c:82:4d:dc:d6:da:2c:12:20:b0:74:5d: 2e:a2:65:a0:24:a7:b3:97:bc:1b:ae:ac:a5:86:b8: 88:d4:85:bb:86:1c:1a:35:20:ac:18:8f:5c:55:55: 2c:e8:ad:47:bc:2b:c9:5e:75:28:ed:be:c6:8f:89: 6b:0d:e1:92:81:0b:29:44:c7:9a:41:06:27:01:9a: 55:b5:43:a9:d6:1f:bf:a7:57:26:2b:d3:d6:4f:24: d9:29:8e:2b:24:26:b6:e2:a5:f0:51:90:ad:64:0b: a5:81:db:bd:bf:de:a7:60:31:b0:98:fe:09:74:92: 33:65:11:3f:19:a9:9c:98:47:04:aa:a5:8b:fe:cf: b1:66:9f:a0:91:d8:f1:c0:07:04:7a:3f:ba:98:26: 1f:66:ab:5a:05:12:55:47:f4:43:49:bc:fb:0c:18: 16:b7:90:75:b3:73:ab:fa:0f:31:58:3c:b6:bf:86: 00:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:98:6E:B8:CC:CF:27:37:CE:0E:A7:5F:5F:94:CB:C2:6C:85:EC:DE X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/4703352E2BC311EEA3EEFA66C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.248.0/24 IPv6: 2401:4601:248::/48 Signature Algorithm: sha256WithRSAEncryption 5f:c9:2b:50:c7:a2:f0:f4:1c:1f:3f:04:ad:fe:f8:95:3f:4c: 57:e5:32:44:b6:4d:72:7a:ab:7b:3f:e6:d9:cc:66:ec:f9:ed: 91:06:21:33:3e:a1:a3:d1:96:11:ef:6b:47:12:07:58:20:ac: e0:90:ed:e2:c4:35:c5:8f:d3:c2:60:41:6a:1b:24:46:c7:9d: 97:f9:c8:99:f5:47:7b:6e:c7:89:0e:1d:83:68:7e:55:b2:8b: 0b:a1:b2:f9:c2:b9:11:86:39:51:53:1b:d7:3a:4c:c7:1d:18: 3e:72:37:7d:4f:75:4a:40:bf:00:cf:5b:64:b1:f6:bf:86:b7: bc:c5:86:21:6a:04:a5:48:d0:9e:77:75:0b:d9:5b:dd:bd:7c: 58:e3:5e:e4:67:07:b0:71:aa:52:6d:3b:70:b6:74:ca:c3:45: 20:fc:aa:1f:2b:79:d5:0d:38:af:55:bf:37:54:0d:3a:76:45: 86:ac:ba:2d:e8:64:ac:bf:5a:f8:8d:28:fd:82:d2:8a:ec:8d: 66:95:74:19:0d:13:5c:1b:8f:40:84:8b:9b:e1:78:05:20:36: b3:e8:58:28:44:0c:ed:75:86:17:12:85:af:1f:17:b4:be:75: 0a:1a:b7:06:ac:44:dd:d9:75:d7:0a:a5:77:fa:8f:b4:c3:f6: 6c:be:9f:ba -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwNjMwMTQyMDEyWhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyOWQxYi03MDJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3b35V+Cs6IJZxClSJjBcpHfXR1TK0/WNLbMzemvIofEsIDXwYNV3vzqh6A8V HqPs8ALlmGrgqMZIWaSe7mvnnMyvlgpGxvtJUH+WYspsgk3c1tosEiCwdF0uomWg JKezl7wbrqylhriI1IW7hhwaNSCsGI9cVVUs6K1HvCvJXnUo7b7Gj4lrDeGSgQsp RMeaQQYnAZpVtUOp1h+/p1cmK9PWTyTZKY4rJCa24qXwUZCtZAulgdu9v96nYDGw mP4JdJIzZRE/GamcmEcEqqWL/s+xZp+gkdjxwAcEej+6mCYfZqtaBRJVR/RDSbz7 DBgWt5B1s3Or+g8xWDy2v4YAwQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDOYbrjM zyc3zg6nX1+Uy8JshezeMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvNDcwMzM1MkUy QkMzMTFFRUEzRUVGQTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAA9LfgwDwQCAAIwCQMHACQBRgECSDANBgkqhkiG9w0BAQsF AAOCAQEAX8krUMei8PQcHz8Erf74lT9MV+UyRLZNcnqrez/m2cxm7PntkQYhMz6h o9GWEe9rRxIHWCCs4JDt4sQ1xY/TwmBBahskRsedl/nImfVHe27HiQ4dg2h+VbKL C6Gy+cK5EYY5UVMb1zpMxx0YPnI3fU91SkC/AM9bZLH2v4a3vMWGIWoEpUjQnnd1 C9lb3b18WONe5GcHsHGqUm07cLZ0ysNFIPyqHyt51Q04r1W/N1QNOnZFhqy6Lehk rL9a+I0o/YLSiuyNZpV0GQ0TXBuPQISLm+F4BSA2s+hYKEQM7XWGFxKFrx8XtL51 Chq3BqxE3dl11wqld/qPtMP2bL6fug== -----END CERTIFICATE-----Generated at Thu Jul 3 13:49:39 2025 by rpki-client