$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/88978730772311EBB972032EC4F9AE02.roa File: 88978730772311EBB972032EC4F9AE02.roa (raw, json) Hash identifier: 9XGtZh3U+oKF1G7lH8KZbGLBHCLusn+PwSpTkwD9Utg= Subject key identifier: D7:3F:8E:51:28:03:E9:B5:33:15:FF:8F:F4:67:54:2D:2B:1D:86:8B Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3628 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/88978730772311EBB972032EC4F9AE02.roa Signing time: Mon 30 Jun 2025 14:20:16 +0000 ROA not before: Mon 30 Jun 2025 14:20:16 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 135539 IP address blocks: 61.45.254.0/24 maxlen: 24 2401:4601:254::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13864 (0x3628) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Jun 30 14:20:16 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=68629d20-9e75 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:f5:95:80:e2:90:fb:d0:21:52:28:15:03:7f: 5a:94:cd:8b:ad:51:ba:45:c1:0d:64:e6:98:64:be: ca:a5:52:59:b1:d4:38:8b:dc:61:3b:98:f2:2e:ac: bd:e1:d5:64:72:47:cd:3f:d2:af:82:4f:1b:e9:25: 76:56:fb:b1:ae:f6:69:07:21:8f:c1:3f:19:62:b1: 7a:37:dd:c5:9c:bc:84:a3:ce:b8:d7:ec:e9:e0:62: 23:b1:97:18:dc:ff:78:27:99:a4:db:25:0c:c9:de: 15:d7:ef:54:cf:a3:b6:c2:8b:15:db:42:ac:1c:d1: d8:a1:8c:bd:95:b9:90:ca:2d:06:67:eb:47:1d:d8: 83:ff:c5:b4:c8:eb:f9:08:14:51:95:80:0b:b9:8b: df:31:3e:5e:9c:b7:f4:7d:4d:f7:09:59:c9:9b:5b: 9a:7f:f5:04:ba:cb:f6:da:ff:45:b3:9e:5c:6d:46: e4:7e:a4:fa:66:ee:73:49:d2:a1:a0:0b:7c:2e:69: d9:53:87:2a:92:cd:1e:e5:a9:32:72:d7:c6:b2:44: c5:60:1d:a5:0a:0a:e5:ef:2c:88:ea:73:41:0a:2a: 16:28:bd:52:c9:a8:f1:52:53:0b:1e:54:40:05:cd: 74:3e:53:00:2c:a9:99:4b:18:81:f5:fe:f2:08:d7: 64:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:3F:8E:51:28:03:E9:B5:33:15:FF:8F:F4:67:54:2D:2B:1D:86:8B X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/88978730772311EBB972032EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.254.0/24 IPv6: 2401:4601:254::/48 Signature Algorithm: sha256WithRSAEncryption 82:d3:36:1a:66:87:95:aa:83:22:24:b0:12:9e:dc:ae:fe:33: 47:6f:b6:ec:99:5a:71:2d:e6:b8:64:8c:46:c7:5d:ae:41:64: c6:cf:f3:a9:0a:f8:a1:f9:54:ee:f9:3e:89:d5:d6:a0:62:2b: 6e:a9:4b:e3:9b:f5:f1:4f:79:f4:80:07:4c:2f:c2:82:9e:42: cf:93:3b:a3:a6:91:fe:30:98:f0:ac:20:81:6f:d9:d1:d2:51: f4:99:d4:27:53:6a:15:83:c8:f4:3c:70:fa:a3:b5:57:ef:76: ff:c6:6b:b4:f9:c7:76:75:48:5d:c0:70:d3:51:1c:8d:a1:7a: 35:b7:d9:19:9b:2c:1c:f5:59:69:50:00:80:ab:8c:7f:a2:43: 12:81:5d:19:ee:a1:26:3f:4a:8e:40:f5:c9:c9:2a:7f:e1:88: 8d:86:e6:7b:24:b4:b8:4e:82:6c:cf:6c:5c:44:fa:b7:eb:0b: 0d:12:d7:af:d4:76:d9:58:87:ed:32:05:7b:b7:bf:b0:ac:4d: e4:b6:02:13:f5:43:79:1b:3d:6e:ba:98:47:fc:2c:e9:77:1d: 49:63:aa:e6:63:da:46:e8:28:ba:e3:80:70:56:e5:b3:a5:3a: 47:7f:b2:c5:50:51:ae:9a:aa:dd:45:67:05:1a:3f:2d:8d:10: 2a:ca:a1:d1 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwNjMwMTQyMDE2WhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyOWQyMC05ZTc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzPWVgOKQ+9AhUigVA39alM2LrVG6RcENZOaYZL7KpVJZsdQ4i9xhO5jyLqy9 4dVkckfNP9Kvgk8b6SV2VvuxrvZpByGPwT8ZYrF6N93FnLyEo8641+zp4GIjsZcY 3P94J5mk2yUMyd4V1+9Uz6O2wosV20KsHNHYoYy9lbmQyi0GZ+tHHdiD/8W0yOv5 CBRRlYALuYvfMT5enLf0fU33CVnJm1uaf/UEusv22v9Fs55cbUbkfqT6Zu5zSdKh oAt8LmnZU4cqks0e5akyctfGskTFYB2lCgrl7yyI6nNBCioWKL1SyajxUlMLHlRA Bc10PlMALKmZSxiB9f7yCNdk6QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNc/jlEo A+m1MxX/j/RnVC0rHYaLMB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvODg5Nzg3MzA3 NzIzMTFFQkI5NzIwMzJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAA9Lf4wDwQCAAIwCQMHACQBRgECVDANBgkqhkiG9w0BAQsF AAOCAQEAgtM2GmaHlaqDIiSwEp7crv4zR2+27JlacS3muGSMRsddrkFkxs/zqQr4 oflU7vk+idXWoGIrbqlL45v18U959IAHTC/Cgp5Cz5M7o6aR/jCY8KwggW/Z0dJR 9JnUJ1NqFYPI9Dxw+qO1V+92/8ZrtPnHdnVIXcBw01EcjaF6NbfZGZssHPVZaVAA gKuMf6JDEoFdGe6hJj9KjkD1yckqf+GIjYbmeyS0uE6CbM9sXET6t+sLDRLXr9R2 2ViH7TIFe7e/sKxN5LYCE/VDeRs9brqYR/ws6XcdSWOq5mPaRugouuOAcFbls6U6 R3+yxVBRrpqq3UVnBRo/LY0QKsqh0Q== -----END CERTIFICATE-----Generated at Thu Jul 3 23:36:37 2025 by rpki-client