$ rpki-client -vvf rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/FCBF1666677C11EBB2A3F00CC4F9AE02.roa File: FCBF1666677C11EBB2A3F00CC4F9AE02.roa (raw, json) Hash identifier: 8Dc8gjY40rl5/6Sh0h3/EDNd7vs6rm1lJULYeNiLj34= Subject key identifier: 07:26:64:7E:6B:14:6F:5D:89:3E:0F:77:57:39:50:0C:52:0E:AA:35 Certificate issuer: /CN=A91E170B/serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Certificate serial: 3629 Authority key identifier: 6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/FCBF1666677C11EBB2A3F00CC4F9AE02.roa Signing time: Mon 30 Jun 2025 14:20:17 +0000 ROA not before: Mon 30 Jun 2025 14:20:17 +0000 ROA not after: Thu 30 Oct 2025 00:00:00 +0000 asID: 135540 IP address blocks: 61.45.255.0/24 maxlen: 24 2401:4601:255::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 14:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13865 (0x3629) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E170B, serialNumber=6D38C5B4CF4BAD3D984871A7321A9D16960BE268 Validity Not Before: Jun 30 14:20:17 2025 GMT Not After : Oct 30 00:00:00 2025 GMT Subject: CN=68629d21-385d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:0f:46:e1:e5:a5:f4:bc:f3:93:95:61:f7:36: d5:2e:71:99:f9:1b:21:b4:df:2a:ac:8f:37:e1:36: 00:59:e8:2c:5b:d1:f4:8c:2f:eb:37:3b:ae:14:b4: 4f:d2:b6:9d:28:06:23:90:49:2c:32:0d:9b:71:b4: 77:20:0e:84:e3:3a:80:71:ce:1c:8b:a5:22:5c:dd: 42:38:07:fd:8e:20:6e:9e:76:db:89:df:99:16:35: 3f:b7:cb:29:dd:1d:57:62:f4:00:56:0a:d2:3d:37: ff:f1:c1:80:90:82:97:2e:01:72:a5:f9:43:cc:94: 24:2e:aa:14:e9:a1:e0:12:d5:8c:35:aa:0c:75:d9: 3c:92:60:ce:b1:e7:43:57:c0:26:ab:de:17:13:08: 5c:df:da:ac:a0:d1:d5:b6:45:2b:4d:47:7a:b2:d2: c5:c9:35:f3:27:99:c8:1d:76:f6:85:7c:3a:a0:e4: e6:ed:63:38:ca:c9:14:c5:1c:54:7f:ab:8f:9f:3f: c1:97:98:5f:23:eb:3f:4d:0a:15:34:81:9b:d5:08: 14:2a:57:51:f5:70:eb:6c:d2:3c:0e:c5:b2:e6:4c: 8c:c9:43:3a:80:bb:db:0a:cd:07:3b:1f:14:aa:b7: d9:e7:5c:43:a7:72:ef:bc:4e:24:3f:cf:fb:6b:93: e6:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:26:64:7E:6B:14:6F:5D:89:3E:0F:77:57:39:50:0C:52:0E:AA:35 X509v3 Authority Key Identifier: keyid:6D:38:C5:B4:CF:4B:AD:3D:98:48:71:A7:32:1A:9D:16:96:0B:E2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bTjFtM9LrT2YSHGnMhqdFpYL4mg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E170B/97AF6DF01D6D11E2A12D9EAE08B02CD2/FCBF1666677C11EBB2A3F00CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.45.255.0/24 IPv6: 2401:4601:255::/48 Signature Algorithm: sha256WithRSAEncryption 74:bb:7f:96:04:d5:48:3f:1e:90:a8:0f:da:73:13:b9:1b:2f: 5a:1b:7f:18:64:ee:cd:5c:68:04:31:a3:a3:e5:52:3e:5c:b4: 99:1e:91:3e:b2:af:2c:3e:26:be:43:2b:ff:16:6d:9f:e1:4e: a3:68:75:f1:44:fc:a6:73:4e:15:8a:79:a2:1c:8e:8c:d2:c0: 34:da:4e:ad:11:30:1b:fc:db:d9:2f:f0:d8:8a:7f:e0:74:8c: 55:81:58:b3:d5:4c:50:9b:e0:0b:8a:cb:1e:ab:50:25:59:47: 18:18:0b:5c:e1:24:44:5e:1a:69:b4:3f:f4:48:95:02:0c:9f: ac:a1:4e:ef:cb:c4:ab:5d:ec:09:c8:91:77:77:8f:aa:4a:f8: 6f:ab:c5:10:4a:45:6a:ff:bb:57:8a:f2:04:df:ee:0e:d3:ae: f2:e7:ca:75:2f:fe:55:2b:ee:b7:72:8f:a9:81:10:c5:e8:ec: d1:a5:c9:d5:bb:49:9b:7b:c2:9f:a2:dd:54:68:f0:f1:48:45: 38:1f:ed:4f:e1:02:ee:f9:23:97:25:e8:e2:9d:e9:f2:62:bd: 5c:ae:83:31:d1:18:90:74:91:6f:2c:a3:da:f3:0c:9c:c6:b4: 19:a2:3f:99:04:b5:55:21:cc:81:f9:a7:4b:30:95:47:0b:49: c8:9b:1b:c2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNikwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE3MEIxMTAvBgNVBAUTKDZEMzhDNUI0Q0Y0QkFEM0Q5ODQ4NzFBNzMyMUE5RDE2 OTYwQkUyNjgwHhcNMjUwNjMwMTQyMDE3WhcNMjUxMDMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyOWQyMS0zODVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqg9G4eWl9Lzzk5Vh9zbVLnGZ+RshtN8qrI834TYAWegsW9H0jC/rNzuuFLRP 0radKAYjkEksMg2bcbR3IA6E4zqAcc4ci6UiXN1COAf9jiBunnbbid+ZFjU/t8sp 3R1XYvQAVgrSPTf/8cGAkIKXLgFypflDzJQkLqoU6aHgEtWMNaoMddk8kmDOsedD V8Amq94XEwhc39qsoNHVtkUrTUd6stLFyTXzJ5nIHXb2hXw6oOTm7WM4yskUxRxU f6uPnz/Bl5hfI+s/TQoVNIGb1QgUKldR9XDrbNI8DsWy5kyMyUM6gLvbCs0HOx8U qrfZ51xDp3LvvE4kP8/7a5PmrQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFAcmZH5r FG9diT4Pd1c5UAxSDqo1MB8GA1UdIwQYMBaAFG04xbTPS609mEhxpzIanRaWC+Jo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTcwQi85N0FGNkRGMDFE NkQxMUUyQTEyRDlFQUUwOEIwMkNEMi9iVGpGdE05THJUMllTSEduTWhxZEZwWUw0 bWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JUakZ0TTlMclQyWVNIR25NaHFkRnBZTDRtZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE3MEIvOTdBRjZERjAxRDZEMTFFMkExMkQ5RUFFMDhCMDJDRDIvRkNCRjE2NjY2 NzdDMTFFQkIyQTNGMDBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAA9Lf8wDwQCAAIwCQMHACQBRgECVTANBgkqhkiG9w0BAQsF AAOCAQEAdLt/lgTVSD8ekKgP2nMTuRsvWht/GGTuzVxoBDGjo+VSPly0mR6RPrKv LD4mvkMr/xZtn+FOo2h18UT8pnNOFYp5ohyOjNLANNpOrREwG/zb2S/w2Ip/4HSM VYFYs9VMUJvgC4rLHqtQJVlHGBgLXOEkRF4aabQ/9EiVAgyfrKFO78vEq13sCciR d3ePqkr4b6vFEEpFav+7V4ryBN/uDtOu8ufKdS/+VSvut3KPqYEQxejs0aXJ1btJ m3vCn6LdVGjw8UhFOB/tT+EC7vkjlyXo4p3p8mK9XK6DMdEYkHSRbyyj2vMMnMa0 GaI/mQS1VSHMgfmnSzCVRwtJyJsbwg== -----END CERTIFICATE-----Generated at Thu Jul 3 23:51:40 2025 by rpki-client