$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/2F734D2E860111EFB49EB20DC4F9AE02.roa File: 2F734D2E860111EFB49EB20DC4F9AE02.roa (raw, json) Hash identifier: gfkWuMfDUYAqyRnTePZPV70xVbbxGR6RawYGUjcJFec= Subject key identifier: 68:F1:DC:57:02:82:6F:04:13:2A:69:4F:DB:89:12:E0:F8:A5:D9:63 Certificate issuer: /CN=A91E1F31/serialNumber=69A32D73E038A30D47ACACEB81CD7312AF753AB9 Certificate serial: 0101 Authority key identifier: 69:A3:2D:73:E0:38:A3:0D:47:AC:AC:EB:81:CD:73:12:AF:75:3A:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaMtc-A4ow1HrKzrgc1zEq91Ork.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/2F734D2E860111EFB49EB20DC4F9AE02.roa Signing time: Mon 23 Jun 2025 07:30:42 +0000 ROA not before: Mon 23 Jun 2025 07:30:42 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 152643 IP address blocks: 202.37.46.0/24 maxlen: 24 2401:fa60::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/aaMtc-A4ow1HrKzrgc1zEq91Ork.crl rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/aaMtc-A4ow1HrKzrgc1zEq91Ork.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaMtc-A4ow1HrKzrgc1zEq91Ork.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 257 (0x101) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1F31, serialNumber=69A32D73E038A30D47ACACEB81CD7312AF753AB9 Validity Not Before: Jun 23 07:30:42 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=685902a2-7a41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:f7:c3:c0:64:83:db:86:34:65:33:4f:7e:16: ca:af:44:4a:59:28:2d:c4:2f:89:5f:7d:f9:fa:d1: 12:8b:9a:13:10:f4:bb:97:99:43:78:47:0b:3d:d7: 65:20:ba:ca:2f:52:82:fd:c8:17:9b:30:26:e9:f0: ab:37:c1:43:da:18:06:79:2b:04:c7:9f:cc:2c:1f: bc:2d:5d:2d:73:6f:52:bf:11:2c:3b:7e:cb:40:9b: 97:ca:d5:e2:54:5d:3c:4e:d7:cd:a1:a1:6d:59:2e: 75:72:11:51:3e:e2:48:5b:df:da:8e:65:4b:3f:32: 2f:00:80:1c:ca:aa:b6:74:07:db:ef:77:e8:13:4b: 9a:15:3a:ab:4a:43:ca:1e:59:aa:cc:b7:b5:26:7f: 0c:83:77:95:d9:cb:92:87:34:3e:d1:fb:ac:04:64: f1:47:c4:db:c9:24:45:a4:62:07:12:fe:62:b0:3f: 93:fd:95:20:e1:dc:04:1d:5e:a1:88:f1:85:92:56: 7b:a5:32:a3:11:32:e7:9f:ee:f0:a8:03:c9:4b:2f: 3b:03:c2:e8:f2:64:de:e1:bf:dc:38:36:96:c2:a1: a5:a5:d7:b9:d9:0f:e3:65:0d:58:e9:e4:f5:5b:59: dd:b0:3e:15:43:03:bb:f0:d8:a6:8f:78:2c:4a:5f: da:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F1:DC:57:02:82:6F:04:13:2A:69:4F:DB:89:12:E0:F8:A5:D9:63 X509v3 Authority Key Identifier: keyid:69:A3:2D:73:E0:38:A3:0D:47:AC:AC:EB:81:CD:73:12:AF:75:3A:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/aaMtc-A4ow1HrKzrgc1zEq91Ork.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaMtc-A4ow1HrKzrgc1zEq91Ork.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/2F734D2E860111EFB49EB20DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.46.0/24 IPv6: 2401:fa60::/32 Signature Algorithm: sha256WithRSAEncryption 10:c6:c2:c2:54:66:1a:2c:c0:77:58:5f:3f:07:73:aa:79:fb: de:65:8e:84:97:8a:ca:6b:7c:8f:43:50:9d:86:e2:dc:99:4f: a4:fe:be:5e:79:70:4a:40:37:bb:7f:10:37:99:93:43:36:1a: 78:31:f9:8b:b6:9f:83:3d:a8:82:44:a8:11:41:27:0a:25:d1: 98:59:59:73:fb:bd:70:2d:be:88:fc:65:6f:2a:e6:56:37:57: 9c:88:1f:88:ac:a2:ac:9f:bf:f1:8c:d0:8c:2e:67:08:08:31: 5c:66:3d:ff:4b:62:12:d8:32:59:56:ac:5f:79:77:23:9e:8f: 37:6d:4c:b7:22:f8:80:3d:bc:ef:87:bf:db:0c:93:ab:ac:e8: 9b:0c:f1:9c:d0:37:c5:67:b0:2a:58:86:83:9d:1e:de:f0:eb: db:04:80:27:30:9c:21:c4:8e:88:2b:0a:a7:46:a8:d5:ce:32: 35:89:4f:3c:88:dc:87:56:6a:68:78:17:b0:13:4b:e7:35:b7: 6c:b3:4a:fb:41:b2:6f:c3:58:61:c2:ae:10:5b:5d:08:91:f8: d6:a0:2d:55:e8:ae:be:9a:b7:49:c8:d5:91:3b:12:3e:6a:05: 8e:ba:ca:d5:65:cc:b0:fd:c2:e5:b1:92:82:27:43:73:04:fb: 5c:8a:6e:04 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFGMzExMTAvBgNVBAUTKDY5QTMyRDczRTAzOEEzMEQ0N0FDQUNFQjgxQ0Q3MzEy QUY3NTNBQjkwHhcNMjUwNjIzMDczMDQyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODU5MDJhMi03YTQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuPfDwGSD24Y0ZTNPfhbKr0RKWSgtxC+JX335+tESi5oTEPS7l5lDeEcLPddl ILrKL1KC/cgXmzAm6fCrN8FD2hgGeSsEx5/MLB+8LV0tc29SvxEsO37LQJuXytXi VF08TtfNoaFtWS51chFRPuJIW9/ajmVLPzIvAIAcyqq2dAfb73foE0uaFTqrSkPK HlmqzLe1Jn8Mg3eV2cuShzQ+0fusBGTxR8TbySRFpGIHEv5isD+T/ZUg4dwEHV6h iPGFklZ7pTKjETLnn+7wqAPJSy87A8Lo8mTe4b/cODaWwqGlpde52Q/jZQ1Y6eT1 W1ndsD4VQwO78Nimj3gsSl/aIQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGjx3FcC gm8EEyppT9uJEuD4pdljMB8GA1UdIwQYMBaAFGmjLXPgOKMNR6ys64HNcxKvdTq5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUYzMS9BMEY0RTBEMEUx QkUxMUVFQjA0NUVCMjZDNEY5QUUwMi9hYU10Yy1BNG93MUhyS3pyZ2MxekVxOTFP cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhTXRjLUE0b3cxSHJLenJnYzF6RXE5MU9yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTFGMzEvQTBGNEUwRDBFMUJFMTFFRUIwNDVFQjI2QzRGOUFFMDIvMkY3MzREMkU4 NjAxMTFFRkI0OUVCMjBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBADKJS4wDQQCAAIwBwMFACQB+mAwDQYJKoZIhvcNAQELBQAD ggEBABDGwsJUZhoswHdYXz8Hc6p5+95ljoSXisprfI9DUJ2G4tyZT6T+vl55cEpA N7t/EDeZk0M2Gngx+Yu2n4M9qIJEqBFBJwol0ZhZWXP7vXAtvoj8ZW8q5lY3V5yI H4isoqyfv/GM0IwuZwgIMVxmPf9LYhLYMllWrF95dyOejzdtTLci+IA9vO+Hv9sM k6us6JsM8ZzQN8VnsCpYhoOdHt7w69sEgCcwnCHEjogrCqdGqNXOMjWJTzyI3IdW amh4F7ATS+c1t2yzSvtBsm/DWGHCrhBbXQiR+NagLVXorr6at0nI1ZE7Ej5qBY66 ytVlzLD9wuWxkoInQ3ME+1yKbgQ= -----END CERTIFICATE-----Generated at Fri Jul 4 19:02:01 2025 by rpki-client