$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/AAFEACF0500311F0A7E46C33C4F9AE02.roa File: AAFEACF0500311F0A7E46C33C4F9AE02.roa (raw, json) Hash identifier: kFrgJirbvirh1kV38XDRtsJ3nsQNa4+OvKJO0YsvLek= Subject key identifier: 43:31:09:F2:23:98:F5:A6:A7:AE:B7:7D:7B:4C:B9:0C:3F:80:14:8E Certificate issuer: /CN=A91E1F31/serialNumber=69A32D73E038A30D47ACACEB81CD7312AF753AB9 Certificate serial: FF Authority key identifier: 69:A3:2D:73:E0:38:A3:0D:47:AC:AC:EB:81:CD:73:12:AF:75:3A:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaMtc-A4ow1HrKzrgc1zEq91Ork.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/AAFEACF0500311F0A7E46C33C4F9AE02.roa Signing time: Mon 23 Jun 2025 07:28:33 +0000 ROA not before: Mon 23 Jun 2025 07:28:33 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 147314 IP address blocks: 202.37.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/aaMtc-A4ow1HrKzrgc1zEq91Ork.crl rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/aaMtc-A4ow1HrKzrgc1zEq91Ork.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaMtc-A4ow1HrKzrgc1zEq91Ork.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 255 (0xff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1F31, serialNumber=69A32D73E038A30D47ACACEB81CD7312AF753AB9 Validity Not Before: Jun 23 07:28:33 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=68590221-35cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:6b:65:ba:3f:ad:52:5a:cd:3f:c5:05:31:63: 1f:83:27:3c:e7:f0:eb:9a:4a:80:b6:6b:d2:7e:5d: 4f:b6:b4:c8:a6:b9:ed:17:c3:dc:e9:0c:21:ea:1f: 04:b3:d0:98:d8:52:a3:1b:91:ef:57:81:f3:82:c0: fb:05:1b:b7:cf:9b:5a:5d:94:21:b8:eb:66:78:3d: 08:63:a6:21:a8:7a:de:9f:30:c2:43:51:dd:d2:4e: 2a:7c:0b:f2:e4:11:60:58:31:f1:9c:89:02:a4:13: f6:7d:05:df:d8:81:18:b3:c0:fb:68:5f:8e:93:1f: c0:18:8c:a6:e4:6b:01:7b:8d:2b:b8:8a:15:8c:2d: a6:37:11:62:03:53:82:f0:bc:c9:cc:90:f1:ab:bb: 36:9f:17:37:4f:2d:e4:70:c9:63:7f:09:44:01:0e: cd:74:e7:d1:bf:da:c2:60:72:27:93:42:ba:14:c9: db:6c:1e:21:e3:9f:96:e3:43:fa:26:27:4d:19:37: 9b:6c:8f:43:17:d5:f9:a8:9b:02:9b:87:a6:d0:3a: 2e:70:1b:b8:ac:fb:b7:e6:58:4c:26:a5:98:2b:b1: 77:2b:bb:24:3b:17:ba:10:c3:17:28:18:2b:67:8d: 6b:69:30:95:38:ec:a9:4f:a8:e4:c0:7e:4e:13:17: 6e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:31:09:F2:23:98:F5:A6:A7:AE:B7:7D:7B:4C:B9:0C:3F:80:14:8E X509v3 Authority Key Identifier: keyid:69:A3:2D:73:E0:38:A3:0D:47:AC:AC:EB:81:CD:73:12:AF:75:3A:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/aaMtc-A4ow1HrKzrgc1zEq91Ork.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aaMtc-A4ow1HrKzrgc1zEq91Ork.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1F31/A0F4E0D0E1BE11EEB045EB26C4F9AE02/AAFEACF0500311F0A7E46C33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.47.0/24 Signature Algorithm: sha256WithRSAEncryption 90:c3:90:d1:ff:f4:86:cb:58:4b:7f:e0:b6:1d:1a:c3:17:3f: af:2e:bb:d6:7d:8b:bb:c2:b2:2a:e9:5a:de:54:6c:36:4e:4c: c9:95:62:5c:ac:e3:4e:43:ec:32:8c:c3:79:e5:bd:be:0c:4f: e6:fd:5d:b7:21:f2:6e:d1:2e:b5:e8:b8:28:d2:2e:b0:3a:c7: 87:e1:b0:f6:76:a4:02:b8:6b:b6:ab:ea:68:46:4e:f1:52:16: 1c:a4:f8:1a:4d:e9:cd:08:f6:a9:8c:01:ea:86:51:78:11:77: 02:8d:52:18:c2:32:50:85:92:71:12:90:65:4f:72:68:54:93: 60:47:d8:60:68:9e:0e:6f:a2:87:16:96:a9:8d:a0:6a:56:a8: a9:5b:17:30:fd:3b:d0:26:ce:cd:35:68:55:b4:51:7b:fe:1d: e0:50:ef:b7:5c:3e:6f:a3:9f:d2:43:90:84:73:17:fc:56:42: 66:3e:9f:d0:40:fa:56:fe:a1:6a:40:66:4a:52:39:97:e3:e0: fa:a0:41:31:b3:3a:76:e4:c8:2d:ef:82:99:5b:cb:3b:6c:d0: 8e:38:03:ee:fe:d5:d7:ed:fa:0b:1b:92:1f:94:89:fd:5f:2f: 62:d5:5b:ce:1b:49:dd:0e:f2:e6:7c:91:22:82:12:76:f2:d1: e2:d9:7a:48 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTFGMzExMTAvBgNVBAUTKDY5QTMyRDczRTAzOEEzMEQ0N0FDQUNFQjgxQ0Q3MzEy QUY3NTNBQjkwHhcNMjUwNjIzMDcyODMzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODU5MDIyMS0zNWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGtluj+tUlrNP8UFMWMfgyc85/DrmkqAtmvSfl1PtrTIprntF8Pc6Qwh6h8E s9CY2FKjG5HvV4HzgsD7BRu3z5taXZQhuOtmeD0IY6YhqHrenzDCQ1Hd0k4qfAvy 5BFgWDHxnIkCpBP2fQXf2IEYs8D7aF+Okx/AGIym5GsBe40ruIoVjC2mNxFiA1OC 8LzJzJDxq7s2nxc3Ty3kcMljfwlEAQ7NdOfRv9rCYHInk0K6FMnbbB4h45+W40P6 JidNGTebbI9DF9X5qJsCm4em0DoucBu4rPu35lhMJqWYK7F3K7skOxe6EMMXKBgr Z41raTCVOOypT6jkwH5OExduJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEMxCfIj mPWmp663fXtMuQw/gBSOMB8GA1UdIwQYMBaAFGmjLXPgOKMNR6ys64HNcxKvdTq5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMUYzMS9BMEY0RTBEMEUx QkUxMUVFQjA0NUVCMjZDNEY5QUUwMi9hYU10Yy1BNG93MUhyS3pyZ2MxekVxOTFP cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FhTXRjLUE0b3cxSHJLenJnYzF6RXE5MU9yay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTFGMzEvQTBGNEUwRDBFMUJFMTFFRUIwNDVFQjI2QzRGOUFFMDIvQUFGRUFDRjA1 MDAzMTFGMEE3RTQ2QzMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJS8wDQYJKoZIhvcNAQELBQADggEBAJDDkNH/9IbLWEt/ 4LYdGsMXP68uu9Z9i7vCsirpWt5UbDZOTMmVYlys405D7DKMw3nlvb4MT+b9Xbch 8m7RLrXouCjSLrA6x4fhsPZ2pAK4a7ar6mhGTvFSFhyk+BpN6c0I9qmMAeqGUXgR dwKNUhjCMlCFknESkGVPcmhUk2BH2GBong5voocWlqmNoGpWqKlbFzD9O9Amzs01 aFW0UXv+HeBQ77dcPm+jn9JDkIRzF/xWQmY+n9BA+lb+oWpAZkpSOZfj4PqgQTGz OnbkyC3vgplbyzts0I44A+7+1dft+gsbkh+Uif1fL2LVW84bSd0O8uZ8kSKCEnby 0eLZekg= -----END CERTIFICATE-----Generated at Thu Jul 3 11:28:48 2025 by rpki-client