$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/D85E538A4A9A11F08E56A379C4F9AE02.roa File: D85E538A4A9A11F08E56A379C4F9AE02.roa (raw, json) Hash identifier: p3gVWWhYwSbamjxgZvnoyHYRxCK513ozdLXFbddRcBk= Subject key identifier: 3A:A8:C2:15:0D:E7:0D:0D:48:AA:32:14:A3:52:70:6B:1B:D7:B1:61 Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 27F2 Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/D85E538A4A9A11F08E56A379C4F9AE02.roa Signing time: Mon 30 Jun 2025 07:24:42 +0000 ROA not before: Mon 30 Jun 2025 07:24:42 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 43260 IP address blocks: 115.167.77.0/24 maxlen: 24 175.110.81.0/24 maxlen: 24 175.110.83.0/24 maxlen: 24 202.92.18.0/24 maxlen: 24 202.92.19.0/24 maxlen: 24 202.92.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 20:35:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10226 (0x27f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Validity Not Before: Jun 30 07:24:42 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68623bba-7878 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:f5:94:5a:4e:a3:59:92:c5:aa:f1:f6:55:b9: 0b:af:31:00:41:59:90:9c:bd:00:66:84:6c:67:c3: e9:cd:4d:54:79:e3:f5:07:b0:f8:e9:33:58:f2:f2: 06:5d:c1:ce:8d:82:7e:30:bc:18:be:fa:a2:bd:77: 0a:d8:86:5a:f6:87:95:7c:a4:5d:26:1d:94:75:d3: d0:a7:1a:ea:82:8d:15:d0:1d:31:a0:a1:4f:2b:40: 40:61:91:b0:dc:fb:06:a8:42:54:be:d6:f9:ca:c6: de:08:d1:ab:a8:49:57:75:f7:4f:bf:2c:b7:b2:00: f0:4b:66:c5:7f:8b:e1:fa:09:e0:3c:6d:7d:ba:42: 5a:f3:7f:96:91:c6:68:48:ad:bc:08:cc:ca:a8:61: 90:56:86:15:56:ac:2d:8f:74:a3:16:c9:36:89:b0: 91:b2:36:1b:5e:6d:4c:e7:cf:4f:52:bf:e7:73:c2: 31:18:b8:22:42:95:27:5d:a4:e4:50:f8:95:50:0b: 8e:07:4b:c2:94:09:8c:0a:cc:b1:6a:50:ca:d7:b2: e2:c7:6c:f8:97:dd:d5:c9:cc:30:f6:14:f3:5c:6f: d4:88:54:d4:dc:7e:6f:92:f8:8c:32:0d:0c:03:eb: b1:63:69:55:5e:7f:ab:ab:7b:ba:92:8f:48:7e:ac: 8b:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:A8:C2:15:0D:E7:0D:0D:48:AA:32:14:A3:52:70:6B:1B:D7:B1:61 X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/D85E538A4A9A11F08E56A379C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.167.77.0/24 175.110.81.0/24 175.110.83.0/24 202.92.18.0-202.92.20.255 Signature Algorithm: sha256WithRSAEncryption ae:19:3b:26:ba:06:d1:1d:8d:be:e5:3d:33:6e:ea:77:69:62: ae:f7:1e:68:c8:27:06:ad:14:94:3f:d3:3f:7b:29:b7:d6:f2: 48:96:15:71:df:59:8c:3d:27:b2:dc:ef:86:7a:ac:9f:40:b9: 93:f3:ef:45:19:41:7c:31:0a:d8:d9:90:1c:dd:92:17:55:47: f2:87:66:aa:dc:3e:12:c0:f6:7c:9d:7a:16:25:94:db:f2:79: fd:30:96:3c:f0:b8:37:9f:5e:58:43:9d:1d:d7:90:96:3e:0a: 50:38:ac:33:85:79:53:a6:d3:1a:2a:9c:a0:12:0a:66:17:16: 46:9e:e1:a4:19:23:11:b2:9a:a1:5d:9a:13:e7:b6:d7:12:89: a9:99:82:a9:5b:a4:79:a8:6e:b8:cd:43:cf:fd:13:fb:cf:cd: 58:42:b9:c4:11:18:ec:53:7e:03:d3:c5:40:70:73:5f:5f:da: f5:16:98:8d:e1:b7:0a:b1:a4:5b:f4:0d:51:06:52:94:b1:50: 79:4c:36:fe:c9:21:db:c7:af:64:4f:1f:2b:b9:5b:c5:cd:7d: 79:04:ef:ed:ff:af:2a:d1:e7:62:5f:3b:4d:7e:88:48:5f:41: b5:bb:24:b8:21:e4:ae:1f:02:7f:d6:0e:42:bc:0d:bb:f4:44: ae:d4:68:a9 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICJ/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjUwNjMwMDcyNDQyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyM2JiYS03ODc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1fWUWk6jWZLFqvH2VbkLrzEAQVmQnL0AZoRsZ8PpzU1UeeP1B7D46TNY8vIG XcHOjYJ+MLwYvvqivXcK2IZa9oeVfKRdJh2UddPQpxrqgo0V0B0xoKFPK0BAYZGw 3PsGqEJUvtb5ysbeCNGrqElXdfdPvyy3sgDwS2bFf4vh+gngPG19ukJa83+WkcZo SK28CMzKqGGQVoYVVqwtj3SjFsk2ibCRsjYbXm1M589PUr/nc8IxGLgiQpUnXaTk UPiVUAuOB0vClAmMCsyxalDK17Lix2z4l93Vycww9hTzXG/UiFTU3H5vkviMMg0M A+uxY2lVXn+rq3u6ko9IfqyL+QIDAQABo4ICrzCCAqswHQYDVR0OBBYEFDqowhUN 5w0NSKoyFKNScGsb17FhMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvRDg1RTUzOEE0 QTlBMTFGMDhFNTZBMzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBABzp00DBACvblEDBACvblMwDAMEAcpcEgMEAMpcFDANBgkq hkiG9w0BAQsFAAOCAQEArhk7JroG0R2NvuU9M27qd2lirvceaMgnBq0UlD/TP3sp t9bySJYVcd9ZjD0nstzvhnqsn0C5k/PvRRlBfDEK2NmQHN2SF1VH8odmqtw+EsD2 fJ16FiWU2/J5/TCWPPC4N59eWEOdHdeQlj4KUDisM4V5U6bTGiqcoBIKZhcWRp7h pBkjEbKaoV2aE+e21xKJqZmCqVukeahuuM1Dz/0T+8/NWEK5xBEY7FN+A9PFQHBz X1/a9RaYjeG3CrGkW/QNUQZSlLFQeUw2/skh28evZE8fK7lbxc19eQTv7f+vKtHn Yl87TX6ISF9BtbskuCHkrh8Cf9YOQrwNu/RErtRoqQ== -----END CERTIFICATE-----Generated at Wed Jul 2 23:20:38 2025 by rpki-client