$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/F08F06544AA211F091187285C4F9AE02.roa File: F08F06544AA211F091187285C4F9AE02.roa (raw, json) Hash identifier: DA8q27lznInsWsWPkcvRnHmmBitOUQaqCGh5zy+bK+Y= Subject key identifier: A9:46:6D:1B:75:92:CC:EC:FE:5E:11:93:F4:76:E2:A0:29:2B:35:D4 Certificate issuer: /CN=A91E6134/serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Certificate serial: 27C3 Authority key identifier: 83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/F08F06544AA211F091187285C4F9AE02.roa Signing time: Mon 16 Jun 2025 11:13:33 +0000 ROA not before: Mon 16 Jun 2025 11:13:33 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 10753 IP address blocks: 115.167.1.0/24 maxlen: 24 115.167.100.0/24 maxlen: 24 115.167.104.0/22 maxlen: 24 175.110.72.0/22 maxlen: 24 175.110.84.0/22 maxlen: 24 175.110.96.0/24 maxlen: 24 180.178.151.0/24 maxlen: 24 223.29.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 20:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10179 (0x27c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6134, serialNumber=8308087911EA49E215DC4926B0226A521E5B39C4 Validity Not Before: Jun 16 11:13:33 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=684ffc5d-12c6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:af:83:c6:7d:35:23:78:14:af:b4:35:e9:dc: 7a:8b:d5:d1:d5:44:8f:71:1c:b7:ce:6f:c6:59:2a: 18:8a:99:80:da:34:54:ea:bd:47:3f:f7:f4:d6:80: 2d:c1:77:60:ec:60:68:63:9b:28:84:da:8b:eb:1b: 97:43:6b:d7:2d:11:89:e3:b4:d0:85:7a:0a:28:9f: 72:4d:20:0d:0c:f7:ed:fd:5d:da:ed:2b:98:5b:28: fe:17:b5:46:be:39:fe:c5:7f:51:8e:65:d2:52:7c: 1a:da:e1:63:97:fe:d7:ab:07:eb:de:6c:f5:03:79: 2f:86:dc:53:8f:cd:fa:6e:3f:c1:2a:79:d4:57:21: 72:43:e1:0b:05:2d:95:ec:8c:e9:a3:46:fa:1d:7e: 22:69:45:57:60:31:17:e3:44:35:d4:fa:21:30:3f: de:12:33:1d:22:08:02:c6:99:b2:77:67:0a:01:b1: c6:c3:3a:19:65:7b:15:bc:a8:27:c0:e1:23:1e:d8: 1f:04:63:27:d4:dd:bd:d0:64:fe:52:73:08:9c:5f: 38:2a:8e:79:ea:51:50:d6:0c:fc:55:8c:92:52:aa: 9b:ad:0d:99:ec:e0:9a:e5:32:ea:dc:95:21:a6:88: 43:c8:db:1d:ef:92:06:39:a5:23:38:48:82:f3:a9: 83:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:46:6D:1B:75:92:CC:EC:FE:5E:11:93:F4:76:E2:A0:29:2B:35:D4 X509v3 Authority Key Identifier: keyid:83:08:08:79:11:EA:49:E2:15:DC:49:26:B0:22:6A:52:1E:5B:39:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gwgIeRHqSeIV3EkmsCJqUh5bOcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6134/5F9AA4BEC2A811EAA7918A2EC4F9AE02/F08F06544AA211F091187285C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.167.1.0/24 115.167.100.0/24 115.167.104.0/22 175.110.72.0/22 175.110.84.0/22 175.110.96.0/24 180.178.151.0/24 223.29.227.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:9a:e1:6f:2b:b1:72:01:e9:00:f6:df:ca:ab:9b:bd:6f:61: 3e:f8:3f:3f:3c:d8:05:31:0c:b1:cb:ee:fb:d9:a5:e0:27:ca: 85:84:db:8d:aa:bb:73:ad:d7:89:82:b1:9a:99:be:33:be:d8: ad:66:0b:53:ed:6f:11:cf:78:99:9e:eb:ec:7a:7a:eb:33:03: e3:fe:00:31:95:4f:de:1a:d6:47:83:bb:e5:64:8d:3e:c1:1e: cd:ed:88:ce:63:ec:93:ce:57:30:ff:6f:5d:56:64:5e:06:41: d5:10:40:da:69:54:bf:04:1f:50:cc:e1:e5:72:5e:b4:a9:14: 1d:f0:b5:0b:fd:24:3a:d7:87:46:a3:3b:4c:aa:9b:08:c1:e2: ca:2c:95:eb:f8:fc:d3:68:fe:92:02:3d:10:19:b0:ad:de:7d: e2:ce:23:14:97:be:87:44:32:d2:e4:fc:1c:49:f3:74:58:15: 97:6e:e9:da:6a:ce:8d:02:48:70:1d:8e:82:bb:bc:22:a5:31: 31:51:e9:46:3d:3b:03:35:51:ab:2e:7c:e3:08:46:2b:83:72: 7e:00:a8:66:78:7e:c4:c5:df:3d:b5:86:1e:b7:a9:92:7c:0b: ca:c0:19:4f:c6:43:a9:74:89:5a:aa:5b:20:04:b5:ab:24:bc: 06:59:dc:e4 -----BEGIN CERTIFICATE----- MIIFmzCCBIOgAwIBAgICJ8MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTYxMzQxMTAvBgNVBAUTKDgzMDgwODc5MTFFQTQ5RTIxNURDNDkyNkIwMjI2QTUy MUU1QjM5QzQwHhcNMjUwNjE2MTExMzMzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRmZmM1ZC0xMmM2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqa+Dxn01I3gUr7Q16dx6i9XR1USPcRy3zm/GWSoYipmA2jRU6r1HP/f01oAt wXdg7GBoY5sohNqL6xuXQ2vXLRGJ47TQhXoKKJ9yTSANDPft/V3a7SuYWyj+F7VG vjn+xX9RjmXSUnwa2uFjl/7Xqwfr3mz1A3kvhtxTj836bj/BKnnUVyFyQ+ELBS2V 7Izpo0b6HX4iaUVXYDEX40Q11PohMD/eEjMdIggCxpmyd2cKAbHGwzoZZXsVvKgn wOEjHtgfBGMn1N290GT+UnMInF84Ko556lFQ1gz8VYySUqqbrQ2Z7OCa5TLq3JUh pohDyNsd75IGOaUjOEiC86mD5QIDAQABo4ICvzCCArswHQYDVR0OBBYEFKlGbRt1 kszs/l4Rk/R24qApKzXUMB8GA1UdIwQYMBaAFIMICHkR6kniFdxJJrAialIeWznE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjEzNC81RjlBQTRCRUMy QTgxMUVBQTc5MThBMkVDNEY5QUUwMi9nd2dJZVJIcVNlSVYzRWttc0NKcVVoNWJP Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2d3Z0llUkhxU2VJVjNFa21zQ0pxVWg1Yk9jUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTYxMzQvNUY5QUE0QkVDMkE4MTFFQUE3OTE4QTJFQzRGOUFFMDIvRjA4RjA2NTQ0 QUEyMTFGMDkxMTg3Mjg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSQYIKwYBBQUHAQcBAf8E OjA4MDYEAgABMDADBABzpwEDBABzp2QDBAJzp2gDBAKvbkgDBAKvblQDBACvbmAD BAC0spcDBADfHeMwDQYJKoZIhvcNAQELBQADggEBABqa4W8rsXIB6QD238qrm71v YT74Pz882AUxDLHL7vvZpeAnyoWE242qu3Ot14mCsZqZvjO+2K1mC1PtbxHPeJme 6+x6euszA+P+ADGVT94a1keDu+VkjT7BHs3tiM5j7JPOVzD/b11WZF4GQdUQQNpp VL8EH1DM4eVyXrSpFB3wtQv9JDrXh0ajO0yqmwjB4soslev4/NNo/pICPRAZsK3e feLOIxSXvodEMtLk/BxJ83RYFZdu6dpqzo0CSHAdjoK7vCKlMTFR6UY9OwM1Uasu fOMIRiuDcn4AqGZ4fsTF3z21hh63qZJ8C8rAGU/GQ6l0iVqqWyAEtaskvAZZ3OQ= -----END CERTIFICATE-----Generated at Tue Jul 1 00:49:58 2025 by rpki-client