$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/D27AE4B27E9511ECA9132A0BC4F9AE02.roa File: D27AE4B27E9511ECA9132A0BC4F9AE02.roa (raw, json) Hash identifier: zj4FMoo2BFk+RmoPIRljJ9QowF2nkk9k+fxlmrrzCzE= Subject key identifier: 3E:1F:DE:48:D0:25:8E:7D:3E:89:B6:0D:25:39:A4:A7:C2:9B:90:7D Certificate issuer: /CN=A91EA958/serialNumber=1110310E0F80467703D8477FB3EE25F1D8888E9E Certificate serial: 24C0 Authority key identifier: 11:10:31:0E:0F:80:46:77:03:D8:47:7F:B3:EE:25:F1:D8:88:8E:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ERAxDg-ARncD2Ed_s-4l8diIjp4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/D27AE4B27E9511ECA9132A0BC4F9AE02.roa Signing time: Wed 02 Jul 2025 15:21:07 +0000 ROA not before: Wed 02 Jul 2025 15:21:07 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 15133 IP address blocks: 136.228.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/ERAxDg-ARncD2Ed_s-4l8diIjp4.crl rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/ERAxDg-ARncD2Ed_s-4l8diIjp4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ERAxDg-ARncD2Ed_s-4l8diIjp4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 15:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9408 (0x24c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA958, serialNumber=1110310E0F80467703D8477FB3EE25F1D8888E9E Validity Not Before: Jul 2 15:21:07 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=68654e63-5030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5d:72:79:ac:92:44:79:e4:b3:52:7f:46:ec: 93:b1:55:09:1e:8c:6f:68:57:6a:b4:1b:61:1a:69: e3:cd:6a:e6:8e:a4:01:2f:1a:93:47:25:fb:46:d3: 69:07:65:e2:5a:c8:06:47:70:e7:e5:2f:e1:a3:64: 1d:e5:cf:b9:dc:11:14:23:e1:0f:84:ef:ba:3d:01: cb:cf:04:4a:aa:f9:ca:cd:38:c3:f4:03:b3:ec:d4: c6:60:85:be:32:a0:f1:3b:08:fa:a4:eb:1b:ad:d1: e4:be:ca:2e:66:4d:15:1b:52:fc:c3:39:6a:8a:8e: e7:24:c7:48:b1:4f:f2:04:e0:cb:60:a8:6d:49:3f: 85:a0:52:ea:f7:89:57:c4:62:4e:89:29:9f:a7:8a: 3f:67:3c:ec:6e:14:bc:b4:74:f1:5e:8a:38:10:88: 44:cc:ac:f1:18:da:e9:04:d4:73:de:d8:c5:62:fe: f1:be:b6:89:bc:07:8f:03:e2:32:1a:09:92:ec:55: 74:f9:70:c2:dd:19:a0:9f:51:bc:87:76:d2:5a:bb: ba:3d:2d:7c:d5:27:bb:ad:12:a1:db:64:89:79:f5: 2f:75:80:1c:97:38:a3:a8:9b:ad:fc:64:df:7c:df: 93:05:ac:2f:27:13:f6:4b:d5:2c:d8:59:2b:51:83: 96:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:1F:DE:48:D0:25:8E:7D:3E:89:B6:0D:25:39:A4:A7:C2:9B:90:7D X509v3 Authority Key Identifier: keyid:11:10:31:0E:0F:80:46:77:03:D8:47:7F:B3:EE:25:F1:D8:88:8E:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/ERAxDg-ARncD2Ed_s-4l8diIjp4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/ERAxDg-ARncD2Ed_s-4l8diIjp4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA958/FDEFD7364BD611E5A7CA3033C4F9AE02/D27AE4B27E9511ECA9132A0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 136.228.144.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:1a:ed:b9:eb:09:c7:08:37:ba:c2:16:93:30:7d:7f:20:c0: 87:a4:db:37:2d:9b:26:db:61:a2:60:2a:f7:e3:8d:01:17:d4: 24:2e:a4:84:b6:06:ff:68:53:82:4f:dd:3d:fd:85:24:4d:ad: 15:b2:aa:2f:a9:94:33:5b:3a:c8:10:3b:80:3d:b8:ed:9e:93: d2:81:bd:fa:b5:6e:3c:c0:25:b6:68:b3:5a:8a:1e:9e:16:32: b4:a4:0b:f9:c5:c5:8f:76:a3:87:70:3b:94:ac:53:51:6a:d8: 85:ed:47:48:7f:e9:c3:d8:e5:ae:72:46:58:4d:28:03:b2:69: 04:60:01:f2:e9:f0:54:7c:95:6d:43:12:58:c5:da:3b:d6:b6: ca:c9:26:54:10:ea:29:6a:d3:56:ae:02:06:06:c5:ed:6f:c6: f5:b9:b1:f0:cd:f0:5a:aa:3c:78:f6:4d:6c:64:97:56:a7:f1: 09:d6:2e:c3:4e:2c:d8:01:ac:30:4a:05:8b:49:9d:5e:de:4b: aa:df:82:64:e4:60:09:3c:4c:79:34:38:87:cc:7e:30:3f:52: 1d:cf:e7:81:76:82:1b:63:cc:7b:41:75:1c:dd:f5:c0:aa:14: 2d:70:44:1f:09:e5:5a:e0:6e:25:45:46:96:f0:f9:d2:ba:37: fd:e0:3d:da -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5NTgxMTAvBgNVBAUTKDExMTAzMTBFMEY4MDQ2NzcwM0Q4NDc3RkIzRUUyNUYx RDg4ODhFOUUwHhcNMjUwNzAyMTUyMTA3WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY1NGU2My01MDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz11yeaySRHnks1J/RuyTsVUJHoxvaFdqtBthGmnjzWrmjqQBLxqTRyX7RtNp B2XiWsgGR3Dn5S/ho2Qd5c+53BEUI+EPhO+6PQHLzwRKqvnKzTjD9AOz7NTGYIW+ MqDxOwj6pOsbrdHkvsouZk0VG1L8wzlqio7nJMdIsU/yBODLYKhtST+FoFLq94lX xGJOiSmfp4o/ZzzsbhS8tHTxXoo4EIhEzKzxGNrpBNRz3tjFYv7xvraJvAePA+Iy GgmS7FV0+XDC3Rmgn1G8h3bSWru6PS181Se7rRKh22SJefUvdYAclzijqJut/GTf fN+TBawvJxP2S9Us2FkrUYOWewIDAQABo4IClTCCApEwHQYDVR0OBBYEFD4f3kjQ JY59Pom2DSU5pKfCm5B9MB8GA1UdIwQYMBaAFBEQMQ4PgEZ3A9hHf7PuJfHYiI6e MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTk1OC9GREVGRDczNjRC RDYxMUU1QTdDQTMwMzNDNEY5QUUwMi9FUkF4RGctQVJuY0QyRWRfcy00bDhkaUlq cDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0VSQXhEZy1BUm5jRDJFZF9zLTRsOGRpSWpwNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE5NTgvRkRFRkQ3MzY0QkQ2MTFFNUE3Q0EzMDMzQzRGOUFFMDIvRDI3QUU0QjI3 RTk1MTFFQ0E5MTMyQTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACI5JAwDQYJKoZIhvcNAQELBQADggEBAF0a7bnrCccIN7rC FpMwfX8gwIek2zctmybbYaJgKvfjjQEX1CQupIS2Bv9oU4JP3T39hSRNrRWyqi+p lDNbOsgQO4A9uO2ek9KBvfq1bjzAJbZos1qKHp4WMrSkC/nFxY92o4dwO5SsU1Fq 2IXtR0h/6cPY5a5yRlhNKAOyaQRgAfLp8FR8lW1DEljF2jvWtsrJJlQQ6ilq01au AgYGxe1vxvW5sfDN8FqqPHj2TWxkl1an8QnWLsNOLNgBrDBKBYtJnV7eS6rfgmTk YAk8THk0OIfMfjA/Uh3P54F2ghtjzHtBdRzd9cCqFC1wRB8J5VrgbiVFRpbw+dK6 N/3gPdo= -----END CERTIFICATE-----Generated at Thu Jul 3 02:00:55 2025 by rpki-client