$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/FACC58F855C411E9A0FEF781C4F9AE02.roa File: FACC58F855C411E9A0FEF781C4F9AE02.roa (raw, json) Hash identifier: 393XehekPeHbrV2Jp2q+bd44TtCVra3Kkby1+LNFgLs= Subject key identifier: 54:69:A5:9E:2E:10:44:80:6C:0B:1E:D6:12:C9:BF:2E:0B:AB:0A:DE Certificate issuer: /CN=A91EF19E/serialNumber=2B5375F2D0607546D51F6511F61BC4A18974FDE2 Certificate serial: 34CD Authority key identifier: 2B:53:75:F2:D0:60:75:46:D5:1F:65:11:F6:1B:C4:A1:89:74:FD:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/FACC58F855C411E9A0FEF781C4F9AE02.roa Signing time: Mon 30 Jun 2025 15:00:23 +0000 ROA not before: Mon 30 Jun 2025 15:00:23 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 7575 IP address blocks: 113.197.0.0/20 maxlen: 24 182.255.96.0/19 maxlen: 24 202.0.98.0/24 maxlen: 24 202.6.112.0/24 maxlen: 24 202.158.192.0/19 maxlen: 24 203.5.76.0/24 maxlen: 24 203.13.161.0/24 maxlen: 24 203.19.110.0/24 maxlen: 24 203.21.37.0/24 maxlen: 24 2001:388::/32 maxlen: 40 2001:388:cf85::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.crl rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Jul 2025 15:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13517 (0x34cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF19E, serialNumber=2B5375F2D0607546D51F6511F61BC4A18974FDE2 Validity Not Before: Jun 30 15:00:23 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6862a686-b5d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:91:69:47:0c:a4:de:d8:07:2d:2c:fb:6b:59: fe:ba:ef:bf:8f:74:05:fb:0e:4d:99:8f:25:7b:03: d8:e6:d6:63:7b:ae:a5:45:1d:dd:41:98:d4:8c:ba: 36:f7:06:e8:ab:3d:21:44:8a:d1:64:33:da:09:53: 9d:56:f5:af:56:27:3c:7d:47:49:0d:fa:5e:65:bc: 72:b4:7a:d5:30:5e:86:91:e9:2e:be:a8:9a:b1:f1: dd:67:b8:7b:19:c3:e4:75:74:90:f9:c9:9a:1f:ef: 64:01:64:89:33:17:a5:71:49:c0:a5:94:34:b2:83: bb:2a:e8:84:9a:10:88:04:4c:eb:9d:ab:e1:17:47: bc:5e:90:ef:88:20:e4:d1:c8:5c:85:ba:8c:26:ff: 1b:09:e4:15:2c:d4:e6:ee:c7:77:ac:78:dd:60:f4: ed:1d:f1:60:da:33:16:14:80:82:a6:dc:34:9e:f4: 4c:5f:b0:65:07:7f:14:d5:b2:2d:d3:35:84:3b:d2: 6f:a1:4e:2d:fa:e1:37:35:a2:86:4b:76:86:ea:35: 17:88:ce:2a:e4:11:9b:72:e3:a4:0d:52:19:e1:0f: da:5f:1c:d3:cd:8c:89:3e:d4:53:65:6e:e7:08:e7: 5e:d2:76:b5:fd:df:66:9f:50:6d:33:7b:43:42:79: 1f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:69:A5:9E:2E:10:44:80:6C:0B:1E:D6:12:C9:BF:2E:0B:AB:0A:DE X509v3 Authority Key Identifier: keyid:2B:53:75:F2:D0:60:75:46:D5:1F:65:11:F6:1B:C4:A1:89:74:FD:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/K1N18tBgdUbVH2UR9hvEoYl0_eI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1N18tBgdUbVH2UR9hvEoYl0_eI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF19E/05C4C0A41D8411E2B0C5A3D908B02CD2/FACC58F855C411E9A0FEF781C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 113.197.0.0/20 182.255.96.0/19 202.0.98.0/24 202.6.112.0/24 202.158.192.0/19 203.5.76.0/24 203.13.161.0/24 203.19.110.0/24 203.21.37.0/24 IPv6: 2001:388::/32 Signature Algorithm: sha256WithRSAEncryption 20:1b:9c:1e:01:13:3c:b9:7e:e8:29:a5:6a:34:e8:7c:fa:b3: 5e:cb:52:42:f2:82:1e:bc:98:00:0b:ef:a0:2f:b6:4b:1d:00: 22:77:64:2b:89:01:01:82:33:b5:2e:68:f2:a1:2b:b7:0a:b2: f7:4e:44:66:39:fb:1a:3e:ef:29:f2:da:fe:19:e2:92:1e:24: bc:d1:c9:1f:72:18:bf:1b:4b:e8:1d:4e:bf:71:07:b9:d3:2b: e3:b5:6b:4d:f9:6d:4f:ab:67:90:44:7d:06:c2:a2:b5:04:a2: 4d:1b:91:0d:0b:59:d2:53:e6:9e:60:70:09:12:8b:5b:c2:13: 0b:0a:97:37:f7:49:9a:84:35:6c:42:6e:a2:3b:da:d9:ae:d2: aa:4c:b7:d0:df:96:a6:ab:fa:dd:c4:f8:39:a9:ad:f5:16:1d: a1:31:30:1c:c4:9f:a5:ba:b5:8c:8a:c5:45:3e:e5:bd:f4:8a: 53:2a:bf:fa:0f:73:bc:dc:f0:81:ca:44:71:51:23:42:38:e8: 71:bf:28:7c:4e:57:29:b9:8d:47:dd:ba:2a:7e:ba:c1:b1:4f: b9:4d:d7:6f:7e:f5:8b:99:d4:33:66:ee:7a:d0:24:2f:be:24: 24:e5:57:d4:fa:95:2f:dc:7a:8a:19:8c:00:9d:2d:81:9c:0c: dc:eb:1a:1d -----BEGIN CERTIFICATE----- MIIFsDCCBJigAwIBAgICNM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYxOUUxMTAvBgNVBAUTKDJCNTM3NUYyRDA2MDc1NDZENTFGNjUxMUY2MUJDNEEx ODk3NEZERTIwHhcNMjUwNjMwMTUwMDIzWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODYyYTY4Ni1iNWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8ZFpRwyk3tgHLSz7a1n+uu+/j3QF+w5NmY8lewPY5tZje66lRR3dQZjUjLo2 9wboqz0hRIrRZDPaCVOdVvWvVic8fUdJDfpeZbxytHrVMF6GkekuvqiasfHdZ7h7 GcPkdXSQ+cmaH+9kAWSJMxelcUnApZQ0soO7KuiEmhCIBEzrnavhF0e8XpDviCDk 0chchbqMJv8bCeQVLNTm7sd3rHjdYPTtHfFg2jMWFICCptw0nvRMX7BlB38U1bIt 0zWEO9JvoU4t+uE3NaKGS3aG6jUXiM4q5BGbcuOkDVIZ4Q/aXxzTzYyJPtRTZW7n COde0na1/d9mn1BtM3tDQnkfBwIDAQABo4IC1DCCAtAwHQYDVR0OBBYEFFRppZ4u EESAbAse1hLJvy4LqwreMB8GA1UdIwQYMBaAFCtTdfLQYHVG1R9lEfYbxKGJdP3i MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjE5RS8wNUM0QzBBNDFE ODQxMUUyQjBDNUEzRDkwOEIwMkNEMi9LMU4xOHRCZ2RVYlZIMlVSOWh2RW9ZbDBf ZUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxTjE4dEJnZFViVkgyVVI5aHZFb1lsMF9lSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUYxOUUvMDVDNEMwQTQxRDg0MTFFMkIwQzVBM0Q5MDhCMDJDRDIvRkFDQzU4Rjg1 NUM0MTFFOUEwRkVGNzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwXgYIKwYBBQUHAQcBAf8E TzBNMDwEAgABMDYDBARxxQADBAW2/2ADBADKAGIDBADKBnADBAXKnsADBADLBUwD BADLDaEDBADLE24DBADLFSUwDQQCAAIwBwMFACABA4gwDQYJKoZIhvcNAQELBQAD ggEBACAbnB4BEzy5fugppWo06Hz6s17LUkLygh68mAAL76AvtksdACJ3ZCuJAQGC M7UuaPKhK7cKsvdORGY5+xo+7yny2v4Z4pIeJLzRyR9yGL8bS+gdTr9xB7nTK+O1 a035bU+rZ5BEfQbCorUEok0bkQ0LWdJT5p5gcAkSi1vCEwsKlzf3SZqENWxCbqI7 2tmu0qpMt9Dflqar+t3E+DmprfUWHaExMBzEn6W6tYyKxUU+5b30ilMqv/oPc7zc 8IHKRHFRI0I46HG/KHxOVym5jUfduip+usGxT7lN129+9YuZ1DNm7nrQJC++JCTl V9T6lS/ceooZjACdLYGcDNzrGh0= -----END CERTIFICATE-----Generated at Tue Jul 1 11:48:57 2025 by rpki-client