$ rpki-client -vvf rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/70783ACCAF3411E99DF2F83EC4F9AE02.roa File: 70783ACCAF3411E99DF2F83EC4F9AE02.roa (raw, json) Hash identifier: zDcQXuAykU10DhyikYZPwzsk10KGNkvQLJMhbZSIlBE= Subject key identifier: C8:CA:50:7C:A2:05:10:06:C6:D6:8C:2E:DF:21:96:BB:7E:83:A4:B9 Certificate issuer: /CN=A91F77FC/serialNumber=ABA4C394C8B9BD151B3B389639B8C6FF807049F2 Certificate serial: 0E09 Authority key identifier: AB:A4:C3:94:C8:B9:BD:15:1B:3B:38:96:39:B8:C6:FF:80:70:49:F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6TDlMi5vRUbOziWObjG_4BwSfI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/70783ACCAF3411E99DF2F83EC4F9AE02.roa Signing time: Wed 18 Jun 2025 18:21:17 +0000 ROA not before: Wed 18 Jun 2025 18:21:17 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134099 IP address blocks: 202.36.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.crl rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6TDlMi5vRUbOziWObjG_4BwSfI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 09 Jul 2025 18:03:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3593 (0xe09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F77FC, serialNumber=ABA4C394C8B9BD151B3B389639B8C6FF807049F2 Validity Not Before: Jun 18 18:21:17 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6853039d-c795 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:dd:d5:f1:69:99:86:33:da:0c:5a:ed:31:0f: ff:0c:04:a1:32:bc:34:98:58:d9:ac:09:97:c9:7c: 22:d5:87:c5:74:46:9b:bc:dc:28:6c:4f:b3:1f:ad: 5b:79:e1:22:b0:7d:53:29:26:88:4f:e9:3b:36:98: 52:6d:35:6e:c9:52:01:b5:cf:2e:fa:8b:7b:8b:fe: b8:38:fd:8f:59:d8:59:37:fb:39:1e:a0:30:13:0b: d7:1f:b5:04:81:12:3b:ef:8c:61:64:da:3f:c3:98: 43:fe:e3:68:6a:44:88:10:ec:c2:58:fc:d3:35:ca: a1:dd:f4:3a:c9:40:91:ac:da:2b:de:8b:58:72:c1: 97:16:03:0c:0e:6d:45:46:6d:a1:da:e3:8d:34:45: b1:1b:3b:fe:17:5a:85:c2:11:91:38:72:87:d6:72: 2d:30:82:2f:ee:22:93:c4:25:39:98:91:eb:ae:5e: 68:1f:07:d3:38:ef:d3:ec:1e:31:ef:49:41:e3:32: 01:af:68:3a:ef:a5:c9:d2:29:00:70:cf:05:0d:c4: 88:53:d5:0e:7e:c1:10:30:bf:8d:d0:14:00:f1:8d: ce:ab:e6:ac:f9:ba:d2:ff:21:07:c7:bb:76:37:87: a1:e6:57:65:1d:2f:e0:2a:b2:12:a8:d6:6e:f8:93: 19:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:CA:50:7C:A2:05:10:06:C6:D6:8C:2E:DF:21:96:BB:7E:83:A4:B9 X509v3 Authority Key Identifier: keyid:AB:A4:C3:94:C8:B9:BD:15:1B:3B:38:96:39:B8:C6:FF:80:70:49:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/q6TDlMi5vRUbOziWObjG_4BwSfI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q6TDlMi5vRUbOziWObjG_4BwSfI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F77FC/FED90156AF3011E9AEE13E34C4F9AE02/70783ACCAF3411E99DF2F83EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.47.0/24 Signature Algorithm: sha256WithRSAEncryption 52:80:3d:30:af:9d:3c:90:84:fa:45:63:4c:48:96:ea:2d:ce: e3:24:44:a1:31:d3:e3:57:90:15:96:0e:ae:7c:69:81:08:6a: 64:59:cf:ca:d8:8a:54:5e:ce:69:ae:fe:10:d8:bf:d1:40:f4: b4:3e:ce:cb:42:58:75:e2:bc:b8:19:a1:8b:20:9b:ab:ef:60: 64:0e:67:05:48:9b:e0:d1:fc:a0:ba:b6:b7:ff:5e:18:04:ad: c4:29:52:3f:0b:ea:f0:6f:43:3d:c9:84:0e:d1:8c:a2:97:85: f7:a8:7c:5b:91:c9:33:b8:fe:c2:22:f1:22:fd:bc:10:4c:d0: 86:4d:1f:28:88:6c:22:a2:67:3d:d4:7e:3c:6c:38:c1:9f:93: 11:db:b2:80:63:a2:25:96:6d:e6:73:96:00:40:4c:b5:66:41: 8a:39:5b:91:ec:59:58:1f:36:0c:14:bf:38:03:ac:3c:b5:ac: 05:81:d6:d0:f0:af:7f:16:63:67:4b:17:e8:ad:19:7c:d3:4b: 48:15:dd:42:7a:6c:f7:2f:1b:04:67:b5:39:ba:18:92:4e:0f: fd:41:06:d2:ea:64:35:fc:01:46:01:08:77:40:f1:a6:2d:b9: 64:05:fe:2a:b7:3a:8a:6c:fe:5d:95:2b:bb:62:3e:3b:f0:1c: 43:6f:b8:a9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDgkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjc3RkMxMTAvBgNVBAUTKEFCQTRDMzk0QzhCOUJEMTUxQjNCMzg5NjM5QjhDNkZG ODA3MDQ5RjIwHhcNMjUwNjE4MTgyMTE3WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUzMDM5ZC1jNzk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvN3V8WmZhjPaDFrtMQ//DAShMrw0mFjZrAmXyXwi1YfFdEabvNwobE+zH61b eeEisH1TKSaIT+k7NphSbTVuyVIBtc8u+ot7i/64OP2PWdhZN/s5HqAwEwvXH7UE gRI774xhZNo/w5hD/uNoakSIEOzCWPzTNcqh3fQ6yUCRrNor3otYcsGXFgMMDm1F Rm2h2uONNEWxGzv+F1qFwhGROHKH1nItMIIv7iKTxCU5mJHrrl5oHwfTOO/T7B4x 70lB4zIBr2g676XJ0ikAcM8FDcSIU9UOfsEQML+N0BQA8Y3Oq+as+brS/yEHx7t2 N4eh5ldlHS/gKrISqNZu+JMZYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMjKUHyi BRAGxtaMLt8hlrt+g6S5MB8GA1UdIwQYMBaAFKukw5TIub0VGzs4ljm4xv+AcEny MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNzdGQy9GRUQ5MDE1NkFG MzAxMUU5QUVFMTNFMzRDNEY5QUUwMi9xNlREbE1pNXZSVWJPemlXT2JqR180QndT ZkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E2VERsTWk1dlJVYk96aVdPYmpHXzRCd1NmSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjc3RkMvRkVEOTAxNTZBRjMwMTFFOUFFRTEzRTM0QzRGOUFFMDIvNzA3ODNBQ0NB RjM0MTFFOTlERjJGODNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJC8wDQYJKoZIhvcNAQELBQADggEBAFKAPTCvnTyQhPpF Y0xIluotzuMkRKEx0+NXkBWWDq58aYEIamRZz8rYilRezmmu/hDYv9FA9LQ+zstC WHXivLgZoYsgm6vvYGQOZwVIm+DR/KC6trf/XhgErcQpUj8L6vBvQz3JhA7RjKKX hfeofFuRyTO4/sIi8SL9vBBM0IZNHyiIbCKiZz3UfjxsOMGfkxHbsoBjoiWWbeZz lgBATLVmQYo5W5HsWVgfNgwUvzgDrDy1rAWB1tDwr38WY2dLF+itGXzTS0gV3UJ6 bPcvGwRntTm6GJJOD/1BBtLqZDX8AUYBCHdA8aYtuWQF/iq3Oops/l2VK7tiPjvw HENvuKk= -----END CERTIFICATE-----Generated at Thu Jul 3 16:46:02 2025 by rpki-client