$ rpki-client -vvf rpki.apnic.net/member_repository/A91232C2/1E7FFF9AF0CD11EE881D3C16C4F9AE02/85035A64F0CD11EE8CC1FC16C4F9AE02.roa File: 85035A64F0CD11EE8CC1FC16C4F9AE02.roa (raw, json) Hash identifier: 9ZKq+nwt9P9nCI+BvZS/E6A1E5sodaBd/S4ZxhUXp0M= Subject key identifier: EE:C6:45:9F:9E:DC:89:1B:EC:84:84:F7:3C:E3:48:11:E6:97:EF:B6 Certificate issuer: /CN=A91232C2/serialNumber=6FE8C1618FFAFFB2CCFF569E8EA915DAFA4D4E36 Certificate serial: CF Authority key identifier: 6F:E8:C1:61:8F:FA:FF:B2:CC:FF:56:9E:8E:A9:15:DA:FA:4D:4E:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b-jBYY_6_7LM_1aejqkV2vpNTjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91232C2/1E7FFF9AF0CD11EE881D3C16C4F9AE02/85035A64F0CD11EE8CC1FC16C4F9AE02.roa Signing time: Fri 09 May 2025 05:16:18 +0000 ROA not before: Fri 09 May 2025 05:16:18 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55482 IP address blocks: 203.32.86.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91232C2/1E7FFF9AF0CD11EE881D3C16C4F9AE02/b-jBYY_6_7LM_1aejqkV2vpNTjY.crl rsync://rpki.apnic.net/member_repository/A91232C2/1E7FFF9AF0CD11EE881D3C16C4F9AE02/b-jBYY_6_7LM_1aejqkV2vpNTjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b-jBYY_6_7LM_1aejqkV2vpNTjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 05:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91232C2, serialNumber=6FE8C1618FFAFFB2CCFF569E8EA915DAFA4D4E36 Validity Not Before: May 9 05:16:18 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681d8fa2-c57b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:4e:6c:59:71:db:63:36:80:14:a6:72:51:45: ef:5b:d7:03:be:14:52:d4:e5:15:d3:a9:d2:31:2b: fa:8e:ae:a6:26:2d:83:f6:c4:aa:f0:a0:6c:b1:23: 24:0c:af:c5:56:8b:e4:dd:0a:09:fd:40:cd:c3:e5: 17:35:e5:18:72:b1:24:eb:61:f5:12:5b:3c:7d:36: a6:c4:18:9f:64:19:11:cb:c5:ef:11:84:2d:36:37: 5c:56:7c:42:16:7a:e9:59:95:dc:a1:11:63:09:13: aa:4f:83:e3:68:f7:e2:9f:a6:e4:b9:50:a0:3d:2f: 9d:5b:64:24:3f:9d:0c:7a:3d:a8:35:49:96:3a:02: 46:23:67:8d:03:b0:f7:1e:bf:81:14:98:28:11:b0: 72:38:5e:6c:f1:86:bb:3e:90:7d:19:55:b9:0a:ee: 57:b0:25:19:27:ff:73:e7:3e:51:a2:1b:cb:ee:98: e1:3d:0e:30:ab:1d:b0:af:0f:f8:c9:90:6b:ca:02: c6:5a:8d:37:92:a1:b5:0f:02:2e:35:73:d4:19:e5: 05:d6:25:44:a1:93:26:c1:8f:51:93:88:5c:fd:e3: c0:4a:52:54:45:48:57:aa:66:d3:7f:86:0d:c0:e2: 0d:13:11:e3:07:8f:13:fb:23:bf:29:0f:13:0a:97: 2a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:C6:45:9F:9E:DC:89:1B:EC:84:84:F7:3C:E3:48:11:E6:97:EF:B6 X509v3 Authority Key Identifier: keyid:6F:E8:C1:61:8F:FA:FF:B2:CC:FF:56:9E:8E:A9:15:DA:FA:4D:4E:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91232C2/1E7FFF9AF0CD11EE881D3C16C4F9AE02/b-jBYY_6_7LM_1aejqkV2vpNTjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b-jBYY_6_7LM_1aejqkV2vpNTjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91232C2/1E7FFF9AF0CD11EE881D3C16C4F9AE02/85035A64F0CD11EE8CC1FC16C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.32.86.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:e2:f0:8a:3f:4e:0e:a6:da:90:df:ac:36:f7:b3:f8:a8:6b: 8c:ed:72:f5:f2:c8:92:07:6e:a8:46:9c:44:c6:f2:79:6e:eb: 48:ba:d0:28:4a:c3:55:fe:b1:e8:3c:bf:46:f9:c2:a6:35:89: 01:ef:8e:7f:bc:9d:ea:c8:06:11:00:51:0e:c7:0c:c7:ae:c5: b7:e1:f0:91:bd:ef:cb:d6:25:b2:eb:e6:74:6c:e4:cd:70:a3: ce:62:e9:a6:36:18:b5:22:85:df:81:21:ff:09:d6:ff:22:bb: f9:4e:ac:d6:cc:bc:c0:4b:d2:7c:4b:d5:f6:b7:3c:8c:89:db: 28:15:ec:98:03:5b:5c:c5:a1:64:93:88:97:7a:8f:78:a3:85: 63:1f:09:8a:5a:0b:59:d6:13:96:bb:21:be:0b:1a:3c:e8:48: b4:35:af:c6:59:73:31:3f:08:0b:72:36:ef:1e:8c:81:35:ef: d5:d8:f9:b4:57:49:bd:a1:15:12:ee:07:37:c7:2c:e4:b6:b7: 7f:41:fb:1c:f1:cb:6d:09:ba:ac:06:f1:56:85:76:34:ca:69: ea:b9:79:00:e5:a2:79:e9:b9:6e:5c:b6:a3:45:99:47:2e:3a: fa:28:dc:88:c0:d5:0f:e0:3e:8b:fd:af:36:e1:76:79:c9:02: 49:af:fc:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMyQzIxMTAvBgNVBAUTKDZGRThDMTYxOEZGQUZGQjJDQ0ZGNTY5RThFQTkxNURB RkE0RDRFMzYwHhcNMjUwNTA5MDUxNjE4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFkOGZhMi1jNTdiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApU5sWXHbYzaAFKZyUUXvW9cDvhRS1OUV06nSMSv6jq6mJi2D9sSq8KBssSMk DK/FVovk3QoJ/UDNw+UXNeUYcrEk62H1Els8fTamxBifZBkRy8XvEYQtNjdcVnxC FnrpWZXcoRFjCROqT4PjaPfin6bkuVCgPS+dW2QkP50Mej2oNUmWOgJGI2eNA7D3 Hr+BFJgoEbByOF5s8Ya7PpB9GVW5Cu5XsCUZJ/9z5z5RohvL7pjhPQ4wqx2wrw/4 yZBrygLGWo03kqG1DwIuNXPUGeUF1iVEoZMmwY9Rk4hc/ePASlJURUhXqmbTf4YN wOINExHjB48T+yO/KQ8TCpcqgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFO7GRZ+e 3Ikb7ISE9zzjSBHml++2MB8GA1UdIwQYMBaAFG/owWGP+v+yzP9Wno6pFdr6TU42 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzJDMi8xRTdGRkY5QUYw Q0QxMUVFODgxRDNDMTZDNEY5QUUwMi9iLWpCWVlfNl83TE1fMWFlanFrVjJ2cE5U alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ItakJZWV82XzdMTV8xYWVqcWtWMnZwTlRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjMyQzIvMUU3RkZGOUFGMENEMTFFRTg4MUQzQzE2QzRGOUFFMDIvODUwMzVBNjRG MENEMTFFRThDQzFGQzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLIFYwDQYJKoZIhvcNAQELBQADggEBAAvi8Io/Tg6m2pDf rDb3s/ioa4ztcvXyyJIHbqhGnETG8nlu60i60ChKw1X+seg8v0b5wqY1iQHvjn+8 nerIBhEAUQ7HDMeuxbfh8JG978vWJbLr5nRs5M1wo85i6aY2GLUihd+BIf8J1v8i u/lOrNbMvMBL0nxL1fa3PIyJ2ygV7JgDW1zFoWSTiJd6j3ijhWMfCYpaC1nWE5a7 Ib4LGjzoSLQ1r8ZZczE/CAtyNu8ejIE179XY+bRXSb2hFRLuBzfHLOS2t39B+xzx y20JuqwG8VaFdjTKaeq5eQDlonnpuW5ctqNFmUcuOvoo3IjA1Q/gPov9rzbhdnnJ Akmv/H4= -----END CERTIFICATE-----Generated at Sun May 11 00:54:59 2025 by rpki-client