$ rpki-client -vvf rpki.apnic.net/member_repository/A917282D/0AC22AC4F8A111EEB0DEFE4FC4F9AE02/1DC7647CF8D811EEBBE6CE09C4F9AE02.roa File: 1DC7647CF8D811EEBBE6CE09C4F9AE02.roa (raw, json) Hash identifier: IP1a/8lP5y1+PqhZxCqrwDfR6kczV/2vje4JuA8lz28= Subject key identifier: 8C:0C:F0:7F:AA:68:9D:50:DC:52:A6:53:50:A8:DF:4B:1C:31:F6:1F Certificate issuer: /CN=A917282D/serialNumber=95228338A85F248230312CF398B24F8119D8232F Certificate serial: CF Authority key identifier: 95:22:83:38:A8:5F:24:82:30:31:2C:F3:98:B2:4F:81:19:D8:23:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSKDOKhfJIIwMSzzmLJPgRnYIy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917282D/0AC22AC4F8A111EEB0DEFE4FC4F9AE02/1DC7647CF8D811EEBBE6CE09C4F9AE02.roa Signing time: Fri 09 May 2025 05:16:30 +0000 ROA not before: Fri 09 May 2025 05:16:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 135337 IP address blocks: 203.134.250.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917282D/0AC22AC4F8A111EEB0DEFE4FC4F9AE02/lSKDOKhfJIIwMSzzmLJPgRnYIy8.crl rsync://rpki.apnic.net/member_repository/A917282D/0AC22AC4F8A111EEB0DEFE4FC4F9AE02/lSKDOKhfJIIwMSzzmLJPgRnYIy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSKDOKhfJIIwMSzzmLJPgRnYIy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:32:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917282D, serialNumber=95228338A85F248230312CF398B24F8119D8232F Validity Not Before: May 9 05:16:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681d8fae-dae8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:95:79:5b:09:e0:f4:0f:84:1c:6c:43:fd:29: e9:61:a6:c8:87:e8:e5:56:3d:21:f3:a7:ce:b4:75: 5a:ea:a6:55:1f:df:cb:c2:2b:60:12:11:fa:34:d6: 9f:c2:c5:5c:f6:0e:2a:d1:54:d3:87:29:db:68:bd: e1:75:4b:b9:77:c7:0e:ce:78:08:c2:7a:42:1e:2e: 5e:dc:70:03:7e:52:2b:1d:28:c7:a1:49:d5:9e:b8: 07:c7:09:a6:62:1f:ef:4e:b8:83:21:22:6c:16:27: fd:90:a6:6d:14:da:4e:99:dd:eb:de:7d:00:f2:86: be:69:b2:2a:a0:56:54:59:97:0a:1f:47:fa:2c:da: 85:7c:d4:43:e3:b0:3d:b8:cb:25:a8:07:76:3c:fd: a2:d1:8e:61:63:1f:4f:12:29:8f:e5:18:47:19:7d: 0e:93:0c:e9:65:7b:b1:95:72:fa:1f:3b:62:de:17: ac:70:37:26:cf:81:f4:16:27:03:f1:9b:67:f7:0b: e8:fc:d5:cb:c9:d9:da:52:da:89:b2:f1:12:53:0f: 08:08:b6:25:e1:dc:8e:e8:6b:a4:4f:3b:ec:4d:54: 79:c8:8d:ab:30:50:ac:2c:9f:7d:ec:14:78:56:fa: a1:82:9a:82:dd:33:09:92:bd:53:07:a1:28:a3:c8: 8f:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:0C:F0:7F:AA:68:9D:50:DC:52:A6:53:50:A8:DF:4B:1C:31:F6:1F X509v3 Authority Key Identifier: keyid:95:22:83:38:A8:5F:24:82:30:31:2C:F3:98:B2:4F:81:19:D8:23:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917282D/0AC22AC4F8A111EEB0DEFE4FC4F9AE02/lSKDOKhfJIIwMSzzmLJPgRnYIy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lSKDOKhfJIIwMSzzmLJPgRnYIy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917282D/0AC22AC4F8A111EEB0DEFE4FC4F9AE02/1DC7647CF8D811EEBBE6CE09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.134.250.0/23 Signature Algorithm: sha256WithRSAEncryption 5e:4f:7b:ba:d4:4b:f6:65:7d:cb:53:a4:c3:6d:b0:e7:d9:54: 6d:07:4d:43:b9:87:49:e5:5f:57:8a:f2:b7:2d:3f:62:37:e0: 02:e6:4c:41:36:12:93:ff:3e:be:7e:78:7b:b7:da:ac:91:83: 57:bf:97:ff:0a:a1:7d:fb:11:d5:d8:b3:90:77:5a:4b:7c:2e: 05:aa:3a:bb:44:c9:16:39:55:b5:6d:63:11:38:a4:87:20:1f: 8f:41:7e:2a:89:19:56:50:ee:b9:e7:66:55:af:8b:bd:56:f3: 34:d7:ef:fe:46:e6:e3:ca:fa:d4:2c:2a:39:1e:b0:18:95:9c: 00:29:ae:6d:e8:b0:17:12:4d:9f:f2:1b:ca:cf:e9:b0:0f:a1: 8e:e3:e0:b1:5c:87:af:16:60:b5:7a:d8:1f:d3:19:09:00:92: d4:8e:ea:7c:c9:16:f3:ea:99:a3:f0:46:d3:82:d2:6a:47:1f: 1b:4a:05:95:9c:c5:75:6f:70:12:2c:11:56:13:aa:a8:75:c2: 9f:09:43:bc:4d:f8:87:23:dd:31:fa:bf:e3:24:b1:53:5a:a9: f7:f5:8f:70:79:de:e1:2f:38:62:dc:72:28:c8:56:47:90:e3: 05:df:a9:42:b1:a8:18:e0:88:a6:9e:bf:be:48:de:20:e1:73: 13:f2:32:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzI4MkQxMTAvBgNVBAUTKDk1MjI4MzM4QTg1RjI0ODIzMDMxMkNGMzk4QjI0Rjgx MTlEODIzMkYwHhcNMjUwNTA5MDUxNjMwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFkOGZhZS1kYWU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu5V5Wwng9A+EHGxD/SnpYabIh+jlVj0h86fOtHVa6qZVH9/LwitgEhH6NNaf wsVc9g4q0VTThynbaL3hdUu5d8cOzngIwnpCHi5e3HADflIrHSjHoUnVnrgHxwmm Yh/vTriDISJsFif9kKZtFNpOmd3r3n0A8oa+abIqoFZUWZcKH0f6LNqFfNRD47A9 uMslqAd2PP2i0Y5hYx9PEimP5RhHGX0OkwzpZXuxlXL6Hzti3hescDcmz4H0FicD 8Ztn9wvo/NXLydnaUtqJsvESUw8ICLYl4dyO6GukTzvsTVR5yI2rMFCsLJ997BR4 VvqhgpqC3TMJkr1TB6Eoo8iPuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIwM8H+q aJ1Q3FKmU1Co30scMfYfMB8GA1UdIwQYMBaAFJUigzioXySCMDEs85iyT4EZ2CMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MjgyRC8wQUMyMkFDNEY4 QTExMUVFQjBERUZFNEZDNEY5QUUwMi9sU0tET0toZkpJSXdNU3p6bUxKUGdSbllJ eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xTS0RPS2hmSklJd01TenptTEpQZ1JuWUl5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzI4MkQvMEFDMjJBQzRGOEExMTFFRUIwREVGRTRGQzRGOUFFMDIvMURDNzY0N0NG OEQ4MTFFRUJCRTZDRTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLhvowDQYJKoZIhvcNAQELBQADggEBAF5Pe7rUS/ZlfctT pMNtsOfZVG0HTUO5h0nlX1eK8rctP2I34ALmTEE2EpP/Pr5+eHu32qyRg1e/l/8K oX37EdXYs5B3Wkt8LgWqOrtEyRY5VbVtYxE4pIcgH49BfiqJGVZQ7rnnZlWvi71W 8zTX7/5G5uPK+tQsKjkesBiVnAAprm3osBcSTZ/yG8rP6bAPoY7j4LFch68WYLV6 2B/TGQkAktSO6nzJFvPqmaPwRtOC0mpHHxtKBZWcxXVvcBIsEVYTqqh1wp8JQ7xN +Icj3TH6v+MksVNaqff1j3B53uEvOGLccijIVkeQ4wXfqUKxqBjgiKaev75I3iDh cxPyMv4= -----END CERTIFICATE-----Generated at Mon May 12 16:33:15 2025 by rpki-client