$ rpki-client -vvf rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/CFF8393A232C11F0B9CB2044C4F9AE02.roa File: CFF8393A232C11F0B9CB2044C4F9AE02.roa (raw, json) Hash identifier: nfqNeR+bbEfavJF+ova8yLO5QWoKeC1GYyFqfwg0csE= Subject key identifier: 2D:F5:24:91:CA:51:8F:DD:CE:5F:E9:58:8F:C3:0F:78:3A:43:78:6B Certificate issuer: /CN=A917C71E/serialNumber=B59B0566A82A983BDE6DF1C5DE4C582C9BCA8392 Certificate serial: 0BE6 Authority key identifier: B5:9B:05:66:A8:2A:98:3B:DE:6D:F1:C5:DE:4C:58:2C:9B:CA:83:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/CFF8393A232C11F0B9CB2044C4F9AE02.roa Signing time: Sun 27 Apr 2025 05:59:42 +0000 ROA not before: Sun 27 Apr 2025 05:59:42 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 136908 IP address blocks: 117.121.230.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.crl rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 18:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3046 (0xbe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C71E, serialNumber=B59B0566A82A983BDE6DF1C5DE4C582C9BCA8392 Validity Not Before: Apr 27 05:59:42 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=680dc7ce-008e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a6:a1:1f:c2:b4:2e:d9:d9:b6:03:32:e3:c6: 2c:0b:14:6f:1d:cb:16:a0:a4:b6:51:56:cd:89:7e: cc:0c:ad:b5:34:a8:04:03:bf:a8:61:43:7a:81:95: b2:97:3c:84:78:eb:46:b5:27:cd:b1:ae:f5:1f:e2: 55:4c:58:ab:f5:39:75:2d:75:f1:6e:06:3e:38:6f: ea:67:5a:d1:60:64:ed:3d:60:d1:d4:d2:dd:86:4b: db:1c:38:81:41:bc:e0:e7:55:e3:17:d5:6d:03:90: c0:2f:68:e2:e9:cc:a4:11:81:37:ae:72:97:5a:3c: 1d:d4:1d:e8:0f:bf:c4:35:6e:7e:8e:3a:4b:b7:c8: 7d:2a:0b:61:1f:3d:45:40:c0:6d:d8:de:3a:08:e8: e7:db:88:f7:d2:44:3f:66:52:b7:7d:be:5f:17:22: b1:b7:73:c0:93:47:d5:a7:a2:0a:76:88:4a:57:49: 21:2f:4a:5c:86:fb:bc:fe:01:96:5f:3f:b7:69:00: f5:83:1e:94:67:96:61:b5:23:69:cf:b8:f5:0a:03: e3:4c:3d:54:2d:e2:22:43:52:8c:1a:77:44:f1:95: bf:3d:3b:04:4c:6f:f3:93:17:e2:fe:26:dd:ab:a3: eb:9a:8f:c0:9d:5f:a5:90:fa:68:02:5f:b9:3d:e3: e8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:F5:24:91:CA:51:8F:DD:CE:5F:E9:58:8F:C3:0F:78:3A:43:78:6B X509v3 Authority Key Identifier: keyid:B5:9B:05:66:A8:2A:98:3B:DE:6D:F1:C5:DE:4C:58:2C:9B:CA:83:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/tZsFZqgqmDvebfHF3kxYLJvKg5I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tZsFZqgqmDvebfHF3kxYLJvKg5I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C71E/C78E4A721CA811EA8CBB4543C4F9AE02/CFF8393A232C11F0B9CB2044C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.121.230.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:01:95:e9:2e:7d:13:6b:b2:49:7e:dd:3b:c3:72:f3:3f:e0: 05:02:23:64:42:e0:90:c1:1c:6a:4b:e1:04:94:25:fd:80:ba: 90:2c:85:f4:91:0a:60:eb:19:45:f6:25:e5:21:48:7c:81:7b: 7a:22:2b:c7:04:7f:49:c7:3f:ed:fb:34:d5:ff:1c:3e:49:ac: 36:38:3b:94:c1:c5:b1:6a:f9:68:5a:15:76:64:26:db:5c:4a: 8d:08:ee:b9:54:d8:74:53:e3:8e:71:fb:d7:63:6b:b3:5e:b6: 04:a9:37:9a:3d:75:ae:ff:c6:6c:51:e5:fe:1e:b5:a2:04:ca: 0c:2a:9c:4f:e4:64:ce:c6:00:3a:df:e9:ac:c4:c4:c4:9f:7f: 6f:7e:84:db:59:eb:2a:34:69:ea:15:f8:da:eb:3a:2c:c2:f2: 85:17:ff:00:b8:1a:da:e4:d2:4e:ad:7d:eb:66:5a:4e:d4:40: dd:16:3a:99:16:38:37:54:31:61:da:76:5e:f8:7b:6f:e2:7b: 1e:cc:b7:69:c2:c6:74:55:09:2a:56:7b:ff:87:a7:39:1b:65: 75:13:2a:b0:fc:eb:b6:a1:97:62:67:df:19:64:e1:ee:15:9c: 23:0c:71:50:a6:3e:da:4a:3b:da:28:f6:f0:6d:1d:d0:fd:76: e5:94:8b:b4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M3MUUxMTAvBgNVBAUTKEI1OUIwNTY2QTgyQTk4M0JERTZERjFDNURFNEM1ODJD OUJDQTgzOTIwHhcNMjUwNDI3MDU1OTQyWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBkYzdjZS0wMDhlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzqahH8K0LtnZtgMy48YsCxRvHcsWoKS2UVbNiX7MDK21NKgEA7+oYUN6gZWy lzyEeOtGtSfNsa71H+JVTFir9Tl1LXXxbgY+OG/qZ1rRYGTtPWDR1NLdhkvbHDiB Qbzg51XjF9VtA5DAL2ji6cykEYE3rnKXWjwd1B3oD7/ENW5+jjpLt8h9KgthHz1F QMBt2N46COjn24j30kQ/ZlK3fb5fFyKxt3PAk0fVp6IKdohKV0khL0pchvu8/gGW Xz+3aQD1gx6UZ5ZhtSNpz7j1CgPjTD1ULeIiQ1KMGndE8ZW/PTsETG/zkxfi/ibd q6Prmo/AnV+lkPpoAl+5PePoJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFC31JJHK UY/dzl/pWI/DD3g6Q3hrMB8GA1UdIwQYMBaAFLWbBWaoKpg73m3xxd5MWCybyoOS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzcxRS9DNzhFNEE3MjFD QTgxMUVBOENCQjQ1NDNDNEY5QUUwMi90WnNGWnFncW1EdmViZkhGM2t4WUxKdktn NUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rac0ZacWdxbUR2ZWJmSEYza3hZTEp2S2c1SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M3MUUvQzc4RTRBNzIxQ0E4MTFFQThDQkI0NTQzQzRGOUFFMDIvQ0ZGODM5M0Ey MzJDMTFGMEI5Q0IyMDQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB1eeYwDQYJKoZIhvcNAQELBQADggEBAB4BlekufRNrskl+ 3TvDcvM/4AUCI2RC4JDBHGpL4QSUJf2AupAshfSRCmDrGUX2JeUhSHyBe3oiK8cE f0nHP+37NNX/HD5JrDY4O5TBxbFq+WhaFXZkJttcSo0I7rlU2HRT445x+9dja7Ne tgSpN5o9da7/xmxR5f4etaIEygwqnE/kZM7GADrf6azExMSff29+hNtZ6yo0aeoV +NrrOizC8oUX/wC4Gtrk0k6tfetmWk7UQN0WOpkWODdUMWHadl74e2/iex7Mt2nC xnRVCSpWe/+HpzkbZXUTKrD867ahl2Jn3xlk4e4VnCMMcVCmPtpKO9oo9vBtHdD9 duWUi7Q= -----END CERTIFICATE-----Generated at Mon May 12 12:43:37 2025 by rpki-client