$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/495324CA39CB11EBB2F08020C4F9AE02.roa File: 495324CA39CB11EBB2F08020C4F9AE02.roa (raw, json) Hash identifier: HTyyzc4XtgSz/IIMfSzZJ+tCNDi1E/skEpatmhSWJ4M= Subject key identifier: 74:76:F8:65:11:6B:98:65:38:78:DA:95:83:13:7B:03:FD:F8:E8:F8 Certificate issuer: /CN=A917E0A8/serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Certificate serial: 0A94 Authority key identifier: 7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/495324CA39CB11EBB2F08020C4F9AE02.roa Signing time: Wed 30 Apr 2025 19:29:40 +0000 ROA not before: Wed 30 Apr 2025 19:29:40 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55720 IP address blocks: 203.25.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 21 May 2025 19:47:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2708 (0xa94) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0A8, serialNumber=7ACE6DA35FB6A4A9F6F9970C18BCAF5B2748119F Validity Not Before: Apr 30 19:29:40 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68127a23-be68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:72:60:9a:bc:12:46:e0:4a:b9:f1:9c:39:bc: 85:8d:f8:86:c0:36:1e:3e:d5:4b:af:cb:8f:b3:b0: e2:f9:ce:57:d8:8f:c2:f3:e0:a5:a9:21:15:30:31: e8:4c:e4:05:47:83:cf:8c:68:20:66:9a:f2:dd:34: 57:8e:83:91:cf:93:94:0e:2d:fb:39:66:73:85:99: 28:21:c2:f5:c5:33:d6:ce:69:2c:80:25:c9:e4:c7: 04:05:d0:33:e1:a6:75:e2:28:24:6b:ae:4b:08:08: 34:04:d5:e1:fa:c4:28:07:de:f4:7f:68:3d:a3:51: d3:2f:35:d7:43:5f:82:6f:5a:5c:15:1c:b4:06:dc: 42:b2:a8:8e:0f:97:86:8b:5d:ba:76:50:39:c2:40: 93:b7:3a:c7:d3:d0:73:6f:a9:67:83:b6:55:09:a7: 11:c3:8f:4b:4f:2f:b2:b1:75:c4:15:ad:c7:8f:b1: 33:4f:1a:4e:dc:8a:4b:a7:4d:be:5e:71:b3:ed:ba: 5f:71:fd:44:2e:ad:10:db:cd:64:71:1e:03:25:5f: 19:41:8a:be:ab:f0:f8:39:2e:bd:7f:04:53:f1:b8: 54:dc:75:bf:78:a5:64:76:0c:b7:01:9f:48:a1:5b: 30:78:56:65:de:a0:4e:d8:28:19:d8:69:f4:e3:c8: 61:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:76:F8:65:11:6B:98:65:38:78:DA:95:83:13:7B:03:FD:F8:E8:F8 X509v3 Authority Key Identifier: keyid:7A:CE:6D:A3:5F:B6:A4:A9:F6:F9:97:0C:18:BC:AF:5B:27:48:11:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/es5to1-2pKn2-ZcMGLyvWydIEZ8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/es5to1-2pKn2-ZcMGLyvWydIEZ8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0A8/A059AF8A640D11EAB6395571C4F9AE02/495324CA39CB11EBB2F08020C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.25.119.0/24 Signature Algorithm: sha256WithRSAEncryption 33:b1:1a:6a:29:d2:d5:73:60:f0:6b:99:a5:cd:4e:91:2c:de: 81:88:6b:a7:78:a0:6e:33:99:7d:08:43:34:f8:34:fa:cf:6c: 8f:6c:5c:46:ed:03:ce:92:70:5e:b1:74:dc:bb:14:cf:0d:2d: 15:b8:b7:da:aa:6d:5e:92:5e:b7:69:d3:84:04:25:cc:57:b5: 56:d2:0e:7f:e7:a1:6a:e5:1b:0d:b4:a7:0b:b3:2c:95:c3:b5: 80:26:ca:b4:b3:eb:f8:dd:64:36:ff:9d:ea:95:23:6d:72:e0: 00:74:67:78:77:ce:70:24:0e:96:75:5f:d4:00:76:94:0d:15: 25:18:8f:5f:b2:b4:f2:92:c6:58:31:a6:1b:8d:57:b2:fd:c0: 50:0e:98:3c:3f:a2:f9:2c:61:47:94:05:c6:f2:3f:65:03:51: 1d:fd:74:db:1c:e7:8e:7a:e2:b3:28:d3:a4:50:e8:c1:4d:6c: b2:bc:db:8b:8e:a6:c1:0f:78:25:4b:33:db:4e:33:34:9b:5c: 5d:f4:e8:16:59:3c:2b:51:49:91:fd:dd:d6:f3:99:d5:3e:f4: 76:79:73:9d:c4:ae:48:be:c0:61:1b:15:96:50:35:9c:f7:38: 72:49:54:37:6c:30:73:c3:09:03:c6:2c:28:f7:e8:19:92:57: 07:18:7d:19 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0UwQTgxMTAvBgNVBAUTKDdBQ0U2REEzNUZCNkE0QTlGNkY5OTcwQzE4QkNBRjVC Mjc0ODExOUYwHhcNMjUwNDMwMTkyOTQwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyN2EyMy1iZTY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0nJgmrwSRuBKufGcObyFjfiGwDYePtVLr8uPs7Di+c5X2I/C8+ClqSEVMDHo TOQFR4PPjGggZpry3TRXjoORz5OUDi37OWZzhZkoIcL1xTPWzmksgCXJ5McEBdAz 4aZ14igka65LCAg0BNXh+sQoB970f2g9o1HTLzXXQ1+Cb1pcFRy0BtxCsqiOD5eG i126dlA5wkCTtzrH09Bzb6lng7ZVCacRw49LTy+ysXXEFa3Hj7EzTxpO3IpLp02+ XnGz7bpfcf1ELq0Q281kcR4DJV8ZQYq+q/D4OS69fwRT8bhU3HW/eKVkdgy3AZ9I oVsweFZl3qBO2CgZ2Gn048hhuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHR2+GUR a5hlOHjalYMTewP9+Oj4MB8GA1UdIwQYMBaAFHrObaNftqSp9vmXDBi8r1snSBGf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTBBOC9BMDU5QUY4QTY0 MEQxMUVBQjYzOTU1NzFDNEY5QUUwMi9lczV0bzEtMnBLbjItWmNNR0x5dld5ZElF WjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VzNXRvMS0ycEtuMi1aY01HTHl2V3lkSUVaOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0UwQTgvQTA1OUFGOEE2NDBEMTFFQUI2Mzk1NTcxQzRGOUFFMDIvNDk1MzI0Q0Ez OUNCMTFFQkIyRjA4MDIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLGXcwDQYJKoZIhvcNAQELBQADggEBADOxGmop0tVzYPBr maXNTpEs3oGIa6d4oG4zmX0IQzT4NPrPbI9sXEbtA86ScF6xdNy7FM8NLRW4t9qq bV6SXrdp04QEJcxXtVbSDn/noWrlGw20pwuzLJXDtYAmyrSz6/jdZDb/neqVI21y 4AB0Z3h3znAkDpZ1X9QAdpQNFSUYj1+ytPKSxlgxphuNV7L9wFAOmDw/ovksYUeU BcbyP2UDUR39dNsc54564rMo06RQ6MFNbLK824uOpsEPeCVLM9tOMzSbXF306BZZ PCtRSZH93dbzmdU+9HZ5c53Erki+wGEbFZZQNZz3OHJJVDdsMHPDCQPGLCj36BmS VwcYfRk= -----END CERTIFICATE-----Generated at Fri May 16 10:52:56 2025 by rpki-client