$ rpki-client -vvf rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/D62399042D1E11EE8C614E3EC4F9AE02.roa File: D62399042D1E11EE8C614E3EC4F9AE02.roa (raw, json) Hash identifier: dy7HlTozJjIKYVnOC7Ac5E0oRz65i8VQkjJrYKePISw= Subject key identifier: F5:85:C1:40:94:58:9F:22:10:05:E1:7D:96:78:C9:9A:28:57:94:BB Certificate issuer: /CN=A91853D3/serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Certificate serial: 0535 Authority key identifier: FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/D62399042D1E11EE8C614E3EC4F9AE02.roa Signing time: Tue 06 May 2025 23:33:41 +0000 ROA not before: Tue 06 May 2025 23:33:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55824 IP address blocks: 202.41.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 23:11:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1333 (0x535) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91853D3, serialNumber=FA045C6302B873E88365FA9A021499B4F3C58688 Validity Not Before: May 6 23:33:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681a9c55-d53b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e5:a5:f2:9c:71:97:9f:68:8c:05:a2:48:3f: 29:07:df:eb:b9:13:64:38:d3:5a:96:f2:86:e2:c7: ba:ea:d5:83:f2:f7:76:54:d3:a7:44:81:7b:d8:37: 12:0f:52:6a:a2:1a:01:12:81:56:ca:88:e8:8e:7e: ec:ae:3e:c4:99:a4:1a:ff:66:5f:90:b8:6b:61:ad: 60:25:53:db:2f:9d:da:cf:ef:f5:d1:52:97:f1:ed: 08:de:46:d3:79:9f:2e:58:55:5e:8a:3b:77:b4:d6: b8:64:6a:4b:61:3a:22:09:2b:e4:6d:c6:df:85:d1: 19:48:d2:6e:77:e1:fc:cc:fa:aa:90:c4:9f:a7:f7: 85:18:8f:85:49:70:5f:d2:a1:41:b4:fc:c0:c9:d0: 29:f2:9a:d9:d9:2a:68:49:6f:dd:45:12:b9:f6:6c: 2f:0a:df:98:f9:0f:34:f6:06:c2:e9:c1:48:9c:00: 94:b1:7a:0b:03:2b:5c:ff:6e:49:f7:c1:53:79:19: 57:69:67:38:0c:78:f3:cd:6e:c4:cf:bd:d3:50:17: 7a:8a:8f:33:69:61:29:6f:c3:07:2b:43:a6:cc:f2: 18:90:0f:76:3e:b9:ac:50:1c:5b:bf:bf:44:cd:72: c5:7d:23:e5:9d:26:19:49:2c:76:63:17:40:93:7f: cc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:85:C1:40:94:58:9F:22:10:05:E1:7D:96:78:C9:9A:28:57:94:BB X509v3 Authority Key Identifier: keyid:FA:04:5C:63:02:B8:73:E8:83:65:FA:9A:02:14:99:B4:F3:C5:86:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/-gRcYwK4c-iDZfqaAhSZtPPFhog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-gRcYwK4c-iDZfqaAhSZtPPFhog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91853D3/6EC0E368000A11EC8C287252C4F9AE02/D62399042D1E11EE8C614E3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.41.125.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:bc:49:59:12:f6:da:ad:1b:0c:e3:e1:00:88:7b:9f:4d:2d: a9:25:70:45:ef:84:05:79:bf:6a:3a:da:91:7c:88:18:8a:2f: cf:4f:cf:a8:11:40:fc:66:d4:3c:8f:71:54:98:d9:f6:a1:85: 11:75:ff:b9:4f:37:5f:7e:88:84:03:bf:58:c8:2f:b4:4d:1c: 3a:e4:df:d8:7a:37:51:a4:ef:00:7c:97:ea:c6:52:9c:65:fc: da:df:21:4f:0a:cd:37:17:43:9f:13:ab:1e:be:19:28:ed:ed: 02:f9:a1:4a:8c:c6:ab:f6:22:39:7c:20:9a:56:63:92:7f:0d: 31:ea:ee:d0:4d:95:58:6c:0c:c1:d3:c5:13:3e:08:0f:49:09: a6:06:ec:9c:f5:43:a4:b6:42:dc:5d:5e:8c:40:99:2b:03:9b: eb:14:fd:6f:0e:e1:78:fa:64:ac:ac:db:4e:e4:38:b2:59:52: f0:6b:71:da:e9:45:c6:fd:6c:e0:72:90:ab:a9:4e:d1:1b:82: fb:7b:e6:21:ba:0c:cf:c5:50:5d:bc:50:ed:59:29:fa:c1:b1: 0a:eb:9d:00:c5:a3:df:b4:5d:23:13:c1:76:36:74:ea:c1:33: b9:af:a7:45:b5:22:80:d8:40:8e:6e:23:8a:e2:5f:be:fa:e0: 6e:31:1f:d7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBTUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODUzRDMxMTAvBgNVBAUTKEZBMDQ1QzYzMDJCODczRTg4MzY1RkE5QTAyMTQ5OUI0 RjNDNTg2ODgwHhcNMjUwNTA2MjMzMzQxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhOWM1NS1kNTNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3eWl8pxxl59ojAWiSD8pB9/ruRNkONNalvKG4se66tWD8vd2VNOnRIF72DcS D1JqohoBEoFWyojojn7srj7EmaQa/2ZfkLhrYa1gJVPbL53az+/10VKX8e0I3kbT eZ8uWFVeijt3tNa4ZGpLYToiCSvkbcbfhdEZSNJud+H8zPqqkMSfp/eFGI+FSXBf 0qFBtPzAydAp8prZ2SpoSW/dRRK59mwvCt+Y+Q809gbC6cFInACUsXoLAytc/25J 98FTeRlXaWc4DHjzzW7Ez73TUBd6io8zaWEpb8MHK0OmzPIYkA92PrmsUBxbv79E zXLFfSPlnSYZSSx2YxdAk3/M4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPWFwUCU WJ8iEAXhfZZ4yZooV5S7MB8GA1UdIwQYMBaAFPoEXGMCuHPog2X6mgIUmbTzxYaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NTNEMy82RUMwRTM2ODAw MEExMUVDOEMyODcyNTJDNEY5QUUwMi8tZ1JjWXdLNGMtaURaZnFhQWhTWnRQUEZo b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy1nUmNZd0s0Yy1pRFpmcWFBaFNadFBQRmhvZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODUzRDMvNkVDMEUzNjgwMDBBMTFFQzhDMjg3MjUyQzRGOUFFMDIvRDYyMzk5MDQy RDFFMTFFRThDNjE0RTNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKKX0wDQYJKoZIhvcNAQELBQADggEBAIq8SVkS9tqtGwzj 4QCIe59NLaklcEXvhAV5v2o62pF8iBiKL89Pz6gRQPxm1DyPcVSY2fahhRF1/7lP N19+iIQDv1jIL7RNHDrk39h6N1Gk7wB8l+rGUpxl/NrfIU8KzTcXQ58Tqx6+GSjt 7QL5oUqMxqv2Ijl8IJpWY5J/DTHq7tBNlVhsDMHTxRM+CA9JCaYG7Jz1Q6S2Qtxd XoxAmSsDm+sU/W8O4Xj6ZKys207kOLJZUvBrcdrpRcb9bOBykKupTtEbgvt75iG6 DM/FUF28UO1ZKfrBsQrrnQDFo9+0XSMTwXY2dOrBM7mvp0W1IoDYQI5uI4riX776 4G4xH9c= -----END CERTIFICATE-----Generated at Mon May 12 11:19:37 2025 by rpki-client