$ rpki-client -vvf rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/99B6039C215311EA86E1E020C4F9AE02.roa File: 99B6039C215311EA86E1E020C4F9AE02.roa (raw, json) Hash identifier: GBYQ/lKi3z5roPUPwktfDVMLitw965pomXZAG5jfako= Subject key identifier: 48:96:EE:D1:98:00:45:9A:C0:4E:BF:AD:2C:B1:5C:69:2C:19:BB:68 Certificate issuer: /CN=A919136B/serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Certificate serial: 1051 Authority key identifier: E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/99B6039C215311EA86E1E020C4F9AE02.roa Signing time: Mon 12 May 2025 17:49:53 +0000 ROA not before: Mon 12 May 2025 17:49:53 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9825 IP address blocks: 202.59.208.0/22 maxlen: 22 202.59.208.0/24 maxlen: 24 202.59.209.0/24 maxlen: 24 202.59.210.0/24 maxlen: 24 202.59.211.0/24 maxlen: 24 2001:de8:b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 23 May 2025 17:38:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4177 (0x1051) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919136B, serialNumber=E483DAFB6C2B83BD482B6E290A7E405355B52ED9 Validity Not Before: May 12 17:49:53 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682234c1-13d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a4:f4:d5:ec:56:96:9c:57:c6:ed:2d:95:02: 5a:95:6e:9e:86:f6:3f:b0:70:1b:0a:18:94:48:1c: ff:9d:a1:50:95:45:2a:d1:89:e7:12:25:f7:dd:0d: bf:6a:46:26:3b:37:f4:64:15:14:da:a2:43:79:08: f9:ee:ec:d8:a9:3a:74:d3:34:f4:b8:00:38:24:a3: a0:77:bf:d5:cc:a3:94:8c:b5:f0:e0:e0:1f:e2:d0: 25:51:b9:76:c5:db:c6:c0:4a:f0:ee:ca:28:5d:73: 4b:74:19:99:89:20:32:e5:ed:53:ac:a6:d4:83:b5: 37:3f:5f:8e:86:dc:39:86:4b:f2:5b:17:04:d2:a8: 82:65:8a:7b:6f:80:9f:58:d0:3b:d5:8e:fd:59:4b: 79:86:96:6c:f6:88:5c:db:25:48:50:c4:f5:52:f7: 79:b3:54:e1:c6:78:2e:b9:dd:9e:da:e7:44:d7:98: ec:46:e2:73:77:2c:29:ce:5f:62:29:c9:b7:88:af: 1e:7e:44:38:a0:72:f2:11:86:5e:bb:f0:bc:6e:1f: dd:44:51:cd:ae:df:ad:7c:cf:72:35:40:fd:c0:04: 78:ff:69:71:af:f4:bd:58:f6:e3:e4:c8:81:24:2e: 11:33:d3:99:5c:f7:3a:1b:4e:23:f3:68:03:e1:b7: 52:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:96:EE:D1:98:00:45:9A:C0:4E:BF:AD:2C:B1:5C:69:2C:19:BB:68 X509v3 Authority Key Identifier: keyid:E4:83:DA:FB:6C:2B:83:BD:48:2B:6E:29:0A:7E:40:53:55:B5:2E:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/5IPa-2wrg71IK24pCn5AU1W1Ltk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5IPa-2wrg71IK24pCn5AU1W1Ltk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919136B/F7C87E843A7B11E9ACBC6A18C4F9AE02/99B6039C215311EA86E1E020C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.59.208.0/22 IPv6: 2001:de8:b::/48 Signature Algorithm: sha256WithRSAEncryption 06:22:26:7b:33:bd:37:96:00:aa:cf:c3:66:b7:85:0c:37:30: b1:e5:88:f3:1e:6c:a2:24:c2:d8:97:2d:54:90:a7:ef:70:c3: d9:57:48:8a:a0:af:cf:cf:93:bd:76:9b:67:e7:3c:0a:6c:6f: 29:ea:e4:be:73:af:5c:0f:12:4a:1f:29:8f:c5:51:9f:77:e0: 8d:3d:8e:87:54:38:ec:be:b0:35:86:28:34:71:95:63:9d:9c: 60:6b:ba:77:e8:23:5f:f3:0f:99:5e:5b:b9:cb:70:2d:7f:61: 89:80:43:51:94:2e:52:6f:86:49:a6:1b:f3:c7:34:6c:59:38: ba:84:15:32:09:8d:05:c8:4a:30:4e:ba:54:76:7d:e9:7d:89: 67:d1:2c:eb:08:d9:b6:17:c9:68:0d:71:29:db:01:30:2d:d5: e8:ba:02:4f:a9:dd:b1:28:37:f1:07:e8:cc:ad:f5:77:3e:0e: 85:39:f3:ce:79:e7:e8:8d:8b:b9:96:11:66:38:f1:78:54:03: fd:40:e4:83:54:1d:22:e7:2c:cd:0a:fd:c7:52:22:5b:18:1e: 95:73:07:7c:ec:71:66:ea:be:2b:0d:d9:9c:f2:a5:44:1c:f0: 82:c2:7b:33:71:b0:4c:af:4a:78:84:fd:6e:41:13:4e:9f:a0: 8c:d2:79:42 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICEFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTEzNkIxMTAvBgNVBAUTKEU0ODNEQUZCNkMyQjgzQkQ0ODJCNkUyOTBBN0U0MDUz NTVCNTJFRDkwHhcNMjUwNTEyMTc0OTUzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIyMzRjMS0xM2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuqT01exWlpxXxu0tlQJalW6ehvY/sHAbChiUSBz/naFQlUUq0YnnEiX33Q2/ akYmOzf0ZBUU2qJDeQj57uzYqTp00zT0uAA4JKOgd7/VzKOUjLXw4OAf4tAlUbl2 xdvGwErw7sooXXNLdBmZiSAy5e1TrKbUg7U3P1+Ohtw5hkvyWxcE0qiCZYp7b4Cf WNA71Y79WUt5hpZs9ohc2yVIUMT1Uvd5s1Thxnguud2e2udE15jsRuJzdywpzl9i Kcm3iK8efkQ4oHLyEYZeu/C8bh/dRFHNrt+tfM9yNUD9wAR4/2lxr/S9WPbj5MiB JC4RM9OZXPc6G04j82gD4bdS1wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEiW7tGY AEWawE6/rSyxXGksGbtoMB8GA1UdIwQYMBaAFOSD2vtsK4O9SCtuKQp+QFNVtS7Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTM2Qi9GN0M4N0U4NDNB N0IxMUU5QUNCQzZBMThDNEY5QUUwMi81SVBhLTJ3cmc3MUlLMjRwQ241QVUxVzFM dGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVJUGEtMndyZzcxSUsyNHBDbjVBVTFXMUx0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTEzNkIvRjdDODdFODQzQTdCMTFFOUFDQkM2QTE4QzRGOUFFMDIvOTlCNjAzOUMy MTUzMTFFQTg2RTFFMDIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBALKO9AwDwQCAAIwCQMHACABDegACzANBgkqhkiG9w0BAQsF AAOCAQEABiImezO9N5YAqs/DZreFDDcwseWI8x5soiTC2JctVJCn73DD2VdIiqCv z8+TvXabZ+c8CmxvKerkvnOvXA8SSh8pj8VRn3fgjT2Oh1Q47L6wNYYoNHGVY52c YGu6d+gjX/MPmV5buctwLX9hiYBDUZQuUm+GSaYb88c0bFk4uoQVMgmNBchKME66 VHZ96X2JZ9Es6wjZthfJaA1xKdsBMC3V6LoCT6ndsSg38QfozK31dz4OhTnzznnn 6I2LuZYRZjjxeFQD/UDkg1QdIucszQr9x1IiWxgelXMHfOxxZuq+Kw3ZnPKlRBzw gsJ7M3GwTK9KeIT9bkETTp+gjNJ5Qg== -----END CERTIFICATE-----Generated at Sat May 17 09:26:47 2025 by rpki-client