$ rpki-client -vvf rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/A20F01CCE1E511EEA0477018C4F9AE02.roa File: A20F01CCE1E511EEA0477018C4F9AE02.roa (raw, json) Hash identifier: XEA5HBhsYH3LIGpBqjlOM3tEelRDYUoKK//5he1LRJg= Subject key identifier: C2:CE:F9:04:8F:67:CC:94:9E:3E:E4:E4:84:12:6E:D8:E7:4C:DF:0D Certificate issuer: /CN=A919DAF2/serialNumber=139CC1DB6B9D24B93B14928A7518D04EB3B26A3A Certificate serial: 21FB Authority key identifier: 13:9C:C1:DB:6B:9D:24:B9:3B:14:92:8A:75:18:D0:4E:B3:B2:6A:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/A20F01CCE1E511EEA0477018C4F9AE02.roa Signing time: Tue 06 May 2025 16:23:35 +0000 ROA not before: Tue 06 May 2025 16:23:35 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151801 IP address blocks: 202.134.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.crl rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 15:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8699 (0x21fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919DAF2, serialNumber=139CC1DB6B9D24B93B14928A7518D04EB3B26A3A Validity Not Before: May 6 16:23:35 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681a3787-9ecc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:38:79:d7:77:d2:4a:0a:c4:2f:21:d8:13:6b: 2c:12:8f:55:cf:00:d8:ad:e8:aa:e9:ab:97:c5:7e: 50:95:28:23:21:2a:ed:6f:48:91:9c:f4:5f:89:c3: de:40:89:09:fd:9c:4c:b0:17:fd:91:6c:07:d2:9c: ad:a3:b2:3d:05:dd:e4:3e:8d:8a:0f:65:8d:80:cb: d1:b6:20:f7:45:65:f6:79:8f:d6:be:2b:12:64:03: 15:af:b1:12:71:d4:21:d7:26:c5:94:8b:96:14:be: 24:01:1a:63:2e:a7:82:e9:bb:0b:e9:7a:34:e9:0e: 82:2b:e7:42:91:bc:57:2a:e1:7e:60:3f:54:5e:c2: b0:c5:61:33:80:91:9e:56:99:9f:ea:d5:7c:89:57: 60:31:92:7c:cf:cb:ca:d6:00:e2:6c:02:a4:97:ba: 45:55:88:48:b6:fb:7e:5b:3c:fb:b8:9a:60:53:cf: c0:7d:36:09:af:3a:81:df:ec:8a:5b:ce:b0:67:3b: 45:4c:ee:0a:8b:f3:08:72:6a:53:ee:bb:25:81:29: b7:6f:d9:78:c8:7c:b8:53:53:9a:50:b7:0f:78:22: 7a:d2:1e:86:f8:29:eb:ed:01:88:87:72:7d:44:bd: ce:06:7f:13:af:54:9e:fc:9e:80:d9:06:a4:7d:93: 6f:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:CE:F9:04:8F:67:CC:94:9E:3E:E4:E4:84:12:6E:D8:E7:4C:DF:0D X509v3 Authority Key Identifier: keyid:13:9C:C1:DB:6B:9D:24:B9:3B:14:92:8A:75:18:D0:4E:B3:B2:6A:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/E5zB22udJLk7FJKKdRjQTrOyajo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E5zB22udJLk7FJKKdRjQTrOyajo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919DAF2/26EC6DDAD3DA11E58C5CD40FC4F9AE02/A20F01CCE1E511EEA0477018C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.134.188.0/24 Signature Algorithm: sha256WithRSAEncryption 56:2c:9d:e3:7f:17:cc:bc:71:23:06:75:a3:e5:a0:46:aa:1b: f6:ea:02:ec:18:cd:cb:97:b5:ce:c9:f2:84:e3:0f:64:bd:1a: 72:e4:bf:46:14:28:62:94:e7:1b:25:39:92:77:41:4b:ab:cc: 26:60:ac:4d:c5:1a:29:22:f1:f7:5e:99:dc:9b:25:04:6d:e5: 7f:d9:d7:81:fc:a4:83:93:fd:aa:d2:85:f8:c0:ed:b4:1a:0a: f6:5e:5b:56:12:1e:4a:f3:87:6a:fe:12:37:0c:33:ac:65:37: 29:70:61:7b:5f:69:43:de:f2:af:f3:a4:54:31:69:60:d6:9b: 98:9d:92:52:33:42:b7:8b:91:60:01:34:63:a0:1f:77:c2:ac: 32:68:e0:42:73:6e:ef:b6:08:ff:2a:65:c5:63:74:b2:02:23: a3:5f:09:e0:c2:fb:07:af:82:12:73:e3:d2:99:7c:22:9a:b6: 28:71:a4:bc:88:82:68:27:40:3c:84:f4:43:b2:79:bf:df:92: 37:16:f5:66:c7:62:db:30:54:8d:d8:ea:e7:a5:60:e7:70:fc: fa:11:9d:11:38:68:41:d5:fb:d2:e7:90:d9:eb:89:02:32:60: 5e:ae:5f:de:8a:89:bb:84:27:33:31:e0:6b:a5:c5:74:95:a9: 2d:b1:ca:14 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OURBRjIxMTAvBgNVBAUTKDEzOUNDMURCNkI5RDI0QjkzQjE0OTI4QTc1MThEMDRF QjNCMjZBM0EwHhcNMjUwNTA2MTYyMzM1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhMzc4Ny05ZWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyTh513fSSgrELyHYE2ssEo9VzwDYreiq6auXxX5QlSgjISrtb0iRnPRficPe QIkJ/ZxMsBf9kWwH0pyto7I9Bd3kPo2KD2WNgMvRtiD3RWX2eY/WvisSZAMVr7ES cdQh1ybFlIuWFL4kARpjLqeC6bsL6Xo06Q6CK+dCkbxXKuF+YD9UXsKwxWEzgJGe Vpmf6tV8iVdgMZJ8z8vK1gDibAKkl7pFVYhItvt+Wzz7uJpgU8/AfTYJrzqB3+yK W86wZztFTO4Ki/MIcmpT7rslgSm3b9l4yHy4U1OaULcPeCJ60h6G+Cnr7QGIh3J9 RL3OBn8Tr1Se/J6A2QakfZNvVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMLO+QSP Z8yUnj7k5IQSbtjnTN8NMB8GA1UdIwQYMBaAFBOcwdtrnSS5OxSSinUY0E6zsmo6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5REFGMi8yNkVDNkREQUQz REExMUU1OEM1Q0Q0MEZDNEY5QUUwMi9FNXpCMjJ1ZEpMazdGSktLZFJqUVRyT3lh am8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U1ekIyMnVkSkxrN0ZKS0tkUmpRVHJPeWFqby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OURBRjIvMjZFQzZEREFEM0RBMTFFNThDNUNENDBGQzRGOUFFMDIvQTIwRjAxQ0NF MUU1MTFFRUEwNDc3MDE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKhrwwDQYJKoZIhvcNAQELBQADggEBAFYsneN/F8y8cSMG daPloEaqG/bqAuwYzcuXtc7J8oTjD2S9GnLkv0YUKGKU5xslOZJ3QUurzCZgrE3F Giki8fdemdybJQRt5X/Z14H8pIOT/arShfjA7bQaCvZeW1YSHkrzh2r+EjcMM6xl NylwYXtfaUPe8q/zpFQxaWDWm5idklIzQreLkWABNGOgH3fCrDJo4EJzbu+2CP8q ZcVjdLICI6NfCeDC+wevghJz49KZfCKatihxpLyIgmgnQDyE9EOyeb/fkjcW9WbH YtswVI3Y6uelYOdw/PoRnRE4aEHV+9LnkNnriQIyYF6uX96KibuEJzMx4GulxXSV qS2xyhQ= -----END CERTIFICATE-----Generated at Sun May 11 22:10:22 2025 by rpki-client