$ rpki-client -vvf rpki.apnic.net/member_repository/A919F525/EA02341C84ED11EFB9FF2D5AC4F9AE02/C276060084F011EF9D52F573C4F9AE02.roa File: C276060084F011EF9D52F573C4F9AE02.roa (raw, json) Hash identifier: /tD3m0UAwlMwH5KNwcamave93IXNHxAGbXTHUSH9zMY= Subject key identifier: 9F:C0:BC:26:9E:EA:FA:C5:72:EA:43:9D:3A:32:FB:ED:DC:52:9F:38 Certificate issuer: /CN=A919F525/serialNumber=FBFF88ADE9936689B324145BFE63B74D57AAAC0B Certificate serial: 7B Authority key identifier: FB:FF:88:AD:E9:93:66:89:B3:24:14:5B:FE:63:B7:4D:57:AA:AC:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_-IremTZomzJBRb_mO3TVeqrAs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F525/EA02341C84ED11EFB9FF2D5AC4F9AE02/C276060084F011EF9D52F573C4F9AE02.roa Signing time: Sat 03 May 2025 06:13:14 +0000 ROA not before: Sat 03 May 2025 06:13:14 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 17542 IP address blocks: 202.36.134.0/24 maxlen: 24 202.36.135.0/24 maxlen: 24 202.50.206.0/24 maxlen: 24 202.50.207.0/24 maxlen: 24 202.50.220.0/24 maxlen: 24 202.50.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F525/EA02341C84ED11EFB9FF2D5AC4F9AE02/-_-IremTZomzJBRb_mO3TVeqrAs.crl rsync://rpki.apnic.net/member_repository/A919F525/EA02341C84ED11EFB9FF2D5AC4F9AE02/-_-IremTZomzJBRb_mO3TVeqrAs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_-IremTZomzJBRb_mO3TVeqrAs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 05:35:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 123 (0x7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F525, serialNumber=FBFF88ADE9936689B324145BFE63B74D57AAAC0B Validity Not Before: May 3 06:13:14 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6815b3f9-2e1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:db:5b:6b:93:93:85:60:15:80:6e:5d:6d:64: 2e:14:64:6f:7e:4c:19:bd:8a:f0:fc:5f:ee:7a:93: 6f:93:59:00:94:01:18:96:79:b9:47:05:cb:e8:1e: aa:eb:40:9a:11:41:a0:bb:c1:81:32:6e:89:3e:4b: 09:a2:d6:61:1b:f2:42:ce:a7:49:53:07:58:1f:93: 22:6d:c3:64:cc:4c:33:d5:76:a5:7f:d9:92:52:09: 15:42:4c:e7:ed:b9:e2:11:ac:13:b6:f8:cd:a1:90: a0:7f:77:eb:dd:7e:d5:4f:90:90:d0:e1:1c:40:28: 7d:cd:11:59:3b:0f:a4:4f:07:18:21:4c:9d:4c:90: c0:87:6e:a6:66:a4:1b:e4:0e:f4:d0:25:73:b6:6f: 8f:90:32:a8:50:98:d7:9f:5b:8d:74:bc:29:78:d5: 85:a1:d4:14:67:9b:c4:49:7b:5d:1b:fa:c9:4f:41: c1:a9:f6:7e:e6:42:1f:d5:98:cb:99:64:55:65:e3: be:9a:45:4e:66:9e:76:f8:e0:c7:17:34:a9:49:7b: eb:fd:3a:33:21:36:ba:ba:c0:c0:76:e4:10:b1:f6: bd:5e:6e:e9:c3:6a:a3:63:dc:0a:c0:2a:ca:f6:4f: 7a:17:43:fe:ac:78:3a:02:de:60:71:4a:9a:0f:48: 4f:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:C0:BC:26:9E:EA:FA:C5:72:EA:43:9D:3A:32:FB:ED:DC:52:9F:38 X509v3 Authority Key Identifier: keyid:FB:FF:88:AD:E9:93:66:89:B3:24:14:5B:FE:63:B7:4D:57:AA:AC:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F525/EA02341C84ED11EFB9FF2D5AC4F9AE02/-_-IremTZomzJBRb_mO3TVeqrAs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-_-IremTZomzJBRb_mO3TVeqrAs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F525/EA02341C84ED11EFB9FF2D5AC4F9AE02/C276060084F011EF9D52F573C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.134.0/23 202.50.206.0/23 202.50.220.0/24 202.50.222.0/24 Signature Algorithm: sha256WithRSAEncryption 82:76:8a:9f:e1:e0:f4:d1:d4:22:96:73:ba:92:5b:80:e3:e8: 0c:ad:59:67:58:66:06:cc:ad:68:c3:4e:22:83:e0:ca:1d:bb: 8e:62:ef:46:b6:9d:5d:72:e7:91:67:8f:5c:d7:c5:79:b3:f1: 18:00:e6:64:9d:1c:a6:a6:7f:93:df:f1:9f:e1:53:53:dd:b2: fc:0b:88:77:60:65:8c:a3:fc:a5:f0:ee:ee:58:6d:da:51:75: 59:f6:3e:70:66:13:a3:54:de:7f:33:c4:56:29:43:ef:49:bb: ad:54:30:77:51:af:c6:53:0b:dc:b2:91:b9:47:f9:2b:d0:c0: fe:e8:4f:7b:80:1c:77:0b:d5:e6:38:4f:20:42:78:78:64:e4: af:36:6a:1f:ea:ba:8c:44:0f:bc:02:9a:a3:c7:f4:93:a4:aa: cc:3c:56:65:eb:00:23:ce:09:5a:4c:28:33:44:90:4d:bc:ca: 44:84:0c:d8:d1:e0:28:1a:cf:42:ec:83:f5:0c:a7:cf:0e:e6: 0a:06:68:70:3d:eb:61:45:f0:61:9c:84:4b:b3:4e:86:11:64: 35:fd:24:ab:d6:b8:6f:11:47:d5:26:4b:63:f2:97:2a:d5:bd: ab:63:e7:ea:74:da:f7:a6:50:8c:af:e4:ee:8a:8c:9f:4f:14: d9:05:9d:a6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgIBezANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RjUyNTExMC8GA1UEBRMoRkJGRjg4QURFOTkzNjY4OUIzMjQxNDVCRkU2M0I3NEQ1 N0FBQUMwQjAeFw0yNTA1MDMwNjEzMTRaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTViM2Y5LTJlMWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDS21trk5OFYBWAbl1tZC4UZG9+TBm9ivD8X+56k2+TWQCUARiWeblHBcvoHqrr QJoRQaC7wYEybok+Swmi1mEb8kLOp0lTB1gfkyJtw2TMTDPVdqV/2ZJSCRVCTOft ueIRrBO2+M2hkKB/d+vdftVPkJDQ4RxAKH3NEVk7D6RPBxghTJ1MkMCHbqZmpBvk DvTQJXO2b4+QMqhQmNefW410vCl41YWh1BRnm8RJe10b+slPQcGp9n7mQh/VmMuZ ZFVl476aRU5mnnb44McXNKlJe+v9OjMhNrq6wMB25BCx9r1ebunDaqNj3ArAKsr2 T3oXQ/6seDoC3mBxSpoPSE+FAgMBAAGjggKnMIICozAdBgNVHQ4EFgQUn8C8Jp7q +sVy6kOdOjL77dxSnzgwHwYDVR0jBBgwFoAU+/+IremTZomzJBRb/mO3TVeqrAsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGNTI1L0VBMDIzNDFDODRF RDExRUZCOUZGMkQ1QUM0RjlBRTAyLy1fLUlyZW1UWm9tekpCUmJfbU8zVFZlcXJB cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLV8tSXJlbVRab216SkJSYl9tTzNUVmVxckFzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjUyNS9FQTAyMzQxQzg0RUQxMUVGQjlGRjJENUFDNEY5QUUwMi9DMjc2MDYwMDg0 RjAxMUVGOUQ1MkY1NzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAxBggrBgEFBQcBBwEB/wQi MCAwHgQCAAEwGAMEAcokhgMEAcoyzgMEAMoy3AMEAMoy3jANBgkqhkiG9w0BAQsF AAOCAQEAgnaKn+Hg9NHUIpZzupJbgOPoDK1ZZ1hmBsytaMNOIoPgyh27jmLvRrad XXLnkWePXNfFebPxGADmZJ0cpqZ/k9/xn+FTU92y/AuId2BljKP8pfDu7lht2lF1 WfY+cGYTo1TefzPEVilD70m7rVQwd1GvxlML3LKRuUf5K9DA/uhPe4AcdwvV5jhP IEJ4eGTkrzZqH+q6jEQPvAKao8f0k6SqzDxWZesAI84JWkwoM0SQTbzKRIQM2NHg KBrPQuyD9Qynzw7mCgZocD3rYUXwYZyES7NOhhFkNf0kq9a4bxFH1SZLY/KXKtW9 q2Pn6nTa96ZQjK/k7oqMn08U2QWdpg== -----END CERTIFICATE-----Generated at Tue May 13 03:55:45 2025 by rpki-client