$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/530BDDACE69A11EEA6CE3D1FC4F9AE02.roa File: 530BDDACE69A11EEA6CE3D1FC4F9AE02.roa (raw, json) Hash identifier: HcCqoeJLN9vwPOWgJmrLe07H2GhuCLd/hVfLcTJpq2o= Subject key identifier: 42:31:B2:13:92:BF:B7:C2:7D:35:8D:C8:E2:C3:3F:52:BC:58:27:4D Certificate issuer: /CN=A91A4849/serialNumber=B6CC02A7DB8A4DB530F112B6224F19080868FBD9 Certificate serial: E7 Authority key identifier: B6:CC:02:A7:DB:8A:4D:B5:30:F1:12:B6:22:4F:19:08:08:68:FB:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tswCp9uKTbUw8RK2Ik8ZCAho-9k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/530BDDACE69A11EEA6CE3D1FC4F9AE02.roa Signing time: Thu 01 May 2025 04:41:50 +0000 ROA not before: Thu 01 May 2025 04:41:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151151 IP address blocks: 202.71.184.0/23 maxlen: 23 202.71.184.0/24 maxlen: 24 202.71.185.0/24 maxlen: 24 2401:8ea0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/tswCp9uKTbUw8RK2Ik8ZCAho-9k.crl rsync://rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/tswCp9uKTbUw8RK2Ik8ZCAho-9k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tswCp9uKTbUw8RK2Ik8ZCAho-9k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 04:54:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 231 (0xe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4849, serialNumber=B6CC02A7DB8A4DB530F112B6224F19080868FBD9 Validity Not Before: May 1 04:41:49 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6812fb8d-6964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:01:f1:4a:b3:82:db:b0:7e:48:7f:89:f7:b7: 59:b2:a1:83:93:d6:1b:95:e5:0d:4b:67:bb:c1:a9: bb:16:34:6c:60:f8:e4:be:7a:11:b1:43:b0:3c:b5: 20:bb:8f:ce:3f:bb:9d:6e:8d:05:3e:f7:00:80:ac: 78:42:be:4d:8e:29:59:8c:d8:0d:33:0b:d7:81:69: e8:8c:a6:2b:17:6f:9e:a9:9b:ce:72:db:28:b5:f1: bb:8a:43:fb:1b:e1:23:4b:c2:d8:5d:ae:8a:3c:c8: f3:ce:4c:18:51:b4:d8:24:b1:41:fb:82:e9:d4:2a: 03:c6:8b:0d:88:67:c4:3a:d2:15:3f:ed:cc:0e:cc: e4:61:0b:bb:f5:9c:dc:69:a3:b4:80:31:b4:dd:eb: 7f:80:fb:d3:06:e0:be:3d:53:73:9a:33:a8:02:a6: cb:65:49:87:63:0d:9a:4c:c2:ad:f6:72:00:9c:51: d8:6c:18:1c:64:31:b9:27:8a:25:3f:2a:36:f5:0f: 56:df:d8:66:40:91:55:69:13:94:10:5b:85:31:e2: 01:a1:d2:5a:2c:ae:49:85:39:16:10:be:af:e6:7e: 79:ea:77:14:1e:b8:fe:52:46:21:12:09:ce:fc:e1: 91:e6:2b:85:d9:17:e7:fc:d6:4b:6f:16:b6:f7:38: 09:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:31:B2:13:92:BF:B7:C2:7D:35:8D:C8:E2:C3:3F:52:BC:58:27:4D X509v3 Authority Key Identifier: keyid:B6:CC:02:A7:DB:8A:4D:B5:30:F1:12:B6:22:4F:19:08:08:68:FB:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/tswCp9uKTbUw8RK2Ik8ZCAho-9k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tswCp9uKTbUw8RK2Ik8ZCAho-9k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/530BDDACE69A11EEA6CE3D1FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.71.184.0/23 IPv6: 2401:8ea0::/32 Signature Algorithm: sha256WithRSAEncryption aa:31:96:bf:3e:a2:52:0c:bb:45:39:27:1f:0e:23:ce:c0:0b: fb:f7:db:7f:d7:97:48:9c:dc:4a:21:77:5d:3a:38:0f:78:8c: 87:38:82:25:34:14:90:ad:9a:f2:df:76:3c:1c:98:c8:58:8b: c5:68:da:6e:3a:82:39:06:13:1f:af:22:f9:85:56:29:3c:1d: 8f:14:43:70:1f:9a:f1:87:6f:a7:e8:46:07:a7:ed:22:22:85: 79:72:c8:e1:eb:36:f7:a9:80:9c:d6:67:08:6b:38:52:29:36: 58:98:03:46:2c:0b:71:dd:5f:0d:90:c2:35:66:0c:91:25:25: bc:28:61:19:43:cf:f7:ec:3e:de:4f:36:e9:48:ec:1c:74:62: 32:88:9c:cb:ea:67:eb:24:02:43:6e:6d:64:4a:73:c5:1a:b1: 90:cd:16:90:55:2e:6d:79:91:f8:23:aa:37:91:be:64:09:31: 1a:31:ce:04:e5:3b:be:81:e9:07:ae:94:a2:15:29:05:ff:c3: 4d:2b:52:29:6d:8f:52:b5:ff:8a:49:2f:34:32:b3:08:13:17: a1:16:86:c9:e0:98:fc:af:f7:4a:98:23:28:d9:bd:50:fa:d2: 03:6d:0a:3e:fa:30:46:6f:1a:71:14:c5:7d:d9:4a:ec:28:b0: 91:08:1b:76 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAOcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ4NDkxMTAvBgNVBAUTKEI2Q0MwMkE3REI4QTREQjUzMEYxMTJCNjIyNEYxOTA4 MDg2OEZCRDkwHhcNMjUwNTAxMDQ0MTQ5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyZmI4ZC02OTY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6wHxSrOC27B+SH+J97dZsqGDk9YbleUNS2e7wam7FjRsYPjkvnoRsUOwPLUg u4/OP7udbo0FPvcAgKx4Qr5NjilZjNgNMwvXgWnojKYrF2+eqZvOctsotfG7ikP7 G+EjS8LYXa6KPMjzzkwYUbTYJLFB+4Lp1CoDxosNiGfEOtIVP+3MDszkYQu79Zzc aaO0gDG03et/gPvTBuC+PVNzmjOoAqbLZUmHYw2aTMKt9nIAnFHYbBgcZDG5J4ol Pyo29Q9W39hmQJFVaROUEFuFMeIBodJaLK5JhTkWEL6v5n556ncUHrj+UkYhEgnO /OGR5iuF2Rfn/NZLbxa29zgJ2wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEIxshOS v7fCfTWNyOLDP1K8WCdNMB8GA1UdIwQYMBaAFLbMAqfbik21MPEStiJPGQgIaPvZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDg0OS8wODdEM0VFOEU2 NkQxMUVFOEEzMUE5NjBDNEY5QUUwMi90c3dDcDl1S1RiVXc4UksySWs4WkNBaG8t OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rzd0NwOXVLVGJVdzhSSzJJazhaQ0Foby05ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ4NDkvMDg3RDNFRThFNjZEMTFFRThBMzFBOTYwQzRGOUFFMDIvNTMwQkREQUNF NjlBMTFFRUE2Q0UzRDFGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAHKR7gwDQQCAAIwBwMFACQBjqAwDQYJKoZIhvcNAQELBQAD ggEBAKoxlr8+olIMu0U5Jx8OI87AC/v323/Xl0ic3Eohd106OA94jIc4giU0FJCt mvLfdjwcmMhYi8Vo2m46gjkGEx+vIvmFVik8HY8UQ3AfmvGHb6foRgen7SIihXly yOHrNvepgJzWZwhrOFIpNliYA0YsC3HdXw2QwjVmDJElJbwoYRlDz/fsPt5PNulI 7Bx0YjKInMvqZ+skAkNubWRKc8UasZDNFpBVLm15kfgjqjeRvmQJMRoxzgTlO76B 6QeulKIVKQX/w00rUiltj1K1/4pJLzQyswgTF6EWhsngmPyv90qYIyjZvVD60gNt Cj76MEZvGnEUxX3ZSuwosJEIG3Y= -----END CERTIFICATE-----Generated at Thu May 15 19:23:26 2025 by rpki-client