$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/94584738031A11ED934E3D58C4F9AE02.roa File: 94584738031A11ED934E3D58C4F9AE02.roa (raw, json) Hash identifier: cMcwlHYnO9+mh5veotjRirRXB4y0F0TlStRvvkDezXU= Subject key identifier: 8A:37:E0:F7:32:D8:9E:C5:06:32:E3:CD:A9:6E:E1:E9:57:00:A5:88 Certificate issuer: /CN=A91A5577/serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Certificate serial: 0297 Authority key identifier: 5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/94584738031A11ED934E3D58C4F9AE02.roa Signing time: Tue 29 Apr 2025 02:36:58 +0000 ROA not before: Tue 29 Apr 2025 02:36:58 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 23727 IP address blocks: 202.94.32.0/20 maxlen: 20 203.24.63.0/24 maxlen: 24 203.27.44.0/24 maxlen: 24 203.29.208.0/23 maxlen: 23 203.55.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 01:35:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 663 (0x297) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5577, serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Validity Not Before: Apr 29 02:36:58 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68103b49-f525 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:ef:38:c9:7f:cf:4d:23:0b:78:9b:5b:70:12: 09:5f:97:3f:51:e6:ff:cf:b5:b7:fb:9d:39:91:d3: 45:a5:51:ac:4a:ac:2f:bb:3b:f0:5d:45:75:05:45: b5:de:b8:58:0f:d5:79:52:05:31:b2:b6:95:53:e6: 40:ad:82:08:f7:56:91:65:95:4c:90:e8:5e:8f:c3: 27:fd:a1:66:44:6d:c7:0c:fa:c3:5c:b8:58:0c:b6: 24:6f:b5:14:75:7f:2c:56:b9:97:49:ce:1a:1e:d0: a0:23:09:56:3a:3a:59:c2:4e:e1:d3:d6:e3:c4:3a: d6:00:80:96:36:cd:c2:96:fb:dd:e6:ad:ea:4d:56: 27:05:f3:c2:12:b7:69:36:ad:8e:cf:19:5a:44:f6: 6d:4d:36:9d:1f:93:e4:c9:9d:c2:a2:3d:01:bc:a9: 50:5e:0e:a4:6c:f3:05:b4:f3:24:54:97:93:7d:fe: 42:65:c3:55:54:ce:3b:e5:69:31:90:c5:21:7e:ee: 85:39:b2:7f:41:ce:91:8f:78:40:d9:92:55:79:48: 1b:9a:ec:36:0e:6c:b8:7d:ee:ae:03:c5:a3:e1:4c: e1:e9:20:1d:c9:ea:f1:42:c3:94:d8:57:da:b7:c5: ff:41:51:03:71:0e:60:5b:f4:e2:62:98:34:ba:64: fe:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:37:E0:F7:32:D8:9E:C5:06:32:E3:CD:A9:6E:E1:E9:57:00:A5:88 X509v3 Authority Key Identifier: keyid:5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/94584738031A11ED934E3D58C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.94.32.0/20 203.24.63.0/24 203.27.44.0/24 203.29.208.0/23 203.55.134.0/23 Signature Algorithm: sha256WithRSAEncryption 05:f4:dd:e8:09:86:2b:0f:8f:b4:68:c7:d1:86:12:2c:d4:9c: 1b:f8:e5:5f:3e:34:2d:34:92:59:9a:40:c2:dc:52:76:9a:51: 67:ac:24:c1:ae:89:9a:e0:eb:21:59:a4:08:89:3c:1a:8f:6e: 06:9f:97:01:81:ca:f3:d5:42:cc:92:9a:99:df:fe:12:55:87: 04:75:f9:77:06:08:66:f9:33:83:f4:74:df:51:9c:27:d3:c5: 1b:c6:8a:3f:74:39:c2:53:c2:73:65:80:6e:78:83:02:e0:7a: 4a:80:53:2f:4b:ff:67:e8:0b:f2:02:95:89:70:24:76:09:83: f6:1f:b2:5d:b4:ef:ae:36:21:ac:ef:fe:38:3f:7e:ad:58:46: 04:22:e2:1e:da:78:15:d8:5b:8d:5d:aa:b3:50:1f:5e:a0:2e: 0e:d5:74:e9:74:47:ee:1c:d2:a8:7f:4f:c4:72:26:0f:85:cc: c2:c0:1c:9f:bd:ef:e2:6b:36:b5:fe:2f:21:4c:fa:5c:5e:62: 37:7f:0a:cd:4c:63:59:18:ba:01:f6:50:12:ff:ac:52:2b:10: 4f:b3:5e:64:37:6d:df:1f:8e:07:8e:6a:7b:e8:9b:84:8f:80: c8:a4:c3:dd:7b:d0:ff:f6:7c:cd:0f:21:94:29:cd:b0:2b:5b: ff:6d:55:9f -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICApcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1NzcxMTAvBgNVBAUTKDVDMTI2MzNFNkRBNzg2MTEzMUJDQ0ZFQTFGN0I3QUJE MzUxRDIzMkYwHhcNMjUwNDI5MDIzNjU4WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwM2I0OS1mNTI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+84yX/PTSMLeJtbcBIJX5c/Ueb/z7W3+505kdNFpVGsSqwvuzvwXUV1BUW1 3rhYD9V5UgUxsraVU+ZArYII91aRZZVMkOhej8Mn/aFmRG3HDPrDXLhYDLYkb7UU dX8sVrmXSc4aHtCgIwlWOjpZwk7h09bjxDrWAICWNs3Clvvd5q3qTVYnBfPCErdp Nq2OzxlaRPZtTTadH5PkyZ3Coj0BvKlQXg6kbPMFtPMkVJeTff5CZcNVVM475Wkx kMUhfu6FObJ/Qc6Rj3hA2ZJVeUgbmuw2Dmy4fe6uA8Wj4Uzh6SAdyerxQsOU2Ffa t8X/QVEDcQ5gW/TiYpg0umT+TQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFIo34Pcy 2J7FBjLjzalu4elXAKWIMB8GA1UdIwQYMBaAFFwSYz5tp4YRMbzP6h97er01HSMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTU3Ny85MDNFNEM3ODAz MTYxMUVEOTBGODg0NEZDNEY5QUUwMi9YQkpqUG0ybmhoRXh2TV9xSDN0NnZUVWRJ eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hCSmpQbTJuaGhFeHZNX3FIM3Q2dlRVZEl5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU1NzcvOTAzRTRDNzgwMzE2MTFFRDkwRjg4NDRGQzRGOUFFMDIvOTQ1ODQ3Mzgw MzFBMTFFRDkzNEUzRDU4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBATKXiADBADLGD8DBADLGywDBAHLHdADBAHLN4YwDQYJKoZI hvcNAQELBQADggEBAAX03egJhisPj7Rox9GGEizUnBv45V8+NC00klmaQMLcUnaa UWesJMGuiZrg6yFZpAiJPBqPbgaflwGByvPVQsySmpnf/hJVhwR1+XcGCGb5M4P0 dN9RnCfTxRvGij90OcJTwnNlgG54gwLgekqAUy9L/2foC/IClYlwJHYJg/Yfsl20 7642Iazv/jg/fq1YRgQi4h7aeBXYW41dqrNQH16gLg7VdOl0R+4c0qh/T8RyJg+F zMLAHJ+97+JrNrX+LyFM+lxeYjd/Cs1MY1kYugH2UBL/rFIrEE+zXmQ3bd8fjgeO anvom4SPgMikw9170P/2fM0PIZQpzbArW/9tVZ8= -----END CERTIFICATE-----Generated at Fri May 16 19:00:15 2025 by rpki-client