$ rpki-client -vvf rpki.apnic.net/member_repository/A91A622F/697548C8DACC11E4A81ABE50C4F9AE02/BCAE5314F75C11EB95BE8C87C4F9AE02.roa File: BCAE5314F75C11EB95BE8C87C4F9AE02.roa (raw, json) Hash identifier: 5DmpgkEHXaDkkR9mgpZabmssGePTrFoLLGp9YTKRdHI= Subject key identifier: 2F:BB:F3:E4:55:05:9A:E7:62:8E:E0:F8:F2:AE:D5:0F:D9:C6:79:A3 Certificate issuer: /CN=A91A622F/serialNumber=E08AC5500E1FF18FD5D52B797C5097DD0AB94BE5 Certificate serial: 26EC Authority key identifier: E0:8A:C5:50:0E:1F:F1:8F:D5:D5:2B:79:7C:50:97:DD:0A:B9:4B:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4IrFUA4f8Y_V1St5fFCX3Qq5S-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A622F/697548C8DACC11E4A81ABE50C4F9AE02/BCAE5314F75C11EB95BE8C87C4F9AE02.roa Signing time: Sat 10 May 2025 16:03:49 +0000 ROA not before: Sat 10 May 2025 16:03:49 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17557 IP address blocks: 124.109.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A622F/697548C8DACC11E4A81ABE50C4F9AE02/4IrFUA4f8Y_V1St5fFCX3Qq5S-U.crl rsync://rpki.apnic.net/member_repository/A91A622F/697548C8DACC11E4A81ABE50C4F9AE02/4IrFUA4f8Y_V1St5fFCX3Qq5S-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4IrFUA4f8Y_V1St5fFCX3Qq5S-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 16:03:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9964 (0x26ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A622F, serialNumber=E08AC5500E1FF18FD5D52B797C5097DD0AB94BE5 Validity Not Before: May 10 16:03:49 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681f78e5-84f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4c:29:c6:3f:20:61:d4:f7:42:59:7b:af:1e: 68:79:86:dc:7f:62:24:e1:91:42:02:a9:4b:cd:2a: 50:16:53:d4:ad:ba:91:ee:82:b6:c0:b7:dd:ac:7e: 2e:97:b6:5b:fd:ef:c8:4b:09:6d:18:7f:bf:55:f5: 97:0d:de:46:25:bd:a5:52:f6:8a:95:2f:41:2a:43: 99:33:76:3c:86:c4:d0:93:b6:af:37:71:d5:7d:01: d8:e6:1c:11:c0:81:b4:23:eb:bb:fe:84:53:53:9b: 67:18:79:04:44:2a:48:78:27:1b:75:40:42:7a:dc: 3c:18:f3:65:13:63:73:56:46:f9:44:67:61:ec:bd: f5:3a:ae:95:53:2a:28:10:fb:40:30:6f:b6:f1:f8: 78:3a:f8:d7:04:38:37:4a:50:d4:a4:7d:b9:84:2d: ec:19:2e:71:64:84:36:f9:ac:ca:3a:aa:9b:f6:7c: bb:ee:48:19:f4:65:3f:70:cf:ad:cf:bb:ae:47:00: f3:17:39:f3:65:c8:34:bc:d8:14:98:91:5c:57:b8: ac:00:b3:fa:1a:e2:8c:12:75:fa:fc:26:ed:49:c1: f5:5c:e9:fc:74:bc:91:37:72:24:ad:c1:5c:f0:dc: 15:1d:c9:ed:58:00:df:fd:56:37:9b:13:bb:02:90: ec:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:BB:F3:E4:55:05:9A:E7:62:8E:E0:F8:F2:AE:D5:0F:D9:C6:79:A3 X509v3 Authority Key Identifier: keyid:E0:8A:C5:50:0E:1F:F1:8F:D5:D5:2B:79:7C:50:97:DD:0A:B9:4B:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A622F/697548C8DACC11E4A81ABE50C4F9AE02/4IrFUA4f8Y_V1St5fFCX3Qq5S-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4IrFUA4f8Y_V1St5fFCX3Qq5S-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A622F/697548C8DACC11E4A81ABE50C4F9AE02/BCAE5314F75C11EB95BE8C87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.109.63.0/24 Signature Algorithm: sha256WithRSAEncryption 52:5c:3a:00:f6:ff:72:b0:25:fa:eb:6e:48:d8:a9:58:16:47: dc:96:54:04:39:f1:3e:4b:c2:f5:a1:24:1b:25:9f:39:b9:cd: e3:e1:a7:c7:99:a5:cf:7e:3f:64:d3:ad:88:77:1e:e6:bb:b7: a7:78:2a:3b:4f:41:8f:dc:80:8d:fa:64:0b:a7:d5:0a:46:7a: 30:44:f3:cd:48:0c:cf:bb:00:80:d7:52:c3:d2:e4:70:c1:1a: a2:4f:97:2f:4c:0a:75:4a:72:50:50:4e:44:5c:5f:1c:16:4b: a0:8c:e8:bb:26:1e:ad:8f:7e:36:40:e5:93:a9:70:58:bd:37: d4:c2:31:b7:0f:f7:04:ed:15:30:c6:9a:9b:6b:dd:ef:81:c3: 85:c7:4b:0a:b2:4f:b4:65:a4:20:ce:3c:2c:84:72:28:1d:c5: ca:14:c1:a4:a1:b7:08:e1:74:81:91:2c:58:84:bc:fd:3b:83: c2:9b:d5:1b:d8:32:23:e3:e0:8b:76:c5:92:72:3f:74:c5:ec: 24:29:9f:a3:e9:a3:b9:70:0d:48:77:da:4d:61:8c:c0:5e:ea: da:39:70:2d:75:47:c2:06:fc:ae:b9:f2:f8:1a:17:86:b8:6c: cc:a5:aa:77:bc:7f:5a:c6:28:07:9b:f5:17:36:9b:7e:35:cf: 75:88:f0:b5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJuwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTYyMkYxMTAvBgNVBAUTKEUwOEFDNTUwMEUxRkYxOEZENUQ1MkI3OTdDNTA5N0RE MEFCOTRCRTUwHhcNMjUwNTEwMTYwMzQ5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFmNzhlNS04NGY5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqUwpxj8gYdT3Qll7rx5oeYbcf2Ik4ZFCAqlLzSpQFlPUrbqR7oK2wLfdrH4u l7Zb/e/ISwltGH+/VfWXDd5GJb2lUvaKlS9BKkOZM3Y8hsTQk7avN3HVfQHY5hwR wIG0I+u7/oRTU5tnGHkERCpIeCcbdUBCetw8GPNlE2NzVkb5RGdh7L31Oq6VUyoo EPtAMG+28fh4OvjXBDg3SlDUpH25hC3sGS5xZIQ2+azKOqqb9ny77kgZ9GU/cM+t z7uuRwDzFznzZcg0vNgUmJFcV7isALP6GuKMEnX6/CbtScH1XOn8dLyRN3IkrcFc 8NwVHcntWADf/VY3mxO7ApDsaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFC+78+RV BZrnYo7g+PKu1Q/ZxnmjMB8GA1UdIwQYMBaAFOCKxVAOH/GP1dUreXxQl90KuUvl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjIyRi82OTc1NDhDOERB Q0MxMUU0QTgxQUJFNTBDNEY5QUUwMi80SXJGVUE0ZjhZX1YxU3Q1ZkZDWDNRcTVT LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRJckZVQTRmOFlfVjFTdDVmRkNYM1FxNVMtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTYyMkYvNjk3NTQ4QzhEQUNDMTFFNEE4MUFCRTUwQzRGOUFFMDIvQkNBRTUzMTRG NzVDMTFFQjk1QkU4Qzg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB8bT8wDQYJKoZIhvcNAQELBQADggEBAFJcOgD2/3KwJfrr bkjYqVgWR9yWVAQ58T5LwvWhJBslnzm5zePhp8eZpc9+P2TTrYh3Hua7t6d4KjtP QY/cgI36ZAun1QpGejBE881IDM+7AIDXUsPS5HDBGqJPly9MCnVKclBQTkRcXxwW S6CM6LsmHq2PfjZA5ZOpcFi9N9TCMbcP9wTtFTDGmptr3e+Bw4XHSwqyT7RlpCDO PCyEcigdxcoUwaShtwjhdIGRLFiEvP07g8Kb1RvYMiPj4It2xZJyP3TF7CQpn6Pp o7lwDUh32k1hjMBe6to5cC11R8IG/K658vgaF4a4bMylqne8f1rGKAeb9Rc2m341 z3WI8LU= -----END CERTIFICATE-----Generated at Mon May 12 10:19:48 2025 by rpki-client