$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/199F588CE21711EE913F3E62C4F9AE02.roa File: 199F588CE21711EE913F3E62C4F9AE02.roa (raw, json) Hash identifier: osmG47ejUnqAfJKuMkDqKj8NyV5CxVCxx93M/mU6AGU= Subject key identifier: 16:E2:90:AC:A2:44:CA:B6:AA:2C:D8:F9:B5:EB:90:F1:D7:CA:66:D3 Certificate issuer: /CN=A91BF2FD/serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Certificate serial: D8 Authority key identifier: 5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/199F588CE21711EE913F3E62C4F9AE02.roa Signing time: Tue 29 Apr 2025 05:42:05 +0000 ROA not before: Tue 29 Apr 2025 05:42:05 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 139808 IP address blocks: 202.37.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 216 (0xd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF2FD, serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Validity Not Before: Apr 29 05:42:05 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681066ac-2c8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:22:9f:a8:7d:42:4b:fe:76:8b:bd:6b:1a:16: fb:8d:52:78:24:4b:03:18:1e:0d:49:de:73:e3:32: 4b:ef:6c:fa:32:74:86:18:00:cd:c4:75:8d:34:81: eb:ad:ee:a4:80:09:fe:8f:bd:85:0e:c1:32:39:30: fd:a4:d8:b9:54:d4:16:34:4a:52:ee:ea:7c:75:fe: 60:dc:bc:d2:9a:a5:23:79:76:3d:d4:cc:bf:de:0a: be:d6:96:67:ec:7f:df:fd:7f:d7:d7:54:ec:80:7d: 61:cd:b8:c7:c0:48:c9:d4:ed:87:13:0d:30:ec:93: 10:04:9c:a9:e2:6a:09:0b:17:19:01:39:92:df:c0: 16:d4:73:7d:cb:c7:a4:67:3c:ca:78:af:0a:d9:e5: e2:3b:9c:f7:ef:33:6d:6d:70:d4:63:e1:43:d6:3f: 39:a2:27:f9:b7:46:6b:7b:93:b9:e6:8c:d9:dc:53: 22:64:14:ce:40:ad:1c:39:a0:c1:d4:48:94:b4:b1: b4:2d:de:bd:38:53:0e:cb:f0:d7:26:4f:eb:5d:a8: 8c:d5:fa:34:49:bc:ab:70:b6:ae:ca:81:d0:12:29: a3:df:c9:f9:d7:81:42:0f:81:8a:45:e5:a3:1f:dd: 0a:80:6d:3a:10:95:0b:fa:bd:be:37:dd:9d:93:92: f6:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:E2:90:AC:A2:44:CA:B6:AA:2C:D8:F9:B5:EB:90:F1:D7:CA:66:D3 X509v3 Authority Key Identifier: keyid:5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/199F588CE21711EE913F3E62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.216.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:da:01:ef:9e:c8:7d:c5:4d:23:0a:22:63:2d:c9:6c:81:03: db:d7:84:c3:0d:dd:9c:0d:95:02:58:02:66:6f:b5:27:bd:a4: 31:c3:61:6f:cd:a0:b8:7f:04:7f:9a:a4:9e:82:54:10:0c:35: 8a:35:8f:f3:52:18:f6:7d:68:72:32:68:cc:79:cf:0e:2e:b2: 39:b6:bf:1f:e5:a8:40:a0:f7:c8:48:e9:1b:ef:a7:32:07:b0: 1e:91:c9:9b:08:3d:a7:2b:ae:30:3d:21:e2:b8:a5:58:2c:9a: 99:c5:87:1b:e2:7c:ab:af:ca:09:4e:64:ba:da:3d:23:cb:a1: a5:d0:e1:b4:91:dd:e8:18:db:1b:c7:45:57:49:0e:11:44:ad: fc:8e:fc:05:fd:f4:8f:f0:4f:5d:d1:af:37:ce:f0:5d:fa:78: 21:0c:72:83:ca:33:99:4d:44:d3:11:13:ea:ec:92:34:da:07: 06:65:29:60:b0:8d:f3:71:99:17:dd:fa:5c:e4:65:f6:4e:e7: 3e:4a:78:93:f3:32:eb:42:1e:7e:7f:5a:70:eb:7f:39:14:d3: 67:4e:90:c7:e6:54:3a:1f:ab:cc:d2:30:b2:ee:a0:c6:e1:48: 41:6e:41:f4:b8:15:ba:29:b3:8a:08:5b:42:76:51:5e:78:85: 75:c5:e4:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyRkQxMTAvBgNVBAUTKDVGMkI1ODIxREQ0M0MyOTQzOUQyQkFFRTVCREMwNDMy OTFDNDdCQUYwHhcNMjUwNDI5MDU0MjA1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwNjZhYy0yYzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwSKfqH1CS/52i71rGhb7jVJ4JEsDGB4NSd5z4zJL72z6MnSGGADNxHWNNIHr re6kgAn+j72FDsEyOTD9pNi5VNQWNEpS7up8df5g3LzSmqUjeXY91My/3gq+1pZn 7H/f/X/X11TsgH1hzbjHwEjJ1O2HEw0w7JMQBJyp4moJCxcZATmS38AW1HN9y8ek ZzzKeK8K2eXiO5z37zNtbXDUY+FD1j85oif5t0Zre5O55ozZ3FMiZBTOQK0cOaDB 1EiUtLG0Ld69OFMOy/DXJk/rXaiM1fo0SbyrcLauyoHQEimj38n514FCD4GKReWj H90KgG06EJUL+r2+N92dk5L2gwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBbikKyi RMq2qizY+bXrkPHXymbTMB8GA1UdIwQYMBaAFF8rWCHdQ8KUOdK67lvcBDKRxHuv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjJGRC82MzhENjJBMEUx MTIxMUVFQUM3ODYxMzhDNEY5QUUwMi9YeXRZSWQxRHdwUTUwcnJ1Vzl3RU1wSEVl NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5dFlJZDFEd3BRNTBycnVXOXdFTXBIRWU2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkYyRkQvNjM4RDYyQTBFMTEyMTFFRUFDNzg2MTM4QzRGOUFFMDIvMTk5RjU4OENF MjE3MTFFRTkxM0YzRTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJdgwDQYJKoZIhvcNAQELBQADggEBAJvaAe+eyH3FTSMK ImMtyWyBA9vXhMMN3ZwNlQJYAmZvtSe9pDHDYW/NoLh/BH+apJ6CVBAMNYo1j/NS GPZ9aHIyaMx5zw4usjm2vx/lqECg98hI6RvvpzIHsB6RyZsIPacrrjA9IeK4pVgs mpnFhxvifKuvyglOZLraPSPLoaXQ4bSR3egY2xvHRVdJDhFErfyO/AX99I/wT13R rzfO8F36eCEMcoPKM5lNRNMRE+rskjTaBwZlKWCwjfNxmRfd+lzkZfZO5z5KeJPz MutCHn5/WnDrfzkU02dOkMfmVDofq8zSMLLuoMbhSEFuQfS4Fbops4oIW0J2UV54 hXXF5HM= -----END CERTIFICATE-----Generated at Sun May 11 16:59:57 2025 by rpki-client