$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/F5A311DAE21611EEB7B0D361C4F9AE02.roa File: F5A311DAE21611EEB7B0D361C4F9AE02.roa (raw, json) Hash identifier: tXFOS4K6NP0mWp2yqDrG4Mk0xH2TKVaPDDMjLQ6peHE= Subject key identifier: 26:BE:9B:53:F5:EE:57:C9:5D:33:99:C0:FA:A7:54:93:1A:02:24:CD Certificate issuer: /CN=A91BF2FD/serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Certificate serial: D9 Authority key identifier: 5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/F5A311DAE21611EEB7B0D361C4F9AE02.roa Signing time: Tue 29 Apr 2025 05:42:06 +0000 ROA not before: Tue 29 Apr 2025 05:42:06 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152642 IP address blocks: 202.37.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 04:21:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF2FD, serialNumber=5F2B5821DD43C29439D2BAEE5BDC043291C47BAF Validity Not Before: Apr 29 05:42:06 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681066ae-0f65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:b2:73:f3:29:6f:8f:f5:b4:2e:a5:34:62:d7: 72:1b:7a:0b:5c:68:5a:fb:ac:f0:75:e0:03:18:55: 34:2e:08:f7:07:5e:f8:20:64:f3:a5:3c:4c:e5:40: 13:2f:30:f7:75:4d:47:92:8b:6b:84:ad:49:fc:ce: 44:35:39:d2:81:34:74:89:e5:ec:03:b9:6f:64:c5: 0d:28:a4:de:6b:e3:6b:e2:3a:64:ea:b4:a2:89:cd: d3:39:a6:7f:b6:36:22:66:02:02:41:ea:95:e0:df: b8:46:78:ae:2e:a6:d5:cb:4d:c5:e1:1f:f6:47:26: 81:15:50:99:c9:67:bd:40:7a:b4:ad:8c:d1:a5:26: ff:84:5c:8f:dc:ea:a2:f6:2d:34:ca:19:46:f2:02: ca:d7:01:3b:fa:59:f1:2c:d4:47:5e:4e:96:44:05: f2:78:43:c4:35:61:6f:84:5b:b6:3b:4f:c9:8a:a9: 66:19:ed:f4:53:b6:2d:51:b5:52:d7:60:70:78:7f: a6:40:82:59:a4:a5:98:d0:ba:06:ae:e5:fe:1f:77: a1:03:de:10:66:8f:bf:b5:54:73:be:a9:31:26:2a: ab:0b:3d:15:9d:ca:d1:16:6e:fc:d9:1a:ca:7f:d5: 06:7f:62:83:c7:6d:ef:3a:30:5e:ff:a9:7d:83:f8: c0:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:BE:9B:53:F5:EE:57:C9:5D:33:99:C0:FA:A7:54:93:1A:02:24:CD X509v3 Authority Key Identifier: keyid:5F:2B:58:21:DD:43:C2:94:39:D2:BA:EE:5B:DC:04:32:91:C4:7B:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/XytYId1DwpQ50rruW9wEMpHEe68.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XytYId1DwpQ50rruW9wEMpHEe68.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF2FD/638D62A0E11211EEAC786138C4F9AE02/F5A311DAE21611EEB7B0D361C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.217.0/24 Signature Algorithm: sha256WithRSAEncryption 28:86:65:07:6f:b8:de:07:3e:83:95:85:29:96:d2:89:80:4f: d2:b4:f0:52:e9:51:b2:21:03:43:0a:37:14:45:78:cf:46:f9: e9:56:cc:1d:a0:45:c9:e5:51:87:e1:7b:13:96:25:16:9d:5a: 75:ae:f0:00:ba:26:ff:b2:99:85:59:da:44:36:b5:15:bc:24: 80:0c:e3:f3:b3:de:cf:a2:a0:c1:f5:a0:ad:2c:22:47:28:ec: 24:bd:ec:31:06:d7:fa:81:26:7f:90:33:56:3a:0a:02:3a:9e: 39:39:aa:91:51:a9:2a:36:3f:2a:9f:0e:3c:1b:c6:cf:63:82: 3d:97:06:eb:98:22:46:95:5a:73:f2:9a:8d:5f:d6:75:c5:6c: 3c:eb:e2:20:5e:d3:72:4b:c2:d6:89:6f:e2:12:78:7a:89:69: b6:ae:76:82:b6:0c:00:c9:29:8c:09:b8:db:73:d6:a5:6b:4d: 01:20:68:53:ac:36:9e:f1:37:dd:25:14:01:1f:a4:41:5c:3f: 68:97:86:45:fa:5b:9a:80:01:8c:af:6b:ae:3f:f0:36:e6:be: bb:7b:b4:a5:11:16:c3:ad:1f:39:0f:30:7e:a6:2a:89:80:7b: 0c:5e:8e:55:5a:cf:c5:61:48:2b:e4:c7:73:c0:db:67:ca:05: 3b:07:41:68 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkYyRkQxMTAvBgNVBAUTKDVGMkI1ODIxREQ0M0MyOTQzOUQyQkFFRTVCREMwNDMy OTFDNDdCQUYwHhcNMjUwNDI5MDU0MjA2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwNjZhZS0wZjY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8LJz8ylvj/W0LqU0YtdyG3oLXGha+6zwdeADGFU0Lgj3B174IGTzpTxM5UAT LzD3dU1HkotrhK1J/M5ENTnSgTR0ieXsA7lvZMUNKKTea+Nr4jpk6rSiic3TOaZ/ tjYiZgICQeqV4N+4RniuLqbVy03F4R/2RyaBFVCZyWe9QHq0rYzRpSb/hFyP3Oqi 9i00yhlG8gLK1wE7+lnxLNRHXk6WRAXyeEPENWFvhFu2O0/JiqlmGe30U7YtUbVS 12BweH+mQIJZpKWY0LoGruX+H3ehA94QZo+/tVRzvqkxJiqrCz0VncrRFm782RrK f9UGf2KDx23vOjBe/6l9g/jAgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCa+m1P1 7lfJXTOZwPqnVJMaAiTNMB8GA1UdIwQYMBaAFF8rWCHdQ8KUOdK67lvcBDKRxHuv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjJGRC82MzhENjJBMEUx MTIxMUVFQUM3ODYxMzhDNEY5QUUwMi9YeXRZSWQxRHdwUTUwcnJ1Vzl3RU1wSEVl NjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h5dFlJZDFEd3BRNTBycnVXOXdFTXBIRWU2OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkYyRkQvNjM4RDYyQTBFMTEyMTFFRUFDNzg2MTM4QzRGOUFFMDIvRjVBMzExREFF MjE2MTFFRUI3QjBEMzYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJdkwDQYJKoZIhvcNAQELBQADggEBACiGZQdvuN4HPoOV hSmW0omAT9K08FLpUbIhA0MKNxRFeM9G+elWzB2gRcnlUYfhexOWJRadWnWu8AC6 Jv+ymYVZ2kQ2tRW8JIAM4/Oz3s+ioMH1oK0sIkco7CS97DEG1/qBJn+QM1Y6CgI6 njk5qpFRqSo2PyqfDjwbxs9jgj2XBuuYIkaVWnPymo1f1nXFbDzr4iBe03JLwtaJ b+ISeHqJabaudoK2DADJKYwJuNtz1qVrTQEgaFOsNp7xN90lFAEfpEFcP2iXhkX6 W5qAAYyva64/8Dbmvrt7tKURFsOtHzkPMH6mKomAewxejlVaz8VhSCvkx3PA22fK BTsHQWg= -----END CERTIFICATE-----Generated at Mon May 12 04:21:12 2025 by rpki-client