$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/4DA8B6FA2EC411F0A0F0B91DC4F9AE02.roa File: 4DA8B6FA2EC411F0A0F0B91DC4F9AE02.roa (raw, json) Hash identifier: jttV5cx2iHbEDh0fC2dk0oUBZYsTcZNgD/Is6/WTQFs= Subject key identifier: BF:F9:91:87:57:64:54:9B:3C:B5:DB:94:2A:0D:0E:51:42:73:23:65 Certificate issuer: /CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Certificate serial: 0218 Authority key identifier: 45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/4DA8B6FA2EC411F0A0F0B91DC4F9AE02.roa Signing time: Mon 12 May 2025 00:01:50 +0000 ROA not before: Mon 12 May 2025 00:01:50 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 18894 IP address blocks: 202.134.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 02:57:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 536 (0x218) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6550, serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Validity Not Before: May 12 00:01:50 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=68213a6e-a36f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:25:55:f7:40:eb:8a:51:9c:ed:c6:8d:f1:0a: e5:db:31:fb:5a:b2:9d:87:17:72:68:30:3b:41:14: 75:6b:3e:22:38:f3:72:c6:dd:57:56:a9:33:9f:d4: df:9a:ff:6b:78:b3:c9:8c:03:e3:bd:95:fc:ba:ec: 46:a0:42:05:a0:74:b5:34:b6:69:d2:ac:b2:49:44: fc:45:60:17:89:f3:0b:a5:ed:13:94:33:68:ac:da: 2c:cb:cf:d4:50:36:e7:ad:c6:ed:f5:20:7d:ee:59: 8d:6b:10:dd:6f:4b:f7:cb:c8:ab:66:5a:80:9f:9a: b8:b0:3a:90:e2:a3:a1:3b:23:14:01:3a:85:02:46: 45:86:8f:47:a1:e3:c2:4e:af:1e:35:c0:a7:80:f3: cb:1c:70:09:db:00:2e:17:f9:a2:fd:b8:f4:b0:b6: e1:46:e3:0b:64:01:c6:f2:68:33:08:84:22:d5:7a: 3f:33:64:5c:64:31:1e:42:4e:7e:0c:4f:33:56:2c: 4f:67:52:8f:81:61:40:4b:25:c0:00:18:87:80:4c: d0:9a:a9:00:cf:88:a6:86:28:fa:ba:1a:05:24:61: 6f:05:4a:c8:cf:f0:2c:27:2b:89:3d:1b:c4:0c:53: 30:b5:b3:4f:d5:17:6e:56:85:a4:ae:03:99:e1:a2: aa:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F9:91:87:57:64:54:9B:3C:B5:DB:94:2A:0D:0E:51:42:73:23:65 X509v3 Authority Key Identifier: keyid:45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/4DA8B6FA2EC411F0A0F0B91DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.134.249.0/24 Signature Algorithm: sha256WithRSAEncryption 85:88:40:45:07:e4:8a:bd:48:ba:aa:1e:34:7e:f8:b8:dd:62: 28:2b:fb:c9:36:88:f4:db:ba:ea:e8:f4:e0:e7:78:21:fa:9f: aa:15:76:9a:da:cd:44:09:02:5c:25:2e:21:93:f1:ab:3c:7a: 42:35:1d:b7:c1:d4:f5:ff:5b:75:5d:26:22:24:4b:b9:e1:d4: 2a:76:3a:da:c9:95:82:db:95:72:db:2c:61:b1:92:a5:ca:39: bd:41:1f:ee:53:d7:43:93:4d:b0:37:f6:de:cb:14:94:02:51: cc:47:bc:19:7e:e8:c7:52:18:54:fa:db:cf:93:35:03:28:8c: ba:f6:ae:12:30:5e:f7:c7:92:69:1a:c1:26:29:8b:b9:95:76: ee:e5:c5:f0:2d:7d:0a:30:83:cf:77:e3:c9:35:f3:d0:e2:e3: a5:f8:d6:83:66:71:37:e9:b8:37:a6:9a:f2:e0:55:07:87:c2: 14:77:a5:96:ec:82:c7:8b:45:22:33:6d:ff:d8:d0:f5:9a:7f: ee:d0:5a:78:4b:09:26:d5:8f:a8:9d:0d:1c:c8:be:0e:93:de: 16:c1:bb:e6:52:ff:b6:73:da:de:58:7b:bb:2f:df:23:9f:d3: 55:10:69:0a:67:d7:b7:9a:a3:0c:b3:ae:1f:f5:c2:0d:5a:18: a6:24:65:25 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAhgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NTAxMTAvBgNVBAUTKDQ1NkVFQTA2OTJDNkE0RjI2RjUzRDJEMjM3RDFDQjRE Q0Q3ODMzMDUwHhcNMjUwNTEyMDAwMTUwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIxM2E2ZS1hMzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3CVV90DrilGc7caN8Qrl2zH7WrKdhxdyaDA7QRR1az4iOPNyxt1XVqkzn9Tf mv9reLPJjAPjvZX8uuxGoEIFoHS1NLZp0qyySUT8RWAXifMLpe0TlDNorNosy8/U UDbnrcbt9SB97lmNaxDdb0v3y8irZlqAn5q4sDqQ4qOhOyMUATqFAkZFho9HoePC Tq8eNcCngPPLHHAJ2wAuF/mi/bj0sLbhRuMLZAHG8mgzCIQi1Xo/M2RcZDEeQk5+ DE8zVixPZ1KPgWFASyXAABiHgEzQmqkAz4imhij6uhoFJGFvBUrIz/AsJyuJPRvE DFMwtbNP1RduVoWkrgOZ4aKqsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFL/5kYdX ZFSbPLXblCoNDlFCcyNlMB8GA1UdIwQYMBaAFEVu6gaSxqTyb1PS0jfRy03NeDMF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU1MC84NDAwOTU0QUNF QzQxMUVEOEE4M0ZCMTFDNEY5QUUwMi9SVzdxQnBMR3BQSnZVOUxTTjlITFRjMTRN d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXN3FCcExHcFBKdlU5TFNOOUhMVGMxNE13VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY1NTAvODQwMDk1NEFDRUM0MTFFRDhBODNGQjExQzRGOUFFMDIvNERBOEI2RkEy RUM0MTFGMEEwRjBCOTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKhvkwDQYJKoZIhvcNAQELBQADggEBAIWIQEUH5Iq9SLqq HjR++LjdYigr+8k2iPTbuuro9ODneCH6n6oVdprazUQJAlwlLiGT8as8ekI1HbfB 1PX/W3VdJiIkS7nh1Cp2OtrJlYLblXLbLGGxkqXKOb1BH+5T10OTTbA39t7LFJQC UcxHvBl+6MdSGFT628+TNQMojLr2rhIwXvfHkmkawSYpi7mVdu7lxfAtfQowg893 48k189Di46X41oNmcTfpuDemmvLgVQeHwhR3pZbsgseLRSIzbf/Y0PWaf+7QWnhL CSbVj6idDRzIvg6T3hbBu+ZS/7Zz2t5Ye7sv3yOf01UQaQpn17eaowyzrh/1wg1a GKYkZSU= -----END CERTIFICATE-----Generated at Thu May 15 12:43:40 2025 by rpki-client