$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/8A5017E27C3C11EE90BF4044C4F9AE02.roa File: 8A5017E27C3C11EE90BF4044C4F9AE02.roa (raw, json) Hash identifier: 5pY2tHCbKRsYExC6tRXkk3dJPihvImm9ck01MU6UVTk= Subject key identifier: 04:35:F8:05:D5:4A:F0:27:F2:BA:D5:31:0F:59:BA:68:7C:5A:89:C8 Certificate issuer: /CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Certificate serial: 0256 Authority key identifier: 45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/8A5017E27C3C11EE90BF4044C4F9AE02.roa Signing time: Thu 05 Jun 2025 03:10:43 +0000 ROA not before: Thu 05 Jun 2025 03:10:43 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 199925 IP address blocks: 202.134.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 598 (0x256) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6550, serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Validity Not Before: Jun 5 03:10:43 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68410ab3-216d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:06:2f:c0:c1:44:50:30:9f:91:39:db:75:e4: 71:da:fc:b0:2f:24:e8:57:a9:90:cc:02:f5:39:ca: d2:01:f3:9c:08:cc:0e:dd:07:ea:81:16:c1:38:5a: 69:ce:af:ff:fd:6c:b9:14:c3:bc:f0:20:95:6c:b1: 94:a8:46:2f:cb:5b:a5:98:f5:c8:15:e4:d0:95:35: f3:2b:f0:ae:7e:c3:9a:6b:15:91:c8:13:db:a6:2f: 01:b9:f2:35:cb:ff:ca:ba:b7:0c:3d:19:b1:10:0c: 39:58:c6:c8:24:3f:96:57:68:14:a8:77:14:32:8a: 53:e6:8d:f4:fb:47:94:b5:13:37:ec:e5:30:3e:09: 04:b4:ea:8d:a2:84:03:bd:0a:42:bc:68:58:ab:28: 35:fc:0b:e5:f7:c1:74:6e:46:aa:eb:36:49:14:05: 3e:82:30:3b:f6:6f:e4:f2:d2:28:d4:12:71:d5:88: c1:08:2f:e6:ef:9f:5e:84:10:b8:ea:c1:51:83:65: b3:4d:28:70:6a:8d:6b:3d:8b:92:6f:d9:66:f6:99: 97:0c:fe:17:22:93:b7:39:da:1a:e9:24:86:78:db: 93:0a:7d:fe:c1:d7:36:e7:57:f8:0e:7d:4b:a5:a1: 78:68:4e:57:95:52:6d:7c:bf:e6:20:9e:f3:be:ee: f0:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:35:F8:05:D5:4A:F0:27:F2:BA:D5:31:0F:59:BA:68:7C:5A:89:C8 X509v3 Authority Key Identifier: keyid:45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/8A5017E27C3C11EE90BF4044C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.134.233.0/24 Signature Algorithm: sha256WithRSAEncryption 34:03:28:82:32:1c:4d:1f:47:70:bd:66:6f:5d:2a:25:a8:bc: 20:e6:3b:45:f0:e6:df:d8:05:7a:f8:e4:c4:89:bc:69:f5:ae: 51:70:16:7f:36:72:c3:9c:a5:61:02:d3:cd:9f:4a:b0:6f:a8: 51:f9:43:ff:71:f0:f6:d0:56:63:ae:b6:53:d7:29:27:00:a8: bf:bf:61:c9:23:69:ae:f8:17:04:05:93:59:96:2e:1b:1a:a5: fd:c1:4a:41:d7:8c:c4:c8:19:dc:c1:1e:d5:b3:24:59:96:2b: 47:80:b7:bf:6e:b2:88:4e:c7:6f:87:db:c7:f2:2b:4b:27:5f: e3:0e:6b:f8:64:8f:87:6b:c5:96:6f:9e:d5:d1:48:ea:ef:6b: 68:13:65:56:f1:39:51:e1:3c:89:48:2e:96:09:6f:da:c0:88: a4:45:10:e1:ae:e3:d0:77:3d:dc:9e:03:bc:7c:e1:a1:56:42: 76:94:3a:b3:8d:4c:46:90:a2:08:05:82:a0:d7:08:45:05:db: bf:aa:41:e8:98:f5:d6:be:42:d8:75:c9:f3:f3:f2:81:39:b4: 5c:f1:4e:b1:1a:c8:7b:97:ba:fa:7b:40:de:0f:b6:50:f7:16: c5:9d:89:25:8a:19:30:94:04:ed:43:e3:24:25:5a:4e:93:d1: 70:1e:db:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAlYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NTAxMTAvBgNVBAUTKDQ1NkVFQTA2OTJDNkE0RjI2RjUzRDJEMjM3RDFDQjRE Q0Q3ODMzMDUwHhcNMjUwNjA1MDMxMDQzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQxMGFiMy0yMTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnAYvwMFEUDCfkTnbdeRx2vywLyToV6mQzAL1OcrSAfOcCMwO3QfqgRbBOFpp zq///Wy5FMO88CCVbLGUqEYvy1ulmPXIFeTQlTXzK/CufsOaaxWRyBPbpi8BufI1 y//KurcMPRmxEAw5WMbIJD+WV2gUqHcUMopT5o30+0eUtRM37OUwPgkEtOqNooQD vQpCvGhYqyg1/Avl98F0bkaq6zZJFAU+gjA79m/k8tIo1BJx1YjBCC/m759ehBC4 6sFRg2WzTShwao1rPYuSb9lm9pmXDP4XIpO3Odoa6SSGeNuTCn3+wdc251f4Dn1L paF4aE5XlVJtfL/mIJ7zvu7wdQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAQ1+AXV SvAn8rrVMQ9Zumh8WonIMB8GA1UdIwQYMBaAFEVu6gaSxqTyb1PS0jfRy03NeDMF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU1MC84NDAwOTU0QUNF QzQxMUVEOEE4M0ZCMTFDNEY5QUUwMi9SVzdxQnBMR3BQSnZVOUxTTjlITFRjMTRN d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXN3FCcExHcFBKdlU5TFNOOUhMVGMxNE13VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY1NTAvODQwMDk1NEFDRUM0MTFFRDhBODNGQjExQzRGOUFFMDIvOEE1MDE3RTI3 QzNDMTFFRTkwQkY0MDQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKhukwDQYJKoZIhvcNAQELBQADggEBADQDKIIyHE0fR3C9 Zm9dKiWovCDmO0Xw5t/YBXr45MSJvGn1rlFwFn82csOcpWEC082fSrBvqFH5Q/9x 8PbQVmOutlPXKScAqL+/Yckjaa74FwQFk1mWLhsapf3BSkHXjMTIGdzBHtWzJFmW K0eAt79usohOx2+H28fyK0snX+MOa/hkj4drxZZvntXRSOrva2gTZVbxOVHhPIlI LpYJb9rAiKRFEOGu49B3PdyeA7x84aFWQnaUOrONTEaQoggFgqDXCEUF27+qQeiY 9da+Qth1yfPz8oE5tFzxTrEayHuXuvp7QN4PtlD3FsWdiSWKGTCUBO1D4yQlWk6T 0XAe28A= -----END CERTIFICATE-----Generated at Thu Jul 3 12:14:36 2025 by rpki-client