$ rpki-client -vvf rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/6C523164E03F11EE87838439C4F9AE02.roa File: 6C523164E03F11EE87838439C4F9AE02.roa (raw, json) Hash identifier: SK6ZvVianDlVw+18irRafax8Eg6g34dqTzqJORJNKeQ= Subject key identifier: 5B:B4:71:2B:49:61:63:40:67:BF:7F:3C:19:FC:0E:70:15:2C:C3:96 Certificate issuer: /CN=A91E1498/serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Certificate serial: E2 Authority key identifier: AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/6C523164E03F11EE87838439C4F9AE02.roa Signing time: Tue 29 Apr 2025 05:41:57 +0000 ROA not before: Tue 29 Apr 2025 05:41:57 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 152637 IP address blocks: 202.37.52.0/23 maxlen: 23 202.37.52.0/24 maxlen: 24 202.37.53.0/24 maxlen: 24 2401:8860::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 226 (0xe2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E1498, serialNumber=ADCD5A4DB599C71AED93D096AB14CAFA0815E617 Validity Not Before: Apr 29 05:41:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681066a4-f0ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:f9:e8:4c:4f:f8:8d:51:b4:2d:83:92:2c:f5: 75:27:5f:d5:f9:14:e6:ab:42:f7:7a:01:d3:f9:8f: af:29:90:c2:08:03:13:d0:02:90:d5:15:88:43:1b: 2c:21:2e:03:ad:d6:30:6c:53:b1:51:00:91:a0:13: 43:66:10:95:0e:c8:28:fa:0d:05:f5:74:37:c6:18: 20:5b:46:18:b8:0e:73:b4:47:e0:5e:25:f9:a3:27: cc:40:b5:f7:de:52:97:33:1f:78:06:58:b0:24:fc: 59:58:46:73:18:f5:20:a1:9f:77:be:a9:56:54:f1: ed:c0:da:e0:63:85:fa:1d:4a:85:af:ea:bf:e9:43: d0:28:9d:74:c4:93:c3:ae:46:72:47:13:98:8e:52: 46:4b:a3:74:66:6f:f6:c8:49:96:91:5a:71:89:ec: e9:47:d0:0e:42:a2:9b:63:4d:f0:b2:f9:b7:9d:38: a8:aa:55:50:0b:85:60:a1:2c:ef:d3:63:da:06:b5: 82:ec:b8:88:c3:5b:12:5e:64:a6:12:dd:05:83:44: c5:64:25:e6:15:97:e6:94:d4:5c:52:27:f5:63:77: 81:06:7d:9f:4b:6a:1d:98:68:61:dd:94:ad:bd:aa: 12:b4:90:4d:04:ff:2f:36:84:13:9c:81:30:bc:ed: 6d:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:B4:71:2B:49:61:63:40:67:BF:7F:3C:19:FC:0E:70:15:2C:C3:96 X509v3 Authority Key Identifier: keyid:AD:CD:5A:4D:B5:99:C7:1A:ED:93:D0:96:AB:14:CA:FA:08:15:E6:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/rc1aTbWZxxrtk9CWqxTK-ggV5hc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rc1aTbWZxxrtk9CWqxTK-ggV5hc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E1498/B3C8A97CDFB511EEB7AD8F2EC4F9AE02/6C523164E03F11EE87838439C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.52.0/23 IPv6: 2401:8860::/32 Signature Algorithm: sha256WithRSAEncryption 1e:db:2f:5b:29:8b:a3:58:e0:57:71:6d:fe:1e:c1:3e:99:53: 8e:9f:33:e6:d1:c3:d9:7e:6d:67:b2:b5:f5:e0:e1:43:ca:27: 18:45:a9:7c:c1:c0:76:25:21:8d:63:1c:ed:17:47:bd:7c:3a: bf:37:9c:3f:82:76:49:24:66:a4:bc:a8:57:18:15:17:f5:c2: 8b:49:3d:34:77:00:df:a4:5f:4d:3b:e1:9e:80:77:8c:7a:d4: 50:e6:30:7b:6f:51:77:63:dc:04:ee:42:f1:78:6d:86:e3:53: 0d:85:6b:f6:fd:22:c0:2a:45:a4:e1:a5:b3:1a:f0:2d:9f:dc: 36:5c:13:15:f6:cd:45:64:33:a5:61:71:48:8a:b1:68:8d:ed: eb:11:46:59:2e:14:04:85:39:d9:7e:40:e5:71:cf:e4:0b:5c: 22:23:fe:72:bd:57:41:20:44:a3:49:34:57:f4:49:45:19:cf: a9:9d:e1:53:cf:6f:5f:49:eb:42:e1:7c:67:d7:73:72:2f:98: ed:27:35:a6:4a:d1:36:ba:7c:46:fc:3b:e8:d1:44:e8:22:88: 1a:7f:74:7a:a9:23:b6:b0:1f:c4:40:b9:f4:73:8d:69:27:45: 2e:74:ba:98:5d:05:a9:74:b0:e3:ac:77:30:63:4a:00:17:59: 8d:d3:eb:01 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTE0OTgxMTAvBgNVBAUTKEFEQ0Q1QTREQjU5OUM3MUFFRDkzRDA5NkFCMTRDQUZB MDgxNUU2MTcwHhcNMjUwNDI5MDU0MTU3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwNjZhNC1mMGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArfnoTE/4jVG0LYOSLPV1J1/V+RTmq0L3egHT+Y+vKZDCCAMT0AKQ1RWIQxss IS4DrdYwbFOxUQCRoBNDZhCVDsgo+g0F9XQ3xhggW0YYuA5ztEfgXiX5oyfMQLX3 3lKXMx94BliwJPxZWEZzGPUgoZ93vqlWVPHtwNrgY4X6HUqFr+q/6UPQKJ10xJPD rkZyRxOYjlJGS6N0Zm/2yEmWkVpxiezpR9AOQqKbY03wsvm3nTioqlVQC4VgoSzv 02PaBrWC7LiIw1sSXmSmEt0Fg0TFZCXmFZfmlNRcUif1Y3eBBn2fS2odmGhh3ZSt vaoStJBNBP8vNoQTnIEwvO1txwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFu0cStJ YWNAZ79/PBn8DnAVLMOWMB8GA1UdIwQYMBaAFK3NWk21mcca7ZPQlqsUyvoIFeYX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMTQ5OC9CM0M4QTk3Q0RG QjUxMUVFQjdBRDhGMkVDNEY5QUUwMi9yYzFhVGJXWnh4cnRrOUNXcXhUSy1nZ1Y1 aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JjMWFUYldaeHhydGs5Q1dxeFRLLWdnVjVoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTE0OTgvQjNDOEE5N0NERkI1MTFFRUI3QUQ4RjJFQzRGOUFFMDIvNkM1MjMxNjRF MDNGMTFFRTg3ODM4NDM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAHKJTQwDQQCAAIwBwMFACQBiGAwDQYJKoZIhvcNAQELBQAD ggEBAB7bL1spi6NY4Fdxbf4ewT6ZU46fM+bRw9l+bWeytfXg4UPKJxhFqXzBwHYl IY1jHO0XR718Or83nD+CdkkkZqS8qFcYFRf1wotJPTR3AN+kX0074Z6Ad4x61FDm MHtvUXdj3ATuQvF4bYbjUw2Fa/b9IsAqRaThpbMa8C2f3DZcExX2zUVkM6VhcUiK sWiN7esRRlkuFASFOdl+QOVxz+QLXCIj/nK9V0EgRKNJNFf0SUUZz6md4VPPb19J 60LhfGfXc3IvmO0nNaZK0Ta6fEb8O+jRROgiiBp/dHqpI7awH8RAufRzjWknRS50 uphdBal0sOOsdzBjSgAXWY3T6wE= -----END CERTIFICATE-----Generated at Sun May 11 14:02:30 2025 by rpki-client