$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6EFE/DA4A43C26CA111EDB44E765BC4F9AE02/250320C4761511EDA05B8A63C4F9AE02.roa File: 250320C4761511EDA05B8A63C4F9AE02.roa (raw, json) Hash identifier: Bl+1dLxLQlX1V1+vDqQlCssjvCf30/Wpz6uQKakH504= Subject key identifier: FC:17:F1:D4:5D:E2:CF:73:43:F6:BF:48:52:27:2E:FE:46:CD:16:7A Certificate issuer: /CN=A91E6EFE/serialNumber=033B311D758F04340A23FB081675951C250E8078 Certificate serial: 01D0 Authority key identifier: 03:3B:31:1D:75:8F:04:34:0A:23:FB:08:16:75:95:1C:25:0E:80:78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AzsxHXWPBDQKI_sIFnWVHCUOgHg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6EFE/DA4A43C26CA111EDB44E765BC4F9AE02/250320C4761511EDA05B8A63C4F9AE02.roa Signing time: Wed 07 May 2025 02:39:33 +0000 ROA not before: Wed 07 May 2025 02:39:33 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9509 IP address blocks: 165.12.0.0/16 maxlen: 16 192.207.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6EFE/DA4A43C26CA111EDB44E765BC4F9AE02/AzsxHXWPBDQKI_sIFnWVHCUOgHg.crl rsync://rpki.apnic.net/member_repository/A91E6EFE/DA4A43C26CA111EDB44E765BC4F9AE02/AzsxHXWPBDQKI_sIFnWVHCUOgHg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AzsxHXWPBDQKI_sIFnWVHCUOgHg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:08:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 464 (0x1d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6EFE, serialNumber=033B311D758F04340A23FB081675951C250E8078 Validity Not Before: May 7 02:39:33 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681ac7e5-146d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:92:02:bd:66:9e:a1:c1:b6:f0:4e:9f:1d:11: 3a:5c:6e:b8:56:e4:73:1f:92:fe:6e:96:90:2b:a7: ea:c3:b7:b4:a9:a1:87:8f:2f:24:53:4e:5a:cb:be: 69:b1:25:b5:3a:ac:e9:37:d3:57:ee:4e:df:99:1d: ab:4a:b0:b2:41:8f:f4:83:dc:fc:77:61:13:f0:0b: e3:21:ad:3c:bd:c2:de:c7:b5:43:fb:ec:3f:d1:8d: b4:4d:dc:65:05:45:1c:3e:38:35:77:5c:bb:85:e7: 72:d8:e0:60:b3:ec:ff:1a:cb:b0:42:cd:34:d1:62: 2b:79:2e:f8:66:7e:64:e1:25:67:ef:2e:9b:a4:e3: 6d:1b:9e:0f:f6:77:3e:8f:3e:31:c5:78:49:5a:57: 8a:5e:b3:e0:b9:f3:62:e4:66:54:66:37:7c:78:58: 91:7d:83:3e:b0:4d:40:5f:72:c3:63:13:a1:c4:d7: 54:a0:96:6c:ec:2a:ae:c7:bf:b6:8d:0c:a3:14:e3: f1:46:17:1c:f4:a6:a4:cb:e0:33:4b:d3:ed:e1:48: 59:58:65:f8:cc:7e:91:86:be:6e:ee:a7:5d:00:6c: 44:85:80:39:d1:f5:7c:0c:e4:f5:a5:78:c6:fe:30: 3c:35:7e:59:02:ea:63:17:75:e2:3a:9e:bf:f1:bf: 54:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:17:F1:D4:5D:E2:CF:73:43:F6:BF:48:52:27:2E:FE:46:CD:16:7A X509v3 Authority Key Identifier: keyid:03:3B:31:1D:75:8F:04:34:0A:23:FB:08:16:75:95:1C:25:0E:80:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6EFE/DA4A43C26CA111EDB44E765BC4F9AE02/AzsxHXWPBDQKI_sIFnWVHCUOgHg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/AzsxHXWPBDQKI_sIFnWVHCUOgHg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6EFE/DA4A43C26CA111EDB44E765BC4F9AE02/250320C4761511EDA05B8A63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 165.12.0.0/16 192.207.248.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:f0:c4:e4:61:b2:cd:aa:95:e4:0b:3e:7a:ef:1b:04:05:d5: fe:9d:6c:15:ec:af:e7:9d:f9:50:07:23:80:41:eb:be:f7:cc: ad:97:22:c5:0d:28:5b:4d:e3:11:94:c7:03:fd:8d:c0:ba:ff: 66:85:25:88:f3:fd:c1:9f:2a:27:2b:11:16:b1:bb:15:e5:ef: 5e:45:5a:79:fa:57:29:cc:40:bc:c4:64:7c:55:56:e0:37:44: f0:59:c5:d2:fc:72:08:cf:2d:72:16:1d:0f:b7:a9:27:51:9a: 54:62:88:15:49:fc:aa:1c:1c:57:56:ab:34:f0:1b:2d:bf:66: 94:85:10:b4:44:47:83:bc:ec:18:f4:25:5a:cf:7f:c8:0f:4f: 85:22:03:04:68:03:0c:ca:0d:29:c0:d8:af:bc:fb:1f:a3:e6: 86:dd:46:4c:07:d9:b1:47:21:6d:4d:95:ba:9f:6d:52:41:22: dc:5b:8f:78:00:d5:43:99:4c:61:3f:b8:b7:15:6d:9d:c8:66: 03:ca:d5:3e:67:9d:9b:0a:e3:67:e1:ae:14:54:a4:0f:0d:dd: 15:e3:8d:63:ad:00:5c:60:fb:4c:31:3e:08:05:40:1a:fc:12: a8:d4:4c:fb:cb:30:28:8e:5a:0f:0b:0b:e1:35:cb:c5:27:b4: af:5b:0e:11 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgICAdAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZFRkUxMTAvBgNVBAUTKDAzM0IzMTFENzU4RjA0MzQwQTIzRkIwODE2NzU5NTFD MjUwRTgwNzgwHhcNMjUwNTA3MDIzOTMzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhYzdlNS0xNDZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZICvWaeocG28E6fHRE6XG64VuRzH5L+bpaQK6fqw7e0qaGHjy8kU05ay75p sSW1OqzpN9NX7k7fmR2rSrCyQY/0g9z8d2ET8AvjIa08vcLex7VD++w/0Y20Tdxl BUUcPjg1d1y7hedy2OBgs+z/GsuwQs000WIreS74Zn5k4SVn7y6bpONtG54P9nc+ jz4xxXhJWleKXrPgufNi5GZUZjd8eFiRfYM+sE1AX3LDYxOhxNdUoJZs7Cqux7+2 jQyjFOPxRhcc9Kaky+AzS9Pt4UhZWGX4zH6Rhr5u7qddAGxEhYA50fV8DOT1pXjG /jA8NX5ZAupjF3XiOp6/8b9UpQIDAQABo4ICmjCCApYwHQYDVR0OBBYEFPwX8dRd 4s9zQ/a/SFInLv5GzRZ6MB8GA1UdIwQYMBaAFAM7MR11jwQ0CiP7CBZ1lRwlDoB4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkVGRS9EQTRBNDNDMjZD QTExMUVEQjQ0RTc2NUJDNEY5QUUwMi9BenN4SFhXUEJEUUtJX3NJRm5XVkhDVU9n SGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0F6c3hIWFdQQkRRS0lfc0lGbldWSENVT2dIZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZFRkUvREE0QTQzQzI2Q0ExMTFFREI0NEU3NjVCQzRGOUFFMDIvMjUwMzIwQzQ3 NjE1MTFFREEwNUI4QTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJAYIKwYBBQUHAQcBAf8E FTATMBEEAgABMAsDAwClDAMEAMDP+DANBgkqhkiG9w0BAQsFAAOCAQEAf/DE5GGy zaqV5As+eu8bBAXV/p1sFeyv5535UAcjgEHrvvfMrZcixQ0oW03jEZTHA/2NwLr/ ZoUliPP9wZ8qJysRFrG7FeXvXkVaefpXKcxAvMRkfFVW4DdE8FnF0vxyCM8tchYd D7epJ1GaVGKIFUn8qhwcV1arNPAbLb9mlIUQtERHg7zsGPQlWs9/yA9PhSIDBGgD DMoNKcDYr7z7H6Pmht1GTAfZsUchbU2Vup9tUkEi3FuPeADVQ5lMYT+4txVtnchm A8rVPmedmwrjZ+GuFFSkDw3dFeONY60AXGD7TDE+CAVAGvwSqNRM+8swKI5aDwsL 4TXLxSe0r1sOEQ== -----END CERTIFICATE-----Generated at Wed May 14 08:24:17 2025 by rpki-client