$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/8367C13A6CA411ED9DD6425CC4F9AE02.roa File: 8367C13A6CA411ED9DD6425CC4F9AE02.roa (raw, json) Hash identifier: qStgTKoKUIh+qGv4WydL84alI8T6N4vvNinWDR/WOZo= Subject key identifier: 9A:A5:00:4C:6B:9E:5F:9D:04:7B:83:A1:61:8E:C0:1F:26:31:D2:26 Certificate issuer: /CN=A91E6EFE/serialNumber=E871728C3A2C26D0E608004BA7D1E5A35830956C Certificate serial: 01D3 Authority key identifier: E8:71:72:8C:3A:2C:26:D0:E6:08:00:4B:A7:D1:E5:A3:58:30:95:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6HFyjDosJtDmCABLp9Hlo1gwlWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/8367C13A6CA411ED9DD6425CC4F9AE02.roa Signing time: Wed 07 May 2025 02:39:34 +0000 ROA not before: Wed 07 May 2025 02:39:34 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9509 IP address blocks: 203.22.222.0/24 maxlen: 24 221.121.64.0/19 maxlen: 19 2406:4c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/6HFyjDosJtDmCABLp9Hlo1gwlWw.crl rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/6HFyjDosJtDmCABLp9Hlo1gwlWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6HFyjDosJtDmCABLp9Hlo1gwlWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 20 May 2025 02:08:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 467 (0x1d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6EFE, serialNumber=E871728C3A2C26D0E608004BA7D1E5A35830956C Validity Not Before: May 7 02:39:34 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681ac7e6-45aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:a8:70:29:d7:e6:46:b3:3b:a3:9d:f7:aa:66: d4:3b:f9:12:78:c9:73:bd:43:2e:3c:7d:63:52:5a: 86:95:91:34:32:40:66:77:b4:7a:fc:2a:25:a6:8f: 98:36:79:40:97:23:f8:0d:41:16:8a:51:87:ea:db: 3e:08:00:e8:c3:cc:b1:4b:55:76:dc:57:e7:3a:a0: 89:8a:61:b1:f9:a7:10:ac:d3:5d:72:eb:4f:cf:43: 94:4a:97:2b:48:7b:fd:3e:b9:5e:0b:18:68:b0:e0: 5e:93:66:9c:1d:aa:ae:48:2b:68:e2:88:2f:c6:33: b1:fb:21:c8:84:da:1d:8d:a3:0c:a0:c4:6a:0a:2d: 65:0d:ca:2c:8e:7c:a1:83:a0:f6:56:f6:f7:24:a4: 5f:5e:b6:37:59:66:66:a6:09:4e:c5:c6:ea:4b:bb: e8:35:0c:90:0a:61:cb:51:1f:3e:09:81:e1:09:c1: fb:c4:69:cd:88:29:e7:f9:5c:da:f3:be:0c:d2:27: 26:13:57:6f:46:ad:54:0a:03:4e:23:1c:c2:9f:f1: a1:ac:0b:d0:e9:5d:64:33:19:c9:a5:6a:04:b7:bb: 10:21:fb:6e:f0:85:09:28:32:f6:dc:34:9f:24:e6: 38:cf:28:a8:ce:48:9d:4d:84:27:8e:2c:0c:e0:d9: ff:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A5:00:4C:6B:9E:5F:9D:04:7B:83:A1:61:8E:C0:1F:26:31:D2:26 X509v3 Authority Key Identifier: keyid:E8:71:72:8C:3A:2C:26:D0:E6:08:00:4B:A7:D1:E5:A3:58:30:95:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/6HFyjDosJtDmCABLp9Hlo1gwlWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6HFyjDosJtDmCABLp9Hlo1gwlWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6EFE/E4C00D3C6CA111EDB44E765BC4F9AE02/8367C13A6CA411ED9DD6425CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.22.222.0/24 221.121.64.0/19 IPv6: 2406:4c00::/32 Signature Algorithm: sha256WithRSAEncryption 02:4e:1b:dd:17:6c:c1:67:7e:b0:9f:f5:e3:f8:b6:54:6a:ca: f6:f9:0b:d3:8a:eb:6d:7c:e4:11:98:3d:3c:bd:b3:59:b2:14: 75:ee:12:d4:1c:e2:16:41:14:61:91:68:9d:58:56:45:87:a3: 28:f0:9c:d8:82:ab:3d:22:cb:51:6b:f2:49:4c:7c:19:ea:ac: a2:94:7e:d6:98:0c:f6:5e:a7:88:18:5b:4c:95:75:4e:98:67: 9e:15:c2:71:b3:b1:c3:c6:fa:99:1f:fb:b6:f7:84:b3:7c:18: 67:e4:54:05:08:42:b7:71:87:bd:e8:25:b0:1c:c1:13:b3:29: 85:91:fb:e1:fa:5b:35:85:23:26:7f:3a:90:ac:96:7f:43:77: 22:a5:cc:a4:dc:1f:37:7b:fe:4b:d0:74:1d:89:6a:e5:c5:d1: a8:f9:4f:96:fa:3a:17:8b:89:40:9a:27:c3:a3:81:74:ef:bd: e9:d7:75:de:1c:31:7b:fd:8b:bf:51:62:d6:e1:44:50:93:09: 4b:9b:ae:b0:b4:bb:7a:49:f9:b9:6b:ee:0a:31:42:6e:92:9d: bd:b7:fc:38:4f:ec:d0:9f:e4:c3:b3:dd:97:f2:96:3f:94:74: 26:1e:34:23:d6:43:30:2a:9a:58:39:e6:55:3c:72:2a:80:d8: 81:3f:f2:6a -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAdMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTZFRkUxMTAvBgNVBAUTKEU4NzE3MjhDM0EyQzI2RDBFNjA4MDA0QkE3RDFFNUEz NTgzMDk1NkMwHhcNMjUwNTA3MDIzOTM0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhYzdlNi00NWFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5qhwKdfmRrM7o533qmbUO/kSeMlzvUMuPH1jUlqGlZE0MkBmd7R6/Colpo+Y NnlAlyP4DUEWilGH6ts+CADow8yxS1V23FfnOqCJimGx+acQrNNdcutPz0OUSpcr SHv9PrleCxhosOBek2acHaquSCto4ogvxjOx+yHIhNodjaMMoMRqCi1lDcosjnyh g6D2Vvb3JKRfXrY3WWZmpglOxcbqS7voNQyQCmHLUR8+CYHhCcH7xGnNiCnn+Vza 874M0icmE1dvRq1UCgNOIxzCn/GhrAvQ6V1kMxnJpWoEt7sQIftu8IUJKDL23DSf JOY4zyiozkidTYQnjiwM4Nn/OwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJqlAExr nl+dBHuDoWGOwB8mMdImMB8GA1UdIwQYMBaAFOhxcow6LCbQ5ggAS6fR5aNYMJVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNkVGRS9FNEMwMEQzQzZD QTExMUVEQjQ0RTc2NUJDNEY5QUUwMi82SEZ5akRvc0p0RG1DQUJMcDlIbG8xZ3ds V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZIRnlqRG9zSnREbUNBQkxwOUhsbzFnd2xXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTZFRkUvRTRDMDBEM0M2Q0ExMTFFREI0NEU3NjVCQzRGOUFFMDIvODM2N0MxM0E2 Q0E0MTFFRDlERDY0MjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBADLFt4DBAXdeUAwDQQCAAIwBwMFACQGTAAwDQYJKoZIhvcN AQELBQADggEBAAJOG90XbMFnfrCf9eP4tlRqyvb5C9OK62185BGYPTy9s1myFHXu EtQc4hZBFGGRaJ1YVkWHoyjwnNiCqz0iy1Fr8klMfBnqrKKUftaYDPZep4gYW0yV dU6YZ54VwnGzscPG+pkf+7b3hLN8GGfkVAUIQrdxh73oJbAcwROzKYWR++H6WzWF IyZ/OpCsln9DdyKlzKTcHzd7/kvQdB2JauXF0aj5T5b6OheLiUCaJ8OjgXTvvenX dd4cMXv9i79RYtbhRFCTCUubrrC0u3pJ+blr7goxQm6Snb23/DhP7NCf5MOz3Zfy lj+UdCYeNCPWQzAqmlg55lU8ciqA2IE/8mo= -----END CERTIFICATE-----Generated at Wed May 14 13:31:15 2025 by rpki-client