$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/9E314E3A275211F09DB11A29C4F9AE02.roa File: 9E314E3A275211F09DB11A29C4F9AE02.roa (raw, json) Hash identifier: xeAIE2lZn+YXNt0L7vlDN0DVHrs7CNulexHVxcXbegs= Subject key identifier: 19:C8:3E:1A:25:27:85:37:FE:22:39:18:5F:22:05:BF:05:9A:AD:A5 Certificate issuer: /CN=A91E7A75/serialNumber=97ACDDE2911A09F3935F1860DB057D4CFF46B2C5 Certificate serial: 05 Authority key identifier: 97:AC:DD:E2:91:1A:09:F3:93:5F:18:60:DB:05:7D:4C:FF:46:B2:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l6zd4pEaCfOTXxhg2wV9TP9GssU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/9E314E3A275211F09DB11A29C4F9AE02.roa Signing time: Fri 02 May 2025 12:40:25 +0000 ROA not before: Fri 02 May 2025 12:40:25 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 140982 IP address blocks: 203.123.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/l6zd4pEaCfOTXxhg2wV9TP9GssU.crl rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/l6zd4pEaCfOTXxhg2wV9TP9GssU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l6zd4pEaCfOTXxhg2wV9TP9GssU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 06:53:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7A75, serialNumber=97ACDDE2911A09F3935F1860DB057D4CFF46B2C5 Validity Not Before: May 2 12:40:25 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6814bd38-a67d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7b:b0:44:ff:f0:14:43:db:f4:9c:30:5b:ac: 60:30:4e:7e:a6:fd:15:1a:e2:52:67:34:6a:be:e4: 52:69:45:72:d7:0a:66:1c:e6:a1:4b:4d:d2:db:99: 7f:f8:b1:f4:43:b5:07:a8:40:74:45:2c:e4:c0:b7: 3a:f0:57:17:80:5e:c9:bf:4d:a5:95:98:95:ab:8d: d3:74:9a:2a:23:70:16:d4:02:5d:5b:4d:5d:6d:9b: 02:77:8b:0b:d9:f4:9b:0c:4e:63:1d:ca:f7:4f:02: fd:10:b3:28:1c:24:66:a6:ba:96:1e:a7:0a:63:c7: 8b:2e:05:8f:7e:71:33:a6:49:62:0c:13:bb:30:b7: ce:ca:ae:65:d4:07:06:83:81:69:e9:48:bb:45:c7: a9:2e:2b:08:bb:10:94:f3:46:ec:84:dd:af:9d:09: 0d:b8:f9:4f:29:35:e9:45:6d:14:3b:17:cf:16:ef: 96:e6:cf:f3:cc:d5:1f:4b:85:b8:56:42:4a:5c:b9: 06:8a:7e:a4:d7:c7:28:63:7f:a6:44:7f:7e:18:73: 51:f0:5a:b7:49:43:b1:5e:db:30:be:68:6c:a6:2b: ef:f5:c8:b7:b8:19:22:92:1b:e0:2b:87:60:47:56: 4b:47:29:56:5c:17:02:85:83:5d:42:44:bc:86:32: 77:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:C8:3E:1A:25:27:85:37:FE:22:39:18:5F:22:05:BF:05:9A:AD:A5 X509v3 Authority Key Identifier: keyid:97:AC:DD:E2:91:1A:09:F3:93:5F:18:60:DB:05:7D:4C:FF:46:B2:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/l6zd4pEaCfOTXxhg2wV9TP9GssU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l6zd4pEaCfOTXxhg2wV9TP9GssU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/9E314E3A275211F09DB11A29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.123.54.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:cb:60:77:02:59:cb:0e:4a:f5:55:14:fb:a3:d2:79:18:66: 84:c9:1c:0d:6a:77:1b:16:c4:3a:f2:b0:f1:2a:69:f5:a0:2f: 7e:d3:1f:4f:65:3d:7b:3a:41:3d:9e:f4:1d:5d:f6:a4:79:c2: 6c:31:1d:5c:76:15:5e:f5:b8:15:8a:b0:8c:65:e1:ed:30:fd: b0:17:f6:94:d6:84:42:82:99:a4:42:e2:77:38:95:56:35:6e: fc:ac:ab:4b:07:3a:23:48:e0:68:8c:3c:87:1b:cf:c6:37:9d: 00:ec:ef:23:1f:5f:61:b7:08:42:a8:08:cc:0b:0c:d2:21:59: de:f2:b3:64:b2:bf:e3:a2:d6:96:09:82:97:aa:dd:bc:42:83: 93:6b:c1:7d:e8:3f:1c:df:f4:47:6e:c0:97:6d:7b:8e:ad:9f: 7a:7b:64:e2:94:1c:67:39:d8:d7:32:5f:a6:30:3b:7b:b8:40: 2a:8b:2b:ac:d3:c5:a2:0a:de:cd:7b:be:53:39:4f:9c:e9:ea: 9f:2c:f1:9c:33:84:2e:a6:f6:3b:69:d9:77:f3:93:ce:17:ea: 71:6a:c9:c4:b5:16:d7:f8:a5:8d:c5:b1:2b:64:1e:7b:7d:3b: 9b:0c:86:38:8c:25:8a:b1:83:a4:63:44:b3:b2:68:30:fb:38: 41:17:c1:6d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF N0E3NTExMC8GA1UEBRMoOTdBQ0RERTI5MTFBMDlGMzkzNUYxODYwREIwNTdENENG RjQ2QjJDNTAeFw0yNTA1MDIxMjQwMjVaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTRiZDM4LWE2N2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/e7BE//AUQ9v0nDBbrGAwTn6m/RUa4lJnNGq+5FJpRXLXCmYc5qFLTdLbmX/4 sfRDtQeoQHRFLOTAtzrwVxeAXsm/TaWVmJWrjdN0miojcBbUAl1bTV1tmwJ3iwvZ 9JsMTmMdyvdPAv0QsygcJGamupYepwpjx4suBY9+cTOmSWIME7swt87KrmXUBwaD gWnpSLtFx6kuKwi7EJTzRuyE3a+dCQ24+U8pNelFbRQ7F88W75bmz/PM1R9LhbhW QkpcuQaKfqTXxyhjf6ZEf34Yc1HwWrdJQ7Fe2zC+aGymK+/1yLe4GSKSG+Arh2BH VktHKVZcFwKFg11CRLyGMnf3AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUGcg+GiUn hTf+IjkYXyIFvwWaraUwHwYDVR0jBBgwFoAUl6zd4pEaCfOTXxhg2wV9TP9GssUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3QTc1L0U2RjRCNkRBMjc1 MTExRjBBQ0YwQUYyNEM0RjlBRTAyL2w2emQ0cEVhQ2ZPVFh4aGcyd1Y5VFA5R3Nz VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbDZ6ZDRwRWFDZk9UWHhoZzJ3VjlUUDlHc3NVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0E3NS9FNkY0QjZEQTI3NTExMUYwQUNGMEFGMjRDNEY5QUUwMi85RTMxNEUzQTI3 NTIxMUYwOURCMTFBMjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMt7NjANBgkqhkiG9w0BAQsFAAOCAQEAe8tgdwJZyw5K9VUU +6PSeRhmhMkcDWp3GxbEOvKw8Spp9aAvftMfT2U9ezpBPZ70HV32pHnCbDEdXHYV XvW4FYqwjGXh7TD9sBf2lNaEQoKZpELidziVVjVu/KyrSwc6I0jgaIw8hxvPxjed AOzvIx9fYbcIQqgIzAsM0iFZ3vKzZLK/46LWlgmCl6rdvEKDk2vBfeg/HN/0R27A l217jq2fentk4pQcZznY1zJfpjA7e7hAKosrrNPFogrezXu+UzlPnOnqnyzxnDOE Lqb2O2nZd/OTzhfqcWrJxLUW1/iljcWxK2Qee307mwyGOIwlirGDpGNEs7JoMPs4 QRfBbQ== -----END CERTIFICATE-----Generated at Mon May 12 04:08:56 2025 by rpki-client