$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/9ECB0CF0275211F09DB11A29C4F9AE02.roa File: 9ECB0CF0275211F09DB11A29C4F9AE02.roa (raw, json) Hash identifier: Pfe2htQw7FQ69zCdUGOvP9JJR+bvYFVzLzCF/2HMviU= Subject key identifier: D3:2B:47:BE:36:45:6C:0B:74:95:B9:9A:9F:3C:C4:0A:0C:CF:D7:8B Certificate issuer: /CN=A91E7A75/serialNumber=97ACDDE2911A09F3935F1860DB057D4CFF46B2C5 Certificate serial: 06 Authority key identifier: 97:AC:DD:E2:91:1A:09:F3:93:5F:18:60:DB:05:7D:4C:FF:46:B2:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l6zd4pEaCfOTXxhg2wV9TP9GssU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/9ECB0CF0275211F09DB11A29C4F9AE02.roa Signing time: Fri 02 May 2025 12:40:26 +0000 ROA not before: Fri 02 May 2025 12:40:26 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 153305 IP address blocks: 203.123.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/l6zd4pEaCfOTXxhg2wV9TP9GssU.crl rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/l6zd4pEaCfOTXxhg2wV9TP9GssU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l6zd4pEaCfOTXxhg2wV9TP9GssU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 16 May 2025 07:11:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7A75, serialNumber=97ACDDE2911A09F3935F1860DB057D4CFF46B2C5 Validity Not Before: May 2 12:40:26 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6814bd39-f53b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e2:49:c6:55:2a:a5:7b:63:ab:1b:8b:af:be: 86:1a:ac:f3:81:1a:ba:da:bc:f9:a7:41:d7:a3:27: 59:78:57:e5:e6:53:8d:9d:65:e6:d6:f5:2e:e6:c4: b0:2c:52:af:89:ae:9b:55:11:12:94:39:7a:b4:1e: 99:d0:e7:68:95:47:1e:7d:fe:76:82:b8:f6:42:93: fe:d8:ae:66:b5:ea:88:e8:c2:f6:17:58:c1:ca:ee: d4:88:f3:ca:7d:21:2f:26:ab:c0:0f:fa:b0:f1:f8: ff:50:55:ba:19:a1:d1:27:b9:58:ad:46:6a:2d:a7: fa:82:1f:a1:50:f3:f4:2f:4a:54:96:75:52:c9:26: 51:bc:aa:68:b8:7a:b6:58:c0:df:3d:7b:b8:08:7b: b3:46:53:98:d7:25:c5:45:c6:e1:a6:49:0a:0d:05: 8e:47:c9:0e:3a:c6:55:9f:bf:bb:34:df:2d:e1:94: 5a:d8:53:af:9b:d2:6f:d1:f5:b0:a1:62:a8:ab:4f: 78:55:31:33:cb:28:9c:f5:88:a1:a2:b2:98:92:3b: 82:64:20:3d:2b:f0:ec:ad:14:03:1f:2a:47:2b:3a: 35:8a:bc:24:14:f1:bc:07:86:a1:08:91:69:6e:04: 38:c6:8f:d5:f7:a1:d2:c4:cb:8d:92:ab:b9:46:e4: a0:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:2B:47:BE:36:45:6C:0B:74:95:B9:9A:9F:3C:C4:0A:0C:CF:D7:8B X509v3 Authority Key Identifier: keyid:97:AC:DD:E2:91:1A:09:F3:93:5F:18:60:DB:05:7D:4C:FF:46:B2:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/l6zd4pEaCfOTXxhg2wV9TP9GssU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l6zd4pEaCfOTXxhg2wV9TP9GssU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/9ECB0CF0275211F09DB11A29C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.123.53.0/24 Signature Algorithm: sha256WithRSAEncryption 43:da:a1:80:44:34:4d:7d:0c:6a:65:f3:30:cd:eb:dd:60:65: 46:0e:fd:d7:d5:06:61:5f:e5:b4:ed:ff:a8:33:65:4f:19:5e: c3:3a:4b:29:62:e4:be:48:ad:b9:88:65:97:b3:43:0e:3e:bc: 1f:45:81:64:46:ea:6a:7a:04:9b:2b:b6:51:6c:d7:b7:65:3e: de:0a:e5:1f:ab:39:ad:1c:e9:db:b9:2f:c4:e5:6a:f5:ed:03: d9:e5:f2:b7:cd:d3:0c:03:61:43:72:fc:53:53:26:aa:6f:91: b6:5e:9f:ec:20:1f:66:fa:cf:fb:c5:f7:d4:c9:55:40:e6:07: 1c:39:22:27:eb:ea:5f:7a:4b:ea:88:8b:17:36:d8:ea:f8:e7: 33:9d:96:21:68:d3:ef:fd:7c:e4:58:a4:c4:24:32:9c:c4:bb: 7c:27:b5:3c:31:43:15:eb:1c:10:19:7a:60:2f:48:b4:b1:22: f8:96:06:89:7a:e7:ad:50:6b:6d:e1:16:d5:69:0f:4b:8e:3d: 62:60:35:32:6e:58:39:c5:75:52:aa:4c:b9:81:6e:bc:94:72: ff:13:0a:98:45:c9:0e:95:c6:4d:0b:26:b8:19:5c:86:12:87: 40:ae:70:9b:89:3a:c3:8b:c0:f5:04:69:1e:97:9f:e9:b8:88: 37:54:d4:0d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF N0E3NTExMC8GA1UEBRMoOTdBQ0RERTI5MTFBMDlGMzkzNUYxODYwREIwNTdENENG RjQ2QjJDNTAeFw0yNTA1MDIxMjQwMjZaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTRiZDM5LWY1M2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDT4knGVSqle2OrG4uvvoYarPOBGrravPmnQdejJ1l4V+XmU42dZebW9S7mxLAs Uq+JrptVERKUOXq0HpnQ52iVRx59/naCuPZCk/7Yrma16ojowvYXWMHK7tSI88p9 IS8mq8AP+rDx+P9QVboZodEnuVitRmotp/qCH6FQ8/QvSlSWdVLJJlG8qmi4erZY wN89e7gIe7NGU5jXJcVFxuGmSQoNBY5HyQ46xlWfv7s03y3hlFrYU6+b0m/R9bCh YqirT3hVMTPLKJz1iKGispiSO4JkID0r8OytFAMfKkcrOjWKvCQU8bwHhqEIkWlu BDjGj9X3odLEy42Sq7lG5KAFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU0ytHvjZF bAt0lbmanzzECgzP14swHwYDVR0jBBgwFoAUl6zd4pEaCfOTXxhg2wV9TP9GssUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3QTc1L0U2RjRCNkRBMjc1 MTExRjBBQ0YwQUYyNEM0RjlBRTAyL2w2emQ0cEVhQ2ZPVFh4aGcyd1Y5VFA5R3Nz VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbDZ6ZDRwRWFDZk9UWHhoZzJ3VjlUUDlHc3NVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0E3NS9FNkY0QjZEQTI3NTExMUYwQUNGMEFGMjRDNEY5QUUwMi85RUNCMENGMDI3 NTIxMUYwOURCMTFBMjlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMt7NTANBgkqhkiG9w0BAQsFAAOCAQEAQ9qhgEQ0TX0MamXz MM3r3WBlRg7919UGYV/ltO3/qDNlTxlewzpLKWLkvkituYhll7NDDj68H0WBZEbq anoEmyu2UWzXt2U+3grlH6s5rRzp27kvxOVq9e0D2eXyt83TDANhQ3L8U1Mmqm+R tl6f7CAfZvrP+8X31MlVQOYHHDkiJ+vqX3pL6oiLFzbY6vjnM52WIWjT7/185Fik xCQynMS7fCe1PDFDFescEBl6YC9ItLEi+JYGiXrnrVBrbeEW1WkPS449YmA1Mm5Y OcV1UqpMuYFuvJRy/xMKmEXJDpXGTQsmuBlchhKHQK5wm4k6w4vA9QRpHpef6biI N1TUDQ== -----END CERTIFICATE-----Generated at Sun May 11 06:33:07 2025 by rpki-client