$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/9DE187FA2A8211F08575E277C4F9AE02.roa File: 9DE187FA2A8211F08575E277C4F9AE02.roa (raw, json) Hash identifier: 3cMcK2pghckFQx7VXz26rv14j8WSI+XuvOlTpFA3AVU= Subject key identifier: 27:75:44:21:F1:2E:F3:BE:03:70:3B:27:A7:DD:79:84:06:E4:EE:9A Certificate issuer: /CN=A91EA449/serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Certificate serial: CD Authority key identifier: 6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/9DE187FA2A8211F08575E277C4F9AE02.roa Signing time: Tue 06 May 2025 14:01:33 +0000 ROA not before: Tue 06 May 2025 14:01:33 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 9009 IP address blocks: 203.21.95.0/24 maxlen: 24 203.27.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 05:08:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA449, serialNumber=6F65A0C92260B1ADA23187B29BAC3BEADAC05661 Validity Not Before: May 6 14:01:33 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=681a163d-7043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:7e:b0:8c:df:9c:a8:00:00:0b:f0:cb:d6:13: 86:45:4f:0c:27:6f:c3:6d:d4:21:f8:c1:a0:96:be: de:35:b5:ae:47:35:ff:fc:66:05:61:68:aa:a7:70: 38:53:d8:14:a3:f6:c2:49:56:95:3a:f7:33:0c:01: 54:69:96:d1:b6:eb:34:6c:04:3c:7d:fb:6e:d1:f9: bc:d5:e6:77:ea:54:14:c5:e1:e1:36:9e:24:ba:9e: ac:c5:0e:13:7e:77:8f:b6:25:36:a5:62:6b:59:b8: 73:31:b7:52:98:18:e9:a7:c4:dc:82:9d:71:ef:32: 5a:fa:17:85:5f:96:e6:16:95:13:13:27:a8:b8:3c: 39:10:44:5e:08:38:6a:a3:96:a2:43:93:32:97:1b: 67:02:24:6a:19:63:22:58:ff:44:ed:df:bb:cb:84: 94:a8:34:f7:f5:68:56:b5:e3:b0:21:5d:bb:35:f3: f8:99:a6:bd:56:01:ab:e3:85:b3:ce:71:65:19:4e: 25:68:a6:7d:e1:20:c2:36:78:68:76:28:9a:08:17: 26:79:82:c2:30:fd:c0:09:84:a5:04:c7:22:00:1d: 98:75:2f:19:c0:c8:cc:22:3c:0b:24:5b:43:4f:de: c5:9a:07:30:dd:7b:0e:ca:b9:a0:50:11:dd:aa:d0: a2:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:75:44:21:F1:2E:F3:BE:03:70:3B:27:A7:DD:79:84:06:E4:EE:9A X509v3 Authority Key Identifier: keyid:6F:65:A0:C9:22:60:B1:AD:A2:31:87:B2:9B:AC:3B:EA:DA:C0:56:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/b2WgySJgsa2iMYeym6w76trAVmE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b2WgySJgsa2iMYeym6w76trAVmE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA449/401790FC073C11EF8D1DB056C4F9AE02/9DE187FA2A8211F08575E277C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.21.95.0/24 203.27.70.0/24 Signature Algorithm: sha256WithRSAEncryption 75:13:e2:7b:7f:2d:ed:11:ea:c4:3b:5f:b0:1f:dd:e1:45:db: 0f:24:78:c6:f9:ec:f5:da:99:2a:35:21:b6:d8:78:cd:b6:a4: 22:f3:3d:ea:4b:4d:e4:32:fa:cc:aa:dc:22:5f:a6:3a:95:19: 8d:99:e9:e0:7e:c6:34:51:ed:f1:11:7b:26:2b:77:eb:59:de: 34:56:db:b1:f7:d1:ed:b1:cd:2e:66:38:cc:a9:7d:39:d4:9e: 6c:ff:26:05:93:26:07:f3:ac:c1:f5:81:83:bd:c0:92:02:0b: a5:07:87:e0:60:2d:de:6b:7b:67:74:f5:80:7c:a7:cd:cb:72: 17:af:c0:2d:60:3e:6d:24:50:d6:15:47:9a:19:da:66:bc:97: 05:92:71:a0:8e:61:45:5d:06:bd:8b:c4:a1:a8:3c:0f:29:05: ef:89:92:d8:94:68:98:27:74:09:bf:ae:0b:62:ee:a5:95:22: da:5c:ba:cb:da:78:39:01:24:28:fe:86:50:8e:4e:00:f1:9f: 4f:9e:89:79:6e:a5:89:ae:4b:de:91:8d:9f:de:fb:1b:a0:8a: 79:de:18:80:0a:59:ef:10:2d:62:e3:57:d1:6a:3e:fa:e5:08: 4e:4b:fd:6e:6b:2e:0e:c9:50:bc:6f:7a:3c:e0:3e:bc:ac:13: 3a:b2:ff:e8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE0NDkxMTAvBgNVBAUTKDZGNjVBMEM5MjI2MEIxQURBMjMxODdCMjlCQUMzQkVB REFDMDU2NjEwHhcNMjUwNTA2MTQwMTMzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhMTYzZC03MDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmH6wjN+cqAAAC/DL1hOGRU8MJ2/DbdQh+MGglr7eNbWuRzX//GYFYWiqp3A4 U9gUo/bCSVaVOvczDAFUaZbRtus0bAQ8fftu0fm81eZ36lQUxeHhNp4kup6sxQ4T fnePtiU2pWJrWbhzMbdSmBjpp8Tcgp1x7zJa+heFX5bmFpUTEyeouDw5EEReCDhq o5aiQ5MylxtnAiRqGWMiWP9E7d+7y4SUqDT39WhWteOwIV27NfP4maa9VgGr44Wz znFlGU4laKZ94SDCNnhodiiaCBcmeYLCMP3ACYSlBMciAB2YdS8ZwMjMIjwLJFtD T97Fmgcw3XsOyrmgUBHdqtCiKwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCd1RCHx LvO+A3A7J6fdeYQG5O6aMB8GA1UdIwQYMBaAFG9loMkiYLGtojGHspusO+rawFZh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTQ0OS80MDE3OTBGQzA3 M0MxMUVGOEQxREIwNTZDNEY5QUUwMi9iMldneVNKZ3NhMmlNWWV5bTZ3NzZ0ckFW bUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2IyV2d5U0pnc2EyaU1ZZXltNnc3NnRyQVZtRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE0NDkvNDAxNzkwRkMwNzNDMTFFRjhEMURCMDU2QzRGOUFFMDIvOURFMTg3RkEy QTgyMTFGMDg1NzVFMjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLFV8DBADLG0YwDQYJKoZIhvcNAQELBQADggEBAHUT4nt/ Le0R6sQ7X7Af3eFF2w8keMb57PXamSo1IbbYeM22pCLzPepLTeQy+syq3CJfpjqV GY2Z6eB+xjRR7fEReyYrd+tZ3jRW27H30e2xzS5mOMypfTnUnmz/JgWTJgfzrMH1 gYO9wJICC6UHh+BgLd5re2d09YB8p83LchevwC1gPm0kUNYVR5oZ2ma8lwWScaCO YUVdBr2LxKGoPA8pBe+JktiUaJgndAm/rgti7qWVItpcusvaeDkBJCj+hlCOTgDx n0+eiXlupYmuS96RjZ/e+xuginneGIAKWe8QLWLjV9FqPvrlCE5L/W5rLg7JULxv ejzgPrysEzqy/+g= -----END CERTIFICATE-----Generated at Thu May 15 09:55:21 2025 by rpki-client