$ rpki-client -vvf rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/047E1E9C341C11EE84F4D52CC4F9AE02.roa File: 047E1E9C341C11EE84F4D52CC4F9AE02.roa (raw, json) Hash identifier: rbEk2KoFtT0uaq48+jo8FPtXO3/HKOrBaUxyg4fgBYU= Subject key identifier: 26:A3:60:E3:BC:44:6D:20:74:80:45:72:D7:25:70:E5:C4:53:F7:2E Certificate issuer: /CN=A91ECE62/serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Certificate serial: 014A Authority key identifier: 89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/047E1E9C341C11EE84F4D52CC4F9AE02.roa Signing time: Sun 27 Apr 2025 03:40:11 +0000 ROA not before: Sun 27 Apr 2025 03:40:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 202.36.70.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 18 May 2025 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 330 (0x14a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ECE62, serialNumber=89027890033D5D623BD4E43986E880F6AB138494 Validity Not Before: Apr 27 03:40:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=680da71b-c172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:34:05:8c:ee:68:7a:8b:73:b0:23:14:67:e8: 7b:03:71:31:f3:de:10:e1:44:54:3e:cf:5c:c9:be: 5b:a7:90:57:68:a8:bc:1c:14:18:94:b9:86:32:ba: 44:bd:63:9a:33:42:0e:ef:88:13:0b:86:44:1f:b4: b6:ea:69:74:cb:3f:10:69:11:56:58:44:d5:9e:0a: 2b:a8:bd:38:90:01:5b:f3:cb:50:7e:09:8b:b7:97: df:20:4c:af:51:8a:18:b8:07:ae:cd:7b:99:d5:15: e7:9f:8c:8f:92:b6:87:c6:ad:ad:a4:89:c2:3c:9b: e7:06:72:8b:f3:88:8b:a3:85:2e:8a:0c:83:bd:a0: 99:cc:e2:38:a8:9f:ec:a7:bb:ca:77:7a:f5:70:4d: d8:fb:cc:9f:4f:97:d7:cb:34:29:fc:ae:ce:1f:1d: 83:4b:d2:e8:0b:ea:3a:b0:58:6a:18:79:27:aa:8c: 0b:19:92:38:fe:f3:de:ad:07:4d:93:4d:78:02:3a: d9:da:c2:ee:a9:ca:fe:36:14:0f:d1:84:b3:3f:94: b6:38:cb:db:60:6a:2c:96:d7:46:87:f6:52:1b:8d: 83:91:fa:82:72:e0:99:57:0b:97:1f:93:e9:44:2d: 82:66:18:c4:a8:a7:78:c4:f9:77:0c:21:48:91:c5: bb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:A3:60:E3:BC:44:6D:20:74:80:45:72:D7:25:70:E5:C4:53:F7:2E X509v3 Authority Key Identifier: keyid:89:02:78:90:03:3D:5D:62:3B:D4:E4:39:86:E8:80:F6:AB:13:84:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/iQJ4kAM9XWI71OQ5huiA9qsThJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/iQJ4kAM9XWI71OQ5huiA9qsThJQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ECE62/21D5CCDE341B11EE9F849028C4F9AE02/047E1E9C341C11EE84F4D52CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.70.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:27:6c:fa:18:ac:94:e5:97:95:50:da:e9:17:06:bc:00:79: 25:1d:12:39:6e:be:1f:94:c1:85:f7:75:d2:87:af:81:f5:5c: ce:72:ba:8b:58:1c:51:63:e0:91:69:dc:f4:68:49:e2:ad:39: 11:8a:82:a2:75:f7:1a:c6:c9:ef:5d:14:d7:8e:6c:9f:ac:da: b5:c8:30:cc:ed:f7:a3:3c:ea:a8:c4:8d:38:f9:00:f2:e2:58: 3c:36:63:cf:09:01:e7:5c:3d:b2:07:37:db:31:84:a1:12:28: c7:87:1b:96:01:e0:95:82:a4:60:d3:82:54:7a:da:f4:f1:99: 0d:5b:b4:01:54:fd:1c:81:90:e9:8a:76:07:2d:34:f7:83:8d: fd:2b:ab:00:17:16:a2:3b:ed:c9:86:ca:6a:84:99:69:7d:a1: b0:9d:ed:ce:ed:2c:32:6e:2e:7d:53:78:db:1d:76:ec:bb:4e: d9:03:7a:7c:18:ec:f8:dd:5c:d9:4a:98:f2:92:e9:d7:a0:d3: ae:7b:58:c1:06:54:5b:39:7c:ea:91:af:c2:21:c0:a2:7b:03: 44:c4:df:ac:f9:84:47:85:9c:4b:95:fc:b4:a7:30:7b:e2:95: 25:1e:ce:e1:a7:c5:b3:32:da:46:a0:06:c9:e7:76:17:44:b8: 40:64:2b:92 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAUowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUNFNjIxMTAvBgNVBAUTKDg5MDI3ODkwMDMzRDVENjIzQkQ0RTQzOTg2RTg4MEY2 QUIxMzg0OTQwHhcNMjUwNDI3MDM0MDExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODBkYTcxYi1jMTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8DQFjO5oeotzsCMUZ+h7A3Ex894Q4URUPs9cyb5bp5BXaKi8HBQYlLmGMrpE vWOaM0IO74gTC4ZEH7S26ml0yz8QaRFWWETVngorqL04kAFb88tQfgmLt5ffIEyv UYoYuAeuzXuZ1RXnn4yPkraHxq2tpInCPJvnBnKL84iLo4UuigyDvaCZzOI4qJ/s p7vKd3r1cE3Y+8yfT5fXyzQp/K7OHx2DS9LoC+o6sFhqGHknqowLGZI4/vPerQdN k014AjrZ2sLuqcr+NhQP0YSzP5S2OMvbYGosltdGh/ZSG42DkfqCcuCZVwuXH5Pp RC2CZhjEqKd4xPl3DCFIkcW7OQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCajYOO8 RG0gdIBFctclcOXEU/cuMB8GA1UdIwQYMBaAFIkCeJADPV1iO9TkOYbogParE4SU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQ0U2Mi8yMUQ1Q0NERTM0 MUIxMUVFOUY4NDkwMjhDNEY5QUUwMi9pUUo0a0FNOVhXSTcxT1E1aHVpQTlxc1Ro SlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lRSjRrQU05WFdJNzFPUTVodWlBOXFzVGhKUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUNFNjIvMjFENUNDREUzNDFCMTFFRTlGODQ5MDI4QzRGOUFFMDIvMDQ3RTFFOUMz NDFDMTFFRTg0RjRENTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJEYwDQYJKoZIhvcNAQELBQADggEBAFwnbPoYrJTll5VQ 2ukXBrwAeSUdEjluvh+UwYX3ddKHr4H1XM5yuotYHFFj4JFp3PRoSeKtORGKgqJ1 9xrGye9dFNeObJ+s2rXIMMzt96M86qjEjTj5APLiWDw2Y88JAedcPbIHN9sxhKES KMeHG5YB4JWCpGDTglR62vTxmQ1btAFU/RyBkOmKdgctNPeDjf0rqwAXFqI77cmG ymqEmWl9obCd7c7tLDJuLn1TeNsdduy7TtkDenwY7PjdXNlKmPKS6deg0657WMEG VFs5fOqRr8IhwKJ7A0TE36z5hEeFnEuV/LSnMHvilSUezuGnxbMy2kagBsnndhdE uEBkK5I= -----END CERTIFICATE-----Generated at Sun May 11 15:05:52 2025 by rpki-client