$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/9217B6681AA811F0B10C6412C4F9AE02.roa File: 9217B6681AA811F0B10C6412C4F9AE02.roa (raw, json) Hash identifier: k9SmP/i/EacapJo/9m72S70HfODKRHtE2FbOisDtRLc= Subject key identifier: A1:27:4B:6B:9B:61:D1:6A:E2:EB:E4:A7:0C:93:1E:AB:93:75:29:B7 Certificate issuer: /CN=A91F3CB1/serialNumber=7AD79EEB3B928354D950DC6E4F8BECCB25C2FC4B Certificate serial: 0F Authority key identifier: 7A:D7:9E:EB:3B:92:83:54:D9:50:DC:6E:4F:8B:EC:CB:25:C2:FC:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/9217B6681AA811F0B10C6412C4F9AE02.roa Signing time: Tue 29 Apr 2025 08:14:00 +0000 ROA not before: Tue 29 Apr 2025 08:14:00 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 7468 IP address blocks: 202.60.224.0/24 maxlen: 24 202.60.225.0/24 maxlen: 24 202.60.226.0/24 maxlen: 24 202.60.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.crl rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 22 May 2025 07:20:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15 (0xf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3CB1, serialNumber=7AD79EEB3B928354D950DC6E4F8BECCB25C2FC4B Validity Not Before: Apr 29 08:14:00 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68108a48-a605 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7f:19:82:24:97:85:22:6b:0a:18:b9:fb:92: ba:8d:95:89:20:6c:9a:8d:bc:3f:b7:d5:bc:7f:9a: 35:e6:0e:10:b2:ef:62:5c:5f:2a:0f:d0:9e:48:17: e6:69:f6:c0:b8:86:82:73:7c:53:a5:b7:c8:31:db: d4:0a:76:b2:a4:3d:19:40:8b:cc:02:43:e5:6f:c7: 32:cc:70:fe:9a:31:60:e7:41:07:38:b5:f3:21:76: 3d:27:84:79:0e:07:cd:25:e5:1c:0c:1a:cb:51:39: bf:60:87:66:52:cf:7f:0c:20:cd:cc:52:e2:76:69: 54:b8:e8:d4:a5:26:2c:a7:77:c9:85:84:60:fc:fc: 90:77:98:a4:c2:5f:f3:8f:df:0f:3f:cb:75:05:2b: 83:ff:2e:19:e7:33:51:25:0f:1c:c6:84:60:ea:13: 33:95:aa:71:bf:6b:46:f9:f6:1f:e2:f4:7a:f6:1e: d3:fc:3f:6b:2f:88:2f:2d:88:10:ff:23:90:71:7e: 6a:6d:36:79:78:b0:23:69:85:77:5c:fa:a1:aa:65: 34:63:5d:54:4d:22:c1:7f:1d:03:d5:56:24:68:90: bd:c4:aa:2f:1a:a2:7d:d0:ec:1d:09:f5:26:0a:3e: ce:1d:fc:6b:5f:83:e9:66:b5:98:88:59:6c:ca:ad: 51:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:27:4B:6B:9B:61:D1:6A:E2:EB:E4:A7:0C:93:1E:AB:93:75:29:B7 X509v3 Authority Key Identifier: keyid:7A:D7:9E:EB:3B:92:83:54:D9:50:DC:6E:4F:8B:EC:CB:25:C2:FC:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/9217B6681AA811F0B10C6412C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.60.224.0/22 Signature Algorithm: sha256WithRSAEncryption d8:d0:dd:ac:ae:9f:4e:2f:c9:10:ee:b8:08:c5:1e:53:7c:9e: 74:80:bb:92:cd:7f:97:94:f7:3f:c9:38:dd:38:a0:2f:a7:20: 16:93:e5:22:f0:2c:7d:86:3c:88:b3:60:7a:4f:7b:2f:5e:6e: 1d:00:4c:69:0a:53:c1:31:12:79:fe:b7:46:85:62:d3:dd:f5: 81:3f:78:82:08:61:fc:fd:26:11:d6:79:e9:24:6e:79:43:aa: 82:b8:69:ea:b9:5e:05:c4:9b:12:55:80:63:a9:63:24:e8:3c: 63:0b:82:b6:47:a6:93:c3:20:9f:8f:24:2b:23:d2:b9:49:b5: 9b:61:4d:a1:38:5b:75:6a:5e:78:ce:71:68:46:f8:7b:a6:8b: bb:58:0d:e0:e9:1e:c3:7b:c5:0c:87:ab:95:a7:f8:df:a2:08: 68:7f:ad:bc:42:dd:a8:38:a7:99:4e:8e:11:4d:07:9e:cf:68: 51:5b:a5:12:9a:7d:28:a7:d9:94:cc:a4:13:1f:f6:83:0c:c9: 8d:bc:1a:ca:40:62:c0:93:5d:dc:7d:79:32:01:e6:67:47:d6: e2:28:5b:9a:cc:b8:97:61:8a:64:61:24:cc:ac:15:5c:dd:37: 7f:87:3f:6a:1e:f6:a5:f1:2e:29:8a:0c:76:bd:00:c2:46:51: b4:f2:4a:fd -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG M0NCMTExMC8GA1UEBRMoN0FENzlFRUIzQjkyODM1NEQ5NTBEQzZFNEY4QkVDQ0Iy NUMyRkM0QjAeFw0yNTA0MjkwODE0MDBaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTA4YTQ4LWE2MDUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6fxmCJJeFImsKGLn7krqNlYkgbJqNvD+31bx/mjXmDhCy72JcXyoP0J5IF+Zp 9sC4hoJzfFOlt8gx29QKdrKkPRlAi8wCQ+VvxzLMcP6aMWDnQQc4tfMhdj0nhHkO B80l5RwMGstROb9gh2ZSz38MIM3MUuJ2aVS46NSlJiynd8mFhGD8/JB3mKTCX/OP 3w8/y3UFK4P/LhnnM1ElDxzGhGDqEzOVqnG/a0b59h/i9Hr2HtP8P2sviC8tiBD/ I5BxfmptNnl4sCNphXdc+qGqZTRjXVRNIsF/HQPVViRokL3Eqi8aon3Q7B0J9SYK Ps4d/Gtfg+lmtZiIWWzKrVFFAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUoSdLa5th 0Wri6+SnDJMeq5N1KbcwHwYDVR0jBBgwFoAUetee6zuSg1TZUNxuT4vsyyXC/Esw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzQ0IxLzJEODQzNjk4MTY4 NjExRjA4OTE2OTg1QkM0RjlBRTAyL2V0ZWU2enVTZzFUWlVOeHVUNHZzeXlYQ19F cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZXRlZTZ6dVNnMVRaVU54dVQ0dnN5eVhDX0VzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0NCMS8yRDg0MzY5ODE2ODYxMUYwODkxNjk4NUJDNEY5QUUwMi85MjE3QjY2ODFB QTgxMUYwQjEwQzY0MTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAso84DANBgkqhkiG9w0BAQsFAAOCAQEA2NDdrK6fTi/JEO64 CMUeU3yedIC7ks1/l5T3P8k43TigL6cgFpPlIvAsfYY8iLNgek97L15uHQBMaQpT wTESef63RoVi0931gT94gghh/P0mEdZ56SRueUOqgrhp6rleBcSbElWAY6ljJOg8 YwuCtkemk8Mgn48kKyPSuUm1m2FNoThbdWpeeM5xaEb4e6aLu1gN4Okew3vFDIer laf436IIaH+tvELdqDinmU6OEU0Hns9oUVulEpp9KKfZlMykEx/2gwzJjbwaykBi wJNd3H15MgHmZ0fW4ihbmsy4l2GKZGEkzKwVXN03f4c/ah72pfEuKYoMdr0AwkZR tPJK/Q== -----END CERTIFICATE-----Generated at Thu May 15 19:10:22 2025 by rpki-client