$ rpki-client -vvf rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/2EDEA8344A5711F0BD4BC13AC4F9AE02.roa File: 2EDEA8344A5711F0BD4BC13AC4F9AE02.roa (raw, json) Hash identifier: r2HES/7CUo40HGeXhmTY61PHC2lO/T7eeHbuuq9LOdc= Subject key identifier: 8E:C6:6D:DE:4E:83:A3:5F:61:98:94:30:02:50:64:28:D1:40:97:E1 Certificate issuer: /CN=A9120522/serialNumber=4DBFB7C0F2D8576BA508F36369198B8491C2B334 Certificate serial: 07D8 Authority key identifier: 4D:BF:B7:C0:F2:D8:57:6B:A5:08:F3:63:69:19:8B:84:91:C2:B3:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/2EDEA8344A5711F0BD4BC13AC4F9AE02.roa Signing time: Mon 16 Jun 2025 02:11:16 +0000 ROA not before: Mon 16 Jun 2025 02:11:16 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 4049 IP address blocks: 202.49.16.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.crl rsync://rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 20:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2008 (0x7d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120522, serialNumber=4DBFB7C0F2D8576BA508F36369198B8491C2B334 Validity Not Before: Jun 16 02:11:16 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=684f7d44-9ac2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:27:7e:f5:13:9b:53:70:19:f8:c2:94:4b:e5: 25:fc:75:6f:e6:11:b3:d8:f9:0b:ac:7b:9d:07:f1: dc:76:1a:0d:6d:22:f4:1f:49:2a:51:14:24:b3:ed: b6:d5:cc:ec:d3:31:b1:ab:d0:3f:72:1a:8e:a8:fc: b6:20:72:52:50:e9:1c:09:03:9a:77:e9:73:cb:0b: 0d:93:23:d3:b6:86:bf:14:ee:6a:7f:0b:bd:c1:d1: 40:90:fa:68:25:c0:61:48:e2:6c:34:7a:47:6d:cc: f5:b5:60:89:c6:2c:43:5d:3c:39:e0:98:65:77:0e: 23:db:2e:11:29:08:e8:8c:96:bc:79:88:4e:05:b1: f6:b8:18:0c:08:b3:ce:17:7f:f0:db:e8:9f:bb:f1: a3:fb:c4:46:c6:b4:34:25:b2:50:72:b8:d3:4b:ca: ac:c1:57:38:19:c7:f2:20:48:bd:ba:e6:4e:c5:ab: 2a:82:f8:ea:c3:19:61:e0:10:c9:ef:a6:87:4a:cf: f9:25:4d:bb:00:de:f4:58:17:a0:47:23:45:8b:2c: 63:57:a0:19:e5:67:2e:b5:84:2e:74:ac:37:fa:7a: a4:72:10:11:b4:56:49:2f:47:c0:f8:65:85:f5:78: ee:6d:26:26:ce:ba:b4:ba:55:c2:73:33:c5:00:61: 2d:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:C6:6D:DE:4E:83:A3:5F:61:98:94:30:02:50:64:28:D1:40:97:E1 X509v3 Authority Key Identifier: keyid:4D:BF:B7:C0:F2:D8:57:6B:A5:08:F3:63:69:19:8B:84:91:C2:B3:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tb-3wPLYV2ulCPNjaRmLhJHCszQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120522/1C3DA3ACF0A611EA959D764AC4F9AE02/2EDEA8344A5711F0BD4BC13AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.49.16.0/22 Signature Algorithm: sha256WithRSAEncryption 81:b4:00:22:9d:f3:dc:ba:a3:40:02:d5:4a:30:a4:aa:b5:17: 70:10:c3:fc:92:5b:af:1c:77:94:18:ea:14:e0:01:52:62:a7: 2d:ec:88:49:48:d0:0c:be:38:51:02:67:b8:e7:63:8f:98:f3: 3b:03:9d:44:c7:f7:d4:d5:29:5b:cd:e9:e2:88:c0:e0:44:0a: 97:6a:2c:26:bd:fe:61:8a:94:20:e2:c4:e7:0f:1e:45:d2:da: ab:b3:23:9e:83:e5:71:15:7e:fb:89:9f:77:fc:02:e8:90:a3: 69:7a:6a:98:78:ef:e2:e3:02:08:46:6e:db:01:1b:06:83:b6: 06:04:94:57:77:e1:24:70:8b:a2:6a:fd:d1:cc:2a:84:5f:38: 54:87:71:6a:17:87:b9:9a:38:e1:78:bc:04:a9:2e:51:11:fb: bf:68:b2:bf:2f:cd:b0:29:01:70:ac:2f:ca:10:5d:d3:c4:b8: 4f:c0:c9:81:c5:92:47:03:cf:d9:09:54:cf:de:9f:89:36:f5: a6:73:1e:e5:2e:58:ff:86:22:14:f4:22:ea:55:36:38:e9:f6: 8a:37:e9:7f:cf:ec:5c:a3:44:d2:1b:2a:a6:44:84:13:64:17: f7:68:04:87:9a:d6:05:84:4b:ba:1d:d4:62:7d:51:90:dd:d3: b1:c4:dd:18 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB9gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA1MjIxMTAvBgNVBAUTKDREQkZCN0MwRjJEODU3NkJBNTA4RjM2MzY5MTk4Qjg0 OTFDMkIzMzQwHhcNMjUwNjE2MDIxMTE2WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODRmN2Q0NC05YWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvid+9RObU3AZ+MKUS+Ul/HVv5hGz2PkLrHudB/HcdhoNbSL0H0kqURQks+22 1czs0zGxq9A/chqOqPy2IHJSUOkcCQOad+lzywsNkyPTtoa/FO5qfwu9wdFAkPpo JcBhSOJsNHpHbcz1tWCJxixDXTw54Jhldw4j2y4RKQjojJa8eYhOBbH2uBgMCLPO F3/w2+ifu/Gj+8RGxrQ0JbJQcrjTS8qswVc4GcfyIEi9uuZOxasqgvjqwxlh4BDJ 76aHSs/5JU27AN70WBegRyNFiyxjV6AZ5WcutYQudKw3+nqkchARtFZJL0fA+GWF 9XjubSYmzrq0ulXCczPFAGEttwIDAQABo4IClTCCApEwHQYDVR0OBBYEFI7Gbd5O g6NfYZiUMAJQZCjRQJfhMB8GA1UdIwQYMBaAFE2/t8Dy2FdrpQjzY2kZi4SRwrM0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDUyMi8xQzNEQTNBQ0Yw QTYxMUVBOTU5RDc2NEFDNEY5QUUwMi9UYi0zd1BMWVYydWxDUE5qYVJtTGhKSENz elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RiLTN3UExZVjJ1bENQTmphUm1MaEpIQ3N6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjA1MjIvMUMzREEzQUNGMEE2MTFFQTk1OUQ3NjRBQzRGOUFFMDIvMkVERUE4MzQ0 QTU3MTFGMEJENEJDMTNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKMRAwDQYJKoZIhvcNAQELBQADggEBAIG0ACKd89y6o0AC 1UowpKq1F3AQw/ySW68cd5QY6hTgAVJipy3siElI0Ay+OFECZ7jnY4+Y8zsDnUTH 99TVKVvN6eKIwOBECpdqLCa9/mGKlCDixOcPHkXS2quzI56D5XEVfvuJn3f8AuiQ o2l6aph47+LjAghGbtsBGwaDtgYElFd34SRwi6Jq/dHMKoRfOFSHcWoXh7maOOF4 vASpLlER+79osr8vzbApAXCsL8oQXdPEuE/AyYHFkkcDz9kJVM/en4k29aZzHuUu WP+GIhT0IupVNjjp9oo36X/P7FyjRNIbKqZEhBNkF/doBIea1gWES7od1GJ9UZDd 07HE3Rg= -----END CERTIFICATE-----Generated at Fri Jun 20 14:23:19 2025 by rpki-client