$ rpki-client -vvf rpki.apnic.net/member_repository/A91249C2/E3A3DEE648C811F0B957261CC4F9AE02/ED3D0F9E48C911F0B59FB71DC4F9AE02.roa File: ED3D0F9E48C911F0B59FB71DC4F9AE02.roa (raw, json) Hash identifier: yyRnOy3I+YsGzwaRvaOYjHZbPADEQBV8Fr6YK9Scj94= Subject key identifier: E5:77:B6:20:95:F8:EA:7B:64:49:D9:81:A9:F8:0E:D9:15:12:C4:FD Certificate issuer: /CN=A91249C2/serialNumber=74DCEAA8506A2B327F87A42D0741AC36EEDEEB49 Certificate serial: 05 Authority key identifier: 74:DC:EA:A8:50:6A:2B:32:7F:87:A4:2D:07:41:AC:36:EE:DE:EB:49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dNzqqFBqKzJ_h6QtB0GsNu7e60k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91249C2/E3A3DEE648C811F0B957261CC4F9AE02/ED3D0F9E48C911F0B59FB71DC4F9AE02.roa Signing time: Sat 14 Jun 2025 02:47:36 +0000 ROA not before: Sat 14 Jun 2025 02:47:36 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 55785 IP address blocks: 202.36.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91249C2/E3A3DEE648C811F0B957261CC4F9AE02/dNzqqFBqKzJ_h6QtB0GsNu7e60k.crl rsync://rpki.apnic.net/member_repository/A91249C2/E3A3DEE648C811F0B957261CC4F9AE02/dNzqqFBqKzJ_h6QtB0GsNu7e60k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dNzqqFBqKzJ_h6QtB0GsNu7e60k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 07:03:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91249C2, serialNumber=74DCEAA8506A2B327F87A42D0741AC36EEDEEB49 Validity Not Before: Jun 14 02:47:36 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=684ce2c7-dce3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:68:1e:42:c4:17:2e:c9:67:0b:7e:41:e9:00: 22:ec:92:06:22:ee:fb:54:84:f8:fd:c2:f5:38:7b: 52:7e:95:a2:a4:38:5e:2e:e1:b2:76:de:bd:81:b1: dc:9f:51:fc:9e:d5:81:69:92:d6:44:83:a2:e8:e9: 86:13:fc:2e:13:b5:ba:5e:a1:4e:68:e8:44:cb:80: 4f:ff:6a:f0:31:90:96:ef:6e:6b:b1:56:e7:e8:ea: c5:f3:bd:3e:48:7e:7e:55:e1:ef:8a:56:c5:c1:b9: 7c:08:a0:37:9e:5f:39:07:c1:ea:92:17:d9:78:d5: 05:66:01:20:51:b9:d6:44:b2:03:a4:0b:54:ef:13: 1a:f2:3b:98:5a:00:6a:b6:1e:08:d1:a1:ea:51:56: 48:ae:61:54:03:6b:40:a5:5c:6e:c2:2d:19:bb:12: 52:bd:2a:a9:f9:63:b0:a6:d1:82:f9:cf:3c:bd:93: 29:e1:17:f8:c7:68:c2:45:9f:a2:1e:68:bc:7e:76: 63:2c:04:4d:cb:0a:a5:19:27:17:a1:44:4b:89:6e: 83:fa:0e:55:83:ef:9c:1d:b8:91:fe:93:1a:99:29: 43:3c:c2:a2:d7:4e:2f:a4:ac:d8:3a:c9:71:57:c5: 38:e8:b8:77:46:3a:db:3d:1b:3b:8c:93:9f:fc:2a: 09:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:77:B6:20:95:F8:EA:7B:64:49:D9:81:A9:F8:0E:D9:15:12:C4:FD X509v3 Authority Key Identifier: keyid:74:DC:EA:A8:50:6A:2B:32:7F:87:A4:2D:07:41:AC:36:EE:DE:EB:49 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91249C2/E3A3DEE648C811F0B957261CC4F9AE02/dNzqqFBqKzJ_h6QtB0GsNu7e60k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dNzqqFBqKzJ_h6QtB0GsNu7e60k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91249C2/E3A3DEE648C811F0B957261CC4F9AE02/ED3D0F9E48C911F0B59FB71DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.227.0/24 Signature Algorithm: sha256WithRSAEncryption 1e:59:04:7c:16:ee:b1:90:38:ab:12:c0:4b:14:b9:19:b5:46: 3b:fe:1a:bf:0c:f0:a3:5a:d4:f1:49:38:20:92:ba:e8:fb:73: f5:78:f6:7d:fe:16:86:15:36:6e:f0:4f:14:0a:d9:76:43:b0: 54:ad:88:8a:79:f0:6a:50:fe:30:15:56:2e:10:19:ab:aa:cd: cc:35:0b:f4:d9:36:e9:0b:e6:71:6c:97:ba:cf:3f:e2:0e:fe: ca:28:53:06:a1:3a:02:64:35:7c:3f:41:84:45:f1:bd:cf:ba: b0:be:bf:6c:c7:ab:1e:63:82:3f:9c:f3:0c:50:6c:73:51:84: 96:1f:80:b0:a6:1a:0a:61:d8:a4:eb:99:e8:4c:45:ea:7b:e3: 65:06:74:41:6d:24:89:d6:5b:42:9e:4d:11:e1:25:7c:7b:64: f8:f5:53:7c:04:e1:20:f3:6b:e6:8d:14:57:1a:be:60:2c:ab: 89:18:a4:07:23:71:2d:a7:04:0e:7f:8d:8c:a6:69:d2:3c:34: c4:8b:e3:e3:da:c6:69:41:3f:a7:83:9a:da:c7:e7:bd:50:96: 6a:da:20:df:3b:c8:6c:ff:9d:64:b2:1d:00:1e:9e:e8:15:77: a3:96:d3:17:f2:04:c8:2d:af:69:c8:77:78:19:97:c5:38:3c: a9:ed:e1:b6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy NDlDMjExMC8GA1UEBRMoNzREQ0VBQTg1MDZBMkIzMjdGODdBNDJEMDc0MUFDMzZF RURFRUI0OTAeFw0yNTA2MTQwMjQ3MzZaFw0yNjAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4NGNlMmM3LWRjZTMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0aB5CxBcuyWcLfkHpACLskgYi7vtUhPj9wvU4e1J+laKkOF4u4bJ23r2Bsdyf Ufye1YFpktZEg6Lo6YYT/C4TtbpeoU5o6ETLgE//avAxkJbvbmuxVufo6sXzvT5I fn5V4e+KVsXBuXwIoDeeXzkHweqSF9l41QVmASBRudZEsgOkC1TvExryO5haAGq2 HgjRoepRVkiuYVQDa0ClXG7CLRm7ElK9Kqn5Y7Cm0YL5zzy9kynhF/jHaMJFn6Ie aLx+dmMsBE3LCqUZJxehREuJboP6DlWD75wduJH+kxqZKUM8wqLXTi+krNg6yXFX xTjouHdGOts9GzuMk5/8KgmjAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5Xe2IJX4 6ntkSdmBqfgO2RUSxP0wHwYDVR0jBBgwFoAUdNzqqFBqKzJ/h6QtB0GsNu7e60kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI0OUMyL0UzQTNERUU2NDhD ODExRjBCOTU3MjYxQ0M0RjlBRTAyL2ROenFxRkJxS3pKX2g2UXRCMEdzTnU3ZTYw ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZE56cXFGQnFLekpfaDZRdEIwR3NOdTdlNjBrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy NDlDMi9FM0EzREVFNjQ4QzgxMUYwQjk1NzI2MUNDNEY5QUUwMi9FRDNEMEY5RTQ4 QzkxMUYwQjU5RkI3MURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMok4zANBgkqhkiG9w0BAQsFAAOCAQEAHlkEfBbusZA4qxLA SxS5GbVGO/4avwzwo1rU8Uk4IJK66Ptz9Xj2ff4WhhU2bvBPFArZdkOwVK2Iinnw alD+MBVWLhAZq6rNzDUL9Nk26QvmcWyXus8/4g7+yihTBqE6AmQ1fD9BhEXxvc+6 sL6/bMerHmOCP5zzDFBsc1GElh+AsKYaCmHYpOuZ6ExF6nvjZQZ0QW0kidZbQp5N EeElfHtk+PVTfAThIPNr5o0UVxq+YCyriRikByNxLacEDn+NjKZp0jw0xIvj49rG aUE/p4Oa2sfnvVCWatog3zvIbP+dZLIdAB6e6BV3o5bTF/IEyC2vach3eBmXxTg8 qe3htg== -----END CERTIFICATE-----Generated at Wed Jun 18 08:02:39 2025 by rpki-client