$ rpki-client -vvf rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/4EE22C48C02411EC93BB8865C4F9AE02.roa File: 4EE22C48C02411EC93BB8865C4F9AE02.roa (raw, json) Hash identifier: vUX3RU0X1V+oe312SGKD4qBeeq4yD2Hm5bT9njfYEwg= Subject key identifier: 57:21:87:1A:75:0C:A2:F8:93:B1:25:DA:47:F0:A7:73:AC:E8:44:0A Certificate issuer: /CN=A9146AD7/serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Certificate serial: 19BC Authority key identifier: BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/4EE22C48C02411EC93BB8865C4F9AE02.roa Signing time: Sat 12 Apr 2025 16:24:55 +0000 ROA not before: Sat 12 Apr 2025 16:24:55 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 132596 IP address blocks: 203.97.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 16:28:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6588 (0x19bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146AD7, serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Validity Not Before: Apr 12 16:24:55 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67fa93d6-c667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:97:cc:70:01:bf:5b:2b:9e:14:f2:4e:13:4f: 3e:94:8a:40:b2:25:fe:3c:c8:92:36:4c:57:21:c8: 4b:4b:d8:90:e2:1c:9e:65:28:3e:30:6e:11:17:6d: dd:ef:98:46:35:72:f9:6e:c5:3d:9f:33:b1:e3:8c: 5e:4e:f6:2c:3e:6b:3d:19:cc:fe:55:e8:01:af:60: 9e:37:da:6a:57:47:a8:c7:1c:44:5b:67:8c:60:08: 6e:2e:3c:c9:26:98:38:5d:8a:3d:d8:20:59:43:45: b8:18:5d:a3:59:a8:c2:1c:df:1f:08:a0:ab:3c:5c: d8:99:2a:d9:15:57:04:aa:09:ce:89:5a:dc:77:bf: 10:b5:7f:69:00:b5:01:16:08:dc:82:47:6d:91:7a: 96:88:ce:ca:39:23:55:56:39:40:02:f8:c4:98:8f: 19:9b:f6:71:1c:1f:a5:44:43:97:3e:d6:4f:64:c2: d7:7a:0c:12:66:dc:5e:6c:8b:86:8a:57:51:85:bb: f4:55:45:5a:a7:1c:f2:b8:de:c1:3d:84:39:a3:61: d4:f7:4b:6d:86:f9:35:9d:08:89:39:9d:4f:67:34: 23:28:a5:48:a3:61:3e:df:21:7d:a8:ca:e8:76:b4: 6a:a6:b4:41:58:c2:e7:87:1b:5d:22:1a:42:48:67: 9d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:21:87:1A:75:0C:A2:F8:93:B1:25:DA:47:F0:A7:73:AC:E8:44:0A X509v3 Authority Key Identifier: keyid:BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/4EE22C48C02411EC93BB8865C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.97.55.0/24 Signature Algorithm: sha256WithRSAEncryption c8:0c:ba:a8:c7:38:11:39:56:d6:45:04:b2:c2:92:b5:11:6b: 73:29:82:af:86:7c:71:38:30:cd:ff:a8:f2:60:28:c8:ef:64: 80:67:da:fe:4c:95:80:ce:4b:2e:94:98:c6:39:06:a6:47:4b: 3e:4e:db:2c:e4:59:aa:75:eb:01:f9:46:7e:ae:ea:50:0b:da: d5:56:30:71:c9:51:ef:f5:33:3d:90:96:88:e9:4d:4f:dc:48: 0d:e0:e3:cf:b0:21:fa:e3:7f:6e:20:c0:65:8c:bb:5b:4d:82: 2a:83:7f:61:1c:14:0f:c3:b6:de:95:b1:c9:64:67:47:05:f4: 09:48:e6:dc:e4:72:d6:66:60:6d:38:63:cb:d7:1e:30:0e:ae: cb:d8:27:be:40:2e:29:44:9b:84:4b:e6:27:7b:e3:fe:eb:5e: f6:95:60:08:2b:d7:72:df:02:a6:08:22:2b:cc:f7:1d:3f:99: 55:ed:28:cd:cc:cc:ce:e3:1d:3d:5c:0f:34:ed:94:bd:ca:bc: 5a:ed:3e:88:e7:6d:bb:fc:b1:1c:db:49:2b:89:d9:df:ad:f3: 72:c9:96:2b:f3:c1:1b:65:04:f6:64:18:af:4c:cb:a1:65:2c: e2:73:10:07:cf:93:85:44:76:ea:0f:04:b3:db:fa:cd:c0:e1: 70:a3:ce:bb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBRDcxMTAvBgNVBAUTKEJBRjVBREEzMkNBMEQzNENGM0NDRjUzQUJERjg2REU2 RjhFRDkwMDUwHhcNMjUwNDEyMTYyNDU1WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZhOTNkNi1jNjY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0pfMcAG/WyueFPJOE08+lIpAsiX+PMiSNkxXIchLS9iQ4hyeZSg+MG4RF23d 75hGNXL5bsU9nzOx44xeTvYsPms9Gcz+VegBr2CeN9pqV0eoxxxEW2eMYAhuLjzJ Jpg4XYo92CBZQ0W4GF2jWajCHN8fCKCrPFzYmSrZFVcEqgnOiVrcd78QtX9pALUB FgjcgkdtkXqWiM7KOSNVVjlAAvjEmI8Zm/ZxHB+lREOXPtZPZMLXegwSZtxebIuG ildRhbv0VUVapxzyuN7BPYQ5o2HU90tthvk1nQiJOZ1PZzQjKKVIo2E+3yF9qMro drRqprRBWMLnhxtdIhpCSGeddwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFchhxp1 DKL4k7El2kfwp3Os6EQKMB8GA1UdIwQYMBaAFLr1raMsoNNM88z1Or34beb47ZAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkFENy9GOEJBQkFDQThC ODkxMUU3OTAxMTVDM0ZDNEY5QUUwMi91dld0b3l5ZzAwenp6UFU2dmZodDV2anRr QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V2V3RveXlnMDB6enpQVTZ2Zmh0NXZqdGtBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZBRDcvRjhCQUJBQ0E4Qjg5MTFFNzkwMTE1QzNGQzRGOUFFMDIvNEVFMjJDNDhD MDI0MTFFQzkzQkI4ODY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLYTcwDQYJKoZIhvcNAQELBQADggEBAMgMuqjHOBE5VtZF BLLCkrURa3Mpgq+GfHE4MM3/qPJgKMjvZIBn2v5MlYDOSy6UmMY5BqZHSz5O2yzk Wap16wH5Rn6u6lAL2tVWMHHJUe/1Mz2QlojpTU/cSA3g48+wIfrjf24gwGWMu1tN giqDf2EcFA/Dtt6VsclkZ0cF9AlI5tzkctZmYG04Y8vXHjAOrsvYJ75ALilEm4RL 5id74/7rXvaVYAgr13LfAqYIIivM9x0/mVXtKM3MzM7jHT1cDzTtlL3KvFrtPojn bbv8sRzbSSuJ2d+t83LJlivzwRtlBPZkGK9My6FlLOJzEAfPk4VEduoPBLPb+s3A 4XCjzrs= -----END CERTIFICATE-----Generated at Sat Apr 26 16:56:58 2025 by rpki-client