$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/05F505961AA311F0A475D464C4F9AE02.roa File: 05F505961AA311F0A475D464C4F9AE02.roa (raw, json) Hash identifier: OSQRdlcQj6k764THSK6rh8dF7UxUy6xyA8imS71zqwM= Subject key identifier: 97:BB:74:73:C3:7C:34:D7:3E:1B:9B:21:74:6C:72:89:75:57:46:41 Certificate issuer: /CN=A917B520/serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Certificate serial: 01CC Authority key identifier: 54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/05F505961AA311F0A475D464C4F9AE02.roa Signing time: Wed 16 Apr 2025 09:14:09 +0000 ROA not before: Wed 16 Apr 2025 09:14:09 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 396986 IP address blocks: 202.52.224.0/21 maxlen: 24 202.52.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 02:53:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 460 (0x1cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Validity Not Before: Apr 16 09:14:09 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67ff74e1-0b06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7f:ef:ba:f2:64:ac:d8:49:b7:8c:0e:e7:1a: c0:e9:83:39:fc:eb:b3:b5:6f:56:45:69:6d:e4:18: 99:60:52:67:dd:47:f5:6b:b0:3b:8e:37:81:f0:af: 7a:58:4e:ac:e3:8a:b4:8e:23:51:cb:48:c0:d6:1c: 67:be:8b:a7:6a:e4:e2:a5:d6:94:5f:ee:06:d8:c1: a9:e9:cd:da:7e:8d:c4:50:77:54:bf:c5:fb:b4:5e: b5:4b:5a:0c:db:67:ed:8a:bd:66:75:66:7d:cb:c9: 00:ed:cf:34:5b:0b:88:8b:8b:9c:53:af:13:c0:47: c5:37:d6:b3:c4:22:5b:80:b3:02:89:79:ca:2c:a4: f1:b4:52:01:1e:7d:a3:df:0a:13:c6:4b:dc:69:fb: 0f:3f:88:ff:06:eb:c8:f6:01:3b:31:f2:d6:1e:c2: 45:21:76:a8:36:fe:e0:6a:59:59:9e:80:02:56:ae: f1:46:3f:db:38:8a:7c:ba:6e:bd:19:0b:f4:bd:93: 8c:65:50:cc:f3:c7:62:40:93:9b:5e:1e:c8:1c:43: 5c:81:a7:7e:d7:7e:a6:12:04:a9:19:41:d5:70:6a: e1:b0:2a:91:b8:78:4e:a9:9b:22:c0:ae:12:81:14: 27:5b:ee:fb:5b:67:89:92:e6:ba:2e:48:d5:b4:c7: c0:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:BB:74:73:C3:7C:34:D7:3E:1B:9B:21:74:6C:72:89:75:57:46:41 X509v3 Authority Key Identifier: keyid:54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/05F505961AA311F0A475D464C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.52.224.0/21 202.52.240.0/21 Signature Algorithm: sha256WithRSAEncryption 3e:68:cd:61:65:1a:d5:c5:7b:16:90:b2:c3:9f:ad:0b:5d:37: 99:2d:ec:a0:21:d6:71:d8:e1:cb:aa:67:59:4f:f0:22:18:4c: 2e:d4:6e:bc:f6:1d:1a:e5:8f:cf:96:44:77:f0:cb:f2:46:de: 77:13:8b:11:28:35:d7:af:5d:a7:c2:df:50:b1:68:ef:d6:90: db:bc:23:d6:a3:be:27:81:01:4d:2e:67:31:0b:34:e4:59:02: 55:97:d3:c6:16:f8:d3:bc:ff:79:c7:9b:c1:8c:eb:8c:2b:6f: c7:c4:d2:15:a6:1e:09:d2:9e:c6:34:3a:7c:d5:ad:d2:93:67: 10:31:5b:e2:4d:6d:21:90:4e:57:d0:99:e6:65:f4:ac:65:db: c8:7c:77:32:9b:63:41:5e:67:39:46:59:36:7e:a9:73:59:10: fc:12:23:dc:84:95:2e:b7:5a:4e:47:01:11:e5:fa:6f:f1:4f: 7a:d1:85:a9:4d:2b:59:19:cc:75:d8:35:20:26:9b:b3:d2:40: 68:51:3e:09:df:f5:24:5f:b6:8a:5c:e3:94:bf:a9:09:2e:0d: a9:f4:11:a5:05:ac:13:1a:62:29:37:84:a4:5f:f5:0b:7d:98: ef:c4:86:ca:59:22:23:e7:b7:59:b0:b5:28:c6:a4:11:5c:24: b0:87:42:d5 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAcwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDU0MkI5NEQ4NjI1Q0Y3MTE5NjRGRDEzNzQxMjk1RDI3 QUQ3QTkwMDQwHhcNMjUwNDE2MDkxNDA5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZmNzRlMS0wYjA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwH/vuvJkrNhJt4wO5xrA6YM5/OuztW9WRWlt5BiZYFJn3Uf1a7A7jjeB8K96 WE6s44q0jiNRy0jA1hxnvounauTipdaUX+4G2MGp6c3afo3EUHdUv8X7tF61S1oM 22ftir1mdWZ9y8kA7c80WwuIi4ucU68TwEfFN9azxCJbgLMCiXnKLKTxtFIBHn2j 3woTxkvcafsPP4j/BuvI9gE7MfLWHsJFIXaoNv7gallZnoACVq7xRj/bOIp8um69 GQv0vZOMZVDM88diQJObXh7IHENcgad+136mEgSpGUHVcGrhsCqRuHhOqZsiwK4S gRQnW+77W2eJkua6LkjVtMfAHwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJe7dHPD fDTXPhubIXRscol1V0ZBMB8GA1UdIwQYMBaAFFQrlNhiXPcRlk/RN0EpXSetepAE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC8xNjFENEMwQUU0 Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4R1dUOUUzUVNsZEo2MTZr QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDdVUyR0pjOXhHV1Q5RTNRU2xkSjYxNmtBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I1MjAvMTYxRDRDMEFFNENBMTFFREE0MTRFMjU5QzRGOUFFMDIvMDVGNTA1OTYx QUEzMTFGMEE0NzVENDY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAPKNOADBAPKNPAwDQYJKoZIhvcNAQELBQADggEBAD5ozWFl GtXFexaQssOfrQtdN5kt7KAh1nHY4cuqZ1lP8CIYTC7Ubrz2HRrlj8+WRHfwy/JG 3ncTixEoNdevXafC31CxaO/WkNu8I9ajvieBAU0uZzELNORZAlWX08YW+NO8/3nH m8GM64wrb8fE0hWmHgnSnsY0OnzVrdKTZxAxW+JNbSGQTlfQmeZl9Kxl28h8dzKb Y0FeZzlGWTZ+qXNZEPwSI9yElS63Wk5HARHl+m/xT3rRhalNK1kZzHXYNSAmm7PS QGhRPgnf9SRftopc45S/qQkuDan0EaUFrBMaYik3hKRf9Qt9mO/EhspZIiPnt1mw tSjGpBFcJLCHQtU= -----END CERTIFICATE-----Generated at Sat Apr 26 05:56:38 2025 by rpki-client