$ rpki-client -vvf rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/E7FE45667E8311ECA552B67FC4F9AE02.roa File: E7FE45667E8311ECA552B67FC4F9AE02.roa (raw, json) Hash identifier: vev8cF3wVonEj/spB6AbH6AE+o8N+kb1JbFrPlAS1N8= Subject key identifier: F1:6A:57:2C:82:F4:9C:A8:95:54:42:DB:AB:B9:4D:12:6F:0E:DD:E1 Certificate issuer: /CN=A91808E1/serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Certificate serial: 03E9 Authority key identifier: 40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/E7FE45667E8311ECA552B67FC4F9AE02.roa Signing time: Wed 21 May 2025 03:32:11 +0000 ROA not before: Wed 21 May 2025 03:32:11 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 23767 IP address blocks: 202.83.248.0/22 maxlen: 22 202.83.250.0/24 maxlen: 24 202.130.56.0/22 maxlen: 22 202.130.56.0/24 maxlen: 24 202.130.58.0/24 maxlen: 24 202.130.59.0/24 maxlen: 24 2001:df0:75::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 22 Jun 2025 00:13:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1001 (0x3e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91808E1, serialNumber=409D011E893FD8C8F0B3E8AC14692AA7BB9D0259 Validity Not Before: May 21 03:32:11 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=682d493b-c8c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:f2:20:3c:f4:c6:11:f6:58:9b:a6:5d:56:b5: fe:f6:7b:03:6d:b2:4f:ad:3b:f0:5f:0d:39:c1:60: 2f:60:d5:b4:20:59:2a:2e:9d:61:6b:9e:8f:47:61: 65:f0:1b:c4:17:95:23:24:7f:9e:0b:99:15:98:a7: e4:4f:a3:20:04:da:b1:cf:69:14:4e:6a:d1:54:e6: 5e:b7:a3:3a:43:47:7c:cd:85:ca:7c:e1:dc:b8:76: d3:9c:a0:6e:ee:84:36:73:c0:20:84:23:24:5b:15: 68:be:9a:9c:26:d0:b7:05:02:25:0a:8c:d4:32:8f: 30:33:27:32:d8:0d:93:5b:87:05:98:e3:12:a0:7d: d7:26:71:83:13:12:e9:b5:d5:6c:93:76:cd:16:6a: 65:c0:1b:0e:62:9e:28:c8:b7:d0:c0:6a:88:2e:8d: d3:cb:d3:d7:33:06:a0:44:39:1b:e5:c0:6b:b3:42: 13:0c:87:5d:d6:e8:c2:2b:e5:a8:8a:5f:ec:ae:d2: d8:0a:71:28:e5:00:8e:e7:81:49:88:68:ad:27:b1: 19:02:c6:5f:be:bc:af:00:db:d6:51:ca:fd:c3:ca: 2c:a1:62:5a:f8:d2:0b:7a:a7:80:ff:b4:7b:91:e3: f8:1a:35:fb:97:f6:6a:0f:fa:5a:9a:f1:51:bb:7c: 92:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:6A:57:2C:82:F4:9C:A8:95:54:42:DB:AB:B9:4D:12:6F:0E:DD:E1 X509v3 Authority Key Identifier: keyid:40:9D:01:1E:89:3F:D8:C8:F0:B3:E8:AC:14:69:2A:A7:BB:9D:02:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/QJ0BHok_2Mjws-isFGkqp7udAlk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QJ0BHok_2Mjws-isFGkqp7udAlk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91808E1/F90F9E887E8111ECB8873A7FC4F9AE02/E7FE45667E8311ECA552B67FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.83.248.0/22 202.130.56.0/22 IPv6: 2001:df0:75::/48 Signature Algorithm: sha256WithRSAEncryption 75:4f:b0:4b:8d:64:d5:cf:08:8a:3e:1f:33:5b:77:c0:f8:89: 85:93:23:eb:d9:b4:7e:4f:10:53:c5:ce:b4:d7:25:da:2d:4e: dd:61:19:ea:5b:b0:87:95:9a:4f:f5:56:21:5e:25:53:24:f5: fd:00:b4:ee:c9:87:a1:82:07:54:bf:ea:6d:2b:b3:d7:3d:fb: 22:0e:b5:77:de:c9:58:77:e4:41:52:13:f4:ac:f8:42:5e:ed: 97:9a:b5:d4:5d:d4:0e:28:34:ee:1f:4d:97:6a:b3:b5:8b:65: 26:e2:c2:d3:46:06:cd:0f:5d:88:6b:98:50:df:5c:f4:70:61: 25:83:fb:5d:90:5a:25:fa:3e:c9:4b:a6:e4:a4:fe:0c:0f:31: b8:de:bc:bf:b3:7c:4a:c7:82:65:fb:db:88:06:b6:9a:92:0d: 42:a4:f2:2c:cd:07:35:1f:b2:d5:0b:27:0d:c2:9d:20:ce:de: da:e6:43:50:1b:70:86:2a:00:e3:5a:87:89:50:19:35:9a:93: 8b:f1:62:18:c5:96:9d:5e:50:6d:c1:a6:e6:02:4e:26:41:d0: f3:d4:2b:5f:6b:d5:86:47:c9:7d:e0:2f:d1:04:71:aa:a4:04: 5e:74:94:c8:89:59:7f:45:f1:15:be:60:20:30:49:eb:e0:f5: 56:91:35:f1 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICA+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODA4RTExMTAvBgNVBAUTKDQwOUQwMTFFODkzRkQ4QzhGMEIzRThBQzE0NjkyQUE3 QkI5RDAyNTkwHhcNMjUwNTIxMDMzMjExWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJkNDkzYi1jOGMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8/IgPPTGEfZYm6ZdVrX+9nsDbbJPrTvwXw05wWAvYNW0IFkqLp1ha56PR2Fl 8BvEF5UjJH+eC5kVmKfkT6MgBNqxz2kUTmrRVOZet6M6Q0d8zYXKfOHcuHbTnKBu 7oQ2c8AghCMkWxVovpqcJtC3BQIlCozUMo8wMycy2A2TW4cFmOMSoH3XJnGDExLp tdVsk3bNFmplwBsOYp4oyLfQwGqILo3Ty9PXMwagRDkb5cBrs0ITDIdd1ujCK+Wo il/srtLYCnEo5QCO54FJiGitJ7EZAsZfvryvANvWUcr9w8osoWJa+NILeqeA/7R7 keP4GjX7l/ZqD/pamvFRu3yS+QIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFPFqVyyC 9JyolVRC26u5TRJvDt3hMB8GA1UdIwQYMBaAFECdAR6JP9jI8LPorBRpKqe7nQJZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MDhFMS9GOTBGOUU4ODdF ODExMUVDQjg4NzNBN0ZDNEY5QUUwMi9RSjBCSG9rXzJNandzLWlzRkdrcXA3dWRB bGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FKMEJIb2tfMk1qd3MtaXNGR2txcDd1ZEFsay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODA4RTEvRjkwRjlFODg3RTgxMTFFQ0I4ODczQTdGQzRGOUFFMDIvRTdGRTQ1NjY3 RTgzMTFFQ0E1NTJCNjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBALKU/gDBALKgjgwDwQCAAIwCQMHACABDfAAdTANBgkqhkiG 9w0BAQsFAAOCAQEAdU+wS41k1c8Iij4fM1t3wPiJhZMj69m0fk8QU8XOtNcl2i1O 3WEZ6luwh5WaT/VWIV4lUyT1/QC07smHoYIHVL/qbSuz1z37Ig61d97JWHfkQVIT 9Kz4Ql7tl5q11F3UDig07h9Nl2qztYtlJuLC00YGzQ9diGuYUN9c9HBhJYP7XZBa Jfo+yUum5KT+DA8xuN68v7N8SseCZfvbiAa2mpINQqTyLM0HNR+y1QsnDcKdIM7e 2uZDUBtwhioA41qHiVAZNZqTi/FiGMWWnV5QbcGm5gJOJkHQ89QrX2vVhkfJfeAv 0QRxqqQEXnSUyIlZf0XxFb5gIDBJ6+D1VpE18Q== -----END CERTIFICATE-----Generated at Sun Jun 15 08:43:04 2025 by rpki-client