$ rpki-client -vvf rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/53594CBC1F2F11F09C3D4582C4F9AE02.roa File: 53594CBC1F2F11F09C3D4582C4F9AE02.roa (raw, json) Hash identifier: 11c0RSip9HmRdb+yAiVYr0mJn+7VBpqYNBSW86dakQY= Subject key identifier: 2B:C2:3F:3A:5F:64:33:D5:9D:6E:99:DC:D7:9F:B9:0F:A4:DC:90:B0 Certificate issuer: /CN=A918F550/serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Certificate serial: 3528 Authority key identifier: A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/53594CBC1F2F11F09C3D4582C4F9AE02.roa Signing time: Tue 22 Apr 2025 04:07:37 +0000 ROA not before: Tue 22 Apr 2025 04:07:37 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 23647 IP address blocks: 202.51.66.0/24 maxlen: 24 202.51.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 14:25:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13608 (0x3528) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918F550, serialNumber=A24B6A62044B70065F0506388460E4AF2F17F3FF Validity Not Before: Apr 22 04:07:37 2025 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=68071609-019a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:d3:67:6e:61:b5:9e:29:72:2e:36:3c:93:e3: 42:fa:39:29:a8:bd:ed:c8:fb:d0:27:f1:ee:aa:dd: 4e:e8:fa:f0:8b:80:67:28:23:f3:df:60:5b:86:96: 35:4e:7d:23:85:e0:09:08:85:d8:40:73:3b:fe:59: be:62:df:f4:95:22:0e:4d:dc:d0:86:8a:e4:0b:23: c6:98:96:7a:f1:d5:10:10:1a:85:3c:cb:1a:62:bf: 20:1b:4f:8e:a3:c6:33:42:6a:a8:81:46:a9:81:4d: ed:6d:f1:f5:2c:3f:4a:de:77:90:06:5e:02:a3:d5: 85:96:ab:8a:fe:05:08:ae:b5:21:e7:8a:c9:7c:87: 5a:a3:c6:b6:5d:90:63:70:7e:12:36:53:40:13:55: 43:5e:40:46:9e:3e:a3:84:a2:77:ef:b3:24:85:35: 94:7f:47:30:23:2e:44:e9:9d:cd:d3:17:9e:44:03: 77:56:6c:ce:ad:4a:d8:f0:d5:8d:69:fe:89:d2:34: 64:73:03:ca:38:be:ff:6b:ef:ae:53:8f:36:28:65: 12:47:98:1f:d2:44:9a:f8:d9:2b:fd:b5:7d:fc:2f: ae:45:e6:8c:80:64:d9:77:b7:d3:1b:c3:29:4e:37: e7:da:bf:66:e0:b5:41:3a:90:27:6c:29:dd:8f:f3: 5c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:C2:3F:3A:5F:64:33:D5:9D:6E:99:DC:D7:9F:B9:0F:A4:DC:90:B0 X509v3 Authority Key Identifier: keyid:A2:4B:6A:62:04:4B:70:06:5F:05:06:38:84:60:E4:AF:2F:17:F3:FF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/oktqYgRLcAZfBQY4hGDkry8X8_8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oktqYgRLcAZfBQY4hGDkry8X8_8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918F550/8B9BD2021D8511E2B41230DC08B02CD2/53594CBC1F2F11F09C3D4582C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.51.66.0/24 202.51.81.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:2f:a2:5a:cd:f6:2f:35:ef:78:b5:c4:84:58:fe:4b:12:3f: f2:6e:09:4a:7c:32:c7:0c:6f:cd:79:22:15:65:fc:a1:e8:0a: 48:da:9e:30:67:e8:ec:a9:54:ba:2b:28:77:0b:3b:b5:f1:d8: 98:cb:33:6a:c0:b7:ab:96:ba:03:83:fc:7f:aa:8c:c8:ae:b0: 2c:d9:ee:aa:11:9b:63:00:3e:4e:96:1f:7b:ed:42:b1:71:61: 5a:bd:b1:64:15:ef:23:96:8d:47:9b:ce:58:6d:0c:b9:55:84: 38:a6:d0:50:cd:9e:53:d7:aa:8b:51:4f:2b:54:39:94:ee:a7: e1:14:81:51:2a:96:67:d9:f5:ec:d8:6e:c1:fe:ce:75:70:24: 7e:1e:3e:82:26:00:21:c8:01:38:b9:18:0c:01:aa:b6:d9:77: 55:1b:12:bd:9c:74:73:72:cf:39:65:d1:1e:80:9d:8b:a7:55: db:70:9e:f0:40:09:af:72:d5:dc:31:74:51:64:a8:f5:64:8c: e9:c2:a3:77:9a:a4:bb:12:9d:57:91:fc:8b:9b:af:90:5f:a6: 59:72:6c:85:99:c9:01:50:e0:41:3d:a2:e5:5b:85:4f:35:b5: 32:7c:8d:4b:65:26:37:f0:1b:6a:3d:71:cf:3b:a3:40:60:22: f5:f5:57:57 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNSgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEY1NTAxMTAvBgNVBAUTKEEyNEI2QTYyMDQ0QjcwMDY1RjA1MDYzODg0NjBFNEFG MkYxN0YzRkYwHhcNMjUwNDIyMDQwNzM3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODA3MTYwOS0wMTlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAkNNnbmG1nilyLjY8k+NC+jkpqL3tyPvQJ/Huqt1O6Prwi4BnKCPz32BbhpY1 Tn0jheAJCIXYQHM7/lm+Yt/0lSIOTdzQhorkCyPGmJZ68dUQEBqFPMsaYr8gG0+O o8YzQmqogUapgU3tbfH1LD9K3neQBl4Co9WFlquK/gUIrrUh54rJfIdao8a2XZBj cH4SNlNAE1VDXkBGnj6jhKJ377MkhTWUf0cwIy5E6Z3N0xeeRAN3VmzOrUrY8NWN af6J0jRkcwPKOL7/a++uU482KGUSR5gf0kSa+Nkr/bV9/C+uReaMgGTZd7fTG8Mp Tjfn2r9m4LVBOpAnbCndj/NccQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCvCPzpf ZDPVnW6Z3NefuQ+k3JCwMB8GA1UdIwQYMBaAFKJLamIES3AGXwUGOIRg5K8vF/P/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RjU1MC84QjlCRDIwMjFE ODUxMUUyQjQxMjMwREMwOEIwMkNEMi9va3RxWWdSTGNBWmZCUVk0aEdEa3J5OFg4 XzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29rdHFZZ1JMY0FaZkJRWTRoR0Rrcnk4WDhfOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEY1NTAvOEI5QkQyMDIxRDg1MTFFMkI0MTIzMERDMDhCMDJDRDIvNTM1OTRDQkMx RjJGMTFGMDlDM0Q0NTgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKM0IDBADKM1EwDQYJKoZIhvcNAQELBQADggEBAFovolrN 9i8173i1xIRY/ksSP/JuCUp8MscMb815IhVl/KHoCkjanjBn6OypVLorKHcLO7Xx 2JjLM2rAt6uWugOD/H+qjMiusCzZ7qoRm2MAPk6WH3vtQrFxYVq9sWQV7yOWjUeb zlhtDLlVhDim0FDNnlPXqotRTytUOZTup+EUgVEqlmfZ9ezYbsH+znVwJH4ePoIm ACHIATi5GAwBqrbZd1UbEr2cdHNyzzll0R6AnYunVdtwnvBACa9y1dwxdFFkqPVk jOnCo3eapLsSnVeR/Iubr5BfpllybIWZyQFQ4EE9ouVbhU81tTJ8jUtlJjfwG2o9 cc87o0BgIvX1V1c= -----END CERTIFICATE-----Generated at Sat Apr 26 13:39:09 2025 by rpki-client