$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/4B5E14FC96AD11EBA4AC9F7FC4F9AE02.roa File: 4B5E14FC96AD11EBA4AC9F7FC4F9AE02.roa (raw, json) Hash identifier: shJoadfTlQBzgNQ+19NvZAod23jajgn1Tl3miO2Y35c= Subject key identifier: B2:C4:C5:E6:56:FF:D5:26:12:E2:F6:A5:EA:9B:73:A7:77:EC:88:79 Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0F92 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/4B5E14FC96AD11EBA4AC9F7FC4F9AE02.roa Signing time: Fri 28 Feb 2025 19:30:23 +0000 ROA not before: Fri 28 Feb 2025 19:30:23 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 399151 IP address blocks: 203.17.72.0/24 maxlen: 24 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 18:24:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3986 (0xf92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA, serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Validity Not Before: Feb 28 19:30:23 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c20ecf-d046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:d5:98:ea:50:eb:02:7c:09:f6:7c:36:d3:9b: bb:3b:4e:cd:44:19:73:df:41:d4:da:2c:09:3e:6c: 82:99:8c:ae:a4:c5:e2:12:42:80:19:8c:d9:60:5d: f9:ec:6f:87:6b:85:5b:91:d7:c9:74:28:1d:af:b3: fc:2f:dc:ec:38:25:12:79:6c:14:d8:6f:c8:f4:39: 45:29:42:84:d7:fd:ae:b1:cf:dc:c9:00:95:76:c3: 5b:1c:6d:e8:1b:b2:7b:3f:d0:a7:a6:2b:37:13:4a: 69:80:f2:92:ab:70:04:09:12:2c:44:ed:80:97:5d: 14:ba:ce:2b:96:6d:2b:1e:3b:9a:f0:87:d6:3b:ef: 5c:cc:1c:fd:a3:3d:b2:5c:72:da:0c:0a:58:e2:f7: 27:fc:f0:6d:77:6e:09:f3:fc:94:e4:8f:e8:37:f1: 8d:a7:3c:63:a8:2f:25:b4:dd:88:9a:8f:ae:2b:c8: 0a:31:5b:ad:20:99:c9:b9:7c:63:06:0a:4a:83:45: be:41:ae:d5:dd:41:c5:a2:c1:e3:86:3e:1a:58:42: f2:99:22:2e:89:f1:75:e3:73:77:db:91:49:45:00: ed:b3:95:9a:c3:a8:a2:7f:b1:56:60:96:8b:cd:10: b3:ad:0c:8f:b8:e3:04:62:76:2a:05:aa:f2:03:8d: 97:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:C4:C5:E6:56:FF:D5:26:12:E2:F6:A5:EA:9B:73:A7:77:EC:88:79 X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/4B5E14FC96AD11EBA4AC9F7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.17.72.0/24 IPv6: 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 47:b1:6f:40:92:39:4d:31:f8:2f:2b:f0:bd:eb:62:5c:7b:56: 37:82:f1:f2:63:18:e0:72:18:e9:9f:53:94:7b:70:bf:8a:b1: 02:64:a2:4f:04:75:69:d2:ff:20:1d:51:82:91:e9:c1:8c:d4: 84:bd:e0:45:6d:87:5b:98:a5:0b:4f:cb:fa:c6:47:38:3d:b9: a9:cd:8b:e4:d6:37:a7:f4:de:d5:10:bb:4e:e9:c6:35:c0:78: 35:9a:29:78:e7:71:ee:45:6f:1d:e3:1c:53:09:2f:90:71:37: 6a:40:ab:eb:ef:35:53:38:ab:62:38:de:0f:14:5e:58:6a:57: 62:09:3d:fb:01:68:ca:6c:d7:0e:5b:27:27:d8:71:50:b9:79: ba:59:86:d1:ad:1b:8f:ca:5b:41:cb:4d:59:c8:af:f1:5e:18: 44:a0:a2:56:bd:1d:37:f7:91:67:4a:a5:fe:e6:40:e5:2e:e8: 7a:8f:38:7a:43:aa:f0:9b:7d:a4:dc:72:12:4c:98:66:bd:26: a1:02:55:51:30:a1:1d:2a:26:bd:48:d4:82:2d:8d:9a:ea:b7: 46:46:33:61:be:ef:05:f4:49:60:2f:bd:01:31:1e:29:83:ae: 62:3a:7e:58:18:3c:34:ed:5c:2e:b0:cc:20:9b:46:e0:f2:2e: ec:5f:10:30 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICD5IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkzMDIzWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyMGVjZi1kMDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvNWY6lDrAnwJ9nw205u7O07NRBlz30HU2iwJPmyCmYyupMXiEkKAGYzZYF35 7G+Ha4VbkdfJdCgdr7P8L9zsOCUSeWwU2G/I9DlFKUKE1/2usc/cyQCVdsNbHG3o G7J7P9Cnpis3E0ppgPKSq3AECRIsRO2Al10Uus4rlm0rHjua8IfWO+9czBz9oz2y XHLaDApY4vcn/PBtd24J8/yU5I/oN/GNpzxjqC8ltN2Imo+uK8gKMVutIJnJuXxj BgpKg0W+Qa7V3UHFosHjhj4aWELymSIuifF143N325FJRQDts5Waw6iif7FWYJaL zRCzrQyPuOMEYnYqBaryA42XbwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFLLExeZW /9UmEuL2peqbc6d37Ih5MB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNEI1RTE0RkM5 NkFEMTFFQkE0QUM5RjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLEUgwDwQCAAIwCQMHACABDc3dBTANBgkqhkiG9w0BAQsF AAOCAQEAR7FvQJI5TTH4LyvwvetiXHtWN4Lx8mMY4HIY6Z9TlHtwv4qxAmSiTwR1 adL/IB1RgpHpwYzUhL3gRW2HW5ilC0/L+sZHOD25qc2L5NY3p/Te1RC7TunGNcB4 NZopeOdx7kVvHeMcUwkvkHE3akCr6+81UzirYjjeDxReWGpXYgk9+wFoymzXDlsn J9hxULl5ulmG0a0bj8pbQctNWciv8V4YRKCiVr0dN/eRZ0ql/uZA5S7oeo84ekOq 8Jt9pNxyEkyYZr0moQJVUTChHSomvUjUgi2Nmuq3RkYzYb7vBfRJYC+9ATEeKYOu Yjp+WBg8NO1cLrDMIJtG4PIu7F8QMA== -----END CERTIFICATE-----Generated at Wed Nov 5 17:50:01 2025 by rpki-client