$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/2251B910AC7411EBBE196180C4F9AE02.roa File: 2251B910AC7411EBBE196180C4F9AE02.roa (raw, json) Hash identifier: Gr8VIbI2rmFBktd8IVkzyzVVmFaF6JqXzsTMVW3zRzc= Subject key identifier: 6A:F0:11:19:E9:70:7D:2E:31:E0:A3:4A:C0:AD:ED:EF:AD:E1:29:CB Certificate issuer: /CN=A91C2168/serialNumber=9D346E6DB39C3D330C1AFF94060E15055FF4ED1C Certificate serial: 34AC Authority key identifier: 9D:34:6E:6D:B3:9C:3D:33:0C:1A:FF:94:06:0E:15:05:5F:F4:ED:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/2251B910AC7411EBBE196180C4F9AE02.roa Signing time: Fri 06 Jun 2025 01:42:30 +0000 ROA not before: Fri 06 Jun 2025 01:42:30 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 24324 IP address blocks: 122.200.176.0/20 maxlen: 20 124.157.64.0/19 maxlen: 19 124.157.68.0/22 maxlen: 22 124.157.96.0/19 maxlen: 19 202.36.132.0/24 maxlen: 24 202.49.128.0/21 maxlen: 21 202.49.128.0/24 maxlen: 24 202.49.129.0/24 maxlen: 24 202.49.130.0/24 maxlen: 24 202.49.131.0/24 maxlen: 24 202.49.132.0/24 maxlen: 24 202.49.133.0/24 maxlen: 24 202.49.134.0/24 maxlen: 24 202.49.135.0/24 maxlen: 24 203.14.20.0/24 maxlen: 24 203.161.187.0/24 maxlen: 24 203.195.124.0/24 maxlen: 24 2404:6c00::/32 maxlen: 32 2404:6c00:a000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.crl rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 14:41:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13484 (0x34ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2168, serialNumber=9D346E6DB39C3D330C1AFF94060E15055FF4ED1C Validity Not Before: Jun 6 01:42:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68424786-0ebe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:c1:bd:47:11:e2:5c:bd:15:dc:6e:e3:73:ee: ee:9a:57:c2:bd:2b:16:68:bc:3f:b6:b7:9d:91:c9: d2:1c:74:3c:f3:15:15:f0:6b:e1:75:cc:a5:ec:3c: 68:ea:bd:b4:5b:84:a1:90:3e:e8:79:eb:36:71:9e: 1b:20:20:51:02:5a:a7:1c:e7:f5:f0:a6:2c:43:26: b5:25:28:92:b3:42:7e:ad:63:b9:17:39:cf:46:68: b7:1a:42:e6:f2:39:23:ee:c6:e9:e1:a6:69:d8:7e: 44:ad:72:b2:aa:c2:0d:94:75:e1:d1:62:be:89:f7: c4:f0:1c:8f:59:d4:f8:0e:5f:ef:47:9e:9c:25:f2: fb:be:ba:7b:8c:c9:b5:03:47:c9:b1:75:a2:2b:37: 24:5b:ce:9d:ce:5f:53:3c:25:96:75:83:fe:54:53: 45:30:ce:23:7f:b7:29:81:a1:e7:09:76:e3:46:bc: dd:6a:15:db:a2:71:9e:67:32:58:9a:cf:23:5c:fe: f4:00:b2:67:5c:d7:92:d8:1b:42:9a:d9:b2:b1:03: 19:40:4f:84:b3:20:c3:bd:0a:6a:ae:29:ef:1c:00: cd:f9:b8:64:1c:e9:7d:f4:99:6f:9d:fb:56:80:35: a8:dd:bb:ad:37:0a:d3:1b:d9:ac:a5:7f:52:01:d2: 69:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:F0:11:19:E9:70:7D:2E:31:E0:A3:4A:C0:AD:ED:EF:AD:E1:29:CB X509v3 Authority Key Identifier: keyid:9D:34:6E:6D:B3:9C:3D:33:0C:1A:FF:94:06:0E:15:05:5F:F4:ED:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/nTRubbOcPTMMGv-UBg4VBV_07Rw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTRubbOcPTMMGv-UBg4VBV_07Rw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2168/24C62C061D9111E2924430F308B02CD2/2251B910AC7411EBBE196180C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.200.176.0/20 124.157.64.0/18 202.36.132.0/24 202.49.128.0/21 203.14.20.0/24 203.161.187.0/24 203.195.124.0/24 IPv6: 2404:6c00::/32 Signature Algorithm: sha256WithRSAEncryption 92:0b:6c:ef:84:40:50:8d:b3:de:55:b1:16:ae:d8:df:86:04: 15:06:e2:84:7d:6f:30:63:84:b0:20:90:76:10:e0:ba:d1:c1: b3:a0:ef:e1:13:a0:bb:10:b2:b8:c6:c5:8b:9f:ac:94:ca:7d: 2f:6c:9c:70:6d:4e:a2:3c:b2:2c:81:7c:c8:90:44:29:6f:33: ac:52:9d:60:6b:aa:f3:cb:16:e3:f2:ea:ad:fa:d1:e2:5f:45: 21:9f:17:64:65:49:2c:d2:ae:9d:b5:47:15:6e:f8:2e:7d:b1: 3d:1e:c5:f8:c5:6f:98:07:49:57:63:e6:e7:5e:37:84:a9:c3: 13:1c:04:70:8d:36:ca:c7:91:93:f0:63:8c:e5:e6:b0:b7:72: e7:32:5a:64:e7:ee:0c:19:de:8c:f8:bc:f2:a5:36:f3:8a:6e: 75:16:43:b8:2c:f8:e2:3c:9f:2f:07:17:c9:d8:8b:64:50:ca: 51:55:a6:84:76:8b:59:5b:8c:53:5c:87:2e:1a:96:93:4c:9e: 04:47:65:46:bd:4d:4a:2b:78:f7:79:0d:d8:df:a1:84:d7:c7: fa:2d:bf:c1:13:ce:3c:70:98:ae:8d:4b:45:d9:d0:08:f5:94: 9f:9f:ab:c2:3a:00:0c:6e:0e:f7:31:38:f0:db:bc:35:1b:20: 3b:a5:0c:23 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICNKwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzIxNjgxMTAvBgNVBAUTKDlEMzQ2RTZEQjM5QzNEMzMwQzFBRkY5NDA2MEUxNTA1 NUZGNEVEMUMwHhcNMjUwNjA2MDE0MjMwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQyNDc4Ni0wZWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1cG9RxHiXL0V3G7jc+7umlfCvSsWaLw/tredkcnSHHQ88xUV8Gvhdcyl7Dxo 6r20W4ShkD7oees2cZ4bICBRAlqnHOf18KYsQya1JSiSs0J+rWO5FznPRmi3GkLm 8jkj7sbp4aZp2H5ErXKyqsINlHXh0WK+iffE8ByPWdT4Dl/vR56cJfL7vrp7jMm1 A0fJsXWiKzckW86dzl9TPCWWdYP+VFNFMM4jf7cpgaHnCXbjRrzdahXbonGeZzJY ms8jXP70ALJnXNeS2BtCmtmysQMZQE+EsyDDvQpqrinvHADN+bhkHOl99JlvnftW gDWo3butNwrTG9mspX9SAdJpCwIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFGrwERnp cH0uMeCjSsCt7e+t4SnLMB8GA1UdIwQYMBaAFJ00bm2znD0zDBr/lAYOFQVf9O0c MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMjE2OC8yNEM2MkMwNjFE OTExMUUyOTI0NDMwRjMwOEIwMkNEMi9uVFJ1YmJPY1BUTU1Hdi1VQmc0VkJWXzA3 UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25UUnViYk9jUFRNTUd2LVVCZzRWQlZfMDdSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzIxNjgvMjRDNjJDMDYxRDkxMTFFMjkyNDQzMEYzMDhCMDJDRDIvMjI1MUI5MTBB Qzc0MTFFQkJFMTk2MTgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMDAEAgABMCoDBAR6yLADBAZ8nUADBADKJIQDBAPKMYADBADLDhQDBADLobsD BADLw3wwDQQCAAIwBwMFACQEbAAwDQYJKoZIhvcNAQELBQADggEBAJILbO+EQFCN s95VsRau2N+GBBUG4oR9bzBjhLAgkHYQ4LrRwbOg7+EToLsQsrjGxYufrJTKfS9s nHBtTqI8siyBfMiQRClvM6xSnWBrqvPLFuPy6q360eJfRSGfF2RlSSzSrp21RxVu +C59sT0exfjFb5gHSVdj5udeN4SpwxMcBHCNNsrHkZPwY4zl5rC3cucyWmTn7gwZ 3oz4vPKlNvOKbnUWQ7gs+OI8ny8HF8nYi2RQylFVpoR2i1lbjFNchy4alpNMngRH ZUa9TUorePd5DdjfoYTXx/otv8ETzjxwmK6NS0XZ0Aj1lJ+fq8I6AAxuDvcxOPDb vDUbIDulDCM= -----END CERTIFICATE-----Generated at Sun Jun 15 07:19:53 2025 by rpki-client