$ rpki-client -vvf rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/E2037F8C019911EFAFFEEC5DC4F9AE02.roa File: E2037F8C019911EFAFFEEC5DC4F9AE02.roa (raw, json) Hash identifier: yyKQJp3Cor943Y25Ya+6ME8Xl4xDZuaYL1jQZ9UiIZI= Subject key identifier: 64:05:1C:29:99:84:94:FC:C7:BC:23:CC:D8:21:C8:A4:0C:97:EB:95 Certificate issuer: /CN=A91C2B93/serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Certificate serial: BA Authority key identifier: D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/E2037F8C019911EFAFFEEC5DC4F9AE02.roa Signing time: Wed 09 Apr 2025 05:12:13 +0000 ROA not before: Wed 09 Apr 2025 05:12:13 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 20868 IP address blocks: 202.50.180.0/22 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 04:55:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C2B93, serialNumber=D9D65F7F36090C401BCF20D4BC80C43F0DC5933D Validity Not Before: Apr 9 05:12:13 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67f601ac-a865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:60:ea:b4:2c:c3:db:b8:b9:60:04:5a:a6:0b: 1b:df:53:0d:a7:6d:83:50:ca:13:4c:ca:b0:9a:be: 39:ec:4e:47:6d:09:88:ca:63:78:1a:ca:22:fc:e9: 3c:53:d7:89:64:e1:e4:d1:b0:2b:c3:2f:67:a5:8f: 9a:e6:37:1f:5b:64:4b:16:7e:5c:59:8c:fc:0a:87: fa:e7:d8:aa:26:df:c9:32:0c:bf:8d:2c:a0:37:0f: 94:1d:16:95:79:28:44:c6:be:33:45:ff:25:a4:ef: 54:8a:2c:ee:c0:0c:0c:b8:82:a3:ea:18:54:64:af: 38:43:bb:e2:64:c5:4f:da:f6:b9:89:b2:f7:84:ad: a6:06:9d:09:35:4b:f3:59:0c:f8:ea:7a:d7:ca:9c: fd:91:3a:e4:03:19:27:df:a0:dd:3f:cb:dd:fd:bc: 1d:47:f5:85:f4:cc:60:3c:f1:52:64:df:45:cf:07: 6f:a1:a1:51:d6:3b:10:32:2e:6c:c7:a9:af:c7:3b: b1:c9:b2:47:da:5a:0c:a0:2c:32:42:0a:4b:fd:e8: 33:3b:08:62:d9:d0:1a:70:f0:4e:8d:a2:c4:c7:f9: eb:52:a1:4b:03:5a:47:91:74:83:f1:97:08:7b:65: 88:51:92:ec:78:72:20:87:a3:0d:d0:7c:54:00:4b: 7d:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:05:1C:29:99:84:94:FC:C7:BC:23:CC:D8:21:C8:A4:0C:97:EB:95 X509v3 Authority Key Identifier: keyid:D9:D6:5F:7F:36:09:0C:40:1B:CF:20:D4:BC:80:C4:3F:0D:C5:93:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/2dZffzYJDEAbzyDUvIDEPw3Fkz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2dZffzYJDEAbzyDUvIDEPw3Fkz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C2B93/3AC874EE014311EF825A6465C4F9AE02/E2037F8C019911EFAFFEEC5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.50.180.0/22 Signature Algorithm: sha256WithRSAEncryption 69:ab:5a:f0:53:59:ee:81:dd:31:78:b8:05:e7:95:ba:8d:e8: 2c:f7:a3:1e:7e:cb:5e:dc:c9:2c:ab:17:7b:32:95:2d:1d:2a: 10:c5:2b:ed:4d:cf:59:7d:a8:f4:12:4a:6a:8a:03:a1:0e:54: 21:7f:ce:c8:c4:0e:c2:06:e9:d0:42:1f:4d:7e:7f:ca:02:45: 57:0c:51:68:11:eb:e8:75:56:2e:c9:e3:c1:99:f7:67:35:f7: 1d:21:4a:63:12:f4:9a:37:3a:37:f6:fd:1a:17:74:ad:da:c3: ef:34:fd:5e:25:56:4c:1c:52:87:3b:6e:0b:38:d8:1e:7a:e7: 36:07:94:e4:e1:13:a6:bd:4d:13:9f:6e:6f:77:fe:c8:43:4d: a0:7d:e1:0e:de:8b:b4:c7:37:09:df:c6:15:2b:f7:ec:e0:4c: de:71:c4:79:61:ed:58:55:b7:ab:5f:e2:1a:6a:b6:47:77:26: 21:4d:a3:31:8f:98:92:de:9f:29:1e:09:f6:ad:af:71:58:0f: 73:26:1c:9d:15:66:2c:e5:06:51:cd:47:29:a3:5f:16:14:34: 63:9c:f4:1e:3d:94:76:eb:fe:95:2c:07:ff:75:e2:11:ff:53: c5:a5:e9:d4:8a:68:c2:6f:8f:42:45:f2:e4:ef:80:d9:64:76: c5:76:03:16 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzJCOTMxMTAvBgNVBAUTKEQ5RDY1RjdGMzYwOTBDNDAxQkNGMjBENEJDODBDNDNG MERDNTkzM0QwHhcNMjUwNDA5MDUxMjEzWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Y2MDFhYy1hODY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuGDqtCzD27i5YARapgsb31MNp22DUMoTTMqwmr457E5HbQmIymN4Gsoi/Ok8 U9eJZOHk0bArwy9npY+a5jcfW2RLFn5cWYz8Cof659iqJt/JMgy/jSygNw+UHRaV eShExr4zRf8lpO9UiizuwAwMuIKj6hhUZK84Q7viZMVP2va5ibL3hK2mBp0JNUvz WQz46nrXypz9kTrkAxkn36DdP8vd/bwdR/WF9MxgPPFSZN9FzwdvoaFR1jsQMi5s x6mvxzuxybJH2loMoCwyQgpL/egzOwhi2dAacPBOjaLEx/nrUqFLA1pHkXSD8ZcI e2WIUZLseHIgh6MN0HxUAEt99QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGQFHCmZ hJT8x7wjzNghyKQMl+uVMB8GA1UdIwQYMBaAFNnWX382CQxAG88g1LyAxD8NxZM9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMkI5My8zQUM4NzRFRTAx NDMxMUVGODI1QTY0NjVDNEY5QUUwMi8yZFpmZnpZSkRFQWJ6eURVdklERVB3M0Zr ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJkWmZmellKREVBYnp5RFV2SURFUHczRmt6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzJCOTMvM0FDODc0RUUwMTQzMTFFRjgyNUE2NDY1QzRGOUFFMDIvRTIwMzdGOEMw MTk5MTFFRkFGRkVFQzVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKMrQwDQYJKoZIhvcNAQELBQADggEBAGmrWvBTWe6B3TF4 uAXnlbqN6Cz3ox5+y17cySyrF3sylS0dKhDFK+1Nz1l9qPQSSmqKA6EOVCF/zsjE DsIG6dBCH01+f8oCRVcMUWgR6+h1Vi7J48GZ92c19x0hSmMS9Jo3Ojf2/RoXdK3a w+80/V4lVkwcUoc7bgs42B565zYHlOThE6a9TROfbm93/shDTaB94Q7ei7THNwnf xhUr9+zgTN5xxHlh7VhVt6tf4hpqtkd3JiFNozGPmJLenykeCfatr3FYD3MmHJ0V ZizlBlHNRymjXxYUNGOc9B49lHbr/pUsB/914hH/U8Wl6dSKaMJvj0JF8uTvgNlk dsV2AxY= -----END CERTIFICATE-----Generated at Sat Apr 26 06:08:13 2025 by rpki-client