$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/C1D6899A766D11EF8DE77D09C4F9AE02.roa File: C1D6899A766D11EF8DE77D09C4F9AE02.roa (raw, json) Hash identifier: yKi+NUgPYWpDgQZbJfnSpH0lEyxDrOpuSCtmsOZPXvE= Subject key identifier: 21:BE:68:70:63:78:E5:32:6A:D0:60:75:19:E9:B9:FF:34:EE:25:B1 Certificate issuer: /CN=A91C6550/serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Certificate serial: 024F Authority key identifier: 45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/C1D6899A766D11EF8DE77D09C4F9AE02.roa Signing time: Thu 05 Jun 2025 03:10:37 +0000 ROA not before: Thu 05 Jun 2025 03:10:37 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 10103 IP address blocks: 202.134.242.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Jun 2025 02:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 591 (0x24f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6550, serialNumber=456EEA0692C6A4F26F53D2D237D1CB4DCD783305 Validity Not Before: Jun 5 03:10:37 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68410aad-c7e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:ec:45:c8:ed:6e:3f:5e:f2:50:e8:64:fb:fa: f2:02:92:b1:54:5d:6e:64:37:53:db:d0:f1:9f:41: 7b:fa:e8:44:1c:d0:bf:f8:e4:00:f8:77:67:75:11: f1:4e:bf:5e:5d:88:1b:f2:23:21:f0:1e:ed:a6:19: 0d:9b:67:f1:a8:88:d4:37:6a:d5:50:83:86:9b:15: da:ec:c8:56:dc:bf:47:83:0f:91:5d:f3:cc:85:84: 2f:75:5c:d0:00:87:cd:f7:3b:1e:0f:b5:6d:84:1a: 43:6c:39:8d:d6:a4:03:62:5d:52:7b:d7:b7:35:17: 4f:ff:ba:54:8b:ae:33:53:b8:e9:31:6d:20:b9:a1: ad:6d:a5:e7:2b:f3:6f:dc:3f:76:26:5e:79:4e:d2: b7:04:d9:16:ca:fb:f0:69:81:23:55:02:20:5c:5c: 82:89:f4:fc:bb:4f:c1:9a:93:b0:d6:a4:b5:4f:4d: 23:e5:a8:0b:dd:1e:f3:1a:ce:37:d6:b9:30:12:98: ea:98:bf:7c:b0:4f:b9:44:9e:0e:5e:db:5f:12:72: 76:eb:7a:b1:6e:13:68:26:2e:f5:03:3b:81:c4:e2: ac:81:90:63:24:d9:93:1a:87:87:58:33:09:6e:17: fd:e6:c3:00:17:dd:61:eb:47:a9:e5:04:87:db:20: 1e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:BE:68:70:63:78:E5:32:6A:D0:60:75:19:E9:B9:FF:34:EE:25:B1 X509v3 Authority Key Identifier: keyid:45:6E:EA:06:92:C6:A4:F2:6F:53:D2:D2:37:D1:CB:4D:CD:78:33:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/RW7qBpLGpPJvU9LSN9HLTc14MwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RW7qBpLGpPJvU9LSN9HLTc14MwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6550/8400954ACEC411ED8A83FB11C4F9AE02/C1D6899A766D11EF8DE77D09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.134.242.0/24 Signature Algorithm: sha256WithRSAEncryption 35:c0:81:26:d8:ac:ec:75:60:c1:c9:37:58:3d:3f:80:b8:ac: 89:58:90:c7:99:2a:6b:06:17:0c:d8:37:c7:6b:85:c7:5f:75: fe:9f:1b:69:aa:53:ce:14:65:b8:d5:3c:b2:3d:5b:a1:e4:84: 2b:84:13:f3:cf:71:f4:06:e9:81:e4:3c:58:40:d3:14:bf:91: 12:ec:32:ef:39:54:46:e3:c9:41:6b:3b:d4:6b:14:ea:c1:d0: 5e:a7:2e:12:37:18:4e:48:5a:b4:ad:8c:57:01:2d:d1:7a:e1: 26:9b:7e:a2:8e:d3:56:13:b1:c6:dd:f5:88:37:8b:89:de:d7: 60:bb:8d:54:63:f6:c4:56:da:c5:8d:00:3c:77:12:3c:12:58: cc:e1:5a:82:a6:39:64:ce:6a:dc:58:91:22:92:63:6c:7d:f0: f6:e9:e9:9e:79:a2:d6:52:56:21:08:27:81:f3:ba:cb:bd:3c: f7:19:dc:9a:7a:27:19:71:4f:ce:aa:80:9f:d8:93:50:83:91: c9:ce:49:73:4d:d2:f2:32:56:a9:c2:48:9b:c8:ea:fe:a7:3b: 25:15:8b:76:1a:d7:f2:ac:55:09:f0:5c:07:3e:40:47:0c:c8: 4a:50:b9:6f:09:94:7e:87:49:76:bd:37:24:d5:8e:16:34:e4: 41:ae:c7:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAk8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1NTAxMTAvBgNVBAUTKDQ1NkVFQTA2OTJDNkE0RjI2RjUzRDJEMjM3RDFDQjRE Q0Q3ODMzMDUwHhcNMjUwNjA1MDMxMDM3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQxMGFhZC1jN2U4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0+xFyO1uP17yUOhk+/ryApKxVF1uZDdT29Dxn0F7+uhEHNC/+OQA+HdndRHx Tr9eXYgb8iMh8B7tphkNm2fxqIjUN2rVUIOGmxXa7MhW3L9Hgw+RXfPMhYQvdVzQ AIfN9zseD7VthBpDbDmN1qQDYl1Se9e3NRdP/7pUi64zU7jpMW0guaGtbaXnK/Nv 3D92Jl55TtK3BNkWyvvwaYEjVQIgXFyCifT8u0/BmpOw1qS1T00j5agL3R7zGs43 1rkwEpjqmL98sE+5RJ4OXttfEnJ263qxbhNoJi71AzuBxOKsgZBjJNmTGoeHWDMJ bhf95sMAF91h60ep5QSH2yAeswIDAQABo4IClTCCApEwHQYDVR0OBBYEFCG+aHBj eOUyatBgdRnpuf807iWxMB8GA1UdIwQYMBaAFEVu6gaSxqTyb1PS0jfRy03NeDMF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjU1MC84NDAwOTU0QUNF QzQxMUVEOEE4M0ZCMTFDNEY5QUUwMi9SVzdxQnBMR3BQSnZVOUxTTjlITFRjMTRN d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JXN3FCcExHcFBKdlU5TFNOOUhMVGMxNE13VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY1NTAvODQwMDk1NEFDRUM0MTFFRDhBODNGQjExQzRGOUFFMDIvQzFENjg5OUE3 NjZEMTFFRjhERTc3RDA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKhvIwDQYJKoZIhvcNAQELBQADggEBADXAgSbYrOx1YMHJ N1g9P4C4rIlYkMeZKmsGFwzYN8drhcdfdf6fG2mqU84UZbjVPLI9W6HkhCuEE/PP cfQG6YHkPFhA0xS/kRLsMu85VEbjyUFrO9RrFOrB0F6nLhI3GE5IWrStjFcBLdF6 4SabfqKO01YTscbd9Yg3i4ne12C7jVRj9sRW2sWNADx3EjwSWMzhWoKmOWTOatxY kSKSY2x98Pbp6Z55otZSViEIJ4Hzusu9PPcZ3Jp6JxlxT86qgJ/Yk1CDkcnOSXNN 0vIyVqnCSJvI6v6nOyUVi3Ya1/KsVQnwXAc+QEcMyEpQuW8JlH6HSXa9NyTVjhY0 5EGux/Y= -----END CERTIFICATE-----Generated at Sun Jun 22 09:01:24 2025 by rpki-client