$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/EC56413A5B4B11EE9A031C81C4F9AE02.roa File: EC56413A5B4B11EE9A031C81C4F9AE02.roa (raw, json) Hash identifier: L51Q68tVx2XVC4mIdbJx6yL7uZTn+EZdlLwf/zTugIc= Subject key identifier: 2D:FB:7A:4D:CB:E3:D8:38:4C:66:B7:1E:11:03:4E:D8:4F:7E:D9:2F Certificate issuer: /CN=A91CE5A6/serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833 Certificate serial: 0134 Authority key identifier: 00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/EC56413A5B4B11EE9A031C81C4F9AE02.roa Signing time: Tue 15 Apr 2025 03:39:37 +0000 ROA not before: Tue 15 Apr 2025 03:39:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 1851 IP address blocks: 43.241.200.0/22 maxlen: 22 45.121.132.0/22 maxlen: 22 103.37.128.0/22 maxlen: 22 2403:7900::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 03:41:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 308 (0x134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6, serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833 Validity Not Before: Apr 15 03:39:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=67fdd4f9-dbbe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b8:ef:1f:06:e1:4d:29:58:25:62:2c:37:d4: 8f:46:09:53:7e:e9:09:b4:48:12:76:5b:75:d7:73: a1:36:45:e2:68:60:4d:7d:76:4a:01:24:3e:d5:e7: d1:52:ad:f4:17:ef:23:e3:20:db:cf:1f:70:2d:44: d3:1f:2b:66:ff:ab:4a:f8:fb:4b:7c:5f:24:a1:f0: d2:de:10:63:5e:10:49:65:bd:71:cd:a1:e5:e3:e9: d3:82:9a:c4:d8:95:df:1b:e6:a8:fc:1b:fd:21:df: b1:56:29:6a:07:e9:01:8a:4f:d5:fa:7e:34:b3:62: c8:3e:e0:cb:bb:fa:10:96:ed:a3:16:0b:28:26:b3: 15:c3:d1:c1:bc:60:76:65:5f:26:6f:25:8e:1d:03: ee:19:8d:60:28:11:a2:80:01:be:83:15:b0:bc:25: dd:8b:9f:43:df:aa:8f:17:92:01:93:ea:ac:44:10: fa:78:65:47:f8:9a:c5:aa:27:a8:2d:6d:a8:cb:01: 65:e3:89:f8:19:49:62:d5:7f:b9:71:c5:df:32:09: 6c:a3:39:ec:29:bb:83:26:fc:5f:0f:1d:5b:1d:cc: 3b:6c:20:db:d8:34:2d:13:84:65:9d:cc:20:62:5e: d9:b5:a7:c2:d6:4a:c9:e5:6e:81:b1:18:4e:04:82: 4f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:FB:7A:4D:CB:E3:D8:38:4C:66:B7:1E:11:03:4E:D8:4F:7E:D9:2F X509v3 Authority Key Identifier: keyid:00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/EC56413A5B4B11EE9A031C81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.241.200.0/22 45.121.132.0/22 103.37.128.0/22 IPv6: 2403:7900::/32 Signature Algorithm: sha256WithRSAEncryption 79:a2:fd:f5:a5:49:c0:94:e8:6b:09:08:66:e8:4a:e5:4b:68: 24:c5:01:df:57:22:52:40:0d:36:40:f2:e5:37:c4:02:af:46: f1:db:e1:a7:a0:5c:61:eb:80:7e:d7:df:79:53:71:91:89:44: 48:1c:67:28:86:db:53:98:b6:af:52:02:ae:8f:c5:73:b0:f4: 07:10:1a:24:17:fa:6c:6a:c6:07:96:02:e4:3d:db:f0:34:db: 4f:2c:73:8e:46:a7:5d:f0:2e:51:1b:0f:3a:ef:f9:2d:42:b6: 21:aa:71:68:91:bb:3f:60:69:5f:a4:4f:21:5a:ff:50:f4:0b: 9b:74:b8:b6:bd:09:c7:2d:bb:80:bf:ab:27:83:d8:1b:86:03: 33:9f:8f:6e:26:67:0c:4f:0c:4e:94:a1:0c:ad:6a:80:30:57: 58:69:eb:df:da:64:1f:68:79:82:b6:ce:c9:b0:e0:ea:5c:c4: c6:5f:95:40:79:91:23:fa:b5:03:73:85:2e:5a:eb:ef:8a:ba: b6:63:c2:dc:23:3c:d9:3f:bd:00:47:dd:b3:ff:dd:d5:83:9a: fa:35:75:87:f3:ab:61:2e:0d:61:b6:26:e7:86:8a:8a:55:72: 89:a2:d6:c0:c0:94:3d:4e:f0:b4:d1:1e:7d:4b:97:4e:94:2a: 80:4a:cb:b6 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICATQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1QTYxMTAvBgNVBAUTKDAwOTkyOEYwQjhDRDMwRURBMDU2MzBBOEJBNjc0RTc2 MkE5RDI4MzMwHhcNMjUwNDE1MDMzOTM3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZkZDRmOS1kYmJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApLjvHwbhTSlYJWIsN9SPRglTfukJtEgSdlt113OhNkXiaGBNfXZKASQ+1efR Uq30F+8j4yDbzx9wLUTTHytm/6tK+PtLfF8kofDS3hBjXhBJZb1xzaHl4+nTgprE 2JXfG+ao/Bv9Id+xVilqB+kBik/V+n40s2LIPuDLu/oQlu2jFgsoJrMVw9HBvGB2 ZV8mbyWOHQPuGY1gKBGigAG+gxWwvCXdi59D36qPF5IBk+qsRBD6eGVH+JrFqieo LW2oywFl44n4GUli1X+5ccXfMglsoznsKbuDJvxfDx1bHcw7bCDb2DQtE4Rlncwg Yl7ZtafC1krJ5W6BsRhOBIJPwwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFC37ek3L 49g4TGa3HhEDTthPftkvMB8GA1UdIwQYMBaAFACZKPC4zTDtoFYwqLpnTnYqnSgz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTVBNi9CMzc0OTcxMDVC M0YxMUVFOEYxRDNENkVDNEY5QUUwMi9BSmtvOExqTk1PMmdWakNvdW1kT2RpcWRL RE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FKa284TGpOTU8yZ1ZqQ291bWRPZGlxZEtETS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U1QTYvQjM3NDk3MTA1QjNGMTFFRThGMUQzRDZFQzRGOUFFMDIvRUM1NjQxM0E1 QjRCMTFFRTlBMDMxQzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAIr8cgDBAIteYQDBAJnJYAwDQQCAAIwBwMFACQDeQAwDQYJ KoZIhvcNAQELBQADggEBAHmi/fWlScCU6GsJCGboSuVLaCTFAd9XIlJADTZA8uU3 xAKvRvHb4aegXGHrgH7X33lTcZGJREgcZyiG21OYtq9SAq6PxXOw9AcQGiQX+mxq xgeWAuQ92/A0208sc45Gp13wLlEbDzrv+S1CtiGqcWiRuz9gaV+kTyFa/1D0C5t0 uLa9Ccctu4C/qyeD2BuGAzOfj24mZwxPDE6UoQytaoAwV1hp69/aZB9oeYK2zsmw 4OpcxMZflUB5kSP6tQNzhS5a6++KurZjwtwjPNk/vQBH3bP/3dWDmvo1dYfzq2Eu DWG2JueGiopVcomi1sDAlD1O8LTRHn1Ll06UKoBKy7Y= -----END CERTIFICATE-----Generated at Sat Apr 26 07:45:27 2025 by rpki-client