$ rpki-client -vvf rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/5E7BBD38259A11ECB37EA938C4F9AE02.roa File: 5E7BBD38259A11ECB37EA938C4F9AE02.roa (raw, json) Hash identifier: FRIMYZ0ymb4xNk4HDg1e5QrcA1pECIMjsb8IPP33VK0= Subject key identifier: 8D:D1:0E:74:46:7F:66:9E:41:8B:CB:7F:AD:92:A5:E4:00:13:1E:5C Certificate issuer: /CN=A91E237A/serialNumber=A9232012F2FC05426C0688358CFE6FB9154786BC Certificate serial: 06CF Authority key identifier: A9:23:20:12:F2:FC:05:42:6C:06:88:35:8C:FE:6F:B9:15:47:86:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSMgEvL8BUJsBog1jP5vuRVHhrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/5E7BBD38259A11ECB37EA938C4F9AE02.roa Signing time: Tue 10 Jun 2025 22:10:41 +0000 ROA not before: Tue 10 Jun 2025 22:10:41 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 45355 IP address blocks: 203.202.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/qSMgEvL8BUJsBog1jP5vuRVHhrw.crl rsync://rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/qSMgEvL8BUJsBog1jP5vuRVHhrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSMgEvL8BUJsBog1jP5vuRVHhrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 21:48:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1743 (0x6cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E237A, serialNumber=A9232012F2FC05426C0688358CFE6FB9154786BC Validity Not Before: Jun 10 22:10:41 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=6848ad60-cb21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:b2:d9:f3:8d:33:6d:91:03:ff:61:0f:c3:a2: 8f:c8:fe:91:14:4c:b5:2c:5b:8f:bd:4c:12:62:bb: 53:6e:d1:7b:b6:9b:63:71:53:7f:61:9b:34:1f:90: ff:a3:05:ef:2d:88:ae:9f:34:42:75:cb:b5:5d:bd: 0d:dd:1e:76:c1:4c:e6:6c:8b:a0:09:0e:cd:1e:18: 39:d5:b6:2f:3d:76:14:9e:2f:93:dd:87:d4:29:92: df:14:d0:c3:ed:e6:3f:1d:00:c2:a0:f1:47:75:cb: 4b:e6:ae:01:77:cb:8c:2f:75:25:a9:e6:2f:53:70: ce:21:4f:a7:93:83:ce:5f:c6:82:23:f1:16:3c:e2: 03:4a:0a:f8:a3:07:18:8b:2b:f7:dd:6e:3c:57:5c: 3c:b8:47:96:39:fe:02:c2:b8:cf:c1:76:06:85:94: 4a:64:99:1d:8b:28:86:16:bb:de:cc:91:ea:89:ed: 5f:2f:ff:45:24:76:ff:97:c3:49:d3:96:9f:1a:a6: 66:68:a0:56:31:76:55:07:6a:79:28:a6:62:31:7b: 9c:9a:3c:ed:6b:6f:60:e0:b9:3f:17:d2:55:94:61: 5f:6e:4e:bc:97:f3:93:0a:91:be:a1:49:13:c6:4f: f0:cd:99:4c:2d:9d:17:5f:9f:46:73:54:f1:c2:25: aa:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D1:0E:74:46:7F:66:9E:41:8B:CB:7F:AD:92:A5:E4:00:13:1E:5C X509v3 Authority Key Identifier: keyid:A9:23:20:12:F2:FC:05:42:6C:06:88:35:8C:FE:6F:B9:15:47:86:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/qSMgEvL8BUJsBog1jP5vuRVHhrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSMgEvL8BUJsBog1jP5vuRVHhrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E237A/E882E46C5BA011EBAEBE5329C4F9AE02/5E7BBD38259A11ECB37EA938C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.202.235.0/24 Signature Algorithm: sha256WithRSAEncryption a5:de:e5:e4:17:95:eb:4f:04:e4:72:2c:df:1e:5d:6d:d4:45: 0f:59:dc:63:00:ee:92:9b:28:f1:79:de:da:7f:08:46:b9:37: 76:b4:14:a3:b8:e9:aa:fd:04:e6:91:9a:95:f2:7b:93:16:f2: 50:81:c5:6a:60:c4:45:11:ff:23:f1:85:06:5b:de:d7:a0:75: 34:65:e6:dd:a0:25:e3:cc:43:f6:4d:f2:b0:91:fc:18:4c:ce: f6:c3:fc:08:56:c7:0f:db:0d:0f:83:5c:fe:87:38:79:9e:7b: f9:71:1c:35:d8:a6:18:b4:19:06:55:5a:87:f1:cd:f0:7f:90: c1:f0:55:4a:1f:d5:7d:52:34:5f:76:3f:e0:d4:28:dd:e4:16: 95:4e:1b:45:1e:92:c9:de:ee:21:39:b3:e7:cf:8d:ab:5e:fd: 2a:35:83:e8:9e:01:72:0b:84:50:26:c1:7e:38:2b:67:45:ac: 7c:c0:6d:82:1a:b4:e0:86:e3:eb:87:db:25:79:75:3d:84:2a: 71:0b:09:20:da:5b:cf:ff:af:ed:2a:12:8d:b3:09:48:76:4f: 5c:b5:97:0d:3d:5e:6d:6f:0d:f2:c5:9d:8b:09:22:ac:8d:67: 0d:25:41:e7:33:d7:dc:48:7a:7a:5a:fc:55:76:82:f5:f5:75: b3:d6:cf:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTIzN0ExMTAvBgNVBAUTKEE5MjMyMDEyRjJGQzA1NDI2QzA2ODgzNThDRkU2RkI5 MTU0Nzg2QkMwHhcNMjUwNjEwMjIxMDQxWhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQ4YWQ2MC1jYjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwbLZ840zbZED/2EPw6KPyP6RFEy1LFuPvUwSYrtTbtF7tptjcVN/YZs0H5D/ owXvLYiunzRCdcu1Xb0N3R52wUzmbIugCQ7NHhg51bYvPXYUni+T3YfUKZLfFNDD 7eY/HQDCoPFHdctL5q4Bd8uML3UlqeYvU3DOIU+nk4POX8aCI/EWPOIDSgr4owcY iyv33W48V1w8uEeWOf4CwrjPwXYGhZRKZJkdiyiGFrvezJHqie1fL/9FJHb/l8NJ 05afGqZmaKBWMXZVB2p5KKZiMXucmjzta29g4Lk/F9JVlGFfbk68l/OTCpG+oUkT xk/wzZlMLZ0XX59Gc1TxwiWqGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFI3RDnRG f2aeQYvLf62SpeQAEx5cMB8GA1UdIwQYMBaAFKkjIBLy/AVCbAaINYz+b7kVR4a8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjM3QS9FODgyRTQ2QzVC QTAxMUVCQUVCRTUzMjlDNEY5QUUwMi9xU01nRXZMOEJVSnNCb2cxalA1dnVSVkho cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTTWdFdkw4QlVKc0JvZzFqUDV2dVJWSGhydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTIzN0EvRTg4MkU0NkM1QkEwMTFFQkFFQkU1MzI5QzRGOUFFMDIvNUU3QkJEMzgy NTlBMTFFQ0IzN0VBOTM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLyuswDQYJKoZIhvcNAQELBQADggEBAKXe5eQXletPBORy LN8eXW3URQ9Z3GMA7pKbKPF53tp/CEa5N3a0FKO46ar9BOaRmpXye5MW8lCBxWpg xEUR/yPxhQZb3tegdTRl5t2gJePMQ/ZN8rCR/BhMzvbD/AhWxw/bDQ+DXP6HOHme e/lxHDXYphi0GQZVWofxzfB/kMHwVUof1X1SNF92P+DUKN3kFpVOG0Ueksne7iE5 s+fPjate/So1g+ieAXILhFAmwX44K2dFrHzAbYIatOCG4+uH2yV5dT2EKnELCSDa W8//r+0qEo2zCUh2T1y1lw09Xm1vDfLFnYsJIqyNZw0lQecz19xIenpa/FV2gvX1 dbPWz/U= -----END CERTIFICATE-----Generated at Sun Jun 15 07:09:19 2025 by rpki-client