$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/5FA1BF8802DD11EE86865A23C4F9AE02.roa File: 5FA1BF8802DD11EE86865A23C4F9AE02.roa (raw, json) Hash identifier: ui8GmB9i/5pnYfd6MeCxTJj3Yjz4hQKs4XNWYMcqflM= Subject key identifier: CA:83:D0:5F:D7:B3:9B:78:02:93:DF:9B:37:FC:B6:20:46:0B:B3:C5 Certificate issuer: /CN=A91E4D3D/serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Certificate serial: 05A8 Authority key identifier: C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/5FA1BF8802DD11EE86865A23C4F9AE02.roa Signing time: Wed 16 Apr 2025 17:50:38 +0000 ROA not before: Wed 16 Apr 2025 17:50:38 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 138627 IP address blocks: 150.195.215.0/24 maxlen: 24 150.195.216.0/24 maxlen: 24 202.75.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 23:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1448 (0x5a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4D3D, serialNumber=C8070FD061A851FF8AEDE0DE0C3607EEB98FF701 Validity Not Before: Apr 16 17:50:38 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67ffeded-6496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5f:d0:b4:17:aa:42:e7:c3:a6:6a:1c:81:73: c3:9b:c7:35:07:f5:96:63:2c:fe:6d:71:44:e5:42: 34:64:45:4b:90:79:f2:80:4b:63:db:43:e7:0d:b4: f4:b0:f2:0c:e7:25:00:7a:45:b7:f0:21:7f:66:bc: 72:b3:ee:47:85:58:fa:66:16:58:d4:ba:0c:06:8d: ff:40:61:92:a8:ec:90:ac:90:fb:89:9b:ec:8b:28: b5:fb:5e:98:88:41:b0:88:03:1f:aa:4c:25:27:35: 12:bc:ad:41:11:0b:11:cf:9a:6f:b1:ab:02:0d:09: 93:e9:fc:31:24:4e:1a:70:64:9b:06:16:56:22:2c: 2b:57:3a:22:da:11:d7:61:4a:d1:0d:db:3b:00:20: 9e:bb:cc:78:e2:c3:2a:81:71:50:fb:c0:bc:3f:51: 4b:a4:af:c0:a9:69:fc:0a:b3:dd:89:30:1d:b4:12: 83:59:7d:4d:2f:1f:f1:a9:1b:34:a6:c9:f8:e3:c9: aa:47:74:51:5b:a8:79:59:23:c0:3c:b7:84:60:1d: f8:d6:db:13:c2:38:46:73:f9:96:ac:d9:b0:20:41: 1f:de:fa:fe:72:61:07:51:da:fa:48:47:db:f7:d6: 91:e5:58:d7:c8:d3:83:b0:4f:52:10:55:fc:4e:82: 17:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:83:D0:5F:D7:B3:9B:78:02:93:DF:9B:37:FC:B6:20:46:0B:B3:C5 X509v3 Authority Key Identifier: keyid:C8:07:0F:D0:61:A8:51:FF:8A:ED:E0:DE:0C:36:07:EE:B9:8F:F7:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/yAcP0GGoUf-K7eDeDDYH7rmP9wE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yAcP0GGoUf-K7eDeDDYH7rmP9wE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4D3D/B0202D32D8B911EBABC1F485C4F9AE02/5FA1BF8802DD11EE86865A23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 150.195.215.0-150.195.216.255 202.75.245.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:e0:46:40:81:bc:5d:d7:12:8d:ad:5f:c3:28:56:29:e5:50: 27:48:ff:e6:e0:04:42:d0:12:2f:f4:b1:b8:ca:7c:2d:82:72: 4f:4f:6d:f0:70:c3:2f:68:5a:61:a2:e0:d0:12:92:e5:9a:de: 87:a8:9e:7d:84:36:25:a0:c9:df:0d:85:45:23:fe:63:e3:d6: 32:5e:b7:e7:ce:1c:ba:1c:3c:69:8f:22:97:89:7c:74:3e:b0: 68:f2:b0:e0:19:81:f7:35:30:13:9e:27:3c:a9:48:ec:39:a7: 7b:23:df:3f:37:ce:d4:04:e4:a8:dd:c4:bd:31:05:19:50:8a: 82:e2:ef:d7:6d:a0:42:8b:5c:c3:47:56:af:0b:46:96:d4:80: ec:84:76:b7:63:6b:79:fc:4b:28:9f:0d:5b:62:77:81:6d:90: 04:54:e6:3a:29:2a:4d:4c:b1:5f:10:24:ae:a6:15:21:3d:85: bb:0b:5e:26:d9:2a:ff:16:73:59:70:6c:25:e0:66:a7:3a:4d: 24:ed:f6:e8:9c:9e:6e:0a:f3:3a:03:41:a0:cd:82:16:7a:d3: c8:7d:b1:00:bc:05:8d:8e:7f:19:34:06:8c:bc:00:dc:59:dc: e9:e0:17:29:d3:05:08:70:6b:c5:91:14:74:d7:b9:33:3e:f2: 9e:a2:22:aa -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTREM0QxMTAvBgNVBAUTKEM4MDcwRkQwNjFBODUxRkY4QUVERTBERTBDMzYwN0VF Qjk4RkY3MDEwHhcNMjUwNDE2MTc1MDM4WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2ZmZWRlZC02NDk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsV/QtBeqQufDpmocgXPDm8c1B/WWYyz+bXFE5UI0ZEVLkHnygEtj20PnDbT0 sPIM5yUAekW38CF/Zrxys+5HhVj6ZhZY1LoMBo3/QGGSqOyQrJD7iZvsiyi1+16Y iEGwiAMfqkwlJzUSvK1BEQsRz5pvsasCDQmT6fwxJE4acGSbBhZWIiwrVzoi2hHX YUrRDds7ACCeu8x44sMqgXFQ+8C8P1FLpK/AqWn8CrPdiTAdtBKDWX1NLx/xqRs0 psn448mqR3RRW6h5WSPAPLeEYB341tsTwjhGc/mWrNmwIEEf3vr+cmEHUdr6SEfb 99aR5VjXyNODsE9SEFX8ToIXbQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFMqD0F/X s5t4ApPfmzf8tiBGC7PFMB8GA1UdIwQYMBaAFMgHD9BhqFH/iu3g3gw2B+65j/cB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNEQzRC9CMDIwMkQzMkQ4 QjkxMUVCQUJDMUY0ODVDNEY5QUUwMi95QWNQMEdHb1VmLUs3ZURlRERZSDdybVA5 d0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lBY1AwR0dvVWYtSzdlRGVERFlIN3JtUDl3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTREM0QvQjAyMDJEMzJEOEI5MTFFQkFCQzFGNDg1QzRGOUFFMDIvNUZBMUJGODgw MkREMTFFRTg2ODY1QTIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEAJbD1wMEAJbD2AMEAMpL9TANBgkqhkiG9w0BAQsFAAOC AQEAP+BGQIG8XdcSja1fwyhWKeVQJ0j/5uAEQtASL/SxuMp8LYJyT09t8HDDL2ha YaLg0BKS5Zreh6iefYQ2JaDJ3w2FRSP+Y+PWMl63584cuhw8aY8il4l8dD6waPKw 4BmB9zUwE54nPKlI7DmneyPfPzfO1ATkqN3EvTEFGVCKguLv122gQotcw0dWrwtG ltSA7IR2t2NrefxLKJ8NW2J3gW2QBFTmOikqTUyxXxAkrqYVIT2FuwteJtkq/xZz WXBsJeBmpzpNJO326JyebgrzOgNBoM2CFnrTyH2xALwFjY5/GTQGjLwA3Fnc6eAX KdMFCHBrxZEUdNe5Mz7ynqIiqg== -----END CERTIFICATE-----Generated at Sat Apr 26 07:43:40 2025 by rpki-client