$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/70C04006D5EF11EE8279357EC4F9AE02.roa File: 70C04006D5EF11EE8279357EC4F9AE02.roa (raw, json) Hash identifier: Jluh9mrxLx3CmJG4INslPH8RKZMT0C9KwG0Dzzekk1I= Subject key identifier: 5C:B0:1D:74:2A:BC:C5:93:4B:2E:C7:3F:9D:32:2F:76:A6:41:F6:31 Certificate issuer: /CN=A91EB929/serialNumber=A9214DB991849B29C4F045C336470E9D82C48CE2 Certificate serial: F0 Authority key identifier: A9:21:4D:B9:91:84:9B:29:C4:F0:45:C3:36:47:0E:9D:82:C4:8C:E2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/70C04006D5EF11EE8279357EC4F9AE02.roa Signing time: Tue 27 May 2025 05:40:56 +0000 ROA not before: Tue 27 May 2025 05:40:56 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 24399 IP address blocks: 202.133.8.0/21 maxlen: 21 203.80.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.crl rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Jun 2025 04:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB929, serialNumber=A9214DB991849B29C4F045C336470E9D82C48CE2 Validity Not Before: May 27 05:40:56 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68355067-c202 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6e:41:7e:a2:31:c0:bb:e6:03:31:98:fc:4a: a4:64:7a:8e:49:9f:3f:00:70:f5:c2:da:a4:c0:cf: 31:2d:fa:91:fc:6b:7c:cf:b2:fb:44:4f:04:8c:17: d9:2d:2b:2e:cf:bf:24:b4:9e:58:04:e2:91:6d:72: 38:d5:68:ea:77:55:e2:5e:64:f4:60:81:13:63:ff: 63:6b:45:a0:1f:a1:f0:dd:9f:10:c9:b8:0a:ef:8b: 37:0c:ed:bf:72:a2:1f:d5:18:ec:e1:a1:61:18:10: d1:1b:b0:d5:e2:00:78:c9:44:c5:41:6c:12:4c:51: 84:fa:6c:27:f1:c8:9e:10:51:ce:60:3f:6b:cf:ce: 73:76:35:56:c7:75:cf:be:b0:a7:90:4f:e0:64:fa: 81:8f:f8:93:45:2c:a5:46:b9:87:8d:2b:25:9d:61: fa:01:f1:ea:ae:81:dc:da:f3:b6:8e:0c:f0:81:18: d8:0d:32:e7:50:e4:92:1a:00:c3:63:41:a6:d8:e5: 1b:04:de:0d:cf:5e:a6:93:bd:6e:c4:17:38:48:d7: b1:03:6b:08:9e:be:3c:3b:93:78:a7:3c:d5:67:7b: 52:a0:58:5f:d1:15:e9:53:59:ca:0d:b0:b7:8c:67: c3:d5:fe:0e:dd:0c:3e:f2:62:44:39:ae:3a:b9:6a: ed:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:B0:1D:74:2A:BC:C5:93:4B:2E:C7:3F:9D:32:2F:76:A6:41:F6:31 X509v3 Authority Key Identifier: keyid:A9:21:4D:B9:91:84:9B:29:C4:F0:45:C3:36:47:0E:9D:82:C4:8C:E2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/qSFNuZGEmynE8EXDNkcOnYLEjOI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qSFNuZGEmynE8EXDNkcOnYLEjOI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB929/BEBDEA98D5EE11EE9E20177DC4F9AE02/70C04006D5EF11EE8279357EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.133.8.0/21 203.80.184.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:ef:b6:d6:76:5b:e3:ff:61:21:f3:7c:d3:98:b6:b5:fc:12: fd:25:ad:e0:aa:7e:48:34:fe:85:f8:b4:a4:bd:6b:12:46:5e: 9f:85:4f:ff:a9:8b:81:d3:ac:9b:b0:8c:9e:f1:25:13:d0:d0: 59:b3:02:6f:6e:04:ad:1c:b1:59:4c:4b:84:62:3b:3c:7f:86: 36:99:ea:73:49:45:b8:01:f8:1a:86:3e:9b:de:8f:db:8a:42: 26:fe:29:ca:d2:16:99:41:73:a9:07:0d:6c:c7:69:d2:98:09: ef:c0:48:79:80:ce:d3:1c:f2:bc:18:74:2c:ec:29:96:1b:8f: 38:bf:0f:e8:17:57:e1:88:3d:cc:46:7e:59:08:ce:1e:1a:d1: a4:85:ea:b5:7c:42:01:d9:ca:9e:c9:d2:03:98:7b:7b:54:8e: b4:22:d1:4a:e6:9b:e4:1b:47:4e:4c:2e:5a:e5:3f:64:de:b9: f4:6c:50:b0:f8:65:cc:4a:a0:16:ff:00:db:c0:c5:8b:2b:16: 96:f2:c6:5a:05:82:ec:72:38:a5:9d:94:13:72:f7:8a:12:86: e6:0d:e2:66:80:3e:27:3c:28:14:9c:23:ce:0c:30:80:7b:c6: 9e:a4:fd:85:cd:13:7a:fc:20:e8:ab:cf:67:12:ee:68:2e:71: 50:ea:06:90 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUI5MjkxMTAvBgNVBAUTKEE5MjE0REI5OTE4NDlCMjlDNEYwNDVDMzM2NDcwRTlE ODJDNDhDRTIwHhcNMjUwNTI3MDU0MDU2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM1NTA2Ny1jMjAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxW5BfqIxwLvmAzGY/EqkZHqOSZ8/AHD1wtqkwM8xLfqR/Gt8z7L7RE8EjBfZ LSsuz78ktJ5YBOKRbXI41Wjqd1XiXmT0YIETY/9ja0WgH6Hw3Z8QybgK74s3DO2/ cqIf1Rjs4aFhGBDRG7DV4gB4yUTFQWwSTFGE+mwn8cieEFHOYD9rz85zdjVWx3XP vrCnkE/gZPqBj/iTRSylRrmHjSslnWH6AfHqroHc2vO2jgzwgRjYDTLnUOSSGgDD Y0Gm2OUbBN4Nz16mk71uxBc4SNexA2sInr48O5N4pzzVZ3tSoFhf0RXpU1nKDbC3 jGfD1f4O3Qw+8mJEOa46uWrtdwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFywHXQq vMWTSy7HP50yL3amQfYxMB8GA1UdIwQYMBaAFKkhTbmRhJspxPBFwzZHDp2CxIzi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjkyOS9CRUJERUE5OEQ1 RUUxMUVFOUUyMDE3N0RDNEY5QUUwMi9xU0ZOdVpHRW15bkU4RVhETmtjT25ZTEVq T0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FTRk51WkdFbXluRThFWEROa2NPbllMRWpPSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUI5MjkvQkVCREVBOThENUVFMTFFRTlFMjAxNzdEQzRGOUFFMDIvNzBDMDQwMDZE NUVGMTFFRTgyNzkzNTdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAPKhQgDBALLULgwDQYJKoZIhvcNAQELBQADggEBABvvttZ2 W+P/YSHzfNOYtrX8Ev0lreCqfkg0/oX4tKS9axJGXp+FT/+pi4HTrJuwjJ7xJRPQ 0FmzAm9uBK0csVlMS4RiOzx/hjaZ6nNJRbgB+BqGPpvej9uKQib+KcrSFplBc6kH DWzHadKYCe/ASHmAztMc8rwYdCzsKZYbjzi/D+gXV+GIPcxGflkIzh4a0aSF6rV8 QgHZyp7J0gOYe3tUjrQi0Urmm+QbR05MLlrlP2TeufRsULD4ZcxKoBb/ANvAxYsr FpbyxloFguxyOKWdlBNy94oShuYN4maAPic8KBScI84MMIB7xp6k/YXNE3r8IOir z2cS7mgucVDqBpA= -----END CERTIFICATE-----Generated at Thu Jun 19 11:57:10 2025 by rpki-client