$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7EE93AAC893111EF824EA948C4F9AE02.roa File: 7EE93AAC893111EF824EA948C4F9AE02.roa (raw, json) Hash identifier: 7cDuXPQWcIW5Oc/4i0Jk6KxH1ssYqm1jhqIMrjbxO/0= Subject key identifier: AD:8F:BE:60:77:51:D6:46:63:7D:4F:BF:52:70:D3:20:EB:17:A8:8C Certificate issuer: /CN=A91ED931/serialNumber=C035450BD1A2D44B151EE38C089888A5AF4B8059 Certificate serial: 04F9 Authority key identifier: C0:35:45:0B:D1:A2:D4:4B:15:1E:E3:8C:08:98:88:A5:AF:4B:80:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7EE93AAC893111EF824EA948C4F9AE02.roa Signing time: Wed 04 Jun 2025 23:44:23 +0000 ROA not before: Wed 04 Jun 2025 23:44:23 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 32787 IP address blocks: 202.49.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.crl rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Jun 2025 23:20:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1273 (0x4f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED931, serialNumber=C035450BD1A2D44B151EE38C089888A5AF4B8059 Validity Not Before: Jun 4 23:44:23 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6840da57-3d0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:eb:48:e7:0c:a0:87:86:9f:7f:6b:8f:c8:64: 18:1f:db:5a:fb:f2:30:3b:95:b1:fe:76:e6:fb:a4: 0a:0f:29:08:43:78:c3:c7:a2:1c:c2:79:37:29:a8: 94:0f:ce:11:f1:e2:98:97:1b:b9:a2:6e:de:e8:b2: a9:27:6f:a3:93:8e:c1:8c:c7:66:33:ce:63:d8:bc: 5a:5f:2a:af:57:23:82:13:92:a7:56:aa:1a:0e:44: 17:73:3c:2d:bc:33:d8:d3:15:93:80:26:dd:5e:99: 88:64:d2:cd:9a:3a:07:af:52:38:49:74:57:a8:4f: d4:6e:23:36:b9:5a:f4:91:89:b0:50:c4:a2:0a:3e: 5c:cd:7d:bf:1b:37:e9:16:eb:09:70:09:9a:53:c4: ad:85:3f:5c:ed:4b:72:30:8b:37:14:c0:1a:b1:79: 3b:cd:7b:5c:f5:fc:f9:f0:97:23:1e:34:91:73:1a: 74:98:01:b7:4a:fd:09:cc:86:93:41:36:1c:10:5f: 0e:f6:42:03:3c:4c:82:15:71:8f:20:c7:22:7d:6f: a9:53:9d:e6:23:b9:bc:c8:b8:72:7b:16:a0:59:cb: 5c:fd:47:1b:8b:da:8b:70:d8:7b:87:9f:af:75:38: f4:6d:a1:8f:51:5e:4f:c4:f1:ab:46:b9:9c:21:61: 80:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:8F:BE:60:77:51:D6:46:63:7D:4F:BF:52:70:D3:20:EB:17:A8:8C X509v3 Authority Key Identifier: keyid:C0:35:45:0B:D1:A2:D4:4B:15:1E:E3:8C:08:98:88:A5:AF:4B:80:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7EE93AAC893111EF824EA948C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.49.96.0/21 Signature Algorithm: sha256WithRSAEncryption b1:d3:01:31:cf:97:06:8d:0f:30:2f:75:f1:ad:b5:ba:4a:60: 60:58:f3:67:5d:9b:f9:86:d3:ac:3e:d6:de:c2:75:cf:d0:0e: 85:6d:19:91:ed:76:c8:92:06:10:4e:40:de:b0:5a:95:56:bc: 5e:96:ee:82:ac:2b:69:e3:5a:4e:d3:ea:41:13:24:e1:1d:2c: 73:e7:e2:8c:38:2c:8d:21:40:7e:5e:e9:00:84:c9:97:56:4f: 52:b9:87:ca:dd:cf:d8:a4:a3:5f:dd:5e:3d:36:cc:d6:48:8a: df:45:9e:b7:2c:4f:19:78:32:d8:ee:88:38:36:39:02:c6:98: f7:15:66:56:91:8f:12:62:67:d0:21:ff:6b:f0:95:e0:92:bf: a7:05:81:40:00:4a:3f:2c:43:76:56:3e:fc:a2:00:45:4b:2a: 64:cd:79:23:bd:fe:75:1b:45:b9:ef:b4:ec:05:8d:e8:ef:94: 0c:9c:a3:73:b1:55:2c:7c:ae:2c:19:c5:cb:0b:f1:67:60:6b: 3d:37:57:b1:1a:cb:ed:c8:5c:2f:15:c2:96:70:e7:bf:df:66: 33:fe:0d:e5:2b:a9:e5:9c:23:c5:36:3d:31:06:46:af:c6:77: ce:08:ce:0e:c0:00:11:6d:4c:9b:df:13:a5:7a:bb:36:c0:21: 6e:5c:65:4b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBPkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ5MzExMTAvBgNVBAUTKEMwMzU0NTBCRDFBMkQ0NEIxNTFFRTM4QzA4OTg4OEE1 QUY0QjgwNTkwHhcNMjUwNjA0MjM0NDIzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwZGE1Ny0zZDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzOtI5wygh4aff2uPyGQYH9ta+/IwO5Wx/nbm+6QKDykIQ3jDx6Icwnk3KaiU D84R8eKYlxu5om7e6LKpJ2+jk47BjMdmM85j2LxaXyqvVyOCE5KnVqoaDkQXczwt vDPY0xWTgCbdXpmIZNLNmjoHr1I4SXRXqE/UbiM2uVr0kYmwUMSiCj5czX2/Gzfp FusJcAmaU8SthT9c7UtyMIs3FMAasXk7zXtc9fz58JcjHjSRcxp0mAG3Sv0JzIaT QTYcEF8O9kIDPEyCFXGPIMcifW+pU53mI7m8yLhyexagWctc/Ucbi9qLcNh7h5+v dTj0baGPUV5PxPGrRrmcIWGAHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFK2PvmB3 UdZGY31Pv1Jw0yDrF6iMMB8GA1UdIwQYMBaAFMA1RQvRotRLFR7jjAiYiKWvS4BZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDkzMS9EMUQzMkI2RTE5 QUYxMUVDQUY4NENENzZDNEY5QUUwMi93RFZGQzlHaTFFc1ZIdU9NQ0ppSXBhOUxn RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dEVkZDOUdpMUVzVkh1T01DSmlJcGE5TGdGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQ5MzEvRDFEMzJCNkUxOUFGMTFFQ0FGODRDRDc2QzRGOUFFMDIvN0VFOTNBQUM4 OTMxMTFFRjgyNEVBOTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKMWAwDQYJKoZIhvcNAQELBQADggEBALHTATHPlwaNDzAv dfGttbpKYGBY82ddm/mG06w+1t7Cdc/QDoVtGZHtdsiSBhBOQN6wWpVWvF6W7oKs K2njWk7T6kETJOEdLHPn4ow4LI0hQH5e6QCEyZdWT1K5h8rdz9iko1/dXj02zNZI it9FnrcsTxl4MtjuiDg2OQLGmPcVZlaRjxJiZ9Ah/2vwleCSv6cFgUAASj8sQ3ZW PvyiAEVLKmTNeSO9/nUbRbnvtOwFjejvlAyco3OxVSx8riwZxcsL8Wdgaz03V7Ea y+3IXC8VwpZw57/fZjP+DeUrqeWcI8U2PTEGRq/Gd84Izg7AABFtTJvfE6V6uzbA IW5cZUs= -----END CERTIFICATE-----Generated at Tue Jun 17 15:05:05 2025 by rpki-client