$ rpki-client -vvf rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/9FCD0EE6A34411EB94DFE619C4F9AE02.roa File: 9FCD0EE6A34411EB94DFE619C4F9AE02.roa (raw, json) Hash identifier: ol3uXw4dkWIdxcKjMSPB1+hf827QNdo9sA61mKaXk78= Subject key identifier: EA:E8:FB:1D:26:30:31:01:F9:23:F2:12:E1:1A:73:82:94:9A:1A:AF Certificate issuer: /CN=A91EEBAD/serialNumber=81FFF215005DA1AFAC5E24ABBCC03CA70F664B56 Certificate serial: 0606 Authority key identifier: 81:FF:F2:15:00:5D:A1:AF:AC:5E:24:AB:BC:C0:3C:A7:0F:66:4B:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/9FCD0EE6A34411EB94DFE619C4F9AE02.roa Signing time: Mon 28 Apr 2025 23:34:39 +0000 ROA not before: Mon 28 Apr 2025 23:34:39 +0000 ROA not after: Thu 28 Aug 2025 00:00:00 +0000 asID: 45136 IP address blocks: 119.235.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.crl rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 22:33:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1542 (0x606) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EEBAD, serialNumber=81FFF215005DA1AFAC5E24ABBCC03CA70F664B56 Validity Not Before: Apr 28 23:34:39 2025 GMT Not After : Aug 28 00:00:00 2025 GMT Subject: CN=6810108f-2cf0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:52:c8:10:6e:08:60:1f:7f:9a:9b:84:d3:d0: dc:76:77:ad:9d:cf:1d:d2:c0:75:76:b4:05:15:81: d8:29:fb:61:27:a1:5f:ac:a5:b3:78:d6:c7:91:29: 14:78:52:b0:5d:99:37:ce:b0:4e:0c:f7:27:97:91: 99:fc:2b:11:e3:6f:75:7b:98:51:c1:55:29:8d:4f: d6:6d:26:a1:1e:81:36:1f:c3:62:50:32:8e:41:71: 3d:97:de:c7:f8:f7:76:c7:db:e8:46:92:48:0d:3d: 06:31:1e:f7:cc:15:b7:32:1f:90:0b:79:4c:bc:c7: 4c:84:f8:7e:25:e5:dd:98:c5:29:4b:3a:2b:a0:5c: 12:0a:f1:86:ac:10:c4:af:90:53:32:35:0d:7f:3d: ae:6f:78:39:11:61:6a:fa:0a:6b:5f:70:38:47:ed: 7d:9c:0a:c9:3e:c7:ca:e9:d9:c9:e2:fa:93:ce:bc: a8:b1:d5:c0:2a:77:e2:c6:dc:d1:6a:60:9a:14:92: 3e:b4:b9:25:63:80:33:6a:15:18:27:a3:9d:16:1c: f9:b2:53:b9:c0:e3:ca:2f:04:03:2a:bd:42:30:04: 0d:17:a5:70:64:c6:09:c3:30:a6:d3:d3:be:e5:16: b8:4e:b8:05:87:58:81:e8:6d:b9:bb:0f:b5:5a:49: a2:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:E8:FB:1D:26:30:31:01:F9:23:F2:12:E1:1A:73:82:94:9A:1A:AF X509v3 Authority Key Identifier: keyid:81:FF:F2:15:00:5D:A1:AF:AC:5E:24:AB:BC:C0:3C:A7:0F:66:4B:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gf_yFQBdoa-sXiSrvMA8pw9mS1Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EEBAD/50D91E66A34311EB997B3319C4F9AE02/9FCD0EE6A34411EB94DFE619C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.235.40.0/21 Signature Algorithm: sha256WithRSAEncryption 0f:a0:9e:b8:4c:70:8f:5a:f5:c9:bf:d1:86:28:a8:d2:db:fa: a4:ee:34:e0:e7:a9:56:d7:a3:cb:9e:fe:99:6b:e3:4a:62:09: 55:2c:80:92:81:b3:fd:e4:e1:2b:71:55:06:45:c7:c8:3c:3c: 9c:22:0b:4e:b5:44:76:5c:ac:2f:69:92:a6:2f:5e:3b:01:cc: f7:0d:7a:00:da:0c:ba:5c:95:a1:22:6d:51:53:7a:39:cd:f0: 00:c5:a6:62:82:cf:df:c0:6e:a5:37:e4:41:a0:10:fd:9a:69: 9d:19:00:5f:7a:55:c5:c1:0e:1b:f8:e0:9a:70:e7:43:0a:7f: 1f:eb:8f:61:2a:2e:13:7e:4d:98:ef:69:fe:e9:df:85:62:bc: 7a:e8:8b:35:a3:09:78:92:f5:de:d8:c6:d3:4c:08:37:a4:cc: 3f:61:ff:0b:62:1a:54:1f:9c:67:78:5a:a7:25:e3:74:47:5d: 0b:09:23:61:e4:59:87:b2:36:ed:4f:9a:a4:22:9a:f8:b1:e7: 15:93:05:1d:17:f3:61:a6:fb:b5:d3:f4:b7:12:92:f4:2a:63: 4c:c5:77:9b:3c:c6:a0:79:9e:37:9b:92:55:b9:a9:3b:85:ce: 5c:98:a3:ba:a2:a5:56:30:2f:c0:ad:48:0b:09:9c:99:2a:1a: f3:5a:0f:c5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVCQUQxMTAvBgNVBAUTKDgxRkZGMjE1MDA1REExQUZBQzVFMjRBQkJDQzAzQ0E3 MEY2NjRCNTYwHhcNMjUwNDI4MjMzNDM5WhcNMjUwODI4MDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwMTA4Zi0yY2YwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlLIEG4IYB9/mpuE09Dcdnetnc8d0sB1drQFFYHYKfthJ6FfrKWzeNbHkSkU eFKwXZk3zrBODPcnl5GZ/CsR4291e5hRwVUpjU/WbSahHoE2H8NiUDKOQXE9l97H +Pd2x9voRpJIDT0GMR73zBW3Mh+QC3lMvMdMhPh+JeXdmMUpSzoroFwSCvGGrBDE r5BTMjUNfz2ub3g5EWFq+gprX3A4R+19nArJPsfK6dnJ4vqTzryosdXAKnfixtzR amCaFJI+tLklY4AzahUYJ6OdFhz5slO5wOPKLwQDKr1CMAQNF6VwZMYJwzCm09O+ 5Ra4TrgFh1iB6G25uw+1WkmiowIDAQABo4IClTCCApEwHQYDVR0OBBYEFOro+x0m MDEB+SPyEuEac4KUmhqvMB8GA1UdIwQYMBaAFIH/8hUAXaGvrF4kq7zAPKcPZktW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUJBRC81MEQ5MUU2NkEz NDMxMUVCOTk3QjMzMTlDNEY5QUUwMi9nZl95RlFCZG9hLXNYaVNydk1BOHB3OW1T MVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dmX3lGUUJkb2Etc1hpU3J2TUE4cHc5bVMxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVCQUQvNTBEOTFFNjZBMzQzMTFFQjk5N0IzMzE5QzRGOUFFMDIvOUZDRDBFRTZB MzQ0MTFFQjk0REZFNjE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN36ygwDQYJKoZIhvcNAQELBQADggEBAA+gnrhMcI9a9cm/ 0YYoqNLb+qTuNODnqVbXo8ue/plr40piCVUsgJKBs/3k4StxVQZFx8g8PJwiC061 RHZcrC9pkqYvXjsBzPcNegDaDLpclaEibVFTejnN8ADFpmKCz9/AbqU35EGgEP2a aZ0ZAF96VcXBDhv44Jpw50MKfx/rj2EqLhN+TZjvaf7p34VivHroizWjCXiS9d7Y xtNMCDekzD9h/wtiGlQfnGd4Wqcl43RHXQsJI2HkWYeyNu1PmqQimvix5xWTBR0X 82Gm+7XT9LcSkvQqY0zFd5s8xqB5njebklW5qTuFzlyYo7qipVYwL8CtSAsJnJkq GvNaD8U= -----END CERTIFICATE-----Generated at Sun Jun 15 08:34:57 2025 by rpki-client