$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/9217B6681AA811F0B10C6412C4F9AE02.roa File: 9217B6681AA811F0B10C6412C4F9AE02.roa (raw, json) Hash identifier: 6b1h6lHqLn57zpRafNZ6X335J7N3hgP8FzhUAfeTWmM= Subject key identifier: 34:91:50:A8:92:F1:BC:AD:A7:B0:21:D1:7D:2C:43:4D:06:10:1B:C4 Certificate issuer: /CN=A91F3CB1/serialNumber=7AD79EEB3B928354D950DC6E4F8BECCB25C2FC4B Certificate serial: 05 Authority key identifier: 7A:D7:9E:EB:3B:92:83:54:D9:50:DC:6E:4F:8B:EC:CB:25:C2:FC:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/9217B6681AA811F0B10C6412C4F9AE02.roa Signing time: Wed 16 Apr 2025 09:52:55 +0000 ROA not before: Wed 16 Apr 2025 09:52:55 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 7468 IP address blocks: 202.60.224.0/24 maxlen: 24 202.60.225.0/24 maxlen: 24 202.60.226.0/24 maxlen: 24 202.60.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.crl rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 07:08:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3CB1, serialNumber=7AD79EEB3B928354D950DC6E4F8BECCB25C2FC4B Validity Not Before: Apr 16 09:52:55 2025 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=67ff7df7-cc73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0e:3c:1c:cb:fe:29:fd:40:21:72:35:20:d4: d1:05:5b:73:67:16:1b:da:64:a7:19:7d:bb:e8:e8: 90:95:31:de:51:0c:e9:a4:3e:e6:bf:5d:70:f7:7d: a5:a3:8e:0d:73:e3:fa:0e:32:63:a6:38:90:1c:fb: 9b:e6:26:5d:c3:80:0e:fc:d3:c8:8e:43:f4:9a:6c: 21:60:3d:fc:dc:91:e7:83:97:94:5b:15:d6:56:72: 32:71:6c:3d:07:1f:1f:cf:dc:c0:67:39:bf:f8:4a: db:09:53:b5:a3:f8:37:b4:85:70:4e:a4:27:1d:e4: c1:e2:8b:fe:1d:cd:a1:11:40:36:bf:0e:69:9a:78: 85:7b:3b:32:06:59:9a:14:86:4f:17:6b:fd:be:d0: 3f:97:67:47:27:30:88:52:1c:31:9c:2d:c9:c5:ad: 64:39:96:49:78:31:7f:ce:a7:cd:3e:54:92:73:61: 69:9f:3c:4c:52:49:1c:9c:1e:b3:81:ad:94:39:47: d1:c6:e6:41:31:97:97:52:46:59:a4:47:0d:80:94: 2e:d0:00:8c:27:f5:e5:33:2b:6d:aa:92:17:ea:4b: 14:06:a3:d5:b2:d2:61:d3:20:f0:37:79:31:9a:c8: fc:c3:31:cc:e9:b7:a8:46:c5:2d:36:c0:17:11:a0: 99:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:91:50:A8:92:F1:BC:AD:A7:B0:21:D1:7D:2C:43:4D:06:10:1B:C4 X509v3 Authority Key Identifier: keyid:7A:D7:9E:EB:3B:92:83:54:D9:50:DC:6E:4F:8B:EC:CB:25:C2:FC:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/etee6zuSg1TZUNxuT4vsyyXC_Es.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/etee6zuSg1TZUNxuT4vsyyXC_Es.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3CB1/2D843698168611F08916985BC4F9AE02/9217B6681AA811F0B10C6412C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.60.224.0/22 Signature Algorithm: sha256WithRSAEncryption ae:2f:66:94:cd:44:e0:db:55:4e:e8:94:cf:1f:21:43:98:bb: 45:24:89:e6:90:49:64:52:2c:91:32:df:ff:18:85:50:56:8a: 0c:5a:8d:04:a8:a6:08:03:26:4f:c2:16:cd:9e:4e:27:e9:4e: 1d:01:ce:9d:6d:3f:ba:da:af:ad:87:d3:e3:66:13:23:b3:ef: 8e:bf:71:20:fe:db:83:17:d4:67:d8:44:ef:32:88:1a:1d:21: 67:81:04:c4:f0:41:f9:e2:77:9a:c6:82:47:e3:98:be:96:72: 00:18:5f:8b:17:af:7f:7f:78:a5:45:f9:8c:e6:5c:10:58:c3: 79:1c:6b:15:c5:07:fe:de:53:83:87:68:9c:5b:c4:c2:ef:8d: 2a:1e:08:43:56:c2:0c:7f:73:fb:67:14:87:23:03:cc:2d:e6: f3:24:c4:a7:3a:91:b0:fb:41:f0:d7:79:16:85:f6:72:70:62: b7:f4:b0:ea:db:e6:f7:a7:a9:24:5a:ce:d2:80:56:40:01:2e: c9:0f:6a:09:42:ab:f2:f8:dd:f2:4e:11:66:fa:23:3c:7c:bb: 72:10:37:66:9a:b5:d3:6d:55:fe:ef:11:a6:eb:f1:ce:5f:06: bf:18:69:28:9c:6e:f6:43:2b:5a:4f:76:a0:ab:17:1e:cf:a3: e5:58:db:1b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG M0NCMTExMC8GA1UEBRMoN0FENzlFRUIzQjkyODM1NEQ5NTBEQzZFNEY4QkVDQ0Iy NUMyRkM0QjAeFw0yNTA0MTYwOTUyNTVaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3ZmY3ZGY3LWNjNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC4Djwcy/4p/UAhcjUg1NEFW3NnFhvaZKcZfbvo6JCVMd5RDOmkPua/XXD3faWj jg1z4/oOMmOmOJAc+5vmJl3DgA7808iOQ/SabCFgPfzckeeDl5RbFdZWcjJxbD0H Hx/P3MBnOb/4StsJU7Wj+De0hXBOpCcd5MHii/4dzaERQDa/DmmaeIV7OzIGWZoU hk8Xa/2+0D+XZ0cnMIhSHDGcLcnFrWQ5lkl4MX/Op80+VJJzYWmfPExSSRycHrOB rZQ5R9HG5kExl5dSRlmkRw2AlC7QAIwn9eUzK22qkhfqSxQGo9Wy0mHTIPA3eTGa yPzDMczpt6hGxS02wBcRoJnzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUNJFQqJLx vK2nsCHRfSxDTQYQG8QwHwYDVR0jBBgwFoAUetee6zuSg1TZUNxuT4vsyyXC/Esw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzQ0IxLzJEODQzNjk4MTY4 NjExRjA4OTE2OTg1QkM0RjlBRTAyL2V0ZWU2enVTZzFUWlVOeHVUNHZzeXlYQ19F cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZXRlZTZ6dVNnMVRaVU54dVQ0dnN5eVhDX0VzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG M0NCMS8yRDg0MzY5ODE2ODYxMUYwODkxNjk4NUJDNEY5QUUwMi85MjE3QjY2ODFB QTgxMUYwQjEwQzY0MTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAso84DANBgkqhkiG9w0BAQsFAAOCAQEAri9mlM1E4NtVTuiU zx8hQ5i7RSSJ5pBJZFIskTLf/xiFUFaKDFqNBKimCAMmT8IWzZ5OJ+lOHQHOnW0/ utqvrYfT42YTI7Pvjr9xIP7bgxfUZ9hE7zKIGh0hZ4EExPBB+eJ3msaCR+OYvpZy ABhfixevf394pUX5jOZcEFjDeRxrFcUH/t5Tg4donFvEwu+NKh4IQ1bCDH9z+2cU hyMDzC3m8yTEpzqRsPtB8Nd5FoX2cnBit/Sw6tvm96epJFrO0oBWQAEuyQ9qCUKr 8vjd8k4RZvojPHy7chA3Zpq1021V/u8Rpuvxzl8GvxhpKJxu9kMrWk92oKsXHs+j 5VjbGw== -----END CERTIFICATE-----Generated at Sat Apr 26 05:58:33 2025 by rpki-client