$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/AFDD7E16DA6011EC9A304C24C4F9AE02.roa File: AFDD7E16DA6011EC9A304C24C4F9AE02.roa (raw, json) Hash identifier: etY8R8Zkoq3Jr+o5iT0vM2/Uvx5KoKGB+//fjS6auO0= Subject key identifier: F3:D6:41:97:26:49:DD:F9:5C:6A:50:81:59:1B:79:20:4C:54:65:99 Certificate issuer: /CN=A91F4BB3/serialNumber=AC7C9E71822C056185186453F960B2C1E8CA94E3 Certificate serial: 0454 Authority key identifier: AC:7C:9E:71:82:2C:05:61:85:18:64:53:F9:60:B2:C1:E8:CA:94:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHyecYIsBWGFGGRT-WCywejKlOM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/AFDD7E16DA6011EC9A304C24C4F9AE02.roa Signing time: Tue 03 Jun 2025 00:34:36 +0000 ROA not before: Tue 03 Jun 2025 00:34:36 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 45947 IP address blocks: 202.43.84.0/24 maxlen: 24 202.43.85.0/24 maxlen: 24 202.43.86.0/24 maxlen: 24 202.43.87.0/24 maxlen: 24 203.22.215.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/rHyecYIsBWGFGGRT-WCywejKlOM.crl rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/rHyecYIsBWGFGGRT-WCywejKlOM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHyecYIsBWGFGGRT-WCywejKlOM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Jun 2025 23:58:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1108 (0x454) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4BB3, serialNumber=AC7C9E71822C056185186453F960B2C1E8CA94E3 Validity Not Before: Jun 3 00:34:36 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683e431b-b3f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a5:27:da:60:69:09:bf:87:77:73:c8:0d:d0: f4:9d:92:cd:33:1e:85:05:c9:ae:6d:39:8a:34:be: 51:3a:1b:79:7c:38:8a:aa:56:49:30:c5:62:28:a6: 0a:5a:2d:0c:e7:f1:e4:42:0f:03:73:db:c5:1f:23: 03:4d:51:c5:fc:37:ed:b4:a8:6d:15:94:60:3d:09: 1d:f0:5a:2d:ee:dc:14:f6:26:0e:b1:cd:1d:28:fb: 01:19:71:4c:c3:80:69:82:69:82:c4:69:9e:65:a5: 8e:2a:fe:2d:40:79:d6:34:0c:3d:92:fe:4a:58:fd: 3d:3b:b7:24:45:e7:f3:06:4c:1a:23:53:d6:7c:16: 67:36:67:dc:1c:7c:82:68:66:77:99:80:ee:96:73: 5c:f8:d1:6a:bc:55:d0:4b:99:9c:53:9b:74:44:33: 63:25:02:72:8f:e0:86:6b:89:e1:b9:4b:ce:b7:02: 5a:a7:6a:41:d6:73:f6:a4:0c:a2:a2:07:32:39:1c: 7d:2a:04:d3:08:30:56:81:d9:a0:fb:e4:31:55:15: 06:45:33:1b:9b:99:81:a1:5d:ab:6d:84:68:51:75: ef:b1:43:8b:64:70:50:ee:4f:23:d2:a0:3e:22:d4: 68:97:8b:7d:21:d2:2b:d6:e9:ce:2d:c4:09:5a:a8: 4f:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:D6:41:97:26:49:DD:F9:5C:6A:50:81:59:1B:79:20:4C:54:65:99 X509v3 Authority Key Identifier: keyid:AC:7C:9E:71:82:2C:05:61:85:18:64:53:F9:60:B2:C1:E8:CA:94:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/rHyecYIsBWGFGGRT-WCywejKlOM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rHyecYIsBWGFGGRT-WCywejKlOM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4BB3/AEA873EC5BC711ECAD58B05FC4F9AE02/AFDD7E16DA6011EC9A304C24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.43.84.0/22 203.22.215.0/24 Signature Algorithm: sha256WithRSAEncryption c4:68:e4:b0:96:05:6b:9d:14:72:55:38:00:7b:95:44:86:b3: 57:b2:2d:8d:4d:32:40:53:50:15:42:15:c9:44:a9:0a:a4:04: 9f:32:c9:b4:1a:7c:54:28:57:70:7f:6c:84:06:d8:a1:4b:d8: e9:12:7a:78:cd:38:45:14:79:5e:da:85:ca:0f:f0:fa:c8:bf: 09:04:b2:51:4f:77:0b:39:51:de:25:4f:46:33:86:32:2e:8a: 54:1f:c1:75:e6:39:4d:59:e5:eb:25:48:4a:de:1a:be:da:27: fd:8c:86:f2:46:12:e8:77:07:88:7e:84:cb:7f:81:25:8e:9b: 5b:65:82:b9:4b:1a:01:71:b2:59:b2:d2:d0:39:18:ef:76:42: 46:20:01:4e:30:99:bc:87:d5:28:8b:65:ca:a8:01:0a:68:a4: bc:71:10:bf:08:89:16:6b:da:8b:f1:ae:96:92:59:61:a8:fa: 68:6c:f6:d0:a2:59:11:ed:55:da:73:49:f5:b8:a1:c9:f7:7e: ba:e0:37:97:30:24:b1:74:35:78:3d:59:2e:aa:82:27:9a:f6: 13:03:ac:97:5b:d4:7b:d6:39:ea:57:12:6e:76:f7:11:0c:4a: 7e:bb:2b:e8:23:d9:6e:17:af:3a:a5:c3:11:89:76:0f:67:e2: 85:07:08:29 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBFQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjRCQjMxMTAvBgNVBAUTKEFDN0M5RTcxODIyQzA1NjE4NTE4NjQ1M0Y5NjBCMkMx RThDQTk0RTMwHhcNMjUwNjAzMDAzNDM2WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlNDMxYi1iM2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsaUn2mBpCb+Hd3PIDdD0nZLNMx6FBcmubTmKNL5ROht5fDiKqlZJMMViKKYK Wi0M5/HkQg8Dc9vFHyMDTVHF/DfttKhtFZRgPQkd8Fot7twU9iYOsc0dKPsBGXFM w4BpgmmCxGmeZaWOKv4tQHnWNAw9kv5KWP09O7ckRefzBkwaI1PWfBZnNmfcHHyC aGZ3mYDulnNc+NFqvFXQS5mcU5t0RDNjJQJyj+CGa4nhuUvOtwJap2pB1nP2pAyi ogcyORx9KgTTCDBWgdmg++QxVRUGRTMbm5mBoV2rbYRoUXXvsUOLZHBQ7k8j0qA+ ItRol4t9IdIr1unOLcQJWqhPeQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPPWQZcm Sd35XGpQgVkbeSBMVGWZMB8GA1UdIwQYMBaAFKx8nnGCLAVhhRhkU/lgssHoypTj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNEJCMy9BRUE4NzNFQzVC QzcxMUVDQUQ1OEIwNUZDNEY5QUUwMi9ySHllY1lJc0JXR0ZHR1JULVdDeXdlakts T00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JIeWVjWUlzQldHRkdHUlQtV0N5d2VqS2xPTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjRCQjMvQUVBODczRUM1QkM3MTFFQ0FENThCMDVGQzRGOUFFMDIvQUZERDdFMTZE QTYwMTFFQzlBMzA0QzI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBALKK1QDBADLFtcwDQYJKoZIhvcNAQELBQADggEBAMRo5LCW BWudFHJVOAB7lUSGs1eyLY1NMkBTUBVCFclEqQqkBJ8yybQafFQoV3B/bIQG2KFL 2OkSenjNOEUUeV7ahcoP8PrIvwkEslFPdws5Ud4lT0YzhjIuilQfwXXmOU1Z5esl SEreGr7aJ/2MhvJGEuh3B4h+hMt/gSWOm1tlgrlLGgFxslmy0tA5GO92QkYgAU4w mbyH1SiLZcqoAQpopLxxEL8IiRZr2ovxrpaSWWGo+mhs9tCiWRHtVdpzSfW4ocn3 frrgN5cwJLF0NXg9WS6qgiea9hMDrJdb1HvWOepXEm529xEMSn67K+gj2W4Xrzql wxGJdg9n4oUHCCk= -----END CERTIFICATE-----Generated at Sun Jun 15 11:56:07 2025 by rpki-client