$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/2D55F42CB0F611E5B464E359C4F9AE02.roa File: 2D55F42CB0F611E5B464E359C4F9AE02.roa (raw, json) Hash identifier: +yqS5ARpGMGBWr2MyFGiajoFZUJV/KOEs+STzodgJKg= Subject key identifier: 9B:51:8B:E0:4D:F5:46:7F:90:11:00:7E:93:9B:09:35:44:1C:19:BA Certificate issuer: /CN=A91FC43D/serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Certificate serial: 22B3 Authority key identifier: AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/2D55F42CB0F611E5B464E359C4F9AE02.roa Signing time: Wed 18 Jun 2025 16:14:45 +0000 ROA not before: Wed 18 Jun 2025 16:14:45 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 56200 IP address blocks: 203.215.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 25 Jun 2025 16:14:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8883 (0x22b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC43D, serialNumber=AC8DF8B407B07B13679B71C5012BACDDE2501E71 Validity Not Before: Jun 18 16:14:45 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6852e5f5-917a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:16:7d:97:0e:5a:11:4e:47:8d:f5:1b:66:91: 75:ed:97:3f:a3:48:df:c4:16:6b:de:c2:0b:51:1f: 05:1a:8c:e8:bd:57:cb:07:16:c2:c0:d8:39:c0:2b: 6a:e2:cf:c6:b9:a0:28:91:97:c9:82:7d:34:d5:4b: f6:d1:fc:06:f8:1e:1d:9b:01:1d:3e:a0:8a:c6:10: 8b:13:7b:fe:42:bd:32:31:67:11:1d:28:c3:43:1b: 93:05:0f:6e:e3:e6:39:33:4f:c0:f0:71:d9:6a:c3: 0b:25:e9:8d:43:66:11:14:47:0f:fa:2b:fc:01:a4: 3d:ec:be:14:c6:ca:d8:d8:37:f0:3c:cc:62:83:2d: 3f:d9:db:47:6f:8d:7b:f1:58:9e:3b:62:69:fd:da: cd:e1:0d:f0:c8:81:12:bc:3d:2d:b1:37:2f:40:b8: 15:01:43:ee:c8:30:93:08:39:c2:17:cd:71:d1:8c: 24:47:b2:d0:be:1e:ca:1c:9a:68:8e:a5:53:7d:f5: 3d:8d:b9:04:03:1c:f3:96:87:4f:b5:1d:da:65:b1: 04:89:e6:6d:56:7d:44:c0:1d:c7:81:cc:1e:09:d6: 24:ca:e5:a3:08:54:60:82:c0:0b:32:b0:a7:5e:2d: 1f:39:ad:b2:91:ba:4e:77:42:a4:12:80:32:f9:e5: 8d:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:51:8B:E0:4D:F5:46:7F:90:11:00:7E:93:9B:09:35:44:1C:19:BA X509v3 Authority Key Identifier: keyid:AC:8D:F8:B4:07:B0:7B:13:67:9B:71:C5:01:2B:AC:DD:E2:50:1E:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/rI34tAewexNnm3HFASus3eJQHnE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rI34tAewexNnm3HFASus3eJQHnE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC43D/EDB28E7EA48011E583378886C4F9AE02/2D55F42CB0F611E5B464E359C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.215.52.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:35:3d:b1:05:64:ea:4f:16:c6:fd:39:1b:8c:2f:cc:06:ea: fd:f1:55:d7:c2:66:ee:07:c3:f5:e9:f9:f0:5f:44:cd:4d:34: 5b:66:6e:26:fb:a7:c7:c3:8a:75:6d:79:0b:66:86:38:e6:45: 6b:8a:47:a4:3a:fd:91:11:a0:15:06:5c:1e:05:68:20:d0:f8: 6e:3e:91:df:b4:32:fb:af:8f:c6:c0:28:ae:dc:60:5b:26:66: 9b:d4:d5:3a:ae:e7:82:97:8c:98:79:b8:dc:20:70:b4:89:c7: f1:58:cb:a0:eb:94:8b:c1:c6:73:f8:22:d9:45:41:16:59:3d: a3:af:e9:22:af:ab:48:9e:f6:92:78:23:87:96:58:6f:dc:b8: d7:05:d6:2d:e1:9d:6a:4d:e9:43:5f:4e:17:1c:a5:57:39:1d: 89:53:db:4e:6c:11:e6:ce:50:df:98:f5:45:d1:48:8c:2b:97: 80:5d:34:06:32:71:47:9e:a1:e5:26:cd:12:f2:30:27:f2:56: 57:e2:f0:05:d5:f2:be:12:94:19:34:19:9d:5a:34:34:cf:53: 35:92:0c:35:68:5d:f6:e1:b9:3c:ec:07:d1:fd:47:e6:ef:a6: d7:cf:b7:f6:c9:1f:2e:f8:dd:3a:8c:4f:d8:2b:8f:f3:2a:a8: 36:91:05:36 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM0M0QxMTAvBgNVBAUTKEFDOERGOEI0MDdCMDdCMTM2NzlCNzFDNTAxMkJBQ0RE RTI1MDFFNzEwHhcNMjUwNjE4MTYxNDQ1WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODUyZTVmNS05MTdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyBZ9lw5aEU5HjfUbZpF17Zc/o0jfxBZr3sILUR8FGozovVfLBxbCwNg5wCtq 4s/GuaAokZfJgn001Uv20fwG+B4dmwEdPqCKxhCLE3v+Qr0yMWcRHSjDQxuTBQ9u 4+Y5M0/A8HHZasMLJemNQ2YRFEcP+iv8AaQ97L4UxsrY2DfwPMxigy0/2dtHb417 8VieO2Jp/drN4Q3wyIESvD0tsTcvQLgVAUPuyDCTCDnCF81x0YwkR7LQvh7KHJpo jqVTffU9jbkEAxzzlodPtR3aZbEEieZtVn1EwB3HgcweCdYkyuWjCFRggsALMrCn Xi0fOa2ykbpOd0KkEoAy+eWNGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJtRi+BN 9UZ/kBEAfpObCTVEHBm6MB8GA1UdIwQYMBaAFKyN+LQHsHsTZ5txxQErrN3iUB5x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzQzRC9FREIyOEU3RUE0 ODAxMUU1ODMzNzg4ODZDNEY5QUUwMi9ySTM0dEFld2V4Tm5tM0hGQVN1czNlSlFI bkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JJMzR0QWV3ZXhObm0zSEZBU3VzM2VKUUhuRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkM0M0QvRURCMjhFN0VBNDgwMTFFNTgzMzc4ODg2QzRGOUFFMDIvMkQ1NUY0MkNC MEY2MTFFNUI0NjRFMzU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALL1zQwDQYJKoZIhvcNAQELBQADggEBAH01PbEFZOpPFsb9 ORuML8wG6v3xVdfCZu4Hw/Xp+fBfRM1NNFtmbib7p8fDinVteQtmhjjmRWuKR6Q6 /ZERoBUGXB4FaCDQ+G4+kd+0Mvuvj8bAKK7cYFsmZpvU1Tqu54KXjJh5uNwgcLSJ x/FYy6DrlIvBxnP4ItlFQRZZPaOv6SKvq0ie9pJ4I4eWWG/cuNcF1i3hnWpN6UNf ThccpVc5HYlT205sEebOUN+Y9UXRSIwrl4BdNAYycUeeoeUmzRLyMCfyVlfi8AXV 8r4SlBk0GZ1aNDTPUzWSDDVoXfbhuTzsB9H9R+bvptfPt/bJHy743TqMT9grj/Mq qDaRBTY= -----END CERTIFICATE-----Generated at Thu Jun 19 23:40:45 2025 by rpki-client