$ rpki-client -vvf rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/553798E2FB2E11EFB488A95EC4F9AE02.roa File: 553798E2FB2E11EFB488A95EC4F9AE02.roa (raw, json) Hash identifier: p8161Irka1RhOlKGL72R+iegNNjEoBL5dnyvjeUTVQY= Subject key identifier: EA:B8:99:68:AC:90:6B:1F:4D:F4:7E:98:97:71:B7:E2:0F:A9:16:79 Certificate issuer: /CN=A911E502/serialNumber=386C300ED72F12B905478A33CEF27799254A691C Certificate serial: 06 Authority key identifier: 38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/553798E2FB2E11EFB488A95EC4F9AE02.roa Signing time: Fri 07 Mar 2025 08:29:49 +0000 ROA not before: Fri 07 Mar 2025 08:29:49 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 7712 IP address blocks: 118.67.200.0/22 maxlen: 24 2405:aa00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 06:56:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911E502 Validity Not Before: Mar 7 08:29:49 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67caae7d-a8a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2d:d9:2b:c4:19:d7:b3:d9:97:22:ad:66:ba: 86:64:3f:c7:07:5a:71:31:07:5c:32:dc:70:b9:54: b0:44:d9:22:34:2d:bc:f6:2c:61:3d:5f:6d:4c:74: a5:12:bf:bd:40:06:57:13:a5:67:8f:38:7f:3d:c8: c6:07:2d:9a:06:ce:a1:38:17:71:8e:33:0b:ab:2a: 96:2f:99:e5:d2:2f:24:67:8e:31:6c:e4:4c:65:89: 5c:67:dc:24:e4:a1:08:c1:26:84:9b:8e:1c:c5:62: 9c:b7:dd:ea:d6:d2:40:5d:91:d7:99:39:dc:84:35: d4:db:0b:8a:04:31:05:2e:96:7c:db:b9:4a:5b:a1: f5:41:5c:e8:be:09:c8:dd:1e:73:ac:3b:f7:7a:d9: 60:27:b1:66:f2:26:49:df:eb:80:21:61:b6:29:dc: c2:ab:f9:ea:3f:91:bf:bf:fa:08:7f:df:91:93:80: d5:b3:0c:4c:4e:54:21:93:0d:4f:26:37:15:2d:81: 89:e1:e7:20:ba:cd:17:f0:71:de:2a:a2:28:da:ad: 0b:60:d2:50:72:8a:96:e5:9f:c3:78:ca:15:10:04: 51:ae:6f:bd:23:93:e1:75:e4:fa:68:07:85:32:fc: 82:f5:ba:8e:9e:d4:dd:83:94:e0:d5:b1:37:44:6f: 10:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:B8:99:68:AC:90:6B:1F:4D:F4:7E:98:97:71:B7:E2:0F:A9:16:79 X509v3 Authority Key Identifier: keyid:38:6C:30:0E:D7:2F:12:B9:05:47:8A:33:CE:F2:77:99:25:4A:69:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/OGwwDtcvErkFR4ozzvJ3mSVKaRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGwwDtcvErkFR4ozzvJ3mSVKaRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911E502/87C3FD0AFB2911EFB766DC76C4F9AE02/553798E2FB2E11EFB488A95EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.67.200.0/22 IPv6: 2405:aa00::/32 Signature Algorithm: sha256WithRSAEncryption 3f:33:86:a9:ce:cb:14:82:02:80:eb:9e:56:36:48:cd:d7:bb: 6f:d6:27:4f:4f:d7:3b:63:56:88:e8:93:64:39:b9:20:d0:78: ca:64:4f:16:84:57:0d:45:2f:3a:0a:1d:6d:fc:3c:45:64:ff: 14:15:a5:db:aa:a0:5a:43:c2:aa:58:f3:8e:b8:79:d2:e0:9f: 2a:fd:bc:5a:ce:78:34:f2:a9:e0:33:7f:1d:24:82:4d:36:75: 03:fd:12:20:50:06:0f:e7:de:99:7d:dd:32:73:55:79:be:14: 64:0c:73:a3:79:87:b8:a0:3b:73:0a:83:65:dd:1d:36:00:62: 47:26:b4:61:d1:c5:0c:ae:c7:67:01:e0:05:d4:d2:86:9d:10: 6b:55:a4:bd:9d:97:f8:cd:ae:4b:34:4b:29:f3:41:83:f8:77: e1:6c:de:3e:8b:e5:c8:7e:e4:ac:e5:cd:6a:cf:ff:2d:7e:2c: 7e:51:f0:7b:2a:99:5c:f0:3a:6a:73:ae:58:a2:f3:25:48:bc: 8b:3b:66:74:5c:d1:bc:91:ac:c9:8e:04:5b:34:85:6a:ca:ed: 39:85:63:8d:15:de:fa:28:79:c4:46:13:71:c5:9f:89:b7:a1: ad:8c:2a:44:da:4e:59:f4:ef:89:c5:3c:d6:e3:14:59:e9:75: e2:33:19:7c -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RTUwMjExMC8GA1UEBRMoMzg2QzMwMEVENzJGMTJCOTA1NDc4QTMzQ0VGMjc3OTky NTRBNjkxQzAeFw0yNTAzMDcwODI5NDlaFw0yNjAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3Y2FhZTdkLWE4YTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuLdkrxBnXs9mXIq1muoZkP8cHWnExB1wy3HC5VLBE2SI0Lbz2LGE9X21MdKUS v71ABlcTpWePOH89yMYHLZoGzqE4F3GOMwurKpYvmeXSLyRnjjFs5ExliVxn3CTk oQjBJoSbjhzFYpy33erW0kBdkdeZOdyENdTbC4oEMQUulnzbuUpbofVBXOi+Ccjd HnOsO/d62WAnsWbyJknf64AhYbYp3MKr+eo/kb+/+gh/35GTgNWzDExOVCGTDU8m NxUtgYnh5yC6zRfwcd4qoijarQtg0lByipbln8N4yhUQBFGub70jk+F15PpoB4Uy /IL1uo6e1N2DlODVsTdEbxDnAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQU6riZaKyQ ax9N9H6Yl3G34g+pFnkwHwYDVR0jBBgwFoAUOGwwDtcvErkFR4ozzvJ3mSVKaRww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFNTAyLzg3QzNGRDBBRkIy OTExRUZCNzY2REM3NkM0RjlBRTAyL09Hd3dEdGN2RXJrRlI0b3p6dkozbVNWS2FS dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvT0d3d0R0Y3ZFcmtGUjRvenp2SjNtU1ZLYVJ3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RTUwMi84N0MzRkQwQUZCMjkxMUVGQjc2NkRDNzZDNEY5QUUwMi81NTM3OThFMkZC MkUxMUVGQjQ4OEE5NUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAnZDyDANBAIAAjAHAwUAJAWqADANBgkqhkiG9w0BAQsFAAOC AQEAPzOGqc7LFIICgOueVjZIzde7b9YnT0/XO2NWiOiTZDm5INB4ymRPFoRXDUUv Ogodbfw8RWT/FBWl26qgWkPCqljzjrh50uCfKv28Ws54NPKp4DN/HSSCTTZ1A/0S IFAGD+femX3dMnNVeb4UZAxzo3mHuKA7cwqDZd0dNgBiRya0YdHFDK7HZwHgBdTS hp0Qa1WkvZ2X+M2uSzRLKfNBg/h34WzePovlyH7krOXNas//LX4sflHweyqZXPA6 anOuWKLzJUi8iztmdFzRvJGsyY4EWzSFasrtOYVjjRXe+ih5xEYTccWfibehrYwq RNpOWfTvicU81uMUWel14jMZfA== -----END CERTIFICATE-----Generated at Mon Apr 7 17:25:43 2025 by rpki-client