$ rpki-client -vvf rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/ED54502AAFCF11EA926A5C48C4F9AE02.roa File: ED54502AAFCF11EA926A5C48C4F9AE02.roa (raw, json) Hash identifier: ntvcTrpEA6rCyuNYSDHVsCeHSVzEDugmmxfTLFHpT0E= Subject key identifier: C7:26:C3:60:15:11:3A:1D:E2:7F:39:70:98:F9:04:20:B3:3D:A1:7B Certificate issuer: /CN=A9129E3A/serialNumber=5A96D4EC3D352494D9239D52AF35AC104DA12F9D Certificate serial: 34BD Authority key identifier: 5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/ED54502AAFCF11EA926A5C48C4F9AE02.roa Signing time: Fri 24 Jan 2025 14:50:34 +0000 ROA not before: Fri 24 Jan 2025 14:50:34 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 63199 IP address blocks: 202.55.234.0/24 maxlen: 24 202.55.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:26:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13501 (0x34bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129E3A Validity Not Before: Jan 24 14:50:34 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=6793a8ba-5030 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:bc:0d:e3:b0:23:62:e4:d8:1e:4b:88:4b:3b: a0:1c:be:1f:a7:f8:cd:0d:50:ad:73:d0:9a:0a:5d: 5e:ce:fa:f8:6c:53:38:b3:52:8c:5c:fb:b1:d6:01: d5:86:5f:9e:e0:70:b0:6c:63:8c:36:95:2d:ee:cc: 11:3c:f4:38:d6:19:76:9b:75:2c:9a:9b:ec:fc:9e: a0:08:ab:5e:e8:bf:39:90:45:90:f6:02:84:c0:b8: 23:25:31:0a:e2:56:5d:5a:34:28:a7:40:33:bb:c2: 7d:92:e8:78:f0:6f:d2:d0:79:32:55:97:89:63:6b: 8f:7e:07:15:41:f8:a0:88:2e:93:05:8a:36:d4:da: 9d:e7:13:f9:4f:3a:3e:13:24:2b:96:ce:b3:27:1b: 58:94:2f:e5:e5:6c:f0:64:31:04:cd:83:4f:70:f5: 65:bf:ad:d9:59:59:48:1e:c4:2e:63:33:9d:8d:40: a2:84:37:63:29:87:11:be:32:a4:c4:7a:12:09:c1: 00:e5:89:cf:d9:31:81:96:e2:23:d8:e8:38:f5:5d: 31:6d:7c:56:47:02:e2:4c:97:c0:17:28:ac:cf:86: e3:fa:44:a7:e7:90:e0:ea:e9:2a:59:ff:7c:b7:bc: 33:55:59:36:ad:58:7a:37:9e:b6:ae:97:3b:47:5f: 08:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:26:C3:60:15:11:3A:1D:E2:7F:39:70:98:F9:04:20:B3:3D:A1:7B X509v3 Authority Key Identifier: keyid:5A:96:D4:EC:3D:35:24:94:D9:23:9D:52:AF:35:AC:10:4D:A1:2F:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/WpbU7D01JJTZI51SrzWsEE2hL50.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WpbU7D01JJTZI51SrzWsEE2hL50.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129E3A/197EC0B61D8611E2ABEF22DD08B02CD2/ED54502AAFCF11EA926A5C48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.55.234.0/24 202.55.253.0/24 Signature Algorithm: sha256WithRSAEncryption 27:21:d1:80:01:23:c4:cb:60:1b:2f:98:c7:f5:22:8c:24:53: 6a:fa:32:e8:07:5b:37:63:e0:4b:7c:fe:ea:72:2f:e4:14:e3: 7e:46:90:04:a1:60:e5:2c:8f:3b:f4:e6:42:0b:b0:2b:3f:de: 87:7d:6d:ef:e0:00:81:2b:12:ba:b6:df:9e:32:c4:44:a7:ca: 2b:12:c1:8f:22:52:a0:d7:45:b0:47:2a:4a:1c:aa:56:a5:91: 10:0d:6a:fd:19:12:74:73:d5:c5:55:ce:5f:0c:41:b4:d2:68: 7b:fa:b2:1f:41:0c:64:3d:fd:23:96:40:3e:07:b8:b5:33:89: 9d:8c:8c:d0:75:56:6a:a3:70:a0:97:30:98:99:21:63:99:da: 02:fd:ba:e0:0f:db:00:d1:17:26:d7:08:34:e9:cd:74:93:5e: 00:31:c6:5e:08:63:a1:44:16:77:87:a8:3c:ef:0a:e4:52:fc: fa:35:3d:fc:9e:a1:21:32:45:46:8a:c6:ee:a3:d4:6f:af:f4: 63:ed:33:79:ee:f8:3f:a8:4e:38:74:36:9e:29:e6:5a:fe:a5: 2a:f6:90:12:2e:94:e4:de:a6:9d:5d:b0:ab:31:02:40:b6:15: 90:02:cd:28:17:9a:02:26:d4:4f:72:17:e3:25:bb:4c:05:90: 00:4a:97:97 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICNL0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlFM0ExMTAvBgNVBAUTKDVBOTZENEVDM0QzNTI0OTREOTIzOUQ1MkFGMzVBQzEw NERBMTJGOUQwHhcNMjUwMTI0MTQ1MDM0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzkzYThiYS01MDMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyrwN47AjYuTYHkuISzugHL4fp/jNDVCtc9CaCl1ezvr4bFM4s1KMXPux1gHV hl+e4HCwbGOMNpUt7swRPPQ41hl2m3Usmpvs/J6gCKte6L85kEWQ9gKEwLgjJTEK 4lZdWjQop0Azu8J9kuh48G/S0HkyVZeJY2uPfgcVQfigiC6TBYo21Nqd5xP5Tzo+ EyQrls6zJxtYlC/l5WzwZDEEzYNPcPVlv63ZWVlIHsQuYzOdjUCihDdjKYcRvjKk xHoSCcEA5YnP2TGBluIj2Og49V0xbXxWRwLiTJfAFyisz4bj+kSn55Dg6ukqWf98 t7wzVVk2rVh6N562rpc7R18IQQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMcmw2AV ETod4n85cJj5BCCzPaF7MB8GA1UdIwQYMBaAFFqW1Ow9NSSU2SOdUq81rBBNoS+d MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUUzQS8xOTdFQzBCNjFE ODYxMUUyQUJFRjIyREQwOEIwMkNEMi9XcGJVN0QwMUpKVFpJNTFTcnpXc0VFMmhM NTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dwYlU3RDAxSkpUWkk1MVNyeldzRUUyaEw1MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlFM0EvMTk3RUMwQjYxRDg2MTFFMkFCRUYyMkREMDhCMDJDRDIvRUQ1NDUwMkFB RkNGMTFFQTkyNkE1QzQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKN+oDBADKN/0wDQYJKoZIhvcNAQELBQADggEBACch0YAB I8TLYBsvmMf1IowkU2r6MugHWzdj4Et8/upyL+QU435GkAShYOUsjzv05kILsCs/ 3od9be/gAIErErq2354yxESnyisSwY8iUqDXRbBHKkocqlalkRANav0ZEnRz1cVV zl8MQbTSaHv6sh9BDGQ9/SOWQD4HuLUziZ2MjNB1VmqjcKCXMJiZIWOZ2gL9uuAP 2wDRFybXCDTpzXSTXgAxxl4IY6FEFneHqDzvCuRS/Po1PfyeoSEyRUaKxu6j1G+v 9GPtM3nu+D+oTjh0Np4p5lr+pSr2kBIulOTepp1dsKsxAkC2FZACzSgXmgIm1E9y F+Mlu0wFkABKl5c= -----END CERTIFICATE-----Generated at Sat Apr 5 02:18:23 2025 by rpki-client