$ rpki-client -vvf rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/C6C06E5CC18D11EEB2096833C4F9AE02.roa File: C6C06E5CC18D11EEB2096833C4F9AE02.roa (raw, json) Hash identifier: PCTX1P2d3fRflAHqzzXSaFtOX5cSgvLNCmPW7UGSTiw= Subject key identifier: 90:8F:FD:83:21:68:0C:E0:8B:37:C9:C7:2F:74:4F:21:A2:A2:42:4A Certificate issuer: /CN=A91632D7/serialNumber=4E07378667EC79D53D650E524D1E8F98B08C28E1 Certificate serial: 0207 Authority key identifier: 4E:07:37:86:67:EC:79:D5:3D:65:0E:52:4D:1E:8F:98:B0:8C:28:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/C6C06E5CC18D11EEB2096833C4F9AE02.roa Signing time: Tue 07 Jan 2025 01:45:24 +0000 ROA not before: Tue 07 Jan 2025 01:45:24 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 60021 IP address blocks: 125.62.68.0/24 maxlen: 24 125.62.69.0/24 maxlen: 24 125.62.70.0/24 maxlen: 24 125.62.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:05:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91632D7 Validity Not Before: Jan 7 01:45:24 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=677c8734-dea2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:9b:17:03:72:2b:5f:2f:c7:4e:cd:ee:81:da: fa:29:9f:50:8c:4f:fd:ca:97:a0:36:76:f0:0a:7c: 3f:39:6b:2a:d5:fa:88:9b:c3:87:b2:27:dd:80:23: 4f:e8:df:51:93:cd:2d:d0:19:ef:00:05:4d:af:01: c4:f3:d4:28:bc:2d:da:19:fa:5e:8f:33:6b:44:22: 05:4f:44:f6:bd:90:4d:2f:c5:5c:fb:fd:0c:71:ea: b7:4d:34:d2:23:b4:84:89:02:6b:48:1d:32:9d:51: ca:36:92:c5:ae:01:47:d1:7d:ea:f2:f8:59:17:16: 19:ae:cf:79:57:85:12:d1:c2:97:db:44:e9:f6:ba: 69:c0:d3:80:2b:6f:4d:b5:24:30:8e:c0:16:97:45: 92:47:03:5a:ec:e6:14:78:5e:4d:e6:54:fc:e7:66: 1b:72:83:29:f5:8a:a4:92:b2:52:01:04:27:cf:d5: da:25:f7:93:19:32:b5:11:5d:91:cc:c3:02:bf:86: 65:30:7b:38:06:9b:eb:27:36:46:62:93:9a:67:47: 2f:df:d5:4d:ed:99:79:1d:88:b2:1a:37:5c:e2:c6: 91:48:34:52:1b:78:13:fb:88:59:f5:b8:e6:b7:dd: 76:67:9b:fc:c9:2b:b6:bd:38:be:ac:81:d2:0f:2c: e1:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:8F:FD:83:21:68:0C:E0:8B:37:C9:C7:2F:74:4F:21:A2:A2:42:4A X509v3 Authority Key Identifier: keyid:4E:07:37:86:67:EC:79:D5:3D:65:0E:52:4D:1E:8F:98:B0:8C:28:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tgc3hmfsedU9ZQ5STR6PmLCMKOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91632D7/F97959C2241711ED9C0C700DC4F9AE02/C6C06E5CC18D11EEB2096833C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 125.62.68.0/22 Signature Algorithm: sha256WithRSAEncryption 81:b9:c5:0e:46:11:e6:cf:5f:5c:c5:58:55:20:6b:d4:58:09: 23:df:f8:d8:59:ce:71:0a:3c:d1:c6:87:ca:7a:07:fd:e8:82: b9:c6:b0:38:34:99:bb:34:bf:aa:d6:3b:83:48:fb:e2:c9:6c: f8:fd:30:3b:e1:0d:2f:b7:66:ea:a0:52:b9:a0:93:8c:db:fd: b8:b2:8f:1a:55:67:c3:99:40:05:ad:da:51:ea:ba:58:e1:06: 34:fb:a2:84:1f:12:ad:52:92:43:ef:dc:06:b3:b3:c6:c3:20: 45:43:cc:5d:f6:0d:f0:91:c1:1a:6d:68:48:85:4f:bc:42:3a: aa:53:d0:04:59:e9:99:02:fb:ce:8e:67:19:52:82:67:57:f5: 9c:d2:9b:47:1c:6c:b0:d5:f7:41:32:df:17:f4:9a:1f:30:fe: 69:fa:e8:74:d5:4f:f7:14:2b:fe:15:90:f4:e4:77:f4:c2:7d: 87:2b:d7:13:cf:f4:dc:0a:0d:99:d7:0d:2d:96:9e:96:1b:3b: f8:f1:87:61:95:0d:d8:71:2d:15:02:6a:49:68:ad:77:61:ab: 77:1d:0c:38:76:b5:77:39:d3:9d:35:d0:8a:7a:0a:33:2a:f1: 2f:ee:38:8f:92:82:0e:0f:15:76:d0:87:7c:ea:02:f7:f6:9f: 2f:97:35:63 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjMyRDcxMTAvBgNVBAUTKDRFMDczNzg2NjdFQzc5RDUzRDY1MEU1MjREMUU4Rjk4 QjA4QzI4RTEwHhcNMjUwMTA3MDE0NTI0WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdjODczNC1kZWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3ZsXA3IrXy/HTs3ugdr6KZ9QjE/9ypegNnbwCnw/OWsq1fqIm8OHsifdgCNP 6N9Rk80t0BnvAAVNrwHE89QovC3aGfpejzNrRCIFT0T2vZBNL8Vc+/0Mceq3TTTS I7SEiQJrSB0ynVHKNpLFrgFH0X3q8vhZFxYZrs95V4US0cKX20Tp9rppwNOAK29N tSQwjsAWl0WSRwNa7OYUeF5N5lT852YbcoMp9YqkkrJSAQQnz9XaJfeTGTK1EV2R zMMCv4ZlMHs4BpvrJzZGYpOaZ0cv39VN7Zl5HYiyGjdc4saRSDRSG3gT+4hZ9bjm t912Z5v8ySu2vTi+rIHSDyzhkQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJCP/YMh aAzgizfJxy90TyGiokJKMB8GA1UdIwQYMBaAFE4HN4Zn7HnVPWUOUk0ej5iwjCjh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MzJENy9GOTc5NTlDMjI0 MTcxMUVEOUMwQzcwMERDNEY5QUUwMi9UZ2MzaG1mc2VkVTlaUTVTVFI2UG1MQ01L T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RnYzNobWZzZWRVOVpRNVNUUjZQbUxDTUtPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjMyRDcvRjk3OTU5QzIyNDE3MTFFRDlDMEM3MDBEQzRGOUFFMDIvQzZDMDZFNUND MThEMTFFRUIyMDk2ODMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ9PkQwDQYJKoZIhvcNAQELBQADggEBAIG5xQ5GEebPX1zF WFUga9RYCSPf+NhZznEKPNHGh8p6B/3ogrnGsDg0mbs0v6rWO4NI++LJbPj9MDvh DS+3ZuqgUrmgk4zb/biyjxpVZ8OZQAWt2lHquljhBjT7ooQfEq1SkkPv3Aazs8bD IEVDzF32DfCRwRptaEiFT7xCOqpT0ARZ6ZkC+86OZxlSgmdX9ZzSm0ccbLDV90Ey 3xf0mh8w/mn66HTVT/cUK/4VkPTkd/TCfYcr1xPP9NwKDZnXDS2WnpYbO/jxh2GV DdhxLRUCaklorXdhq3cdDDh2tXc505010Ip6CjMq8S/uOI+Sgg4PFXbQh3zqAvf2 ny+XNWM= -----END CERTIFICATE-----Generated at Sun Apr 6 06:39:47 2025 by rpki-client