$ rpki-client -vvf rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/00F0B7EEA87411EF88F5C638C4F9AE02.roa File: 00F0B7EEA87411EF88F5C638C4F9AE02.roa (raw, json) Hash identifier: jCGpkTOREB2CZphvzKOSraYTHWPq9LTO8zozaxcqQy8= Subject key identifier: F8:96:9F:30:21:44:B4:E3:46:FD:47:EE:E6:04:AD:0E:59:63:0E:B6 Certificate issuer: /CN=A917F051/serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Certificate serial: 02EF Authority key identifier: 84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/00F0B7EEA87411EF88F5C638C4F9AE02.roa Signing time: Mon 31 Mar 2025 01:28:18 +0000 ROA not before: Mon 31 Mar 2025 01:28:18 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 58468 IP address blocks: 202.5.130.0/24 maxlen: 24 202.5.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 25 Apr 2025 18:24:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 751 (0x2ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F051, serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Validity Not Before: Mar 31 01:28:18 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e9efb2-d574 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a6:95:8a:c1:a3:ad:8a:23:c9:2e:f5:da:9f: 43:f0:22:f3:1d:c5:7e:c1:1e:40:7d:0f:c3:57:c9: 62:e6:e8:fa:cc:89:43:95:5c:7d:7b:42:f3:51:52: 1d:a4:70:b0:45:54:12:57:e2:58:2f:79:19:60:82: c5:d3:db:be:6d:a1:78:19:dc:37:a1:f4:7d:bc:1a: 5e:c8:df:2d:44:d9:93:90:de:00:05:22:71:a1:8e: 2e:2b:fb:8c:cb:12:bc:c1:f1:4e:dd:df:06:a4:de: 52:f9:25:4c:d9:fc:9f:ee:61:03:3c:d1:dc:3e:db: e6:7c:dc:ca:f4:17:9c:b4:3e:e4:4e:47:4f:4e:41: ae:83:2f:3a:16:d4:3a:a5:5e:f3:4e:b5:05:9d:6b: 05:e5:ca:11:59:dc:1a:38:f1:ad:31:33:3c:86:e8: 61:21:da:14:33:bb:83:50:0f:49:74:dc:2f:15:05: 29:a1:bc:94:50:e6:bc:d4:55:65:b1:5e:4f:18:37: 2a:10:9d:2e:63:3d:1d:8f:94:d2:38:46:e2:5d:bf: a9:77:ae:50:aa:18:74:66:39:ff:76:8f:b2:a0:57: 04:f5:69:06:82:78:5e:09:b8:67:fd:32:c1:80:bd: 1d:c1:7e:7e:77:1b:e8:9b:f3:18:49:f2:73:bf:7a: 08:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:96:9F:30:21:44:B4:E3:46:FD:47:EE:E6:04:AD:0E:59:63:0E:B6 X509v3 Authority Key Identifier: keyid:84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/00F0B7EEA87411EF88F5C638C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.5.130.0/23 Signature Algorithm: sha256WithRSAEncryption 13:b7:23:14:b0:3e:45:5d:6c:74:c4:82:ca:47:32:20:56:b1: 62:f0:25:8d:78:fc:66:69:d6:69:93:4b:b2:05:45:ee:c1:b1: e8:69:3c:bf:7e:0a:3e:0d:c0:ce:2b:30:1f:12:7c:98:88:3a: 65:f2:98:9f:bc:f9:94:f8:37:34:7a:8c:a6:37:e2:22:c0:fe: 8d:a4:df:cd:fd:d2:31:fe:fd:df:2f:d3:f6:ee:07:ee:2a:fd: 96:88:56:64:2a:c9:3d:df:03:e1:bb:87:3a:ce:ce:64:fb:6f: 39:2f:94:5d:ae:e7:7b:7a:a1:bf:dc:26:35:08:db:ea:bc:00: 75:b8:de:2e:14:bf:b0:95:9c:b7:a0:9f:55:05:1b:f0:27:48: 25:34:d0:c7:8e:eb:fa:6c:94:e9:25:f7:a0:24:45:2c:0e:da: 98:2e:2b:87:73:85:64:61:ad:44:27:97:48:70:63:c2:5e:b6: e2:46:92:c7:10:10:d2:75:53:40:a8:1d:67:8a:e8:23:17:fa: 09:d0:4c:51:d6:30:cc:df:98:6a:c1:fb:52:28:7c:21:42:5f: f3:88:4e:92:ee:dd:f7:1a:63:40:e1:98:46:31:4f:a3:79:66: 2c:88:dd:be:18:d5:0d:89:78:6c:06:4b:41:15:4e:ee:9e:cb: fa:c9:42:64 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAu8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YwNTExMTAvBgNVBAUTKDg0REE4OTI3Q0RFRjUwMzM5NkY1MjcyMDE5NEVCOTMx MjA5RDNGM0EwHhcNMjUwMzMxMDEyODE4WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U5ZWZiMi1kNTc0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvKaVisGjrYojyS712p9D8CLzHcV+wR5AfQ/DV8li5uj6zIlDlVx9e0LzUVId pHCwRVQSV+JYL3kZYILF09u+baF4Gdw3ofR9vBpeyN8tRNmTkN4ABSJxoY4uK/uM yxK8wfFO3d8GpN5S+SVM2fyf7mEDPNHcPtvmfNzK9BectD7kTkdPTkGugy86FtQ6 pV7zTrUFnWsF5coRWdwaOPGtMTM8huhhIdoUM7uDUA9JdNwvFQUpobyUUOa81FVl sV5PGDcqEJ0uYz0dj5TSOEbiXb+pd65Qqhh0Zjn/do+yoFcE9WkGgnheCbhn/TLB gL0dwX5+dxvom/MYSfJzv3oI/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPiWnzAh RLTjRv1H7uYErQ5ZYw62MB8GA1UdIwQYMBaAFITaiSfN71AzlvUnIBlOuTEgnT86 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjA1MS81QUFEOUQ3RUQ4 REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVET1c5U2NnR1U2NU1TQ2RQ em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOcUpKODN2VURPVzlTY2dHVTY1TVNDZFB6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0YwNTEvNUFBRDlEN0VEOEREMTFFQ0E1REQwQzUwQzRGOUFFMDIvMDBGMEI3RUVB ODc0MTFFRjg4RjVDNjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKBYIwDQYJKoZIhvcNAQELBQADggEBABO3IxSwPkVdbHTE gspHMiBWsWLwJY14/GZp1mmTS7IFRe7BsehpPL9+Cj4NwM4rMB8SfJiIOmXymJ+8 +ZT4NzR6jKY34iLA/o2k38390jH+/d8v0/buB+4q/ZaIVmQqyT3fA+G7hzrOzmT7 bzkvlF2u53t6ob/cJjUI2+q8AHW43i4Uv7CVnLegn1UFG/AnSCU00MeO6/pslOkl 96AkRSwO2pguK4dzhWRhrUQnl0hwY8JetuJGkscQENJ1U0CoHWeK6CMX+gnQTFHW MMzfmGrB+1IofCFCX/OITpLu3fcaY0DhmEYxT6N5ZiyI3b4Y1Q2JeGwGS0EVTu6e y/rJQmQ= -----END CERTIFICATE-----Generated at Sat Apr 19 03:45:12 2025 by rpki-client