$ rpki-client -vvf rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/6910E952A86A11EF89DA976DC4F9AE02.roa File: 6910E952A86A11EF89DA976DC4F9AE02.roa (raw, json) Hash identifier: l1w8+0ex2ah/bqLhlgu70ROEZ3rYXLDAefLnWRzXKeM= Subject key identifier: AA:D5:01:7D:BC:A2:0C:2F:BD:C0:6A:08:02:E7:F6:64:4F:7F:93:24 Certificate issuer: /CN=A917F051/serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Certificate serial: 02EE Authority key identifier: 84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/6910E952A86A11EF89DA976DC4F9AE02.roa Signing time: Mon 31 Mar 2025 01:28:17 +0000 ROA not before: Mon 31 Mar 2025 01:28:17 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 20119 IP address blocks: 202.5.128.0/24 maxlen: 24 202.5.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 00:58:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 750 (0x2ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917F051, serialNumber=84DA8927CDEF503396F52720194EB931209D3F3A Validity Not Before: Mar 31 01:28:17 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e9efb1-dd63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a7:14:b2:0b:8a:4d:24:c4:b2:cc:7d:1b:ad: b3:50:bb:47:64:45:ba:55:ee:94:a3:61:bf:81:43: ca:55:59:42:8a:52:a0:db:a5:84:5c:01:11:aa:e4: c3:fc:b4:81:3d:a2:f8:20:59:d5:2c:2b:90:1c:4b: 14:6e:e3:a6:c9:18:e3:11:38:73:aa:87:97:44:92: 97:a2:1f:87:1a:73:de:1a:d2:b3:ae:e0:71:50:2d: ae:4d:d3:87:72:47:73:8f:fc:f7:2e:8b:8a:e6:a3: f7:79:dd:7f:bb:55:ed:e4:d7:f3:18:e9:84:5c:d1: 64:60:cd:82:33:fb:b2:c1:e5:0d:f1:33:75:74:9c: 69:c2:f6:33:d9:c5:a3:05:b4:a8:bd:01:fd:eb:4d: ed:d1:6a:92:77:c6:66:65:96:6f:66:50:fa:5f:fc: 90:60:16:5e:bf:bb:ab:e5:7a:eb:79:85:c4:92:80: c1:cb:3d:80:cd:24:c3:5d:30:fe:b7:2d:6a:34:a5: c4:78:4b:f3:ca:c8:c2:e2:01:d9:77:d2:52:b2:c4: 6e:7d:4b:57:f0:1e:d0:b1:23:89:dd:ca:1a:8d:f0: ab:4d:05:47:0f:77:e4:04:fc:da:b0:59:1e:3d:97: 71:88:14:65:82:e0:29:07:0c:56:db:67:2d:ae:ad: d1:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:D5:01:7D:BC:A2:0C:2F:BD:C0:6A:08:02:E7:F6:64:4F:7F:93:24 X509v3 Authority Key Identifier: keyid:84:DA:89:27:CD:EF:50:33:96:F5:27:20:19:4E:B9:31:20:9D:3F:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/hNqJJ83vUDOW9ScgGU65MSCdPzo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hNqJJ83vUDOW9ScgGU65MSCdPzo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917F051/5AAD9D7ED8DD11ECA5DD0C50C4F9AE02/6910E952A86A11EF89DA976DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.5.128.0/23 Signature Algorithm: sha256WithRSAEncryption 22:10:14:c6:64:15:d0:c4:8d:ec:37:10:26:79:37:87:e2:30: 2e:ca:d8:52:73:ad:9d:97:bd:2c:33:3d:ad:ad:27:8b:cc:c0: c9:11:ee:01:07:fa:e0:b6:a2:7b:19:f5:1d:c8:18:0c:70:db: ce:8b:90:53:d6:c2:f4:10:51:7d:de:45:b7:43:a5:f5:55:85: b2:40:9c:00:ea:cb:0a:33:c0:97:8b:6c:8c:ab:ca:63:b6:c2: 13:03:07:d4:87:56:55:15:2f:88:3e:32:65:3b:12:5c:c1:69: 8c:24:93:53:4c:02:d2:8d:30:5b:d1:67:d5:1c:f5:cd:06:44: 5f:5b:eb:f4:06:cd:d7:55:c6:98:cd:b6:64:b3:d4:c7:89:e7: a1:15:da:66:c1:d5:05:ff:a8:d9:a6:ec:2a:dc:a1:cc:ae:3e: a8:49:65:93:5d:75:f9:9c:7f:61:c1:b1:aa:99:43:ad:d2:57: 9e:84:d5:75:1d:91:b4:6a:ad:ab:5a:86:21:2a:d5:c3:26:34: 86:4b:a3:2e:68:3b:75:ae:ba:ac:e5:35:e0:bb:b4:81:45:89: c2:7e:64:32:9d:9e:c3:8b:51:4f:7e:28:db:99:35:28:cf:5a: 2f:64:b1:5c:a5:8c:98:19:af:d7:14:ed:2a:89:00:9e:99:fc: 90:7d:35:29 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAu4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0YwNTExMTAvBgNVBAUTKDg0REE4OTI3Q0RFRjUwMzM5NkY1MjcyMDE5NEVCOTMx MjA5RDNGM0EwHhcNMjUwMzMxMDEyODE3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U5ZWZiMS1kZDYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtacUsguKTSTEssx9G62zULtHZEW6Ve6Uo2G/gUPKVVlCilKg26WEXAERquTD /LSBPaL4IFnVLCuQHEsUbuOmyRjjEThzqoeXRJKXoh+HGnPeGtKzruBxUC2uTdOH ckdzj/z3LouK5qP3ed1/u1Xt5NfzGOmEXNFkYM2CM/uyweUN8TN1dJxpwvYz2cWj BbSovQH9603t0WqSd8ZmZZZvZlD6X/yQYBZev7ur5XrreYXEkoDByz2AzSTDXTD+ ty1qNKXEeEvzysjC4gHZd9JSssRufUtX8B7QsSOJ3coajfCrTQVHD3fkBPzasFke PZdxiBRlguApBwxW22ctrq3RZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKrVAX28 ogwvvcBqCALn9mRPf5MkMB8GA1UdIwQYMBaAFITaiSfN71AzlvUnIBlOuTEgnT86 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RjA1MS81QUFEOUQ3RUQ4 REQxMUVDQTVERDBDNTBDNEY5QUUwMi9oTnFKSjgzdlVET1c5U2NnR1U2NU1TQ2RQ em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hOcUpKODN2VURPVzlTY2dHVTY1TVNDZFB6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0YwNTEvNUFBRDlEN0VEOEREMTFFQ0E1REQwQzUwQzRGOUFFMDIvNjkxMEU5NTJB ODZBMTFFRjg5REE5NzZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKBYAwDQYJKoZIhvcNAQELBQADggEBACIQFMZkFdDEjew3 ECZ5N4fiMC7K2FJzrZ2XvSwzPa2tJ4vMwMkR7gEH+uC2onsZ9R3IGAxw286LkFPW wvQQUX3eRbdDpfVVhbJAnADqywozwJeLbIyrymO2whMDB9SHVlUVL4g+MmU7ElzB aYwkk1NMAtKNMFvRZ9Uc9c0GRF9b6/QGzddVxpjNtmSz1MeJ56EV2mbB1QX/qNmm 7CrcocyuPqhJZZNddfmcf2HBsaqZQ63SV56E1XUdkbRqratahiEq1cMmNIZLoy5o O3WuuqzlNeC7tIFFicJ+ZDKdnsOLUU9+KNuZNSjPWi9ksVyljJgZr9cU7SqJAJ6Z /JB9NSk= -----END CERTIFICATE-----Generated at Fri Apr 18 10:22:09 2025 by rpki-client