$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/4CF8923058BC11F09869AC87C4F9AE02.roa File: 4CF8923058BC11F09869AC87C4F9AE02.roa (raw, json) Hash identifier: zY90zo/xojHjF1wecs/HwesdG3vMHXP6Ku/hhTPUGd8= Subject key identifier: B5:2E:B4:8A:00:25:50:53:A3:FD:A9:C6:D8:A7:95:17:A6:5A:55:52 Certificate issuer: /CN=A91A4849/serialNumber=B6CC02A7DB8A4DB530F112B6224F19080868FBD9 Certificate serial: 0109 Authority key identifier: B6:CC:02:A7:DB:8A:4D:B5:30:F1:12:B6:22:4F:19:08:08:68:FB:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tswCp9uKTbUw8RK2Ik8ZCAho-9k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/4CF8923058BC11F09869AC87C4F9AE02.roa Signing time: Fri 04 Jul 2025 09:50:22 +0000 ROA not before: Fri 04 Jul 2025 09:50:22 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 151151 IP address blocks: 202.71.184.0/23 maxlen: 23 202.71.184.0/24 maxlen: 24 202.71.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/tswCp9uKTbUw8RK2Ik8ZCAho-9k.crl rsync://rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/tswCp9uKTbUw8RK2Ik8ZCAho-9k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tswCp9uKTbUw8RK2Ik8ZCAho-9k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 26 Jul 2025 05:23:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 265 (0x109) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4849, serialNumber=B6CC02A7DB8A4DB530F112B6224F19080868FBD9 Validity Not Before: Jul 4 09:50:22 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6867a3dd-b7cf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4a:3d:9c:0e:1b:32:37:99:54:b1:78:19:61: aa:cd:12:b8:aa:55:dc:29:cb:42:0b:02:07:42:9d: be:19:37:56:a4:eb:21:5e:51:e6:eb:ff:2b:da:58: 2c:bc:aa:97:51:28:56:d8:87:a4:6b:ed:a9:d1:51: 81:32:5e:18:db:77:b4:56:b8:93:ef:2b:a4:97:4c: 00:9a:11:9b:04:1e:a0:fb:55:27:ef:33:d1:2f:c2: de:8b:b1:95:35:32:8d:9d:d5:e5:1c:43:d1:7f:6d: 2c:f5:f3:e8:37:82:30:6e:ca:b0:c2:ca:d1:24:d9: 4b:d2:e8:6e:52:bd:61:ab:b2:a5:ab:cb:05:ab:84: 84:73:c5:04:57:ee:5d:27:97:f6:28:6e:c1:22:f9: 29:e3:61:ef:44:cd:d6:77:ce:6b:cf:cc:04:c2:6b: b7:41:74:41:c4:2d:5d:95:d3:b7:b3:11:c1:1d:bd: 90:75:92:9f:0b:87:f1:e1:e1:73:9d:29:c8:0c:36: c2:b9:a9:cf:81:7b:fa:62:97:22:17:8c:13:51:33: 8a:c7:03:b9:3b:46:e3:01:9c:8e:2c:8c:c8:bf:18: 16:9e:94:d1:93:c8:23:bb:7b:f4:95:8b:28:5e:f7: f9:4e:84:04:16:43:cf:c6:df:86:ff:52:f2:3a:b0: ba:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:2E:B4:8A:00:25:50:53:A3:FD:A9:C6:D8:A7:95:17:A6:5A:55:52 X509v3 Authority Key Identifier: keyid:B6:CC:02:A7:DB:8A:4D:B5:30:F1:12:B6:22:4F:19:08:08:68:FB:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/tswCp9uKTbUw8RK2Ik8ZCAho-9k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tswCp9uKTbUw8RK2Ik8ZCAho-9k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4849/087D3EE8E66D11EE8A31A960C4F9AE02/4CF8923058BC11F09869AC87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.71.184.0/23 Signature Algorithm: sha256WithRSAEncryption bc:6f:37:1c:f0:68:ac:d2:07:fd:30:6b:31:ba:60:4b:e1:3b: 23:fa:a4:10:3b:9a:8e:ba:50:ed:fa:84:17:e0:ea:e1:ac:a9: a6:ae:6f:ed:2f:96:8a:a4:13:8f:3e:ee:05:6d:2b:74:ab:f3: 99:e1:48:62:b8:63:d9:2b:e1:fe:45:d4:73:c7:78:75:99:07: 33:57:87:17:df:83:16:5b:25:83:e5:d6:6c:f7:ac:84:9d:ee: 96:db:6d:7d:a3:4d:e3:02:c2:f3:85:83:f6:63:09:31:b4:1a: 7f:05:af:43:97:1a:aa:32:5f:72:8b:12:0c:57:8d:68:fe:89: 0c:99:62:14:ab:31:f5:15:60:1d:8e:62:15:6e:81:f1:99:9e: 42:8e:bf:6f:b4:fb:d2:80:05:aa:50:11:63:06:e8:23:d7:7a: ac:57:44:6c:b5:ed:73:ad:9a:ae:e4:5b:5a:49:21:c1:c8:33: 35:c6:1e:eb:cf:80:3e:b0:e7:3f:d7:fb:ee:7b:77:27:7f:62: e9:67:cd:07:f5:73:63:16:eb:c1:14:80:e4:26:0c:32:dc:0e: 79:4e:0f:2c:43:15:4f:1b:bb:88:08:d8:16:70:a8:01:69:5e: 18:59:c7:fe:5f:4c:0f:62:3a:5c:e5:6d:07:3e:c9:da:16:d3: ae:2d:33:1d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAQkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQ4NDkxMTAvBgNVBAUTKEI2Q0MwMkE3REI4QTREQjUzMEYxMTJCNjIyNEYxOTA4 MDg2OEZCRDkwHhcNMjUwNzA0MDk1MDIyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODY3YTNkZC1iN2NmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Eo9nA4bMjeZVLF4GWGqzRK4qlXcKctCCwIHQp2+GTdWpOshXlHm6/8r2lgs vKqXUShW2Ieka+2p0VGBMl4Y23e0VriT7yukl0wAmhGbBB6g+1Un7zPRL8Lei7GV NTKNndXlHEPRf20s9fPoN4IwbsqwwsrRJNlL0uhuUr1hq7Klq8sFq4SEc8UEV+5d J5f2KG7BIvkp42HvRM3Wd85rz8wEwmu3QXRBxC1dldO3sxHBHb2QdZKfC4fx4eFz nSnIDDbCuanPgXv6YpciF4wTUTOKxwO5O0bjAZyOLIzIvxgWnpTRk8gju3v0lYso Xvf5ToQEFkPPxt+G/1LyOrC6fQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLUutIoA JVBTo/2pxtinlRemWlVSMB8GA1UdIwQYMBaAFLbMAqfbik21MPEStiJPGQgIaPvZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDg0OS8wODdEM0VFOEU2 NkQxMUVFOEEzMUE5NjBDNEY5QUUwMi90c3dDcDl1S1RiVXc4UksySWs4WkNBaG8t OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Rzd0NwOXVLVGJVdzhSSzJJazhaQ0Foby05ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQ4NDkvMDg3RDNFRThFNjZEMTFFRThBMzFBOTYwQzRGOUFFMDIvNENGODkyMzA1 OEJDMTFGMDk4NjlBQzg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKR7gwDQYJKoZIhvcNAQELBQADggEBALxvNxzwaKzSB/0w azG6YEvhOyP6pBA7mo66UO36hBfg6uGsqaaub+0vloqkE48+7gVtK3Sr85nhSGK4 Y9kr4f5F1HPHeHWZBzNXhxffgxZbJYPl1mz3rISd7pbbbX2jTeMCwvOFg/ZjCTG0 Gn8Fr0OXGqoyX3KLEgxXjWj+iQyZYhSrMfUVYB2OYhVugfGZnkKOv2+0+9KABapQ EWMG6CPXeqxXRGy17XOtmq7kW1pJIcHIMzXGHuvPgD6w5z/X++57dyd/YulnzQf1 c2MW68EUgOQmDDLcDnlODyxDFU8bu4gI2BZwqAFpXhhZx/5fTA9iOlzlbQc+ydoW 064tMx0= -----END CERTIFICATE-----Generated at Sun Jul 20 19:03:24 2025 by rpki-client