$ rpki-client -vvf rpki.apnic.net/member_repository/A9110AD1/5A83A58482CE11EBBB694F87C4F9AE02/5F38A4F082D611EB802C1A55C4F9AE02.roa File: 5F38A4F082D611EB802C1A55C4F9AE02.roa (raw, json) Hash identifier: 2g+AtJOcqM3v8sCGPb20uEjt/EFg/UdlgUuuLVPXSl0= Subject key identifier: 6A:CB:F6:9B:88:E7:6C:9B:0A:FF:62:AD:A5:4D:83:15:CC:55:31:2D Certificate issuer: /CN=A9110AD1/serialNumber=5854C6D886AE80570ECE62474D54199C4E829CAB Certificate serial: 065B Authority key identifier: 58:54:C6:D8:86:AE:80:57:0E:CE:62:47:4D:54:19:9C:4E:82:9C:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WFTG2IaugFcOzmJHTVQZnE6CnKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110AD1/5A83A58482CE11EBBB694F87C4F9AE02/5F38A4F082D611EB802C1A55C4F9AE02.roa Signing time: Tue 06 May 2025 22:33:46 +0000 ROA not before: Tue 06 May 2025 22:33:46 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 64090 IP address blocks: 203.13.41.0/24 maxlen: 24 2001:df6:3980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110AD1/5A83A58482CE11EBBB694F87C4F9AE02/WFTG2IaugFcOzmJHTVQZnE6CnKs.crl rsync://rpki.apnic.net/member_repository/A9110AD1/5A83A58482CE11EBBB694F87C4F9AE02/WFTG2IaugFcOzmJHTVQZnE6CnKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WFTG2IaugFcOzmJHTVQZnE6CnKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 22:43:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1627 (0x65b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110AD1, serialNumber=5854C6D886AE80570ECE62474D54199C4E829CAB Validity Not Before: May 6 22:33:46 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681a8e49-84eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d9:dc:8f:2d:7e:5c:5d:c5:91:33:5e:05:b8: 05:ce:d7:d2:dc:b2:d0:de:fd:bc:b5:bd:61:78:01: da:cc:da:31:a8:87:11:2f:95:eb:88:1b:fa:9f:ff: 45:e6:3e:4b:06:3a:d0:22:8d:79:33:4d:d8:6d:b6: 8c:20:87:6f:75:c6:10:6b:91:0b:17:a8:62:dc:bf: 75:80:3c:02:c9:06:08:c6:8c:7c:ba:d5:8b:9c:9a: 95:5a:0f:0c:91:12:0f:5b:35:43:c5:d4:0f:bc:5c: e6:6b:f3:ff:60:66:aa:7e:04:4e:44:e2:10:d9:fc: 61:59:1e:8c:53:8a:52:19:b4:94:eb:e4:bf:71:3a: f2:8e:a9:1a:4b:ad:81:ed:a3:03:c3:a2:4d:68:39: 41:01:a0:9e:d3:34:cc:13:39:f7:74:ce:10:f7:84: 4f:01:77:46:81:a1:0f:c0:64:e4:bb:d1:83:0d:c3: 85:c5:da:a4:9e:a2:0f:bc:00:bb:62:62:82:1c:15: ab:a7:cd:7b:3f:40:a3:e5:e1:c9:bc:ad:0d:bf:f6: 7d:d7:4d:44:41:dd:83:37:45:be:d4:df:b3:b2:de: 5f:35:3c:c5:e3:5c:56:c0:54:e6:8d:cf:4b:5c:3e: 1d:df:9c:2b:87:30:9e:3f:73:43:ac:ac:83:94:9d: c5:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:CB:F6:9B:88:E7:6C:9B:0A:FF:62:AD:A5:4D:83:15:CC:55:31:2D X509v3 Authority Key Identifier: keyid:58:54:C6:D8:86:AE:80:57:0E:CE:62:47:4D:54:19:9C:4E:82:9C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110AD1/5A83A58482CE11EBBB694F87C4F9AE02/WFTG2IaugFcOzmJHTVQZnE6CnKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WFTG2IaugFcOzmJHTVQZnE6CnKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110AD1/5A83A58482CE11EBBB694F87C4F9AE02/5F38A4F082D611EB802C1A55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.13.41.0/24 IPv6: 2001:df6:3980::/48 Signature Algorithm: sha256WithRSAEncryption 0d:c5:f2:31:91:cc:50:40:e5:5b:cb:3a:49:4c:0c:ac:10:dc: ca:6f:5a:1b:5e:a5:76:91:e1:f4:b2:31:4e:bc:b9:32:d8:86: d1:cd:2e:19:33:19:81:b9:1d:64:f1:08:b8:7b:26:e4:7d:4a: 2e:55:50:78:c6:b5:31:79:e6:8b:60:37:97:e4:90:d8:21:a1: f4:3f:84:25:6e:c5:3d:b2:77:0c:60:64:26:34:7f:5e:37:f9: 9b:55:4c:b1:92:a1:85:31:6d:b5:7e:3d:6c:a8:c5:0f:7a:19: 8c:dc:9e:c4:5e:81:30:86:81:ba:4b:9d:12:35:00:bd:ed:83: aa:81:30:39:aa:3b:d6:e2:93:7d:7f:66:28:1a:54:a0:b5:0c: 10:7e:7b:2b:ff:e7:81:8b:e9:a8:bf:f7:bc:27:35:18:d9:b3: 6e:89:c6:ff:e0:f8:ad:33:14:6c:df:ad:50:c8:a5:c7:e6:be: f5:d7:5c:92:07:4f:da:00:3a:2c:79:14:72:1f:2b:ce:be:39: 51:8f:9d:e4:3d:8b:e8:b3:40:f1:92:5d:17:fa:e4:48:00:7d: 02:3a:06:a7:25:d7:f6:ee:b3:46:bb:ae:74:f5:7a:53:23:4c: 9b:ce:3a:04:36:ab:45:3f:fd:64:e0:50:4e:c6:25:9b:4b:d6: 56:b8:15:80 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTBBRDExMTAvBgNVBAUTKDU4NTRDNkQ4ODZBRTgwNTcwRUNFNjI0NzRENTQxOTlD NEU4MjlDQUIwHhcNMjUwNTA2MjIzMzQ2WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFhOGU0OS04NGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Nncjy1+XF3FkTNeBbgFztfS3LLQ3v28tb1heAHazNoxqIcRL5XriBv6n/9F 5j5LBjrQIo15M03YbbaMIIdvdcYQa5ELF6hi3L91gDwCyQYIxox8utWLnJqVWg8M kRIPWzVDxdQPvFzma/P/YGaqfgROROIQ2fxhWR6MU4pSGbSU6+S/cTryjqkaS62B 7aMDw6JNaDlBAaCe0zTMEzn3dM4Q94RPAXdGgaEPwGTku9GDDcOFxdqknqIPvAC7 YmKCHBWrp817P0Cj5eHJvK0Nv/Z9101EQd2DN0W+1N+zst5fNTzF41xWwFTmjc9L XD4d35wrhzCeP3NDrKyDlJ3FQwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGrL9puI 52ybCv9iraVNgxXMVTEtMB8GA1UdIwQYMBaAFFhUxtiGroBXDs5iR01UGZxOgpyr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMEFEMS81QTgzQTU4NDgy Q0UxMUVCQkI2OTRGODdDNEY5QUUwMi9XRlRHMklhdWdGY096bUpIVFZRWm5FNkNu S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dGVEcySWF1Z0ZjT3ptSkhUVlFabkU2Q25Lcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTBBRDEvNUE4M0E1ODQ4MkNFMTFFQkJCNjk0Rjg3QzRGOUFFMDIvNUYzOEE0RjA4 MkQ2MTFFQjgwMkMxQTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLDSkwDwQCAAIwCQMHACABDfY5gDANBgkqhkiG9w0BAQsF AAOCAQEADcXyMZHMUEDlW8s6SUwMrBDcym9aG16ldpHh9LIxTry5MtiG0c0uGTMZ gbkdZPEIuHsm5H1KLlVQeMa1MXnmi2A3l+SQ2CGh9D+EJW7FPbJ3DGBkJjR/Xjf5 m1VMsZKhhTFttX49bKjFD3oZjNyexF6BMIaBukudEjUAve2DqoEwOao71uKTfX9m KBpUoLUMEH57K//ngYvpqL/3vCc1GNmzbonG/+D4rTMUbN+tUMilx+a+9ddckgdP 2gA6LHkUch8rzr45UY+d5D2L6LNA8ZJdF/rkSAB9AjoGpyXX9u6zRruudPV6UyNM m846BDarRT/9ZOBQTsYlm0vWVrgVgA== -----END CERTIFICATE-----Generated at Wed Jun 4 00:07:45 2025 by rpki-client