$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa File: 0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa (raw, json) Hash identifier: kY7MigJyhY/TYPojhwcv7Meb5L/AyqJTPuPblE1eiuc= Subject key identifier: 30:87:F0:D8:C1:13:CE:C4:3A:D6:BB:A5:BB:19:BE:FE:DE:07:40:38 Certificate issuer: /CN=A911647C/serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Certificate serial: 0ABA Authority key identifier: 43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa Signing time: Wed 07 May 2025 08:34:13 +0000 ROA not before: Wed 07 May 2025 08:34:13 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 32787 IP address blocks: 14.136.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 20:11:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2746 (0xaba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C, serialNumber=436B2C5F03F91CA741C6A249DC015A6D544A62A6 Validity Not Before: May 7 08:34:13 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=681b1b05-8d5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:00:7a:29:86:9a:21:db:33:37:d0:f2:e1:f8: 33:c6:74:12:81:f9:f3:95:35:3f:8e:2a:ad:15:d1: ae:02:32:bb:91:d4:8c:84:84:68:e0:26:cb:4c:0e: da:79:44:7a:ab:f7:7b:03:cf:4f:c7:04:da:99:eb: ba:3a:a5:2f:b1:ff:95:4e:51:d9:50:1a:97:96:cf: b0:23:2e:1c:b5:ff:c5:ad:4f:c0:38:c7:8e:5f:9c: e2:6d:99:4a:0e:d6:3c:cb:76:4a:75:3f:09:01:65: 2d:d5:0d:53:cc:fb:9d:3d:b5:aa:e4:9c:78:bf:9f: 74:13:b7:8d:87:e6:19:3d:21:50:16:46:6f:d6:6d: 43:61:88:5b:02:1c:fb:d3:32:bc:a2:22:42:35:02: 4f:2d:ed:28:5f:3b:9a:45:5b:67:0f:94:df:f5:f0: ae:b7:9e:f2:c1:ba:98:75:4d:90:55:59:25:1b:cf: 21:fe:af:19:bb:be:f8:3e:c1:f6:44:c7:29:92:6d: 1d:a6:9c:05:4c:f1:6b:69:1a:e8:81:78:d4:44:a4: ee:39:0b:33:3e:5b:a8:47:63:38:07:14:2d:5b:40: 5c:0e:22:e6:b4:10:aa:eb:5e:b7:89:16:65:e2:ea: 6b:a5:0c:bb:15:78:d8:03:e2:d9:dc:7d:2e:d1:3a: 77:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:87:F0:D8:C1:13:CE:C4:3A:D6:BB:A5:BB:19:BE:FE:DE:07:40:38 X509v3 Authority Key Identifier: keyid:43:6B:2C:5F:03:F9:1C:A7:41:C6:A2:49:DC:01:5A:6D:54:4A:62:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q2ssXwP5HKdBxqJJ3AFabVRKYqY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/437CC406851311EAAA0B0A7FC4F9AE02/0DE32D9C2B1E11F0AFEB852DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.136.149.0/24 Signature Algorithm: sha256WithRSAEncryption b5:d1:37:ce:1e:12:6c:8e:79:20:45:f5:f2:5c:f2:f8:4d:46: b1:d9:be:59:07:5f:f9:5e:f3:99:37:5e:1b:22:fd:78:e0:ce: a6:34:a6:5c:4b:ca:3b:7a:29:8b:d2:9f:19:aa:47:ee:f1:85: 78:13:4c:11:df:ad:c6:fc:dc:fe:e2:47:2c:d7:17:31:5d:4f: 20:9f:63:c2:6d:03:f6:36:fc:a8:fb:50:0b:71:42:b0:5e:61: e4:e2:91:ce:76:ea:38:cf:4c:8b:b9:cd:c5:b5:83:1c:5c:9b: d6:18:97:53:b4:32:a2:8c:a5:e3:88:ca:af:ab:83:c1:d4:ee: 22:ba:de:83:70:81:d5:5a:55:cc:f5:c6:f1:a0:63:ca:97:0c: 8b:57:9f:16:0b:73:72:2d:32:c5:f8:5c:1c:f5:a5:d4:05:8c: b5:27:96:16:59:9b:9b:aa:7a:db:04:0f:5d:18:1a:09:ac:40: 3e:13:7c:c6:93:73:e5:9e:c7:57:ae:1d:f4:11:c4:e3:e6:cb: 6d:21:fb:9c:0e:b3:7f:24:0c:5f:68:7b:af:5f:4b:a9:9f:8a: 44:6e:42:d0:5b:ce:89:f7:fc:e3:e3:8f:10:fa:43:10:91:59: 7a:7e:22:8c:a8:58:cb:f2:a9:71:c2:ed:f7:69:25:7e:4b:90: 8e:27:4a:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCrowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDQzNkIyQzVGMDNGOTFDQTc0MUM2QTI0OURDMDE1QTZE NTQ0QTYyQTYwHhcNMjUwNTA3MDgzNDEzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFiMWIwNS04ZDVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApAB6KYaaIdszN9Dy4fgzxnQSgfnzlTU/jiqtFdGuAjK7kdSMhIRo4CbLTA7a eUR6q/d7A89PxwTameu6OqUvsf+VTlHZUBqXls+wIy4ctf/FrU/AOMeOX5zibZlK DtY8y3ZKdT8JAWUt1Q1TzPudPbWq5Jx4v590E7eNh+YZPSFQFkZv1m1DYYhbAhz7 0zK8oiJCNQJPLe0oXzuaRVtnD5Tf9fCut57ywbqYdU2QVVklG88h/q8Zu774PsH2 RMcpkm0dppwFTPFraRrogXjURKTuOQszPluoR2M4BxQtW0BcDiLmtBCq6163iRZl 4uprpQy7FXjYA+LZ3H0u0Tp3zwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDCH8NjB E87EOta7pbsZvv7eB0A4MB8GA1UdIwQYMBaAFENrLF8D+RynQcaiSdwBWm1USmKm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy80MzdDQzQwNjg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9RMnNzWHdQNUhLZEJ4cUpKM0FGYWJWUktZ cVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1Eyc3NYd1A1SEtkQnhxSkozQUZhYlZSS1lxWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY0N0MvNDM3Q0M0MDY4NTEzMTFFQUFBMEIwQTdGQzRGOUFFMDIvMERFMzJEOUMy QjFFMTFGMEFGRUI4NTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAOiJUwDQYJKoZIhvcNAQELBQADggEBALXRN84eEmyOeSBF 9fJc8vhNRrHZvlkHX/le85k3Xhsi/XjgzqY0plxLyjt6KYvSnxmqR+7xhXgTTBHf rcb83P7iRyzXFzFdTyCfY8JtA/Y2/Kj7UAtxQrBeYeTikc526jjPTIu5zcW1gxxc m9YYl1O0MqKMpeOIyq+rg8HU7iK63oNwgdVaVcz1xvGgY8qXDItXnxYLc3ItMsX4 XBz1pdQFjLUnlhZZm5uqetsED10YGgmsQD4TfMaTc+Wex1euHfQRxOPmy20h+5wO s38kDF9oe69fS6mfikRuQtBbzon3/OPjjxD6QxCRWXp+IoyoWMvyqXHC7fdpJX5L kI4nSuM= -----END CERTIFICATE-----Generated at Wed Jun 4 00:02:44 2025 by rpki-client