$ rpki-client -vvf rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/F66F50628A9C11EB9B2E044BC4F9AE02.roa File: F66F50628A9C11EB9B2E044BC4F9AE02.roa (raw, json) Hash identifier: 5r7yRMUc5swzOzS/9N2QGpH5cUaodsxsl7ok+oJSeSQ= Subject key identifier: BB:31:44:5E:62:B6:BA:2A:2F:3C:43:D2:0E:E0:44:51:FC:79:FE:9F Certificate issuer: /CN=A9125225/serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Certificate serial: 065E Authority key identifier: 85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/F66F50628A9C11EB9B2E044BC4F9AE02.roa Signing time: Sat 31 May 2025 23:11:31 +0000 ROA not before: Sat 31 May 2025 23:11:31 +0000 ROA not after: Wed 01 Oct 2025 00:00:00 +0000 asID: 141470 IP address blocks: 124.108.24.0/21 maxlen: 21 124.108.24.0/23 maxlen: 23 124.108.26.0/23 maxlen: 23 124.108.27.0/24 maxlen: 24 124.108.28.0/23 maxlen: 23 124.108.30.0/23 maxlen: 23 124.108.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 22:24:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1630 (0x65e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125225, serialNumber=85D6F18493D8A08CC72B1B091D4AF54F8F0A28B3 Validity Not Before: May 31 23:11:31 2025 GMT Not After : Oct 1 00:00:00 2025 GMT Subject: CN=683b8ca3-82e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9b:0e:66:9e:b5:4a:d9:79:bb:84:f4:13:21: d7:d2:6e:fe:cc:49:01:5d:f5:a3:f0:f3:b1:aa:89: 82:aa:69:f0:35:62:85:c0:4a:b1:65:6d:34:8e:fb: e7:7c:27:27:1a:11:b1:ee:7c:7b:f0:c8:53:46:3b: 9f:9d:83:20:5a:9c:ae:25:ba:04:ab:15:cb:13:e1: 1c:0b:a5:8f:8c:33:cf:d7:ea:93:8e:09:4c:56:9a: 0a:6d:07:f0:a2:50:46:a7:75:06:f1:a1:58:c7:82: c3:a5:12:0f:90:77:a4:40:9e:45:35:88:9f:6f:65: 77:21:0d:6c:2b:82:68:a2:64:4c:4e:50:1d:d2:97: b5:66:76:dd:76:87:ba:bb:cb:79:81:a8:50:c6:b6: 9f:a0:1f:cf:e3:36:6b:75:b1:fc:9f:67:1f:49:a2: b1:3d:79:47:0c:e1:11:ed:3b:69:a4:40:2b:9b:d1: 7e:72:5b:f0:71:6d:e3:97:bb:bd:6f:d5:e9:3f:9b: d8:4d:4b:17:61:42:5c:b2:9d:80:cb:36:d3:6c:5b: 32:51:44:1c:c9:d5:2b:44:79:06:4f:03:f1:21:38: ca:d3:cc:b8:76:75:a5:c6:7e:a4:06:78:11:60:d3: 73:9a:67:49:5f:10:09:e4:f2:7f:0c:52:02:52:4d: 83:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:31:44:5E:62:B6:BA:2A:2F:3C:43:D2:0E:E0:44:51:FC:79:FE:9F X509v3 Authority Key Identifier: keyid:85:D6:F1:84:93:D8:A0:8C:C7:2B:1B:09:1D:4A:F5:4F:8F:0A:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/hdbxhJPYoIzHKxsJHUr1T48KKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hdbxhJPYoIzHKxsJHUr1T48KKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125225/CA6904428A9A11EB80C3ED47C4F9AE02/F66F50628A9C11EB9B2E044BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.108.24.0/21 Signature Algorithm: sha256WithRSAEncryption 1a:34:59:93:5a:88:30:61:96:65:f1:ec:47:17:0c:45:34:10: ef:de:88:55:18:23:d5:57:51:70:3a:80:11:01:a1:da:1a:60: c5:57:c0:eb:3f:18:86:e4:42:86:68:20:33:39:e2:c5:52:eb: 15:18:d5:1d:de:24:fc:95:b4:3b:64:77:44:53:ed:41:4a:2d: 02:f2:fb:46:0e:70:6c:88:a0:25:fb:02:3f:96:5b:1f:d7:95: d9:18:67:d1:9b:a7:fc:43:de:58:9b:c7:00:f7:46:be:87:27: 83:d9:89:58:68:8b:53:1e:da:a1:54:35:82:14:44:47:d6:77: 3b:c8:74:3b:e1:9d:f5:f3:f5:03:aa:af:c9:45:75:3c:fa:79: d1:7d:9b:fa:9d:76:07:3b:d5:e8:3a:94:ee:fb:3b:c6:9e:37: ed:a7:d8:6a:a7:16:da:3c:a7:4f:f5:37:f2:5e:fc:37:07:61: 6c:23:a3:db:e5:b3:ea:46:21:a6:d8:af:38:19:23:05:31:9d: 2c:55:96:57:19:b2:9a:b2:67:3a:72:1c:26:f1:a7:73:b5:13: c7:cf:9e:62:54:25:8c:1c:bb:24:60:12:ed:59:1a:48:dd:d9: 6f:a7:e8:3a:a9:a8:46:5a:22:e4:3d:46:1b:b2:86:44:d2:05: 4d:d6:82:4c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUyMjUxMTAvBgNVBAUTKDg1RDZGMTg0OTNEOEEwOENDNzJCMUIwOTFENEFGNTRG OEYwQTI4QjMwHhcNMjUwNTMxMjMxMTMxWhcNMjUxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNiOGNhMy04MmU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt5sOZp61Stl5u4T0EyHX0m7+zEkBXfWj8POxqomCqmnwNWKFwEqxZW00jvvn fCcnGhGx7nx78MhTRjufnYMgWpyuJboEqxXLE+EcC6WPjDPP1+qTjglMVpoKbQfw olBGp3UG8aFYx4LDpRIPkHekQJ5FNYifb2V3IQ1sK4JoomRMTlAd0pe1Znbddoe6 u8t5gahQxrafoB/P4zZrdbH8n2cfSaKxPXlHDOER7TtppEArm9F+clvwcW3jl7u9 b9XpP5vYTUsXYUJcsp2AyzbTbFsyUUQcydUrRHkGTwPxITjK08y4dnWlxn6kBngR YNNzmmdJXxAJ5PJ/DFICUk2DmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLsxRF5i troqLzxD0g7gRFH8ef6fMB8GA1UdIwQYMBaAFIXW8YST2KCMxysbCR1K9U+PCiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTIyNS9DQTY5MDQ0MjhB OUExMUVCODBDM0VENDdDNEY5QUUwMi9oZGJ4aEpQWW9JekhLeHNKSFVyMVQ0OEtL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hkYnhoSlBZb0l6SEt4c0pIVXIxVDQ4S0tMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjUyMjUvQ0E2OTA0NDI4QTlBMTFFQjgwQzNFRDQ3QzRGOUFFMDIvRjY2RjUwNjI4 QTlDMTFFQjlCMkUwNDRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN8bBgwDQYJKoZIhvcNAQELBQADggEBABo0WZNaiDBhlmXx 7EcXDEU0EO/eiFUYI9VXUXA6gBEBodoaYMVXwOs/GIbkQoZoIDM54sVS6xUY1R3e JPyVtDtkd0RT7UFKLQLy+0YOcGyIoCX7Aj+WWx/XldkYZ9Gbp/xD3libxwD3Rr6H J4PZiVhoi1Me2qFUNYIUREfWdzvIdDvhnfXz9QOqr8lFdTz6edF9m/qddgc71eg6 lO77O8aeN+2n2GqnFto8p0/1N/Je/DcHYWwjo9vls+pGIabYrzgZIwUxnSxVllcZ spqyZzpyHCbxp3O1E8fPnmJUJYwcuyRgEu1ZGkjd2W+n6DqpqEZaIuQ9RhuyhkTS BU3Wgkw= -----END CERTIFICATE-----Generated at Thu Jun 5 19:58:21 2025 by rpki-client