$ rpki-client -vvf rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/1347AA9019FE11ECB459B141C4F9AE02.roa File: 1347AA9019FE11ECB459B141C4F9AE02.roa (raw, json) Hash identifier: h9GZsXJu26LTuTfI8PKJuMKvzk1POlvfCmlntQi2k6Y= Subject key identifier: 9A:36:C8:6A:89:C0:7B:BA:68:08:37:2E:0B:41:7D:1A:F3:9A:F7:EC Certificate issuer: /CN=A91356BB/serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Certificate serial: 0516 Authority key identifier: 2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/1347AA9019FE11ECB459B141C4F9AE02.roa Signing time: Sun 01 Jun 2025 00:33:18 +0000 ROA not before: Sun 01 Jun 2025 00:33:18 +0000 ROA not after: Wed 01 Oct 2025 00:00:00 +0000 asID: 1221 IP address blocks: 203.20.197.0/24 maxlen: 24 203.20.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 00:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1302 (0x516) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91356BB, serialNumber=2CCA13540F013B93B23C9DF14D9617DA40CB2677 Validity Not Before: Jun 1 00:33:18 2025 GMT Not After : Oct 1 00:00:00 2025 GMT Subject: CN=683b9fce-b546 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:e4:eb:f0:19:a5:70:21:0d:cd:ef:d6:df:2e: 4e:eb:71:82:63:6f:a7:e4:39:a3:19:9f:5e:21:6b: b1:ff:03:10:f4:5d:04:7f:73:9a:6a:44:70:1d:01: a9:6c:f6:70:3c:77:2a:16:88:30:48:ee:ae:2b:da: 79:9c:70:66:06:cd:33:ae:a4:d4:90:5e:2e:8f:90: 52:af:af:a2:3b:06:06:b1:02:98:31:04:b7:6d:ee: 04:af:88:dc:6b:4a:f6:c2:39:01:fb:38:e1:e9:87: 4c:48:3a:d2:b5:48:ab:cf:36:78:61:64:fb:18:41: 19:dd:10:c1:b9:67:f3:ec:03:44:d3:bb:e9:ac:1c: 3d:25:22:ba:a8:74:a8:3a:cc:95:67:b9:93:6f:f9: b5:2c:1f:90:80:08:99:0f:1a:09:b2:11:c4:8d:5e: f3:14:d2:0a:7b:45:20:73:03:95:98:09:bc:c9:46: af:9a:5f:fe:00:ba:a8:9c:ec:90:68:71:96:9d:fe: 24:aa:b9:6e:3b:74:e9:81:a6:28:88:c3:cc:e3:73: 68:3d:9d:cc:a0:5f:7b:2e:52:2c:71:63:7f:03:a1: 21:35:91:8a:ce:97:88:55:09:af:ca:3a:c6:cd:76: 15:25:89:7a:7e:95:54:2c:69:c5:0a:12:12:92:2b: 90:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:36:C8:6A:89:C0:7B:BA:68:08:37:2E:0B:41:7D:1A:F3:9A:F7:EC X509v3 Authority Key Identifier: keyid:2C:CA:13:54:0F:01:3B:93:B2:3C:9D:F1:4D:96:17:DA:40:CB:26:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMoTVA8BO5OyPJ3xTZYX2kDLJnc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91356BB/5CEA549416D511ECA7F3F46AC4F9AE02/1347AA9019FE11ECB459B141C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.197.0/24 203.20.199.0/24 Signature Algorithm: sha256WithRSAEncryption 65:88:16:b5:a9:93:ab:b5:29:fa:36:d0:b5:dc:9a:a7:4f:a0: 5e:19:c3:80:b8:02:9d:ca:57:80:ec:d2:fc:66:69:69:bb:d4: 04:df:d1:83:4a:2e:88:0b:b2:db:42:5b:82:72:23:40:98:e0: 22:1a:4a:55:a0:14:f5:28:9b:87:19:9f:1e:02:12:45:e6:8a: 87:1a:06:29:ef:ef:95:60:17:f4:c6:1e:ce:b1:78:87:db:b9: a5:db:e8:bc:5a:72:47:f8:2b:06:e1:18:3e:42:ca:b5:2b:79: 59:39:42:37:9b:09:9e:dc:d2:93:91:57:ed:2c:e6:ae:f7:8e: 67:30:da:95:fe:23:f9:16:e3:4a:ac:43:82:28:37:31:f4:0f: e1:a4:f2:bd:59:1f:8b:80:0a:55:66:92:74:b3:93:fa:48:56: f6:00:c5:90:c9:fb:3c:1b:eb:1d:ad:2a:91:75:fe:6e:af:aa: 9d:4c:9a:56:42:a1:8f:4f:60:e4:8c:cf:5b:75:87:53:6e:9e: 11:2f:88:f4:f7:c6:c5:2f:83:a3:97:64:9a:32:8d:58:f4:78: a9:70:8c:34:6a:54:da:52:a9:7b:f4:74:60:7e:4b:85:1e:c8: 9b:cc:a7:b1:f1:77:29:a6:8f:96:c3:09:b3:c6:49:db:f8:22: d1:23:23:3e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBRYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzU2QkIxMTAvBgNVBAUTKDJDQ0ExMzU0MEYwMTNCOTNCMjNDOURGMTREOTYxN0RB NDBDQjI2NzcwHhcNMjUwNjAxMDAzMzE4WhcNMjUxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNiOWZjZS1iNTQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4uTr8BmlcCENze/W3y5O63GCY2+n5DmjGZ9eIWux/wMQ9F0Ef3OaakRwHQGp bPZwPHcqFogwSO6uK9p5nHBmBs0zrqTUkF4uj5BSr6+iOwYGsQKYMQS3be4Er4jc a0r2wjkB+zjh6YdMSDrStUirzzZ4YWT7GEEZ3RDBuWfz7ANE07vprBw9JSK6qHSo OsyVZ7mTb/m1LB+QgAiZDxoJshHEjV7zFNIKe0UgcwOVmAm8yUavml/+ALqonOyQ aHGWnf4kqrluO3TpgaYoiMPM43NoPZ3MoF97LlIscWN/A6EhNZGKzpeIVQmvyjrG zXYVJYl6fpVULGnFChISkiuQ/wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJo2yGqJ wHu6aAg3LgtBfRrzmvfsMB8GA1UdIwQYMBaAFCzKE1QPATuTsjyd8U2WF9pAyyZ3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNTZCQi81Q0VBNTQ5NDE2 RDUxMUVDQTdGM0Y0NkFDNEY5QUUwMi9MTW9UVkE4Qk81T3lQSjN4VFpZWDJrRExK bmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNb1RWQThCTzVPeVBKM3hUWllYMmtETEpuYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzU2QkIvNUNFQTU0OTQxNkQ1MTFFQ0E3RjNGNDZBQzRGOUFFMDIvMTM0N0FBOTAx OUZFMTFFQ0I0NTlCMTQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLFMUDBADLFMcwDQYJKoZIhvcNAQELBQADggEBAGWIFrWp k6u1Kfo20LXcmqdPoF4Zw4C4Ap3KV4Ds0vxmaWm71ATf0YNKLogLsttCW4JyI0CY 4CIaSlWgFPUom4cZnx4CEkXmiocaBinv75VgF/TGHs6xeIfbuaXb6Lxackf4Kwbh GD5CyrUreVk5QjebCZ7c0pORV+0s5q73jmcw2pX+I/kW40qsQ4IoNzH0D+Gk8r1Z H4uAClVmknSzk/pIVvYAxZDJ+zwb6x2tKpF1/m6vqp1MmlZCoY9PYOSMz1t1h1Nu nhEviPT3xsUvg6OXZJoyjVj0eKlwjDRqVNpSqXv0dGB+S4UeyJvMp7Hxdymmj5bD CbPGSdv4ItEjIz4= -----END CERTIFICATE-----Generated at Mon Jun 2 05:52:34 2025 by rpki-client