$ rpki-client -vvf rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1DCB662A3DF211EB81F4CE73C4F9AE02.roa File: 1DCB662A3DF211EB81F4CE73C4F9AE02.roa (raw, json) Hash identifier: kCg25FDQRQj+e3KU6R/BP0M2KGcBEvQ7uEDAyKmHOCg= Subject key identifier: E5:BB:65:3B:D7:1A:EE:1C:43:7A:80:84:C3:89:A3:E0:DC:01:EE:00 Certificate issuer: /CN=A914254C/serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F Certificate serial: 1680 Authority key identifier: 7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1DCB662A3DF211EB81F4CE73C4F9AE02.roa Signing time: Sat 10 May 2025 16:57:54 +0000 ROA not before: Sat 10 May 2025 16:57:54 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 0 IP address blocks: 27.111.228.0/22 maxlen: 24 202.79.198.0/24 maxlen: 24 202.79.199.0/24 maxlen: 24 202.79.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.crl rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 16:45:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5760 (0x1680) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914254C, serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F Validity Not Before: May 10 16:57:54 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=681f8592-96a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:74:76:cc:d8:23:4c:55:e6:5a:60:8b:5e:6e: c0:de:ed:aa:26:57:7a:ba:b8:c7:a6:54:6c:f4:16: ea:4c:fc:fb:f1:e5:50:35:0f:27:7a:1b:92:eb:ed: 2c:73:a7:4c:06:3d:e4:35:7c:f2:db:b8:10:4f:b1: c0:85:f9:6b:7f:bc:4d:28:f8:28:a4:a2:4c:d7:0e: 1d:1f:49:75:15:3a:10:3f:71:84:11:9a:cd:a3:68: e0:85:b1:36:5d:65:62:94:8b:62:6f:d5:e6:12:16: 75:43:98:3e:87:cf:fb:51:27:8b:bc:0d:6e:da:56: 15:f9:ba:2d:86:c8:f6:28:b4:ce:a7:0b:d4:8a:d4: cd:5a:ab:81:af:5b:25:82:ff:72:60:ae:66:0d:22: d8:09:fa:86:32:83:8a:2c:46:6f:2f:6a:2a:bf:09: 55:a9:fa:76:0b:52:d1:ad:0f:04:48:a7:15:a8:67: 17:eb:b7:d4:2f:1f:ac:b2:a5:cd:09:af:f8:0f:ae: 0e:72:33:0a:33:b3:aa:ed:af:74:e9:f3:72:12:3a: 89:35:3e:86:02:eb:68:16:c6:77:27:e0:02:7c:f5: f9:4e:7d:0a:ea:84:7b:0a:41:21:df:27:53:02:df: 1e:ba:77:a2:a4:78:6e:27:cb:49:c5:0d:a7:86:99: bd:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:BB:65:3B:D7:1A:EE:1C:43:7A:80:84:C3:89:A3:E0:DC:01:EE:00 X509v3 Authority Key Identifier: keyid:7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1DCB662A3DF211EB81F4CE73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.111.228.0/22 202.79.198.0-202.79.200.255 Signature Algorithm: sha256WithRSAEncryption 98:92:75:36:1e:2c:e3:67:3a:bd:b4:0b:97:bc:ee:3c:1e:37: af:04:f0:11:28:6e:b2:c0:8c:6e:c5:c6:85:49:b4:bb:56:af: 81:6e:50:79:6d:28:aa:b9:f9:40:7c:23:6d:88:32:d6:e0:2c: 8f:df:24:5d:fd:7e:f9:79:c4:e6:86:00:90:0b:58:c9:09:5b: 39:49:6a:16:cd:23:01:33:2b:d5:e2:b0:11:22:25:0d:fe:12: a6:18:a9:e9:e5:34:f0:49:95:b5:8a:1a:41:08:97:97:96:65: 4c:a0:f1:d7:66:71:56:cf:5c:f3:c7:08:de:dc:52:a6:b1:df: 81:ca:6f:cb:c9:8e:af:4b:04:31:c4:0a:de:9b:a1:88:c2:b3: 3d:d2:ac:25:b2:60:a7:9a:50:f2:28:48:30:7e:4c:a3:2b:6e: 5a:d9:de:46:23:ec:a0:52:56:2f:1f:56:e3:79:13:07:ef:20: 01:59:dd:7e:78:f4:a6:99:71:68:aa:61:81:a7:a6:82:61:2c: 0f:fa:28:53:0c:7e:c4:cd:13:15:06:8d:27:16:92:d7:1d:22: e9:74:b7:ad:c8:f9:ba:60:f0:78:c1:f4:02:79:64:51:1b:cc: ac:41:66:70:84:ea:83:1e:b4:19:84:a0:bd:be:95:3a:74:97: 5e:c4:ad:99 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICFoAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI1NEMxMTAvBgNVBAUTKDdCM0Y2MEQ5QjFBMjgwMDJBMDc4NzVDQUI1OEEyMTQ1 NzA3M0UxN0YwHhcNMjUwNTEwMTY1NzU0WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFmODU5Mi05NmE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApXR2zNgjTFXmWmCLXm7A3u2qJld6urjHplRs9BbqTPz78eVQNQ8nehuS6+0s c6dMBj3kNXzy27gQT7HAhflrf7xNKPgopKJM1w4dH0l1FToQP3GEEZrNo2jghbE2 XWVilItib9XmEhZ1Q5g+h8/7USeLvA1u2lYV+bothsj2KLTOpwvUitTNWquBr1sl gv9yYK5mDSLYCfqGMoOKLEZvL2oqvwlVqfp2C1LRrQ8ESKcVqGcX67fULx+ssqXN Ca/4D64OcjMKM7Oq7a906fNyEjqJNT6GAutoFsZ3J+ACfPX5Tn0K6oR7CkEh3ydT At8euneipHhuJ8tJxQ2nhpm9ZQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFOW7ZTvX Gu4cQ3qAhMOJo+DcAe4AMB8GA1UdIwQYMBaAFHs/YNmxooACoHh1yrWKIUVwc+F/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjU0Qy81QTU2NEQ0ODE5 RTgxMUU4Qjk2NTBDN0VDNEY5QUUwMi9lejlnMmJHaWdBS2dlSFhLdFlvaFJYQno0 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V6OWcyYkdpZ0FLZ2VIWEt0WW9oUlhCejRYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI1NEMvNUE1NjRENDgxOUU4MTFFOEI5NjUwQzdFQzRGOUFFMDIvMURDQjY2MkEz REYyMTFFQjgxRjRDRTczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAIbb+QwDAMEAcpPxgMEAMpPyDANBgkqhkiG9w0BAQsFAAOC AQEAmJJ1Nh4s42c6vbQLl7zuPB43rwTwEShussCMbsXGhUm0u1avgW5QeW0oqrn5 QHwjbYgy1uAsj98kXf1++XnE5oYAkAtYyQlbOUlqFs0jATMr1eKwESIlDf4Sphip 6eU08EmVtYoaQQiXl5ZlTKDx12ZxVs9c88cI3txSprHfgcpvy8mOr0sEMcQK3puh iMKzPdKsJbJgp5pQ8ihIMH5MoytuWtneRiPsoFJWLx9W43kTB+8gAVndfnj0pplx aKphgaemgmEsD/ooUwx+xM0TFQaNJxaS1x0i6XS3rcj5umDweMH0AnlkURvMrEFm cITqgx60GYSgvb6VOnSXXsStmQ== -----END CERTIFICATE-----Generated at Sun Jun 1 04:10:01 2025 by rpki-client