$ rpki-client -vvf rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/B201496EF3A311EC8804FE09C4F9AE02.roa File: B201496EF3A311EC8804FE09C4F9AE02.roa (raw, json) Hash identifier: 1W3bZjmYo4y/faIyWLiaDn4cNEWTqd/xhoIAZdOleqM= Subject key identifier: 26:84:3C:23:F2:32:1C:21:2E:00:48:62:5A:07:2E:75:DC:50:DD:11 Certificate issuer: /CN=A914DA2D/serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Certificate serial: 1A53 Authority key identifier: 29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/B201496EF3A311EC8804FE09C4F9AE02.roa Signing time: Mon 12 May 2025 10:53:52 +0000 ROA not before: Mon 12 May 2025 10:53:52 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 55408 IP address blocks: 122.201.21.0/24 maxlen: 24 122.201.22.0/24 maxlen: 24 202.70.39.0/24 maxlen: 24 202.70.46.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 16:33:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6739 (0x1a53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DA2D, serialNumber=29962325DE0BADE4DC9DDBC576AE277012BC3758 Validity Not Before: May 12 10:53:52 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6821d340-234a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e2:5e:12:cb:a0:00:7c:fc:65:3c:6a:12:6a: 2d:9d:e0:e8:62:59:59:99:73:65:20:7b:67:da:bf: 8e:6f:4b:fa:97:e8:c5:41:3c:19:f6:6e:c2:15:05: dc:ca:fb:5c:3f:66:cf:8f:97:f4:d9:a3:55:73:10: 2d:0f:31:ca:96:e3:dd:6c:31:e6:8a:53:dc:b6:e5: a0:a4:34:86:5c:c8:5d:a7:aa:fc:a8:99:e6:de:81: bf:f0:45:e7:78:ca:28:78:f4:23:a7:fe:d8:2d:41: e2:9b:45:43:c8:31:99:28:13:83:63:86:f1:8e:82: e8:7d:ec:f4:f0:d9:25:af:32:27:57:3c:98:dd:ca: 06:e4:1a:6c:3d:81:b0:e7:7f:10:a6:2d:b9:21:31: c9:79:69:b9:69:8a:4c:f3:9e:0c:f6:89:bd:bb:73: cb:3b:d9:b6:06:98:3c:cd:50:3d:dd:aa:53:ab:fb: 82:d7:76:a8:3b:ee:9a:81:da:65:a4:d5:38:7f:5d: 96:46:83:05:0a:4c:25:f0:3b:bf:27:ee:03:58:fb: 44:2d:d8:b8:af:b8:95:f4:14:25:4e:3c:8a:00:2e: 95:b8:6b:2c:17:91:32:d9:c7:1c:7e:f1:2c:2a:5a: b3:59:ac:53:d8:7a:2b:02:5f:59:ae:70:5b:3c:57: 50:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:84:3C:23:F2:32:1C:21:2E:00:48:62:5A:07:2E:75:DC:50:DD:11 X509v3 Authority Key Identifier: keyid:29:96:23:25:DE:0B:AD:E4:DC:9D:DB:C5:76:AE:27:70:12:BC:37:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/KZYjJd4LreTcndvFdq4ncBK8N1g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KZYjJd4LreTcndvFdq4ncBK8N1g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DA2D/8383620A50D511E79ECE4013C4F9AE02/B201496EF3A311EC8804FE09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.201.21.0-122.201.22.255 202.70.39.0/24 202.70.46.0/24 Signature Algorithm: sha256WithRSAEncryption 18:66:22:1a:7c:89:1f:e7:aa:bf:ba:7b:82:87:d6:ad:d4:26: bc:c5:72:81:79:c1:d9:2c:3a:2b:24:be:55:96:ca:20:a9:6c: 93:d1:df:13:58:27:e1:65:a2:32:d3:32:c3:c0:f3:c2:1a:c6: 12:85:88:bc:20:e2:ae:77:2e:12:b3:42:a8:c7:87:85:67:04: 14:f4:01:eb:7a:82:b0:b0:3b:b7:cd:16:9a:ed:ea:13:30:3a: dd:c5:c9:e5:fc:b9:79:58:21:27:75:bc:84:ad:41:4f:be:8a: b3:11:8b:4e:03:05:a7:9a:da:87:45:56:b2:42:fe:74:51:6b: b4:e5:3d:29:6a:15:48:c9:d9:0d:50:06:ba:62:f0:7e:78:53: 6b:0c:e2:71:89:73:40:dc:0c:c9:96:bb:2b:95:11:5c:14:f8: fe:40:55:94:df:06:5c:af:f3:6b:75:ab:45:51:56:12:15:e2: 60:4b:fe:33:8e:c7:52:5d:1f:5c:84:a5:9b:89:b1:b8:5a:4b: b1:81:c7:16:1b:c0:b3:cf:dc:71:2e:06:b8:04:d6:dd:e9:89: 27:e8:31:e1:80:f1:6c:df:85:18:ca:fa:c6:59:20:d4:b9:02: f4:70:95:8e:73:28:cf:98:fc:97:1c:d9:d3:06:4e:1d:ff:09: 08:6d:f7:2e -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICGlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERBMkQxMTAvBgNVBAUTKDI5OTYyMzI1REUwQkFERTREQzlEREJDNTc2QUUyNzcw MTJCQzM3NTgwHhcNMjUwNTEyMTA1MzUyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIxZDM0MC0yMzRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAquJeEsugAHz8ZTxqEmotneDoYllZmXNlIHtn2r+Ob0v6l+jFQTwZ9m7CFQXc yvtcP2bPj5f02aNVcxAtDzHKluPdbDHmilPctuWgpDSGXMhdp6r8qJnm3oG/8EXn eMooePQjp/7YLUHim0VDyDGZKBODY4bxjoLofez08NklrzInVzyY3coG5BpsPYGw 538Qpi25ITHJeWm5aYpM854M9om9u3PLO9m2Bpg8zVA93apTq/uC13aoO+6agdpl pNU4f12WRoMFCkwl8Du/J+4DWPtELdi4r7iV9BQlTjyKAC6VuGssF5Ey2cccfvEs KlqzWaxT2HorAl9ZrnBbPFdQawIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFCaEPCPy MhwhLgBIYloHLnXcUN0RMB8GA1UdIwQYMBaAFCmWIyXeC63k3J3bxXauJ3ASvDdY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REEyRC84MzgzNjIwQTUw RDUxMUU3OUVDRTQwMTNDNEY5QUUwMi9LWllqSmQ0THJlVGNuZHZGZHE0bmNCSzhO MWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0taWWpKZDRMcmVUY25kdkZkcTRuY0JLOE4xZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERBMkQvODM4MzYyMEE1MEQ1MTFFNzlFQ0U0MDEzQzRGOUFFMDIvQjIwMTQ5NkVG M0EzMTFFQzg4MDRGRTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEAHrJFQMEAHrJFgMEAMpGJwMEAMpGLjANBgkqhkiG9w0B AQsFAAOCAQEAGGYiGnyJH+eqv7p7gofWrdQmvMVygXnB2Sw6KyS+VZbKIKlsk9Hf E1gn4WWiMtMyw8DzwhrGEoWIvCDirncuErNCqMeHhWcEFPQB63qCsLA7t80Wmu3q EzA63cXJ5fy5eVghJ3W8hK1BT76KsxGLTgMFp5rah0VWskL+dFFrtOU9KWoVSMnZ DVAGumLwfnhTawzicYlzQNwMyZa7K5URXBT4/kBVlN8GXK/za3WrRVFWEhXiYEv+ M47HUl0fXISlm4mxuFpLsYHHFhvAs8/ccS4GuATW3emJJ+gx4YDxbN+FGMr6xlkg 1LkC9HCVjnMoz5j8lxzZ0wZOHf8JCG33Lg== -----END CERTIFICATE-----Generated at Tue Jun 3 23:35:52 2025 by rpki-client