$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/55493366013C11ED9864F33CC4F9AE02.roa File: 55493366013C11ED9864F33CC4F9AE02.roa (raw, json) Hash identifier: Zz0XV9+8+vmeI0zGikQ8f9l71NMdTwf/sbSc3+uKywY= Subject key identifier: D6:50:EF:9A:8E:4F:C5:A9:86:65:0C:B9:1F:82:6B:E4:80:38:81:BD Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 0881 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/55493366013C11ED9864F33CC4F9AE02.roa Signing time: Tue 20 May 2025 21:50:48 +0000 ROA not before: Tue 20 May 2025 21:50:48 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 135381 IP address blocks: 202.44.217.0/24 maxlen: 24 202.44.218.0/24 maxlen: 24 202.44.229.0/24 maxlen: 24 202.44.230.0/24 maxlen: 24 202.44.231.0/24 maxlen: 24 202.44.232.0/24 maxlen: 24 202.44.233.0/24 maxlen: 24 202.44.252.0/24 maxlen: 24 202.44.255.0/24 maxlen: 24 203.150.118.0/24 maxlen: 24 203.150.121.0/24 maxlen: 24 203.150.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2177 (0x881) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D, serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: May 20 21:50:48 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=682cf938-a140 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:be:9e:22:43:b7:66:16:98:dd:cd:56:37:7f: 16:82:ac:c1:11:e7:a4:e3:98:94:37:50:2f:e7:d5: 05:88:69:f8:c6:83:79:44:76:47:d5:06:94:16:b3: e8:10:fb:b4:47:ec:aa:52:c7:a8:96:30:1b:4d:6a: b4:c6:ad:24:d4:2b:df:ec:07:b0:38:7e:b9:e9:a1: cf:e5:cd:7a:46:3a:5b:91:8d:01:37:96:2f:ec:46: 87:de:4c:14:d8:87:c7:30:52:9e:cc:34:12:c7:91: 0e:93:6e:03:81:67:91:87:ca:11:22:0b:83:5e:0c: 99:9c:96:75:36:32:61:b9:d8:1c:72:43:ff:69:4d: 31:cc:5d:a3:5b:50:ec:08:b8:05:f2:0f:96:da:68: 77:f6:4a:24:fa:28:5f:17:e5:6c:b8:40:71:7a:3f: 33:38:66:99:77:60:be:40:78:7d:56:fc:77:f0:8e: 44:70:37:2e:fa:8a:9f:0d:58:20:f4:61:33:9c:eb: 1d:f9:a8:0e:38:3d:f4:e9:9c:6d:63:1b:f5:e8:88: 7a:c2:6f:3f:ee:6e:ce:2d:17:bb:d8:45:e7:c4:a9: 55:ec:b9:e9:2a:d4:06:13:b4:df:a3:9c:a1:34:1e: 76:35:0c:b2:7b:fa:72:c7:f7:33:51:a3:1d:3a:19: 96:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:50:EF:9A:8E:4F:C5:A9:86:65:0C:B9:1F:82:6B:E4:80:38:81:BD X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/55493366013C11ED9864F33CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.44.217.0-202.44.218.255 202.44.229.0-202.44.233.255 202.44.252.0/24 202.44.255.0/24 203.150.118.0/24 203.150.121.0-203.150.122.255 Signature Algorithm: sha256WithRSAEncryption d3:e6:2c:52:6f:70:16:0f:3a:a1:61:42:a6:d5:5b:99:86:43: b5:59:a6:2e:cd:5b:7a:bc:19:e7:eb:ed:02:e5:35:63:9f:61: bf:c4:e2:c3:de:ce:8b:93:b0:16:5e:52:35:8e:b9:4b:3b:d7: a1:a4:ed:45:05:58:a3:55:12:c9:5b:76:70:53:6b:f6:84:09: 01:ad:01:f9:ce:71:8a:43:b4:cc:a3:a2:b9:65:f7:4a:68:2f: 83:c7:79:ce:18:90:99:bd:02:c2:2c:f8:96:87:f7:b5:f5:b7: a0:48:91:01:e1:cd:98:8c:ee:b6:ca:33:e8:08:d1:52:d3:e5: 0a:14:8c:c3:52:97:e6:8d:fb:8c:6f:a3:0f:7c:44:b0:ec:d0: 30:b7:91:c9:ff:17:dc:ff:6f:55:8e:55:c4:9d:df:f3:0e:7c: 56:32:3f:db:6b:2a:2a:70:65:26:df:39:5d:62:25:b1:77:cf: 99:bc:d0:b3:35:8a:3c:9d:7b:9d:99:a3:0a:c9:1b:ab:9c:fd: ce:85:de:91:16:b5:fe:13:ec:10:16:9f:ec:07:ca:e1:c9:09: 8d:73:a0:cf:ff:ba:a7:97:8e:18:c0:c1:51:3a:1e:e3:67:b1: fe:72:36:2a:8a:6f:c0:24:44:39:ec:e2:9b:eb:97:21:0f:7d: 36:d0:b6:3a -----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgICCIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjUwNTIwMjE1MDQ4WhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjZjkzOC1hMTQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn76eIkO3ZhaY3c1WN38WgqzBEeek45iUN1Av59UFiGn4xoN5RHZH1QaUFrPo EPu0R+yqUseoljAbTWq0xq0k1Cvf7AewOH656aHP5c16RjpbkY0BN5Yv7EaH3kwU 2IfHMFKezDQSx5EOk24DgWeRh8oRIguDXgyZnJZ1NjJhudgcckP/aU0xzF2jW1Ds CLgF8g+W2mh39kok+ihfF+VsuEBxej8zOGaZd2C+QHh9Vvx38I5EcDcu+oqfDVgg 9GEznOsd+agOOD306ZxtYxv16Ih6wm8/7m7OLRe72EXnxKlV7LnpKtQGE7Tfo5yh NB52NQyye/pyx/czUaMdOhmWwwIDAQABo4ICyzCCAscwHQYDVR0OBBYEFNZQ75qO T8WphmUMuR+Ca+SAOIG9MB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvNTU0OTMzNjYw MTNDMTFFRDk4NjRGMzNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVQYIKwYBBQUHAQcBAf8E RjBEMEIEAgABMDwwDAMEAMos2QMEAMos2jAMAwQAyizlAwQByizoAwQAyiz8AwQA yiz/AwQAy5Z2MAwDBADLlnkDBADLlnowDQYJKoZIhvcNAQELBQADggEBANPmLFJv cBYPOqFhQqbVW5mGQ7VZpi7NW3q8Gefr7QLlNWOfYb/E4sPezouTsBZeUjWOuUs7 16Gk7UUFWKNVEslbdnBTa/aECQGtAfnOcYpDtMyjorll90poL4PHec4YkJm9AsIs +JaH97X1t6BIkQHhzZiM7rbKM+gI0VLT5QoUjMNSl+aN+4xvow98RLDs0DC3kcn/ F9z/b1WOVcSd3/MOfFYyP9trKipwZSbfOV1iJbF3z5m80LM1ijyde52ZowrJG6uc /c6F3pEWtf4T7BAWn+wHyuHJCY1zoM//uqeXjhjAwVE6HuNnsf5yNiqKb8AkRDns 4pvrlyEPfTbQtjo= -----END CERTIFICATE-----Generated at Wed Jun 4 00:01:43 2025 by rpki-client