$ rpki-client -vvf rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AF96D07C2A4111EBA1B1BB3DC4F9AE02.roa File: AF96D07C2A4111EBA1B1BB3DC4F9AE02.roa (raw, json) Hash identifier: OUr5YhEI5I46t9dp5HHmzabUoP4eaFJHW5ko53IBkdo= Subject key identifier: A7:6E:3A:AE:5B:D1:0B:70:36:A7:3F:01:12:A0:D1:F0:D2:FE:DA:6B Certificate issuer: /CN=A914DC5D/serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Certificate serial: 0886 Authority key identifier: 20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AF96D07C2A4111EBA1B1BB3DC4F9AE02.roa Signing time: Tue 20 May 2025 21:50:52 +0000 ROA not before: Tue 20 May 2025 21:50:52 +0000 ROA not after: Wed 30 Sep 2026 00:00:00 +0000 asID: 24083 IP address blocks: 210.4.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2182 (0x886) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914DC5D, serialNumber=20F2531A7BA8212D2BB0900D576372D33F846928 Validity Not Before: May 20 21:50:52 2025 GMT Not After : Sep 30 00:00:00 2026 GMT Subject: CN=682cf93c-1b1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:bf:e1:1b:03:f9:ba:30:21:65:09:04:2a:ae: 63:8a:a8:6f:03:04:f3:7f:e9:b6:f6:12:74:5d:62: 8d:6d:60:05:dc:53:42:d7:35:46:ea:38:05:b2:41: 7a:91:2a:b7:c6:08:7d:6e:13:7b:a0:7d:24:ed:64: cf:41:b0:90:82:48:34:91:b0:ef:d5:7b:86:d2:5f: 2f:e8:bc:0d:f2:0d:f1:29:9e:9d:59:50:4a:d9:27: 8f:f7:e1:e3:4e:6b:d4:9f:22:00:51:1c:6e:6b:df: 4e:e1:b4:0c:d7:62:a0:8e:ad:73:89:dc:bd:d4:87: cb:29:4d:82:40:e6:8d:e5:02:a3:7c:dd:52:01:e4: f5:ab:6e:ff:d6:3f:14:c4:49:de:66:f9:02:ba:67: 25:6c:7c:8f:94:fc:d5:19:d2:0c:6d:29:f2:03:2a: b6:f2:33:22:d5:d0:fc:26:a5:a2:45:e3:ec:15:dd: 82:a2:4b:c2:b9:ba:66:f6:20:b5:f0:f3:f1:29:3e: a0:2d:0b:3f:e6:47:d3:4f:4e:4a:5f:b4:a2:a1:ae: 67:dd:17:13:5d:a0:02:51:25:d3:9d:6a:e6:00:15: 67:5a:97:ab:1c:0e:57:6b:f0:60:99:70:30:4f:1f: 7f:8b:00:7d:84:1e:3d:16:10:f1:4b:da:66:83:4d: ab:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:6E:3A:AE:5B:D1:0B:70:36:A7:3F:01:12:A0:D1:F0:D2:FE:DA:6B X509v3 Authority Key Identifier: keyid:20:F2:53:1A:7B:A8:21:2D:2B:B0:90:0D:57:63:72:D3:3F:84:69:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/IPJTGnuoIS0rsJANV2Ny0z-EaSg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPJTGnuoIS0rsJANV2Ny0z-EaSg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914DC5D/39E7146C2A3311EB929DC07CC4F9AE02/AF96D07C2A4111EBA1B1BB3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.4.139.0/24 Signature Algorithm: sha256WithRSAEncryption ca:f4:0f:93:b5:93:b8:72:0c:da:2f:7a:f4:40:75:c2:95:c1: f6:b3:ee:34:4c:30:06:a9:86:46:7f:10:13:f5:6c:92:d8:73: 3b:b0:76:c9:fd:9b:9e:8e:52:64:30:25:9f:eb:6f:4f:fc:81: 0b:b1:90:55:6e:22:0f:27:b8:14:9f:d1:14:b1:89:86:4a:f3: 1a:95:12:cf:b6:33:e6:9c:7a:3f:72:48:7a:2a:8f:b1:07:79: 69:2c:a2:ff:6c:24:5f:31:25:6f:7d:bb:d9:bb:c8:f8:7a:2b: 28:ff:0d:2e:73:df:f0:69:1b:c3:b1:4b:98:9c:a8:15:e4:af: 19:01:ac:a5:47:24:ea:c8:05:bf:af:e4:4e:9e:f7:ef:19:b5: ab:89:0b:c7:23:4a:4e:4a:ab:1b:79:f9:5e:2e:3f:8f:da:c0: 3b:67:9d:bf:26:8e:4d:9c:a7:a5:d7:e2:c2:96:ab:8d:88:09: a7:8a:ed:73:0d:2f:c4:01:d5:cb:ad:8b:e8:ee:93:8a:fd:24: c7:a5:79:f6:87:71:bc:7f:03:49:d8:9d:dc:f7:b6:c8:52:14: 47:3d:1b:3f:b4:06:80:a9:03:ae:89:8e:bb:dc:c9:80:da:8e: 7c:9e:64:e7:8f:2e:ee:68:ae:0b:94:72:8b:bd:69:9a:53:77: 23:09:3d:e6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NERDNUQxMTAvBgNVBAUTKDIwRjI1MzFBN0JBODIxMkQyQkIwOTAwRDU3NjM3MkQz M0Y4NDY5MjgwHhcNMjUwNTIwMjE1MDUyWhcNMjYwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJjZjkzYy0xYjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2r/hGwP5ujAhZQkEKq5jiqhvAwTzf+m29hJ0XWKNbWAF3FNC1zVG6jgFskF6 kSq3xgh9bhN7oH0k7WTPQbCQgkg0kbDv1XuG0l8v6LwN8g3xKZ6dWVBK2SeP9+Hj TmvUnyIAURxua99O4bQM12Kgjq1zidy91IfLKU2CQOaN5QKjfN1SAeT1q27/1j8U xEneZvkCumclbHyPlPzVGdIMbSnyAyq28jMi1dD8JqWiRePsFd2CokvCubpm9iC1 8PPxKT6gLQs/5kfTT05KX7Sioa5n3RcTXaACUSXTnWrmABVnWperHA5Xa/BgmXAw Tx9/iwB9hB49FhDxS9pmg02r7wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKduOq5b 0QtwNqc/ARKg0fDS/tprMB8GA1UdIwQYMBaAFCDyUxp7qCEtK7CQDVdjctM/hGko MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0REM1RC8zOUU3MTQ2QzJB MzMxMUVCOTI5REMwN0NDNEY5QUUwMi9JUEpUR251b0lTMHJzSkFOVjJOeTB6LUVh U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lQSlRHbnVvSVMwcnNKQU5WMk55MHotRWFTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NERDNUQvMzlFNzE0NkMyQTMzMTFFQjkyOURDMDdDQzRGOUFFMDIvQUY5NkQwN0My QTQxMTFFQkExQjFCQjNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADSBIswDQYJKoZIhvcNAQELBQADggEBAMr0D5O1k7hyDNov evRAdcKVwfaz7jRMMAaphkZ/EBP1bJLYczuwdsn9m56OUmQwJZ/rb0/8gQuxkFVu Ig8nuBSf0RSxiYZK8xqVEs+2M+acej9ySHoqj7EHeWksov9sJF8xJW99u9m7yPh6 Kyj/DS5z3/BpG8OxS5icqBXkrxkBrKVHJOrIBb+v5E6e9+8ZtauJC8cjSk5Kqxt5 +V4uP4/awDtnnb8mjk2cp6XX4sKWq42ICaeK7XMNL8QB1cuti+juk4r9JMelefaH cbx/A0nYndz3tshSFEc9Gz+0BoCpA66JjrvcyYDajnyeZOePLu5orguUcou9aZpT dyMJPeY= -----END CERTIFICATE-----Generated at Wed Jun 4 00:09:24 2025 by rpki-client