$ rpki-client -vvf rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/DA504F0E175911EC87322F85C4F9AE02.roa File: DA504F0E175911EC87322F85C4F9AE02.roa (raw, json) Hash identifier: KQ2TYskB2nSpw60IPgL8Z4Nfyg1ScKRjQgnaDOmmNJY= Subject key identifier: 21:A9:3D:03:F0:6F:E8:61:A8:82:BF:60:FD:C0:A1:38:41:BA:F0:01 Certificate issuer: /CN=A91514B1/serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Certificate serial: 05C2 Authority key identifier: 61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/DA504F0E175911EC87322F85C4F9AE02.roa Signing time: Wed 14 May 2025 01:00:20 +0000 ROA not before: Wed 14 May 2025 01:00:20 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 4804 IP address blocks: 1.44.0.0/21 maxlen: 21 1.44.8.0/21 maxlen: 21 1.44.16.0/21 maxlen: 21 1.44.24.0/21 maxlen: 21 1.44.32.0/21 maxlen: 21 1.44.40.0/21 maxlen: 21 1.44.48.0/21 maxlen: 21 1.44.56.0/21 maxlen: 21 61.88.184.0/24 maxlen: 24 61.88.185.0/24 maxlen: 24 61.88.186.0/24 maxlen: 24 61.88.190.0/24 maxlen: 24 119.225.240.0/21 maxlen: 21 119.225.248.0/21 maxlen: 21 202.139.72.0/22 maxlen: 22 203.2.75.0/24 maxlen: 24 203.10.68.0/24 maxlen: 24 203.202.52.0/24 maxlen: 24 203.202.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 23:43:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1474 (0x5c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91514B1, serialNumber=6171432D5594CB3F608D3BE0F52600BBEC46E5FB Validity Not Before: May 14 01:00:20 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6823eb24-cbb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9e:cc:5c:92:42:77:b1:a1:a7:e5:f0:c3:84: cc:46:66:13:74:6b:53:03:0c:f9:97:5e:ec:81:20: ca:a5:e8:0f:d9:fa:33:3e:07:54:8c:ca:10:47:ea: b7:8c:93:39:41:24:3c:3e:65:f4:4e:f9:10:dc:2d: 02:94:31:2b:35:52:79:2c:71:6a:7c:1f:e3:24:b4: cb:1c:77:f2:58:57:45:e7:23:b2:9d:88:86:fe:29: 57:d1:30:d8:67:12:21:ea:cf:06:6d:b6:6a:c6:7f: b1:ae:ef:0f:50:c2:44:c2:97:37:71:57:12:d2:b9: 78:26:0f:40:04:20:0d:23:21:bb:af:01:b8:6a:f5: 24:cf:9f:0f:f3:61:fd:aa:6e:cb:65:31:07:e7:3e: c7:d0:53:9b:ad:76:f2:2b:46:04:f4:ef:ba:58:da: a3:18:4f:c4:11:a6:f0:83:14:7e:fd:92:2c:a6:55: d7:b6:8f:b6:d0:df:5e:06:23:94:43:7e:56:d3:30: 8e:8c:f3:7d:9a:16:0b:95:75:a6:03:7c:df:60:0c: 10:ca:80:4e:f1:38:28:5a:b3:8e:1f:eb:ec:80:8d: f8:24:db:7d:70:30:61:b8:b0:27:15:0d:28:04:68: 9d:bc:61:67:68:27:ed:fb:79:8a:20:a8:e0:32:b0: b8:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:A9:3D:03:F0:6F:E8:61:A8:82:BF:60:FD:C0:A1:38:41:BA:F0:01 X509v3 Authority Key Identifier: keyid:61:71:43:2D:55:94:CB:3F:60:8D:3B:E0:F5:26:00:BB:EC:46:E5:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/YXFDLVWUyz9gjTvg9SYAu-xG5fs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YXFDLVWUyz9gjTvg9SYAu-xG5fs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91514B1/84189226FBE411EB82B6264FC4F9AE02/DA504F0E175911EC87322F85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.44.0.0/18 61.88.184.0-61.88.186.255 61.88.190.0/24 119.225.240.0/20 202.139.72.0/22 203.2.75.0/24 203.10.68.0/24 203.202.52.0/23 Signature Algorithm: sha256WithRSAEncryption 16:49:5c:9c:0a:54:28:9c:a3:15:da:6d:e7:a0:9a:e3:71:02: 6f:b5:7f:b0:b5:81:bc:b9:36:96:40:44:0f:4c:7e:a0:f9:bd: 84:35:dc:a8:d0:05:38:d8:14:47:03:c9:07:46:b8:11:1e:b2: 00:3c:8c:3a:a5:08:95:da:40:8e:74:0b:98:e1:e9:d2:32:ee: fa:b5:8f:b6:c2:22:73:dd:3f:86:0a:fb:3e:b2:2c:94:29:35: c6:de:13:ca:bc:b4:2d:9a:7d:e9:49:6b:2a:6a:99:b6:c5:02: aa:81:7d:d1:d0:7d:2b:df:3b:a2:9a:79:c2:5a:1c:5a:57:01: 36:95:fd:ad:23:d4:45:31:17:c5:ff:28:2e:6b:f9:73:eb:f5: 7e:b0:61:2e:c5:fb:3d:ea:af:0e:91:e3:3a:96:02:5b:28:55: 44:60:3d:d2:72:65:51:33:fb:f1:aa:a9:f3:f5:4b:94:bf:eb: 42:29:dd:da:c1:1a:2e:39:9d:21:87:55:52:25:0a:df:c7:b1: 59:07:e7:2a:18:7c:c9:3a:57:e3:96:32:4b:17:72:8f:c2:32: 13:db:07:76:a9:10:ec:ec:cb:70:83:91:23:01:e7:08:74:36: 84:64:09:4f:f6:bb:1c:9e:a8:14:a9:62:40:3a:36:e9:61:0e: 87:6e:a8:76 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgICBcIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTE0QjExMTAvBgNVBAUTKDYxNzE0MzJENTU5NENCM0Y2MDhEM0JFMEY1MjYwMEJC RUM0NkU1RkIwHhcNMjUwNTE0MDEwMDIwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODIzZWIyNC1jYmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJ7MXJJCd7Ghp+Xww4TMRmYTdGtTAwz5l17sgSDKpegP2fozPgdUjMoQR+q3 jJM5QSQ8PmX0TvkQ3C0ClDErNVJ5LHFqfB/jJLTLHHfyWFdF5yOynYiG/ilX0TDY ZxIh6s8GbbZqxn+xru8PUMJEwpc3cVcS0rl4Jg9ABCANIyG7rwG4avUkz58P82H9 qm7LZTEH5z7H0FObrXbyK0YE9O+6WNqjGE/EEabwgxR+/ZIsplXXto+20N9eBiOU Q35W0zCOjPN9mhYLlXWmA3zfYAwQyoBO8TgoWrOOH+vsgI34JNt9cDBhuLAnFQ0o BGidvGFnaCft+3mKIKjgMrC4vQIDAQABo4ICxzCCAsMwHQYDVR0OBBYEFCGpPQPw b+hhqIK/YP3AoThBuvABMB8GA1UdIwQYMBaAFGFxQy1VlMs/YI074PUmALvsRuX7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTRCMS84NDE4OTIyNkZC RTQxMUVCODJCNjI2NEZDNEY5QUUwMi9ZWEZETFZXVXl6OWdqVHZnOVNZQXUteEc1 ZnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lYRkRMVldVeXo5Z2pUdmc5U1lBdS14RzVmcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTE0QjEvODQxODkyMjZGQkU0MTFFQjgyQjYyNjRGQzRGOUFFMDIvREE1MDRGMEUx NzU5MTFFQzg3MzIyRjg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUQYIKwYBBQUHAQcBAf8E QjBAMD4EAgABMDgDBAYBLAAwDAMEAz1YuAMEAD1YugMEAD1YvgMEBHfh8AMEAsqL SAMEAMsCSwMEAMsKRAMEAcvKNDANBgkqhkiG9w0BAQsFAAOCAQEAFklcnApUKJyj Fdpt56Ca43ECb7V/sLWBvLk2lkBED0x+oPm9hDXcqNAFONgURwPJB0a4ER6yADyM OqUIldpAjnQLmOHp0jLu+rWPtsIic90/hgr7PrIslCk1xt4Tyry0LZp96UlrKmqZ tsUCqoF90dB9K987opp5wlocWlcBNpX9rSPURTEXxf8oLmv5c+v1frBhLsX7Peqv DpHjOpYCWyhVRGA90nJlUTP78aqp8/VLlL/rQind2sEaLjmdIYdVUiUK38exWQfn Khh8yTpX45YySxdyj8IyE9sHdqkQ7OzLcIORIwHnCHQ2hGQJT/a7HJ6oFKliQDo2 6WEOh26odg== -----END CERTIFICATE-----Generated at Mon Jun 2 07:11:43 2025 by rpki-client