$ rpki-client -vvf rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/E7584B4C86A211EE9791E012C4F9AE02.roa File: E7584B4C86A211EE9791E012C4F9AE02.roa (raw, json) Hash identifier: RSFBrcUB82s0UoBxBM98+yUNvaLcAoEBour0Tf8ih9A= Subject key identifier: BE:4D:17:DE:5A:DB:E2:5A:D1:AF:7A:81:32:B5:EA:07:92:25:D9:0A Certificate issuer: /CN=A91619D8/serialNumber=BCF2C8ADBC33E27E5C7674A66DA865BF5AA66BE5 Certificate serial: 0594 Authority key identifier: BC:F2:C8:AD:BC:33:E2:7E:5C:76:74:A6:6D:A8:65:BF:5A:A6:6B:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPLIrbwz4n5cdnSmbahlv1qma-U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/E7584B4C86A211EE9791E012C4F9AE02.roa Signing time: Sat 17 May 2025 00:13:58 +0000 ROA not before: Sat 17 May 2025 00:13:58 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17411 IP address blocks: 58.147.128.0/20 maxlen: 24 58.147.144.0/21 maxlen: 24 58.147.152.0/22 maxlen: 24 58.147.157.0/24 maxlen: 24 125.213.192.0/20 maxlen: 24 125.213.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/vPLIrbwz4n5cdnSmbahlv1qma-U.crl rsync://rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/vPLIrbwz4n5cdnSmbahlv1qma-U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPLIrbwz4n5cdnSmbahlv1qma-U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 23:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1428 (0x594) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91619D8, serialNumber=BCF2C8ADBC33E27E5C7674A66DA865BF5AA66BE5 Validity Not Before: May 17 00:13:58 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6827d4c5-5e21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:0a:3e:af:19:89:cb:b9:14:fc:42:44:21:e5: fa:12:04:3e:2c:6d:e3:82:1d:72:dc:57:6b:70:96: eb:44:6b:cc:bd:1b:14:cf:fa:af:1e:23:43:52:4d: 92:4c:26:26:a3:fe:c5:1e:4c:e0:11:ec:ea:a9:2a: 13:ff:46:a8:3b:33:19:86:8b:ef:b7:42:72:70:6e: e1:96:33:64:5d:c2:6a:1c:ce:72:64:0b:03:ab:e2: 26:d2:50:78:fe:0b:6e:ac:e2:ad:39:e5:ab:1a:f6: 42:d9:4d:54:3c:f5:16:7c:07:35:5e:ea:e8:5c:75: d4:c6:00:0c:b2:e5:c4:f1:ab:9f:0b:0e:bf:6c:85: 33:40:ec:11:89:55:84:e5:dc:d2:ea:04:47:a5:84: 2e:7a:fe:43:a2:07:eb:6e:69:f2:a9:11:92:75:88: 0f:73:0a:2c:b2:26:58:e8:48:a4:68:b2:a6:13:7c: f5:92:9e:f0:51:42:99:b4:30:3d:72:11:86:2a:b4: 2a:c5:9b:bc:c1:46:f1:d1:69:f9:ae:6f:96:6c:a7: 26:53:e9:a0:58:fa:d1:eb:f2:d5:1f:3f:8a:c6:0d: 2a:05:59:29:34:20:5f:fc:8f:6a:45:ae:90:b4:24: 58:76:11:17:8b:1a:a5:dd:ff:11:e4:b9:b8:88:4e: 15:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:4D:17:DE:5A:DB:E2:5A:D1:AF:7A:81:32:B5:EA:07:92:25:D9:0A X509v3 Authority Key Identifier: keyid:BC:F2:C8:AD:BC:33:E2:7E:5C:76:74:A6:6D:A8:65:BF:5A:A6:6B:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/vPLIrbwz4n5cdnSmbahlv1qma-U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPLIrbwz4n5cdnSmbahlv1qma-U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91619D8/3558D1C6E43A11EBAC8D501AC4F9AE02/E7584B4C86A211EE9791E012C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.147.128.0-58.147.155.255 58.147.157.0/24 125.213.192.0/19 Signature Algorithm: sha256WithRSAEncryption 10:37:a9:bc:6c:8e:33:37:7d:8b:ac:69:27:5d:01:7c:2f:94: 47:e2:2d:11:c2:51:e6:a0:3c:c3:49:77:55:9b:81:9f:e7:a6: c3:85:71:b9:3f:f9:20:51:9c:a1:55:cf:c7:0b:77:32:90:7c: 00:f4:5a:61:13:32:a5:13:f6:ce:87:15:a2:14:a0:ac:da:4c: 60:9e:00:f6:0a:18:6f:9f:e3:30:53:11:c3:07:d9:a7:83:fb: 81:0a:f7:e9:19:3a:22:ab:06:ec:4b:ad:d3:f0:aa:26:28:11: 3a:52:42:67:14:63:96:aa:00:67:88:21:cd:f2:f8:8e:ee:a0: 40:c1:a1:b1:55:ec:fb:7c:a7:9c:bd:c4:5f:7a:89:6f:c5:d5: aa:69:db:57:e1:da:0d:b2:44:b3:ae:dc:78:7e:f8:e5:32:65: 53:be:41:69:0e:e0:41:5d:1e:67:65:43:b3:77:76:0a:ea:7d: a9:2c:37:fa:87:8a:db:18:a9:e9:2f:a0:d5:29:57:da:d2:b5: 7c:88:c2:63:18:d7:41:25:c7:29:00:5f:68:fa:1b:ca:d1:47: a0:dd:08:f0:a6:54:ec:56:c9:d0:45:60:38:de:60:3b:82:4f: a9:60:ec:26:cc:47:2e:37:e8:ca:a3:28:ec:9d:fb:58:3f:8f: e0:93:d6:bf -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICBZQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE5RDgxMTAvBgNVBAUTKEJDRjJDOEFEQkMzM0UyN0U1Qzc2NzRBNjZEQTg2NUJG NUFBNjZCRTUwHhcNMjUwNTE3MDAxMzU4WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3ZDRjNS01ZTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArQo+rxmJy7kU/EJEIeX6EgQ+LG3jgh1y3FdrcJbrRGvMvRsUz/qvHiNDUk2S TCYmo/7FHkzgEezqqSoT/0aoOzMZhovvt0JycG7hljNkXcJqHM5yZAsDq+Im0lB4 /gturOKtOeWrGvZC2U1UPPUWfAc1XuroXHXUxgAMsuXE8aufCw6/bIUzQOwRiVWE 5dzS6gRHpYQuev5DogfrbmnyqRGSdYgPcwossiZY6EikaLKmE3z1kp7wUUKZtDA9 chGGKrQqxZu8wUbx0Wn5rm+WbKcmU+mgWPrR6/LVHz+Kxg0qBVkpNCBf/I9qRa6Q tCRYdhEXixql3f8R5Lm4iE4V7QIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFL5NF95a 2+Ja0a96gTK16geSJdkKMB8GA1UdIwQYMBaAFLzyyK28M+J+XHZ0pm2oZb9apmvl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTlEOC8zNTU4RDFDNkU0 M0ExMUVCQUM4RDUwMUFDNEY5QUUwMi92UExJcmJ3ejRuNWNkblNtYmFobHYxcW1h LVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQTElyYnd6NG41Y2RuU21iYWhsdjFxbWEtVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE5RDgvMzU1OEQxQzZFNDNBMTFFQkFDOEQ1MDFBQzRGOUFFMDIvRTc1ODRCNEM4 NkEyMTFFRTk3OTFFMDEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEBzqTgAMEAjqTmAMEADqTnQMEBX3VwDANBgkqhkiG9w0B AQsFAAOCAQEAEDepvGyOMzd9i6xpJ10BfC+UR+ItEcJR5qA8w0l3VZuBn+emw4Vx uT/5IFGcoVXPxwt3MpB8APRaYRMypRP2zocVohSgrNpMYJ4A9goYb5/jMFMRwwfZ p4P7gQr36Rk6IqsG7Eut0/CqJigROlJCZxRjlqoAZ4ghzfL4ju6gQMGhsVXs+3yn nL3EX3qJb8XVqmnbV+HaDbJEs67ceH745TJlU75BaQ7gQV0eZ2VDs3d2Cup9qSw3 +oeK2xip6S+g1SlX2tK1fIjCYxjXQSXHKQBfaPobytFHoN0I8KZU7FbJ0EVgON5g O4JPqWDsJsxHLjfoyqMo7J37WD+P4JPWvw== -----END CERTIFICATE-----Generated at Mon Jun 2 06:51:31 2025 by rpki-client