$ rpki-client -vvf rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/99E2D388E9C411EFAFABDD0BC4F9AE02.roa File: 99E2D388E9C411EFAFABDD0BC4F9AE02.roa (raw, json) Hash identifier: HyBY5t49VXGObL7xNBvYsj3P5DUndJz8OLCiO0M3LtI= Subject key identifier: F4:97:F7:CB:77:17:D6:66:97:F2:9E:E3:7B:79:62:B9:9E:C2:99:F5 Certificate issuer: /CN=A91627F9/serialNumber=F375476F3235DC3D525171E2BE9211638E490847 Certificate serial: 43 Authority key identifier: F3:75:47:6F:32:35:DC:3D:52:51:71:E2:BE:92:11:63:8E:49:08:47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83VHbzI13D1SUXHivpIRY45JCEc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/99E2D388E9C411EFAFABDD0BC4F9AE02.roa Signing time: Tue 27 May 2025 07:45:57 +0000 ROA not before: Tue 27 May 2025 07:45:57 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 4764 IP address blocks: 203.0.120.0/24 maxlen: 24 2001:df5:1bc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.crl rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83VHbzI13D1SUXHivpIRY45JCEc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:24:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91627F9, serialNumber=F375476F3235DC3D525171E2BE9211638E490847 Validity Not Before: May 27 07:45:57 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68356db5-a1d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:48:d0:b6:92:88:fe:0f:0a:38:e7:61:f6:3a: 8b:0f:09:d3:a6:a8:91:44:79:9d:be:ac:41:e5:3f: 19:13:f2:5f:85:4d:f7:4a:9b:9d:95:03:f5:b0:2b: b3:12:1d:7d:a3:6d:1e:70:df:84:a8:c2:5c:da:7c: 20:3b:73:ea:ac:10:d7:5e:cb:a6:d3:23:b9:c4:03: ca:00:e6:5f:49:db:eb:37:dc:0a:f5:94:f5:99:2f: d9:e0:ea:a1:db:c2:53:8c:0c:de:ad:9c:88:65:c5: d8:30:31:48:c1:6e:5c:bf:90:3c:40:a5:09:65:e8: 16:75:66:68:01:4b:37:35:0b:5f:85:55:40:cd:e7: a7:6a:92:79:86:8e:98:d1:ce:89:3a:89:7f:58:02: 8d:42:c0:79:04:d3:41:b4:9d:fd:95:b4:db:f7:fb: da:df:42:e1:74:a6:42:4a:a2:a8:ec:d4:b0:0e:a0: 44:73:a7:60:28:b3:48:12:d1:99:89:71:08:78:ca: a9:4d:6b:82:82:95:c4:e7:8d:c1:7b:c3:7f:74:40: f5:09:21:9c:6d:ad:82:c2:64:e5:24:1c:18:b7:20: 62:45:50:be:da:8c:c0:02:18:89:04:77:a9:86:af: d2:b1:80:49:43:41:c3:df:7f:67:0b:6e:8b:7f:b8: cd:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:97:F7:CB:77:17:D6:66:97:F2:9E:E3:7B:79:62:B9:9E:C2:99:F5 X509v3 Authority Key Identifier: keyid:F3:75:47:6F:32:35:DC:3D:52:51:71:E2:BE:92:11:63:8E:49:08:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/83VHbzI13D1SUXHivpIRY45JCEc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/83VHbzI13D1SUXHivpIRY45JCEc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91627F9/288DF14AE9C411EF9920930AC4F9AE02/99E2D388E9C411EFAFABDD0BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.0.120.0/24 IPv6: 2001:df5:1bc0::/48 Signature Algorithm: sha256WithRSAEncryption 43:74:ea:b1:19:1c:32:3f:fb:e5:1b:03:cd:2a:bb:e2:cb:85: fd:40:73:17:87:5b:0f:7f:f1:1c:5d:91:10:64:55:e5:49:c0: 71:3a:f5:7b:aa:8e:52:9c:29:67:14:0a:de:23:23:02:af:89: 74:14:98:5e:0b:42:82:36:6c:90:aa:61:78:44:9a:d1:5f:cc: 8b:35:17:71:43:b5:1a:f0:c5:b3:1c:fa:ab:69:df:5a:1e:79: 0b:2a:c5:e1:fa:95:ae:15:4f:fb:d5:99:0f:17:8b:5b:41:2f: 0d:19:dc:06:ce:59:28:d6:9f:a4:b4:db:fc:ad:b0:af:67:02: bd:25:25:16:cd:fc:3d:9f:e8:47:7e:a3:20:23:6c:bf:bd:ba: b6:0d:6f:71:69:f3:1f:b5:17:c1:a1:37:c3:27:d0:19:6f:34: 49:83:22:c1:c9:c8:f1:72:e0:38:c9:e7:34:52:94:b7:61:91: ee:de:1e:3d:a7:49:52:b4:c1:19:e8:f2:00:3c:3e:d2:6c:9d: b1:75:04:24:6d:51:8e:80:c0:47:9b:f6:8a:29:60:1d:dd:84: 39:91:f4:33:b7:e1:78:1c:16:df:e9:11:7c:72:1d:72:e7:ff: 8f:0c:73:05:35:d9:e5:ff:02:db:41:a4:aa:25:90:00:9e:2a: 09:aa:60:27 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MjdGOTExMC8GA1UEBRMoRjM3NTQ3NkYzMjM1REMzRDUyNTE3MUUyQkU5MjExNjM4 RTQ5MDg0NzAeFw0yNTA1MjcwNzQ1NTdaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MzU2ZGI1LWExZDEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZSNC2koj+Dwo452H2OosPCdOmqJFEeZ2+rEHlPxkT8l+FTfdKm52VA/WwK7MS HX2jbR5w34SowlzafCA7c+qsENdey6bTI7nEA8oA5l9J2+s33Ar1lPWZL9ng6qHb wlOMDN6tnIhlxdgwMUjBbly/kDxApQll6BZ1ZmgBSzc1C1+FVUDN56dqknmGjpjR zok6iX9YAo1CwHkE00G0nf2VtNv3+9rfQuF0pkJKoqjs1LAOoERzp2Aos0gS0ZmJ cQh4yqlNa4KClcTnjcF7w390QPUJIZxtrYLCZOUkHBi3IGJFUL7ajMACGIkEd6mG r9KxgElDQcPff2cLbot/uM0HAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU9Jf3y3cX 1maX8p7je3liuZ7CmfUwHwYDVR0jBBgwFoAU83VHbzI13D1SUXHivpIRY45JCEcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYyN0Y5LzI4OERGMTRBRTlD NDExRUY5OTIwOTMwQUM0RjlBRTAyLzgzVkhiekkxM0QxU1VYSGl2cElSWTQ1SkNF Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvODNWSGJ6STEzRDFTVVhIaXZwSVJZNDVKQ0VjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MjdGOS8yODhERjE0QUU5QzQxMUVGOTkyMDkzMEFDNEY5QUUwMi85OUUyRDM4OEU5 QzQxMUVGQUZBQkREMEJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAMsAeDAPBAIAAjAJAwcAIAEN9RvAMA0GCSqGSIb3DQEBCwUA A4IBAQBDdOqxGRwyP/vlGwPNKrviy4X9QHMXh1sPf/EcXZEQZFXlScBxOvV7qo5S nClnFAreIyMCr4l0FJheC0KCNmyQqmF4RJrRX8yLNRdxQ7Ua8MWzHPqrad9aHnkL KsXh+pWuFU/71ZkPF4tbQS8NGdwGzlko1p+ktNv8rbCvZwK9JSUWzfw9n+hHfqMg I2y/vbq2DW9xafMftRfBoTfDJ9AZbzRJgyLBycjxcuA4yec0UpS3YZHu3h49p0lS tMEZ6PIAPD7SbJ2xdQQkbVGOgMBHm/aKKWAd3YQ5kfQzt+F4HBbf6RF8ch1y5/+P DHMFNdnl/wLbQaSqJZAAnioJqmAn -----END CERTIFICATE-----Generated at Tue Jun 3 23:55:32 2025 by rpki-client