$ rpki-client -vvf rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/90798692AA0A11EA89D5161EC4F9AE02.roa File: 90798692AA0A11EA89D5161EC4F9AE02.roa (raw, json) Hash identifier: SjfL0z+V8r1mG2yvSd88vw9Fy41PjMV8KGz6ODEkn2g= Subject key identifier: 0C:ED:EA:33:61:83:DE:43:A5:F3:0D:2F:46:9C:4B:3B:2C:93:FB:4D Certificate issuer: /CN=A916B4B7/serialNumber=CAA969FF3774BCD9ED602773D29D878BC4E2656B Certificate serial: 08EA Authority key identifier: CA:A9:69:FF:37:74:BC:D9:ED:60:27:73:D2:9D:87:8B:C4:E2:65:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqlp_zd0vNntYCdz0p2Hi8TiZWs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/90798692AA0A11EA89D5161EC4F9AE02.roa Signing time: Wed 30 Apr 2025 20:29:37 +0000 ROA not before: Wed 30 Apr 2025 20:29:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 38567 IP address blocks: 202.45.149.0/24 maxlen: 24 203.14.176.0/24 maxlen: 24 2001:df0:65::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/yqlp_zd0vNntYCdz0p2Hi8TiZWs.crl rsync://rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/yqlp_zd0vNntYCdz0p2Hi8TiZWs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqlp_zd0vNntYCdz0p2Hi8TiZWs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 20:26:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2282 (0x8ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916B4B7, serialNumber=CAA969FF3774BCD9ED602773D29D878BC4E2656B Validity Not Before: Apr 30 20:29:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68128831-798b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:db:9c:89:72:3c:64:6f:8f:b7:ad:ed:9a:6f: ac:5a:11:09:5a:96:a9:7b:04:19:a9:52:6d:62:0e: 2a:8f:ea:00:dd:71:0b:a3:39:96:90:d7:a9:ba:8d: 46:b7:14:df:af:1d:1f:95:c1:c9:dc:4a:18:e2:c8: 94:7b:e7:f9:31:1a:f9:e3:c8:79:dd:46:12:b4:6b: 24:65:03:78:8c:d1:1d:d7:e5:74:57:05:0c:e4:e8: 9d:80:30:1a:f5:07:ec:6e:93:f7:cd:e4:cf:84:2a: 64:7a:d6:b8:56:cd:86:0f:0c:db:ed:cd:8e:8b:99: e0:3b:67:c3:da:c9:9e:05:c4:98:11:d2:a8:5c:6b: 80:ab:5d:ab:e8:fc:01:11:93:97:9c:80:07:1c:a2: 0a:b9:8e:73:bd:56:d6:ca:f1:48:b4:0b:c4:eb:88: 00:dd:11:04:ad:d5:fe:29:7c:b0:12:5e:7f:93:9e: 3f:e1:32:15:c0:fe:6d:73:78:c4:f9:77:90:0d:75: 61:23:00:7d:47:60:10:5e:27:eb:a1:51:67:71:de: 6d:1f:1d:5f:8c:2e:c9:bd:8b:7a:89:8b:e0:8f:fd: 6d:b3:8a:88:2c:09:63:83:12:20:13:38:22:9b:87: a8:b8:d0:4b:53:a7:90:3c:3b:7a:6c:f0:84:c8:6c: b4:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:ED:EA:33:61:83:DE:43:A5:F3:0D:2F:46:9C:4B:3B:2C:93:FB:4D X509v3 Authority Key Identifier: keyid:CA:A9:69:FF:37:74:BC:D9:ED:60:27:73:D2:9D:87:8B:C4:E2:65:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/yqlp_zd0vNntYCdz0p2Hi8TiZWs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqlp_zd0vNntYCdz0p2Hi8TiZWs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916B4B7/0972C740AA0911EA8FE3B61BC4F9AE02/90798692AA0A11EA89D5161EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.45.149.0/24 203.14.176.0/24 IPv6: 2001:df0:65::/48 Signature Algorithm: sha256WithRSAEncryption 32:e2:01:b8:8c:5d:9d:54:ed:ea:7d:96:df:16:ea:a3:7a:14: 67:0d:d5:01:42:77:26:9e:40:0b:f2:47:c7:92:5a:93:0d:24: 1d:db:d2:b8:70:c3:87:89:2a:5a:16:c5:b7:6b:2d:0c:a0:d2: 60:a6:9c:42:e9:ac:c9:94:df:2b:9c:9f:1c:9b:c8:f2:53:df: 74:29:ed:bb:24:0f:b3:a8:f5:7d:62:c1:7c:45:fc:fe:aa:f6: a8:ed:37:05:c5:e4:2f:3b:b3:d4:22:86:81:bb:fc:a1:01:9d: da:29:88:d9:f2:32:62:4b:10:e6:7f:14:b8:ce:7c:eb:43:33: 32:91:a6:36:6c:92:b7:ad:31:82:2b:6b:21:66:97:ad:43:80: 98:d7:ed:9c:0d:c6:6c:39:5f:1f:1d:ec:e6:bd:4c:1f:d5:f4: 16:a9:56:f0:c2:29:fe:19:7a:d6:cc:d8:1f:af:c5:74:c0:15: 6e:26:35:d9:0c:c2:4f:6f:06:d8:51:49:1a:e2:f6:ca:67:d5: af:ea:9f:4c:f4:b9:21:c8:56:9a:d2:5c:3f:ee:c5:ad:9a:de: 18:92:26:95:30:89:4b:8c:ca:5e:55:f0:97:8b:e6:db:4d:b6: 2b:d5:01:37:93:cd:61:58:a9:fc:15:ff:4f:df:d9:9f:2a:4e: ce:32:98:34 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkI0QjcxMTAvBgNVBAUTKENBQTk2OUZGMzc3NEJDRDlFRDYwMjc3M0QyOUQ4NzhC QzRFMjY1NkIwHhcNMjUwNDMwMjAyOTM3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyODgzMS03OThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqduciXI8ZG+Pt63tmm+sWhEJWpapewQZqVJtYg4qj+oA3XELozmWkNepuo1G txTfrx0flcHJ3EoY4siUe+f5MRr548h53UYStGskZQN4jNEd1+V0VwUM5OidgDAa 9QfsbpP3zeTPhCpketa4Vs2GDwzb7c2Oi5ngO2fD2smeBcSYEdKoXGuAq12r6PwB EZOXnIAHHKIKuY5zvVbWyvFItAvE64gA3REErdX+KXywEl5/k54/4TIVwP5tc3jE +XeQDXVhIwB9R2AQXifroVFncd5tHx1fjC7JvYt6iYvgj/1ts4qILAljgxIgEzgi m4eouNBLU6eQPDt6bPCEyGy0XwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFAzt6jNh g95DpfMNL0acSzssk/tNMB8GA1UdIwQYMBaAFMqpaf83dLzZ7WAnc9Kdh4vE4mVr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QjRCNy8wOTcyQzc0MEFB MDkxMUVBOEZFM0I2MUJDNEY5QUUwMi95cWxwX3pkMHZObnRZQ2R6MHAySGk4VGla V3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lxbHBfemQwdk5udFlDZHowcDJIaThUaVpXcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkI0QjcvMDk3MkM3NDBBQTA5MTFFQThGRTNCNjFCQzRGOUFFMDIvOTA3OTg2OTJB QTBBMTFFQTg5RDUxNjFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBADKLZUDBADLDrAwDwQCAAIwCQMHACABDfAAZTANBgkqhkiG 9w0BAQsFAAOCAQEAMuIBuIxdnVTt6n2W3xbqo3oUZw3VAUJ3Jp5AC/JHx5Jakw0k HdvSuHDDh4kqWhbFt2stDKDSYKacQumsyZTfK5yfHJvI8lPfdCntuyQPs6j1fWLB fEX8/qr2qO03BcXkLzuz1CKGgbv8oQGd2imI2fIyYksQ5n8UuM5860MzMpGmNmyS t60xgitrIWaXrUOAmNftnA3GbDlfHx3s5r1MH9X0FqlW8MIp/hl61szYH6/FdMAV biY12QzCT28G2FFJGuL2ymfVr+qfTPS5IchWmtJcP+7FrZreGJImlTCJS4zKXlXw l4vm2022K9UBN5PNYVip/BX/T9/ZnypOzjKYNA== -----END CERTIFICATE-----Generated at Mon Jun 2 06:03:56 2025 by rpki-client