$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/264DBA882E9411E9A7232A19C4F9AE02.roa File: 264DBA882E9411E9A7232A19C4F9AE02.roa (raw, json) Hash identifier: R1CUbIu0V+HE4f06nI4AoF8weg5+WJaRb7OLoB74u3o= Subject key identifier: 79:46:07:53:AB:83:FA:05:B4:69:09:DF:42:B9:A1:84:B3:27:5C:F6 Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 10FF Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/264DBA882E9411E9A7232A19C4F9AE02.roa Signing time: Sat 24 May 2025 17:49:43 +0000 ROA not before: Sat 24 May 2025 17:49:43 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 18016 IP address blocks: 121.96.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 15 Jun 2025 17:13:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4351 (0x10ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC, serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: May 24 17:49:43 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=683206b7-43d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7f:91:8c:68:74:34:1a:de:cb:8d:1c:b9:d8: a1:45:72:44:e7:75:aa:43:fb:1d:23:db:1b:a0:6b: 76:e6:da:89:c5:34:bb:cc:3d:e1:56:a5:3a:63:e6: 42:58:0c:b5:ae:9c:4d:ac:4c:dc:00:51:f4:c2:92: 22:6c:ba:bb:45:08:5a:74:87:a2:26:89:a6:35:60: 42:20:1a:74:79:26:dd:e6:15:46:ea:9f:84:46:88: 1c:56:12:a7:2b:31:94:5c:5b:5c:c6:c8:36:e3:e2: fa:dc:74:c2:e0:21:49:aa:f7:cc:86:e9:54:d6:22: 19:21:22:03:f9:15:d6:91:69:6c:f2:3a:36:af:ec: 85:64:cb:6e:fd:b5:8e:98:2e:53:8c:80:9d:6e:e4: 99:2e:e5:e5:25:88:24:8f:3d:72:4b:77:dd:fa:59: 93:61:5c:1d:c4:46:6f:a0:c0:ed:09:a0:ec:80:da: 6c:7a:1b:1f:57:ff:45:23:3f:ce:69:cf:57:a9:8a: 37:cc:3d:b7:16:43:f0:25:10:73:8f:9a:32:97:c2: 72:e5:77:9d:6b:6b:db:e7:ec:0d:20:39:82:58:3a: e5:70:30:dd:25:ed:b2:29:cf:c6:f2:b7:33:63:da: 53:e2:be:e9:c2:06:36:72:e8:b0:4f:4a:af:ca:7e: 64:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:46:07:53:AB:83:FA:05:B4:69:09:DF:42:B9:A1:84:B3:27:5C:F6 X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/264DBA882E9411E9A7232A19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.96.19.0/24 Signature Algorithm: sha256WithRSAEncryption 17:7f:45:0e:d6:ec:6d:a1:aa:61:e8:39:fd:35:0c:e6:c4:c1: a7:2d:fd:21:a1:d8:dc:ff:74:b2:cd:fd:cf:46:25:33:74:26: bf:19:3b:3c:ec:74:4e:c5:43:eb:7c:3c:20:65:75:c4:c8:33: a1:a3:a8:2c:cc:59:c8:fe:4e:c4:09:27:0b:6b:0c:2c:ae:d7: 67:1f:75:2c:f8:13:fe:28:45:a9:bc:ff:80:e1:c7:17:d0:86: 6a:cf:15:4b:e1:f4:a3:cd:0c:3c:ea:26:ae:af:74:53:73:de: af:5f:ca:9d:96:25:e3:e9:a1:2f:eb:0a:0f:b6:27:13:87:c3: 04:72:4e:86:ba:d2:cf:02:02:c7:90:59:93:aa:0c:14:aa:5c: 88:75:b3:cc:89:7b:61:75:09:9f:60:f6:a5:31:94:fb:52:a5: 00:1d:f7:94:aa:1c:81:5f:22:d3:bd:bf:58:5c:76:5d:55:3e: db:69:d2:96:a6:65:33:f7:6d:ef:95:6f:08:26:c0:7c:75:82: 33:dd:45:d5:f0:4b:f0:9b:ed:07:d2:89:41:53:4b:d9:49:01: 8a:d8:fd:c5:4d:f8:8e:e1:1a:3d:59:9c:05:98:d8:dc:71:3b: 63:7b:a6:02:d8:d1:18:ad:a2:64:bd:2d:31:cb:56:af:c8:61: 36:be:d6:6b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjUwNTI0MTc0OTQzWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODMyMDZiNy00M2Q4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAun+RjGh0NBrey40cudihRXJE53WqQ/sdI9sboGt25tqJxTS7zD3hVqU6Y+ZC WAy1rpxNrEzcAFH0wpIibLq7RQhadIeiJommNWBCIBp0eSbd5hVG6p+ERogcVhKn KzGUXFtcxsg24+L63HTC4CFJqvfMhulU1iIZISID+RXWkWls8jo2r+yFZMtu/bWO mC5TjICdbuSZLuXlJYgkjz1yS3fd+lmTYVwdxEZvoMDtCaDsgNpsehsfV/9FIz/O ac9XqYo3zD23FkPwJRBzj5oyl8Jy5Xeda2vb5+wNIDmCWDrlcDDdJe2yKc/G8rcz Y9pT4r7pwgY2cuiwT0qvyn5k8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHlGB1Or g/oFtGkJ30K5oYSzJ1z2MB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5QkMvODkyODk3MzAyRTkwMTFFOTkxNzc5NjBGQzRGOUFFMDIvMjY0REJBODgy RTk0MTFFOUE3MjMyQTE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB5YBMwDQYJKoZIhvcNAQELBQADggEBABd/RQ7W7G2hqmHo Of01DObEwact/SGh2Nz/dLLN/c9GJTN0Jr8ZOzzsdE7FQ+t8PCBldcTIM6GjqCzM Wcj+TsQJJwtrDCyu12cfdSz4E/4oRam8/4DhxxfQhmrPFUvh9KPNDDzqJq6vdFNz 3q9fyp2WJePpoS/rCg+2JxOHwwRyToa60s8CAseQWZOqDBSqXIh1s8yJe2F1CZ9g 9qUxlPtSpQAd95SqHIFfItO9v1hcdl1VPttp0pamZTP3be+VbwgmwHx1gjPdRdXw S/Cb7QfSiUFTS9lJAYrY/cVN+I7hGj1ZnAWY2NxxO2N7pgLY0RitomS9LTHLVq/I YTa+1ms= -----END CERTIFICATE-----Generated at Tue Jun 10 02:57:54 2025 by rpki-client