$ rpki-client -vvf rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/5870952EC53011EA98D1D651C4F9AE02.roa File: 5870952EC53011EA98D1D651C4F9AE02.roa (raw, json) Hash identifier: aDxTmBiu7r/Tn9jcjNLK8UcWaXq5NN3ow+MDjn+I+ck= Subject key identifier: 43:69:29:84:7B:4B:36:EF:74:C8:C5:3D:6D:76:52:6C:DB:E7:C0:1E Certificate issuer: /CN=A91709BC/serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Certificate serial: 10FD Authority key identifier: 36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/5870952EC53011EA98D1D651C4F9AE02.roa Signing time: Sat 24 May 2025 17:49:41 +0000 ROA not before: Sat 24 May 2025 17:49:41 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 10141 IP address blocks: 121.97.36.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 17:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4349 (0x10fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91709BC, serialNumber=36EE8A401305EB38E28D86A5DB7F7628AAB7E24F Validity Not Before: May 24 17:49:41 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=683206b5-1c9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:39:9b:09:a2:e6:70:0f:d0:33:4a:ad:0b:4f: 7c:7c:17:8d:34:9a:13:87:df:74:f3:48:00:27:ea: 06:86:6c:8d:97:f7:c4:ca:10:fe:18:a0:95:8b:a4: 98:fd:77:63:c2:68:3b:74:8a:f3:75:8f:07:00:93: 94:3d:44:c3:6a:9c:e2:1d:94:cb:e1:40:58:89:fc: 1e:9a:7d:22:54:11:4f:ce:54:9c:d6:fe:72:c9:c4: ce:a4:dc:96:8b:71:90:51:f9:9a:e8:e1:07:bd:c2: 51:9a:dd:22:85:46:af:d3:79:79:26:fa:1c:51:2c: a6:d3:45:35:05:01:67:bb:c8:34:61:b0:74:35:02: bc:f8:91:50:61:df:ca:9d:37:9a:f1:e7:5b:b5:ef: 86:a1:27:2e:51:25:dd:01:7e:bb:39:74:e9:e7:0d: 2a:74:52:d1:e2:9f:77:35:99:05:8a:b4:24:f7:41: 43:d5:a6:b0:01:1d:43:9c:47:7e:88:9f:cb:35:e7: 2f:f0:0a:c8:9d:5b:95:b3:be:9a:cb:ea:f7:17:0a: ba:3e:f7:4e:5c:83:31:e4:fb:de:b5:4b:39:8e:03: e0:dc:65:ac:a2:7e:fa:72:34:19:ad:b7:c4:8f:0e: 2d:e7:56:ec:87:d2:84:ed:c4:13:55:02:e3:24:72: dd:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:69:29:84:7B:4B:36:EF:74:C8:C5:3D:6D:76:52:6C:DB:E7:C0:1E X509v3 Authority Key Identifier: keyid:36:EE:8A:40:13:05:EB:38:E2:8D:86:A5:DB:7F:76:28:AA:B7:E2:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/Nu6KQBMF6zjijYal2392KKq34k8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Nu6KQBMF6zjijYal2392KKq34k8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91709BC/892897302E9011E99177960FC4F9AE02/5870952EC53011EA98D1D651C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 121.97.36.0/24 Signature Algorithm: sha256WithRSAEncryption 74:91:c7:f5:21:11:84:eb:c5:b4:e2:bf:76:3b:2f:e1:46:71: fa:e4:38:a2:c5:4a:86:a5:2e:b2:f0:01:53:ec:40:67:1a:c7: 74:ba:d3:26:60:b1:de:2f:4f:b9:f0:6c:8b:b0:59:cf:aa:99: d8:c2:ba:de:59:15:31:50:35:9b:44:2b:20:43:e7:d5:fd:0c: 67:c5:b3:c4:b5:f3:99:03:5c:6c:46:ed:7b:10:7c:f0:63:25: 67:dc:b8:2d:1a:b4:00:ab:1f:29:a4:07:6b:21:e8:bc:0a:5f: 19:8e:22:87:a4:de:cb:3c:56:df:02:a8:d8:3a:08:04:ef:10: 87:60:53:67:6d:5c:a5:fc:60:aa:70:6d:34:66:80:81:a4:61: 7f:4e:26:f9:f0:89:da:16:7c:88:f6:31:f1:31:f7:7e:e0:1b: 41:4b:39:8b:e6:e3:ad:ec:df:d1:42:9f:f9:37:f5:fe:cb:36: da:94:f1:a6:62:13:34:83:af:40:f4:6c:b2:31:42:5a:bc:a1: 8e:ea:bf:6e:aa:31:ef:14:f0:65:81:ef:86:76:bd:0d:4d:6f: e2:f2:84:48:61:5a:5f:27:b0:22:2c:f0:65:26:04:17:0e:b9: e9:2f:9e:20:b4:a0:aa:ae:8c:db:c4:12:52:f7:45:c6:69:c2: 62:72:80:ce -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5QkMxMTAvBgNVBAUTKDM2RUU4QTQwMTMwNUVCMzhFMjhEODZBNURCN0Y3NjI4 QUFCN0UyNEYwHhcNMjUwNTI0MTc0OTQxWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODMyMDZiNS0xYzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5jmbCaLmcA/QM0qtC098fBeNNJoTh99080gAJ+oGhmyNl/fEyhD+GKCVi6SY /Xdjwmg7dIrzdY8HAJOUPUTDapziHZTL4UBYifwemn0iVBFPzlSc1v5yycTOpNyW i3GQUfma6OEHvcJRmt0ihUav03l5JvocUSym00U1BQFnu8g0YbB0NQK8+JFQYd/K nTea8edbte+GoScuUSXdAX67OXTp5w0qdFLR4p93NZkFirQk90FD1aawAR1DnEd+ iJ/LNecv8ArInVuVs76ay+r3Fwq6PvdOXIMx5PvetUs5jgPg3GWson76cjQZrbfE jw4t51bsh9KE7cQTVQLjJHLdLwIDAQABo4IClTCCApEwHQYDVR0OBBYEFENpKYR7 SzbvdMjFPW12Umzb58AeMB8GA1UdIwQYMBaAFDbuikATBes44o2Gpdt/diiqt+JP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDlCQy84OTI4OTczMDJF OTAxMUU5OTE3Nzk2MEZDNEY5QUUwMi9OdTZLUUJNRjZ6amlqWWFsMjM5MktLcTM0 azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL051NktRQk1GNnpqaWpZYWwyMzkyS0txMzRrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5QkMvODkyODk3MzAyRTkwMTFFOTkxNzc5NjBGQzRGOUFFMDIvNTg3MDk1MkVD NTMwMTFFQTk4RDFENjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB5YSQwDQYJKoZIhvcNAQELBQADggEBAHSRx/UhEYTrxbTi v3Y7L+FGcfrkOKLFSoalLrLwAVPsQGcax3S60yZgsd4vT7nwbIuwWc+qmdjCut5Z FTFQNZtEKyBD59X9DGfFs8S185kDXGxG7XsQfPBjJWfcuC0atACrHymkB2sh6LwK XxmOIoek3ss8Vt8CqNg6CATvEIdgU2dtXKX8YKpwbTRmgIGkYX9OJvnwidoWfIj2 MfEx937gG0FLOYvm463s39FCn/k39f7LNtqU8aZiEzSDr0D0bLIxQlq8oY7qv26q Me8U8GWB74Z2vQ1Nb+LyhEhhWl8nsCIs8GUmBBcOuekvniC0oKqujNvEElL3RcZp wmJygM4= -----END CERTIFICATE-----Generated at Thu Jun 5 20:12:29 2025 by rpki-client