$ rpki-client -vvf rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/3352C1BAECFC11EFA398671BC4F9AE02.roa File: 3352C1BAECFC11EFA398671BC4F9AE02.roa (raw, json) Hash identifier: Im9wfZuP6zDy1h0Hl9Jq0NXIaM8u/vuOASHLbchH8jE= Subject key identifier: F0:7A:9A:F1:13:C0:00:E6:6A:B9:4E:95:26:6A:54:1B:A5:97:54:D8 Certificate issuer: /CN=A917B520/serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Certificate serial: 01E6 Authority key identifier: 54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/3352C1BAECFC11EFA398671BC4F9AE02.roa Signing time: Sat 31 May 2025 03:50:57 +0000 ROA not before: Sat 31 May 2025 03:50:57 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 138699 IP address blocks: 101.47.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 03:19:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 486 (0x1e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917B520, serialNumber=542B94D8625CF711964FD13741295D27AD7A9004 Validity Not Before: May 31 03:50:57 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=683a7ca1-bc6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:09:a2:96:58:93:ee:97:03:8d:f8:98:76:5b: 98:6a:3d:2c:64:8c:ca:56:41:7b:fe:a8:a4:e2:c8: da:5a:d9:0c:df:55:6b:4c:10:06:22:7f:bf:d2:cb: 8b:2b:4b:5d:b9:a8:09:73:63:f2:cb:ed:d1:c2:58: 80:f1:2b:e9:69:04:38:79:c7:42:40:fe:38:7c:64: ba:c9:a1:92:89:87:e9:95:a2:c7:d4:0f:13:93:79: b7:fd:c4:2c:7f:bc:28:5b:07:e0:90:92:13:21:1f: 72:8e:2e:d2:59:8e:79:52:24:13:7f:c6:da:16:6c: 17:76:b1:b1:c3:ee:c2:58:2e:90:dd:0f:af:8f:51: c2:5c:fb:ac:27:bb:61:7f:29:9a:58:98:4e:3f:b9: e9:ab:6d:e5:be:71:c7:1f:a4:af:15:73:95:5a:7f: 91:cb:b7:b3:3a:68:b9:dc:20:46:58:2c:9f:29:a1: ba:06:aa:a2:b5:02:2e:d2:73:2e:55:98:d4:fe:b9: dd:ee:30:1f:89:95:9c:6e:af:a9:42:2b:e3:04:29: 5f:19:ba:cc:c0:79:73:62:e6:f1:db:a1:61:20:df: 06:55:47:d2:d4:20:e9:f8:aa:c9:db:64:7f:2f:82: c1:5e:47:5a:ff:73:e0:73:27:88:d0:7b:d0:94:cc: 44:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:7A:9A:F1:13:C0:00:E6:6A:B9:4E:95:26:6A:54:1B:A5:97:54:D8 X509v3 Authority Key Identifier: keyid:54:2B:94:D8:62:5C:F7:11:96:4F:D1:37:41:29:5D:27:AD:7A:90:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/VCuU2GJc9xGWT9E3QSldJ616kAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCuU2GJc9xGWT9E3QSldJ616kAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917B520/161D4C0AE4CA11EDA414E259C4F9AE02/3352C1BAECFC11EFA398671BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.47.188.0/24 Signature Algorithm: sha256WithRSAEncryption 75:25:b5:f7:d7:05:5b:b1:18:ed:09:5d:e9:8e:04:2c:e2:67: b4:e9:55:20:6c:a0:71:7b:0a:a6:c0:f3:bd:74:88:15:ee:de: ff:00:a2:8d:35:1e:4e:e4:f1:03:10:0b:21:df:4d:d4:ef:fc: 29:57:0b:d5:d8:f4:97:51:47:ff:45:d4:1d:fb:b6:4c:1f:59: 09:81:e0:37:5e:2e:7f:7a:a0:c1:a9:fc:d4:0a:1d:16:78:9e: d2:2c:a4:ae:53:bd:4e:44:d9:aa:d4:24:69:47:f5:55:67:e8: ff:5d:72:a1:43:a4:21:ce:39:fd:bd:60:04:d7:5c:35:b4:ac: 8c:de:c6:ac:b5:5b:90:f7:20:d8:56:15:62:0d:c0:6a:ab:66: 89:75:9d:4b:9e:c5:27:fb:fd:75:80:13:4d:d6:08:03:ee:ed: a3:25:68:fd:c1:2d:fc:82:58:36:53:2b:96:55:e3:b9:ee:9b: d5:3c:b1:03:3d:f1:e1:6f:58:e4:17:32:84:ce:fa:8c:1b:9c: c0:16:0f:a1:c7:ef:4d:b7:8e:c5:d5:4d:09:d6:bb:1c:78:db: 1d:46:fd:b4:e3:52:d1:1d:7d:74:ad:87:e4:d2:6d:87:de:e6: c8:77:3a:69:f7:e5:aa:8f:8d:ac:41:39:1f:2e:c5:5e:ca:6e: b2:0f:93:fa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0I1MjAxMTAvBgNVBAUTKDU0MkI5NEQ4NjI1Q0Y3MTE5NjRGRDEzNzQxMjk1RDI3 QUQ3QTkwMDQwHhcNMjUwNTMxMDM1MDU3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhN2NhMS1iYzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5QmilliT7pcDjfiYdluYaj0sZIzKVkF7/qik4sjaWtkM31VrTBAGIn+/0suL K0tduagJc2Pyy+3RwliA8SvpaQQ4ecdCQP44fGS6yaGSiYfplaLH1A8Tk3m3/cQs f7woWwfgkJITIR9yji7SWY55UiQTf8baFmwXdrGxw+7CWC6Q3Q+vj1HCXPusJ7th fymaWJhOP7npq23lvnHHH6SvFXOVWn+Ry7ezOmi53CBGWCyfKaG6BqqitQIu0nMu VZjU/rnd7jAfiZWcbq+pQivjBClfGbrMwHlzYubx26FhIN8GVUfS1CDp+KrJ22R/ L4LBXkda/3PgcyeI0HvQlMxE4wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPB6mvET wADmarlOlSZqVBull1TYMB8GA1UdIwQYMBaAFFQrlNhiXPcRlk/RN0EpXSetepAE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QjUyMC8xNjFENEMwQUU0 Q0ExMUVEQTQxNEUyNTlDNEY5QUUwMi9WQ3VVMkdKYzl4R1dUOUUzUVNsZEo2MTZr QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZDdVUyR0pjOXhHV1Q5RTNRU2xkSjYxNmtBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0I1MjAvMTYxRDRDMEFFNENBMTFFREE0MTRFMjU5QzRGOUFFMDIvMzM1MkMxQkFF Q0ZDMTFFRkEzOTg2NzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABlL7wwDQYJKoZIhvcNAQELBQADggEBAHUltffXBVuxGO0J XemOBCziZ7TpVSBsoHF7CqbA8710iBXu3v8Aoo01Hk7k8QMQCyHfTdTv/ClXC9XY 9JdRR/9F1B37tkwfWQmB4DdeLn96oMGp/NQKHRZ4ntIspK5TvU5E2arUJGlH9VVn 6P9dcqFDpCHOOf29YATXXDW0rIzexqy1W5D3INhWFWINwGqrZol1nUuexSf7/XWA E03WCAPu7aMlaP3BLfyCWDZTK5ZV47num9U8sQM98eFvWOQXMoTO+owbnMAWD6HH 7023jsXVTQnWuxx42x1G/bTjUtEdfXSth+TSbYfe5sh3Omn35aqPjaxBOR8uxV7K brIPk/o= -----END CERTIFICATE-----Generated at Wed Jun 4 00:03:34 2025 by rpki-client