$ rpki-client -vvf rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/DEB93E12828F11EF9E87BB73C4F9AE02.roa File: DEB93E12828F11EF9E87BB73C4F9AE02.roa (raw, json) Hash identifier: c+CQynLGvFw6zwfVMzfHa2UofKyQsyQszuE+ggwaCPA= Subject key identifier: 01:04:A3:C3:19:B0:43:DF:B9:9F:70:20:18:54:46:4E:19:4B:5A:54 Certificate issuer: /CN=A917DEA4/serialNumber=B4D6FFD5DFF9EAC413AB4408E09637B09494DBC8 Certificate serial: 06FD Authority key identifier: B4:D6:FF:D5:DF:F9:EA:C4:13:AB:44:08:E0:96:37:B0:94:94:DB:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/DEB93E12828F11EF9E87BB73C4F9AE02.roa Signing time: Wed 28 May 2025 13:14:12 +0000 ROA not before: Wed 28 May 2025 13:14:12 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55740 IP address blocks: 14.96.183.0/24 maxlen: 24 14.96.192.0/23 maxlen: 24 14.97.20.0/24 maxlen: 24 14.97.48.0/24 maxlen: 24 2406:e00:800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.crl rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 22:48:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1789 (0x6fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DEA4, serialNumber=B4D6FFD5DFF9EAC413AB4408E09637B09494DBC8 Validity Not Before: May 28 13:14:12 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=68370c24-c3a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:8f:3b:fa:7a:50:06:d9:cf:c6:a6:6b:25:81: e6:57:62:d5:62:ed:46:9d:14:af:0d:39:2e:f9:d6: ca:c1:f6:bf:cb:59:e9:11:4d:db:2c:8b:9b:25:a2: c3:5d:41:bc:24:1d:51:8a:88:47:5e:4e:57:a8:fd: 0c:30:11:f8:c1:11:ad:91:20:34:95:c4:12:af:8e: fe:01:8e:f0:7d:7c:de:d3:6e:e8:b3:b4:69:38:57: 94:e9:7f:d2:31:2c:56:a5:e7:88:cf:01:d9:b0:e4: 83:ac:59:be:65:56:90:3e:50:1e:46:01:d3:1e:ce: 8d:2b:3f:5e:09:d6:0c:76:d3:5f:2b:e6:5e:6b:9e: 57:18:74:fd:59:b8:89:a2:ad:96:98:bd:f4:04:38: f1:8e:7e:81:c7:8c:a6:23:c8:cb:f0:bb:34:7b:60: 99:43:1e:d4:96:ec:aa:02:6e:03:a7:ba:c4:28:73: 29:b4:5e:9f:88:34:97:c5:a5:ca:be:6a:36:22:2e: 2a:12:44:37:5a:ad:18:19:82:70:e3:99:e5:44:6e: 93:ba:e1:25:fc:83:4e:39:7b:d1:b5:54:cd:8d:d9: 37:20:5c:d9:3d:24:f2:64:3b:c8:ce:73:fc:72:52: ca:47:dd:68:2d:22:55:eb:d1:76:f7:6a:f0:59:09: c6:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:04:A3:C3:19:B0:43:DF:B9:9F:70:20:18:54:46:4E:19:4B:5A:54 X509v3 Authority Key Identifier: keyid:B4:D6:FF:D5:DF:F9:EA:C4:13:AB:44:08:E0:96:37:B0:94:94:DB:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/DEB93E12828F11EF9E87BB73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.96.183.0/24 14.96.192.0/23 14.97.20.0/24 14.97.48.0/24 IPv6: 2406:e00:800::/48 Signature Algorithm: sha256WithRSAEncryption 3a:51:34:51:c4:8f:9a:b5:0d:18:73:be:29:3f:5c:dd:cf:01: 78:b6:af:7c:22:52:7e:28:ab:35:d6:03:35:9b:db:9e:cb:50: e9:df:52:97:81:95:b3:af:63:de:10:9c:c2:6e:38:f3:c8:3c: 65:27:03:ca:4a:63:31:00:49:7c:d0:5c:bd:10:9c:97:a0:ac: 03:3e:13:58:ba:18:35:37:d5:24:38:fb:7e:8b:a7:78:79:28: a6:15:8e:56:f5:0d:98:3e:de:67:7c:5b:19:d4:6d:e8:dc:98: 85:79:e9:34:c7:57:7c:14:b4:88:f3:c9:f2:99:32:62:c9:40: ef:47:86:30:98:c2:5c:07:64:85:51:e5:e4:98:cf:17:c2:65: 45:c6:f2:88:ea:c2:c1:25:b8:28:18:f6:cc:8e:84:1f:77:fa: 3c:d3:b0:fa:fc:f5:93:20:6e:d5:b3:ae:df:11:3a:5c:b4:e6: 6a:f7:c8:9f:4c:ab:d7:4a:c0:00:a0:da:09:45:f6:68:80:74: 25:0a:55:ff:ef:90:b8:98:11:5b:04:0c:58:6e:de:4f:2e:96: 98:9f:00:f5:5c:cc:83:f1:4c:de:1d:03:d4:7b:46:83:cf:fe: fe:6d:f3:a3:2f:c6:67:40:40:fb:2b:ba:60:52:c9:62:06:3d: 01:02:06:09 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICBv0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RFQTQxMTAvBgNVBAUTKEI0RDZGRkQ1REZGOUVBQzQxM0FCNDQwOEUwOTYzN0Iw OTQ5NERCQzgwHhcNMjUwNTI4MTMxNDEyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM3MGMyNC1jM2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6Y87+npQBtnPxqZrJYHmV2LVYu1GnRSvDTku+dbKwfa/y1npEU3bLIubJaLD XUG8JB1RiohHXk5XqP0MMBH4wRGtkSA0lcQSr47+AY7wfXze027os7RpOFeU6X/S MSxWpeeIzwHZsOSDrFm+ZVaQPlAeRgHTHs6NKz9eCdYMdtNfK+Zea55XGHT9WbiJ oq2WmL30BDjxjn6Bx4ymI8jL8Ls0e2CZQx7UluyqAm4Dp7rEKHMptF6fiDSXxaXK vmo2Ii4qEkQ3Wq0YGYJw45nlRG6TuuEl/INOOXvRtVTNjdk3IFzZPSTyZDvIznP8 clLKR91oLSJV69F292rwWQnGpQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFAEEo8MZ sEPfuZ9wIBhURk4ZS1pUMB8GA1UdIwQYMBaAFLTW/9Xf+erEE6tECOCWN7CUlNvI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REVBNC9BMjQyNkI2MDk4 MjkxMUVCQjc4ODIwODFDNEY5QUUwMi90TmJfMWRfNTZzUVRxMFFJNEpZM3NKU1Uy OGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROYl8xZF81NnNRVHEwUUk0Slkzc0pTVTI4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RFQTQvQTI0MjZCNjA5ODI5MTFFQkI3ODgyMDgxQzRGOUFFMDIvREVCOTNFMTI4 MjhGMTFFRjlFODdCQjczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMB4EAgABMBgDBAAOYLcDBAEOYMADBAAOYRQDBAAOYTAwDwQCAAIwCQMHACQG DgAIADANBgkqhkiG9w0BAQsFAAOCAQEAOlE0UcSPmrUNGHO+KT9c3c8BeLavfCJS fiirNdYDNZvbnstQ6d9Sl4GVs69j3hCcwm4488g8ZScDykpjMQBJfNBcvRCcl6Cs Az4TWLoYNTfVJDj7founeHkophWOVvUNmD7eZ3xbGdRt6NyYhXnpNMdXfBS0iPPJ 8pkyYslA70eGMJjCXAdkhVHl5JjPF8JlRcbyiOrCwSW4KBj2zI6EH3f6PNOw+vz1 kyBu1bOu3xE6XLTmavfIn0yr10rAAKDaCUX2aIB0JQpV/++QuJgRWwQMWG7eTy6W mJ8A9VzMg/FM3h0D1HtGg8/+/m3zoy/GZ0BA+yu6YFLJYgY9AQIGCQ== -----END CERTIFICATE-----Generated at Mon Jun 2 07:19:24 2025 by rpki-client