$ rpki-client -vvf rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/1E85ABA6231E11EFA893585AC4F9AE02.roa File: 1E85ABA6231E11EFA893585AC4F9AE02.roa (raw, json) Hash identifier: fSTt/OP/CCIEWdda0wFEWb+9ChFos6G9oFISz4g6itU= Subject key identifier: 8B:2E:8A:43:83:69:3A:5F:C0:0B:99:D1:24:A0:D7:1B:51:18:3D:FB Certificate issuer: /CN=A917DFDA/serialNumber=22AFD4CDD9C4F4C383762B3E93EECF1AE6FF9D16 Certificate serial: B9 Authority key identifier: 22:AF:D4:CD:D9:C4:F4:C3:83:76:2B:3E:93:EE:CF:1A:E6:FF:9D:16 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iq_UzdnE9MODdis-k-7PGub_nRY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/1E85ABA6231E11EFA893585AC4F9AE02.roa Signing time: Wed 21 May 2025 05:16:42 +0000 ROA not before: Wed 21 May 2025 05:16:42 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 9934 IP address blocks: 202.37.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/Iq_UzdnE9MODdis-k-7PGub_nRY.crl rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/Iq_UzdnE9MODdis-k-7PGub_nRY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iq_UzdnE9MODdis-k-7PGub_nRY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:40:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 185 (0xb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DFDA, serialNumber=22AFD4CDD9C4F4C383762B3E93EECF1AE6FF9D16 Validity Not Before: May 21 05:16:42 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682d61ba-8865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8a:c1:bd:c7:91:1e:3e:0f:70:e7:4d:02:08: 36:85:82:6f:96:cd:6a:19:59:97:c4:8e:9e:a2:65: c5:79:22:b6:ec:62:9b:84:54:17:77:a4:0a:40:5c: 89:f5:7c:6a:08:5f:d1:38:2b:6a:f6:f6:a8:29:1f: f4:cc:cf:30:f4:29:7a:05:d8:73:27:9e:94:60:6b: f5:64:58:50:9f:1c:03:16:11:11:51:b9:f8:16:1c: 78:77:97:05:1d:d9:4d:e0:b8:43:f3:b0:d0:6d:82: 71:87:4a:e9:20:cd:b9:82:07:c8:e3:83:34:c3:68: 74:cc:ba:f0:f8:fc:70:ff:07:62:7a:74:06:04:01: c9:d0:bf:7c:17:4e:2b:3d:ef:92:28:5f:09:94:a1: e5:3d:ef:df:2d:23:d0:2d:d2:8b:72:2d:af:9b:23: 86:3d:2e:a7:70:69:08:31:63:14:dd:e1:34:32:3c: dc:13:6a:e5:4a:9c:f8:88:0b:04:3c:c8:23:fb:f6: 6b:0e:cd:3e:2e:fd:3a:a2:1b:da:89:40:32:1e:5c: 30:9c:bb:e0:79:d8:8f:c4:2b:58:91:ce:99:ac:7e: 29:1a:ce:92:3b:9f:d2:1b:60:d3:fa:15:b9:6c:a5: 70:1d:57:5f:82:8e:b3:81:90:52:c7:df:b9:1a:55: ed:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:2E:8A:43:83:69:3A:5F:C0:0B:99:D1:24:A0:D7:1B:51:18:3D:FB X509v3 Authority Key Identifier: keyid:22:AF:D4:CD:D9:C4:F4:C3:83:76:2B:3E:93:EE:CF:1A:E6:FF:9D:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/Iq_UzdnE9MODdis-k-7PGub_nRY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Iq_UzdnE9MODdis-k-7PGub_nRY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DFDA/AF2D50E6230011EF945DE382C4F9AE02/1E85ABA6231E11EFA893585AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.235.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:96:f1:f2:f2:ed:8b:e8:2e:9c:9c:ec:42:34:e9:68:3d:fa: 9b:18:6b:bf:1c:35:56:03:f8:ed:1c:6a:79:d2:cf:bf:ab:de: 88:4f:d6:f0:e0:13:e6:de:d6:47:e6:19:dc:89:6d:35:e6:cf: dd:e0:73:ca:fa:fc:aa:46:4b:ac:62:51:88:22:34:a8:eb:40: 69:83:7b:ee:4e:6f:b6:a8:90:80:f0:b2:f5:78:5e:2d:b9:36: 75:a2:5e:84:66:51:07:dd:7b:32:9a:88:c1:64:6b:8c:78:71: 4e:85:26:26:b3:01:6d:85:92:59:65:2e:69:84:a3:16:f6:b4: 07:a0:20:9e:e2:e5:24:ae:e2:44:e8:db:ff:fd:fb:ae:c3:4b: 91:f9:0a:a6:00:b8:c2:83:d9:b4:09:85:6a:b3:bb:57:fa:9c: 31:20:61:89:b1:6a:47:8d:1b:27:36:76:19:84:0f:e3:ac:95: 97:86:6d:21:ba:e7:e3:11:1e:c1:fc:56:72:3a:9e:fb:e5:83: 21:09:32:97:92:66:1d:c3:84:a8:32:64:ea:71:81:45:f6:b4: 59:e3:b7:bd:dd:21:c3:87:65:2a:5a:7f:ad:b8:70:88:f4:38: 9e:bd:a1:08:13:21:41:fb:1c:b8:cf:d6:a1:98:44:ba:4e:02: 56:5c:b9:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RGREExMTAvBgNVBAUTKDIyQUZENENERDlDNEY0QzM4Mzc2MkIzRTkzRUVDRjFB RTZGRjlEMTYwHhcNMjUwNTIxMDUxNjQyWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJkNjFiYS04ODY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxorBvceRHj4PcOdNAgg2hYJvls1qGVmXxI6eomXFeSK27GKbhFQXd6QKQFyJ 9XxqCF/ROCtq9vaoKR/0zM8w9Cl6BdhzJ56UYGv1ZFhQnxwDFhERUbn4Fhx4d5cF HdlN4LhD87DQbYJxh0rpIM25ggfI44M0w2h0zLrw+Pxw/wdienQGBAHJ0L98F04r Pe+SKF8JlKHlPe/fLSPQLdKLci2vmyOGPS6ncGkIMWMU3eE0MjzcE2rlSpz4iAsE PMgj+/ZrDs0+Lv06ohvaiUAyHlwwnLvgediPxCtYkc6ZrH4pGs6SO5/SG2DT+hW5 bKVwHVdfgo6zgZBSx9+5GlXt4wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIsuikOD aTpfwAuZ0SSg1xtRGD37MB8GA1UdIwQYMBaAFCKv1M3ZxPTDg3YrPpPuzxrm/50W MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REZEQS9BRjJENTBFNjIz MDAxMUVGOTQ1REUzODJDNEY5QUUwMi9JcV9VemRuRTlNT0RkaXMtay03UEd1Yl9u UlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lxX1V6ZG5FOU1PRGRpcy1rLTdQR3ViX25SWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RGREEvQUYyRDUwRTYyMzAwMTFFRjk0NURFMzgyQzRGOUFFMDIvMUU4NUFCQTYy MzFFMTFFRkE4OTM1ODVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKJeswDQYJKoZIhvcNAQELBQADggEBAJuW8fLy7YvoLpyc 7EI06Wg9+psYa78cNVYD+O0cannSz7+r3ohP1vDgE+be1kfmGdyJbTXmz93gc8r6 /KpGS6xiUYgiNKjrQGmDe+5Ob7aokIDwsvV4Xi25NnWiXoRmUQfdezKaiMFka4x4 cU6FJiazAW2FklllLmmEoxb2tAegIJ7i5SSu4kTo2//9+67DS5H5CqYAuMKD2bQJ hWqzu1f6nDEgYYmxakeNGyc2dhmED+OslZeGbSG65+MRHsH8VnI6nvvlgyEJMpeS Zh3DhKgyZOpxgUX2tFnjt73dIcOHZSpaf624cIj0OJ69oQgTIUH7HLjP1qGYRLpO AlZcufU= -----END CERTIFICATE-----Generated at Tue Jun 3 23:50:57 2025 by rpki-client