$ rpki-client -vvf rpki.apnic.net/member_repository/A919F554/3F95A85231F311F0ABBAE669C4F9AE02/C420C91231F311F0B07AC76AC4F9AE02.roa File: C420C91231F311F0B07AC76AC4F9AE02.roa (raw, json) Hash identifier: XPTUja6J7XFQv+BD9NiOzIrOTCkxWgFmdmQI7JPx3gw= Subject key identifier: 24:42:C4:02:C1:85:D6:B6:EB:C9:F3:4A:4A:38:E6:C2:3D:AD:5B:13 Certificate issuer: /CN=A919F554/serialNumber=6C5179CB0CF8189E1E2081D4B6959484A3EB36A8 Certificate serial: 04 Authority key identifier: 6C:51:79:CB:0C:F8:18:9E:1E:20:81:D4:B6:95:94:84:A3:EB:36:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFF5ywz4GJ4eIIHUtpWUhKPrNqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919F554/3F95A85231F311F0ABBAE669C4F9AE02/C420C91231F311F0B07AC76AC4F9AE02.roa Signing time: Fri 16 May 2025 01:19:51 +0000 ROA not before: Fri 16 May 2025 01:19:51 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 132899 IP address blocks: 45.116.130.0/24 maxlen: 24 103.27.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919F554/3F95A85231F311F0ABBAE669C4F9AE02/bFF5ywz4GJ4eIIHUtpWUhKPrNqg.crl rsync://rpki.apnic.net/member_repository/A919F554/3F95A85231F311F0ABBAE669C4F9AE02/bFF5ywz4GJ4eIIHUtpWUhKPrNqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFF5ywz4GJ4eIIHUtpWUhKPrNqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:50:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919F554, serialNumber=6C5179CB0CF8189E1E2081D4B6959484A3EB36A8 Validity Not Before: May 16 01:19:51 2025 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=682692b7-0d1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:0b:eb:c6:c2:5e:c1:24:3c:5d:d0:2c:97:03: f8:33:1f:0b:09:d9:4a:70:61:25:e7:46:99:0c:1a: 1d:75:59:a0:61:d6:3b:f6:27:86:12:93:fe:49:87: 88:0d:d6:4d:07:54:72:f2:3d:32:ab:9d:ef:f0:1f: a0:19:2d:4f:17:67:91:8c:61:4a:13:0f:a4:24:d2: 84:f7:5b:fc:22:5c:f6:6f:83:18:b0:07:5a:01:10: 91:92:f4:d7:18:4e:58:f0:d3:f4:4f:53:f4:3a:66: 40:84:71:bb:dd:c2:f1:79:03:4a:42:e4:d9:49:28: a0:06:ca:46:ec:14:af:47:7c:36:38:69:24:06:c9: f8:3c:f9:fe:a5:13:4f:b4:21:66:4c:c4:44:09:46: b9:78:73:28:fc:98:fd:45:a1:ac:80:15:33:e2:a7: 4e:3c:4c:92:2d:ec:cb:56:30:32:a0:b2:1c:88:f3: b0:4a:6d:ba:7e:ea:f5:0e:7a:3c:38:f3:c2:62:44: 9a:95:79:37:32:20:3e:1c:e8:0f:6c:25:4f:90:ce: 31:fc:6e:94:f4:0d:a4:19:98:49:47:28:e0:17:77: a2:8d:ae:48:b2:31:f3:d8:2a:dc:d2:c7:c8:fc:ab: c1:e6:0b:17:04:e8:5d:3c:e1:e9:4b:52:da:f0:cf: d3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:42:C4:02:C1:85:D6:B6:EB:C9:F3:4A:4A:38:E6:C2:3D:AD:5B:13 X509v3 Authority Key Identifier: keyid:6C:51:79:CB:0C:F8:18:9E:1E:20:81:D4:B6:95:94:84:A3:EB:36:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919F554/3F95A85231F311F0ABBAE669C4F9AE02/bFF5ywz4GJ4eIIHUtpWUhKPrNqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bFF5ywz4GJ4eIIHUtpWUhKPrNqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919F554/3F95A85231F311F0ABBAE669C4F9AE02/C420C91231F311F0B07AC76AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.130.0/24 103.27.180.0/22 Signature Algorithm: sha256WithRSAEncryption 4a:07:21:d0:55:69:de:d0:f4:77:07:97:6b:03:8b:bc:de:e6: 8d:b0:22:22:53:7c:3a:80:e1:6d:27:80:de:04:a6:ee:0b:53: 03:d2:64:10:c0:82:75:f7:92:6a:f8:f0:6e:19:6d:63:c1:cc: 4b:25:97:3f:f4:cc:a9:31:29:43:e7:8c:bd:4c:03:95:51:69: 80:19:67:3f:e9:07:06:27:95:c2:31:55:75:23:f3:f6:86:9f: c9:5c:cd:7f:9d:4d:be:cb:f7:67:1f:55:f4:b6:8f:ed:42:b5: 71:91:df:16:38:fe:25:19:26:3a:94:e2:8d:e3:c3:cf:ca:53: 30:db:9e:3a:6c:f3:cd:09:60:52:b2:3d:8c:96:46:7c:22:52: 93:0b:61:fb:c6:5f:d7:e1:34:2c:e0:1e:60:57:ed:ca:9f:44: 89:ac:6f:17:8f:d6:4b:d8:f8:07:52:39:71:2a:c7:d3:e2:40: b4:f2:be:44:66:05:51:17:8d:33:ef:f6:96:c4:1d:3a:1b:e9: d2:5d:75:f0:05:c3:22:a7:cf:9a:5a:aa:82:f4:76:0f:e0:c0: 6c:d0:1e:47:d7:0b:5b:b0:f5:b8:b1:28:f9:90:cc:56:2d:95: 71:fb:48:20:f1:98:93:07:0e:74:05:9a:cd:65:bb:54:16:72: 7b:15:27:6e -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 RjU1NDExMC8GA1UEBRMoNkM1MTc5Q0IwQ0Y4MTg5RTFFMjA4MUQ0QjY5NTk0ODRB M0VCMzZBODAeFw0yNTA1MTYwMTE5NTFaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MjY5MmI3LTBkMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpC+vGwl7BJDxd0CyXA/gzHwsJ2UpwYSXnRpkMGh11WaBh1jv2J4YSk/5Jh4gN 1k0HVHLyPTKrne/wH6AZLU8XZ5GMYUoTD6Qk0oT3W/wiXPZvgxiwB1oBEJGS9NcY Tljw0/RPU/Q6ZkCEcbvdwvF5A0pC5NlJKKAGykbsFK9HfDY4aSQGyfg8+f6lE0+0 IWZMxEQJRrl4cyj8mP1FoayAFTPip048TJIt7MtWMDKgshyI87BKbbp+6vUOejw4 88JiRJqVeTcyID4c6A9sJU+QzjH8bpT0DaQZmElHKOAXd6KNrkiyMfPYKtzSx8j8 q8HmCxcE6F084elLUtrwz9PfAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUJELEAsGF 1rbryfNKSjjmwj2tWxMwHwYDVR0jBBgwFoAUbFF5ywz4GJ4eIIHUtpWUhKPrNqgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlGNTU0LzNGOTVBODUyMzFG MzExRjBBQkJBRTY2OUM0RjlBRTAyL2JGRjV5d3o0R0o0ZUlJSFV0cFdVaEtQck5x Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkZGNXl3ejRHSjRlSUlIVXRwV1VoS1ByTnFnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 RjU1NC8zRjk1QTg1MjMxRjMxMUYwQUJCQUU2NjlDNEY5QUUwMi9DNDIwQzkxMjMx RjMxMUYwQjA3QUM3NkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAC10ggMEAmcbtDANBgkqhkiG9w0BAQsFAAOCAQEASgch0FVp 3tD0dweXawOLvN7mjbAiIlN8OoDhbSeA3gSm7gtTA9JkEMCCdfeSavjwbhltY8HM SyWXP/TMqTEpQ+eMvUwDlVFpgBlnP+kHBieVwjFVdSPz9oafyVzNf51Nvsv3Zx9V 9LaP7UK1cZHfFjj+JRkmOpTijePDz8pTMNueOmzzzQlgUrI9jJZGfCJSkwth+8Zf 1+E0LOAeYFftyp9EiaxvF4/WS9j4B1I5cSrH0+JAtPK+RGYFUReNM+/2lsQdOhvp 0l118AXDIqfPmlqqgvR2D+DAbNAeR9cLW7D1uLEo+ZDMVi2VcftIIPGYkwcOdAWa zWW7VBZyexUnbg== -----END CERTIFICATE-----Generated at Mon Jun 2 05:41:51 2025 by rpki-client