$ rpki-client -vvf rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/CD24A702015411EF83144341C4F9AE02.roa File: CD24A702015411EF83144341C4F9AE02.roa (raw, json) Hash identifier: SU2k4PWMP2JoSPhT5sG0pYL6WcQ+PmgmS1rYcFY3jYc= Subject key identifier: 31:AB:FD:CD:6D:7F:94:52:9E:9A:DF:30:41:AE:B7:97:99:65:79:D1 Certificate issuer: /CN=A91A54FE/serialNumber=6FC70906FBA6F4539452091932C45FFA4D8572B8 Certificate serial: DF Authority key identifier: 6F:C7:09:06:FB:A6:F4:53:94:52:09:19:32:C4:5F:FA:4D:85:72:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8cJBvum9FOUUgkZMsRf-k2Fcrg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/CD24A702015411EF83144341C4F9AE02.roa Signing time: Tue 03 Jun 2025 05:25:30 +0000 ROA not before: Tue 03 Jun 2025 05:25:30 +0000 ROA not after: Wed 01 Oct 2025 00:00:00 +0000 asID: 9734 IP address blocks: 203.20.114.0/24 maxlen: 24 2001:df3:b540::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/b8cJBvum9FOUUgkZMsRf-k2Fcrg.crl rsync://rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/b8cJBvum9FOUUgkZMsRf-k2Fcrg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8cJBvum9FOUUgkZMsRf-k2Fcrg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:25:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 223 (0xdf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A54FE, serialNumber=6FC70906FBA6F4539452091932C45FFA4D8572B8 Validity Not Before: Jun 3 05:25:30 2025 GMT Not After : Oct 1 00:00:00 2025 GMT Subject: CN=683e874a-de5e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:72:a1:6c:1d:9f:be:b0:de:f4:c5:d0:e7:38: 1c:bc:4f:50:55:77:e9:95:94:3c:02:56:ee:71:e3: 3c:d8:54:cc:5e:ea:6f:fe:74:8a:b5:0f:98:6b:50: 4b:06:7f:a5:10:3d:9a:17:3f:2c:83:c8:ea:18:c4: 95:ba:49:d4:a9:3c:b4:0b:e6:06:20:14:32:e1:9e: 80:99:61:5b:f1:62:0f:11:c4:f1:ff:c4:51:f3:7b: f5:85:29:86:f2:1b:8f:24:73:fb:4b:6b:28:c7:09: cc:51:d3:1f:59:08:60:4d:7a:32:ab:a4:1a:5b:f2: 20:15:d4:85:9b:e1:d6:b6:7c:78:33:6b:14:61:af: 0d:7e:bf:40:57:5a:64:bc:f1:8c:dc:1e:b4:17:bc: 3f:79:51:3d:80:a9:7f:0a:ef:28:7d:94:09:0c:4e: d2:74:2c:ac:d0:39:dc:8c:a9:e3:57:f7:4a:7d:5a: d5:1a:de:20:f8:05:64:3f:09:57:2b:61:3c:dc:2f: 68:45:b3:b8:7d:e2:36:2d:55:c1:f0:8d:65:60:f9: 1f:5a:2d:e1:30:eb:34:cb:08:3b:8d:9e:39:00:8a: 2a:0b:b3:1f:ba:04:ac:38:69:83:16:85:09:92:2d: 46:12:73:5a:74:6c:6d:fd:09:f7:47:9f:3e:23:f3: dd:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:AB:FD:CD:6D:7F:94:52:9E:9A:DF:30:41:AE:B7:97:99:65:79:D1 X509v3 Authority Key Identifier: keyid:6F:C7:09:06:FB:A6:F4:53:94:52:09:19:32:C4:5F:FA:4D:85:72:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/b8cJBvum9FOUUgkZMsRf-k2Fcrg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b8cJBvum9FOUUgkZMsRf-k2Fcrg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A54FE/D6117DF6F6E911EEADBFFB52C4F9AE02/CD24A702015411EF83144341C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.114.0/24 IPv6: 2001:df3:b540::/48 Signature Algorithm: sha256WithRSAEncryption 26:f6:90:63:e3:18:a7:67:10:7a:f3:0b:2f:80:78:0b:88:81: e9:fe:7a:07:9b:28:d3:2c:c2:5f:13:30:c2:76:d3:44:83:1c: 63:75:7f:0d:cc:62:ed:0e:ca:b2:f7:e5:20:fa:ae:cf:1c:4a: f2:2b:ff:91:2d:35:fd:a7:53:4c:48:d5:8b:e8:93:b1:e5:5b: d0:b7:33:7a:cf:72:c8:26:9f:b0:26:68:4f:af:6c:a3:e8:2a: 2c:e8:8f:66:c7:f9:36:97:e5:db:3e:60:de:55:3f:11:6a:19: f2:20:99:fe:c9:27:7d:85:94:f6:75:45:75:dd:2c:84:50:ac: 4c:34:7d:34:fe:27:33:e4:ad:c3:d1:c7:a9:46:d5:e4:42:be: 14:e2:9d:52:ed:de:60:ca:b4:4e:bf:09:8f:40:0c:fa:4e:d3: 8e:58:bf:30:82:9e:5d:61:d2:de:32:3a:b9:39:45:46:84:d1: b7:6a:02:f2:38:52:1a:04:e8:c7:97:dd:54:97:13:a4:ee:42: 66:4a:72:f4:74:a7:1f:12:3d:ce:3b:16:1a:15:bd:1c:b9:03: 17:b4:ef:ae:be:13:47:01:ab:b7:b7:56:f0:9f:1b:f1:bd:28: 93:c1:03:59:45:d2:15:76:41:de:39:82:d5:71:24:23:09:a3: d5:1a:cb:e2 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU0RkUxMTAvBgNVBAUTKDZGQzcwOTA2RkJBNkY0NTM5NDUyMDkxOTMyQzQ1RkZB NEQ4NTcyQjgwHhcNMjUwNjAzMDUyNTMwWhcNMjUxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNlODc0YS1kZTVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA43KhbB2fvrDe9MXQ5zgcvE9QVXfplZQ8AlbuceM82FTMXupv/nSKtQ+Ya1BL Bn+lED2aFz8sg8jqGMSVuknUqTy0C+YGIBQy4Z6AmWFb8WIPEcTx/8RR83v1hSmG 8huPJHP7S2soxwnMUdMfWQhgTXoyq6QaW/IgFdSFm+HWtnx4M2sUYa8Nfr9AV1pk vPGM3B60F7w/eVE9gKl/Cu8ofZQJDE7SdCys0DncjKnjV/dKfVrVGt4g+AVkPwlX K2E83C9oRbO4feI2LVXB8I1lYPkfWi3hMOs0ywg7jZ45AIoqC7MfugSsOGmDFoUJ ki1GEnNadGxt/Qn3R58+I/PdsQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDGr/c1t f5RSnprfMEGut5eZZXnRMB8GA1UdIwQYMBaAFG/HCQb7pvRTlFIJGTLEX/pNhXK4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTRGRS9ENjExN0RGNkY2 RTkxMUVFQURCRkZCNTJDNEY5QUUwMi9iOGNKQnZ1bTlGT1VVZ2taTXNSZi1rMkZj cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2I4Y0pCdnVtOUZPVVVna1pNc1JmLWsyRmNyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU0RkUvRDYxMTdERjZGNkU5MTFFRUFEQkZGQjUyQzRGOUFFMDIvQ0QyNEE3MDIw MTU0MTFFRjgzMTQ0MzQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLFHIwDwQCAAIwCQMHACABDfO1QDANBgkqhkiG9w0BAQsF AAOCAQEAJvaQY+MYp2cQevMLL4B4C4iB6f56B5so0yzCXxMwwnbTRIMcY3V/Dcxi 7Q7KsvflIPquzxxK8iv/kS01/adTTEjVi+iTseVb0Lczes9yyCafsCZoT69so+gq LOiPZsf5Npfl2z5g3lU/EWoZ8iCZ/sknfYWU9nVFdd0shFCsTDR9NP4nM+Stw9HH qUbV5EK+FOKdUu3eYMq0Tr8Jj0AM+k7Tjli/MIKeXWHS3jI6uTlFRoTRt2oC8jhS GgTox5fdVJcTpO5CZkpy9HSnHxI9zjsWGhW9HLkDF7Tvrr4TRwGrt7dW8J8b8b0o k8EDWUXSFXZB3jmC1XEkIwmj1RrL4g== -----END CERTIFICATE-----Generated at Tue Jun 3 23:55:55 2025 by rpki-client