$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/418966DA032011ED84D6CA1EC4F9AE02.roa File: 418966DA032011ED84D6CA1EC4F9AE02.roa (raw, json) Hash identifier: KuSwuFXT3RlQeIGfpEWkiu/ifBNFInANnuYBrAg51Cc= Subject key identifier: 74:07:36:9B:A8:95:05:E2:3D:CA:1D:53:5F:16:00:7F:57:EF:83:CE Certificate issuer: /CN=A91A5577/serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Certificate serial: 0299 Authority key identifier: 5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/418966DA032011ED84D6CA1EC4F9AE02.roa Signing time: Tue 29 Apr 2025 02:36:59 +0000 ROA not before: Tue 29 Apr 2025 02:36:59 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 4851 IP address blocks: 202.94.32.0/20 maxlen: 20 203.24.63.0/24 maxlen: 24 203.27.44.0/24 maxlen: 24 203.29.208.0/23 maxlen: 23 203.55.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 01:24:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 665 (0x299) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5577, serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Validity Not Before: Apr 29 02:36:59 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68103b4b-b429 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:7b:f8:ad:6b:6a:19:4f:05:4a:2c:f5:ed:ee: 63:c0:a4:84:96:d4:bd:ac:dd:23:0e:ca:92:4b:85: 48:34:4f:3e:25:32:34:a8:68:8b:a4:f4:ad:d8:af: b7:70:2d:bd:22:6c:a4:ad:0e:9e:ab:2f:00:4e:65: 0f:10:3d:76:42:e2:12:79:c7:45:0e:d0:43:36:83: d0:02:c2:1b:5a:a2:6d:18:c7:45:b6:13:bd:e2:0e: 99:7d:e4:12:30:a7:0f:32:5b:c7:d2:bf:fd:29:9c: 58:b8:66:75:74:dc:e4:00:29:39:2c:d4:b2:c9:09: bf:77:3a:29:9c:90:e7:a5:c6:8c:df:f8:43:d5:e1: 54:40:66:6d:bd:37:eb:81:5f:6d:7d:12:d3:dd:32: 6f:5b:c4:39:3b:a8:f2:31:2a:29:b6:58:c9:83:3b: d9:f9:ea:82:4f:6b:dd:53:f2:81:62:79:f7:47:0d: e8:56:67:80:01:fc:a2:77:ab:40:89:11:3a:63:fe: 44:d4:e5:37:58:58:29:6e:13:0f:8d:23:f0:fe:96: 24:c8:ac:fc:6e:5d:0e:6f:48:88:77:ef:04:fe:9b: 63:c9:bf:9e:47:f1:6d:2a:a2:1e:16:84:58:14:ad: 8c:ad:84:60:9c:74:47:7c:5a:d1:a9:88:03:94:60: b8:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:07:36:9B:A8:95:05:E2:3D:CA:1D:53:5F:16:00:7F:57:EF:83:CE X509v3 Authority Key Identifier: keyid:5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/418966DA032011ED84D6CA1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.94.32.0/20 203.24.63.0/24 203.27.44.0/24 203.29.208.0/23 203.55.134.0/23 Signature Algorithm: sha256WithRSAEncryption 47:73:29:83:cb:4d:d9:03:03:eb:60:cf:3e:32:df:4c:b4:02: ef:f0:b3:8c:45:e1:5c:ee:e8:2a:b0:29:9e:21:dd:44:23:4a: aa:f9:9d:c0:de:a9:67:99:83:e0:05:2b:cb:47:08:b9:b3:44: 21:28:56:61:e2:3a:83:51:35:c2:9b:78:34:7c:2e:e3:e9:d5: 32:f0:08:5d:ca:d6:9a:cf:7f:82:ae:6f:cc:9d:e4:3c:60:9c: 47:6a:88:cc:c1:31:07:3c:a2:ab:01:65:26:0a:75:8f:76:05: 7d:f1:5d:99:b2:fd:84:01:95:61:b2:76:37:2d:33:5e:81:8f: 65:26:e3:ae:bf:85:3e:53:3d:3a:be:7f:3b:37:f8:b2:02:3a: 60:f9:aa:1a:67:b3:82:1c:be:93:da:0f:f0:06:45:71:01:8e: bd:48:a5:95:a1:09:00:70:64:f8:07:93:ed:14:cb:e1:bb:ab: 4e:3e:c4:c7:07:9a:70:52:7a:3f:1d:cc:72:a0:8f:5d:d5:5c: af:99:6a:24:a8:13:5a:7d:59:b5:d2:b9:48:91:c1:d7:34:0c: d5:f3:42:fd:25:57:d7:db:d6:e0:78:b0:78:ea:b9:a9:94:8e: 04:7c:3b:5a:fd:c1:8c:19:6a:a0:67:e6:34:be:81:e2:1d:3a: 04:f9:31:d6 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICApkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1NzcxMTAvBgNVBAUTKDVDMTI2MzNFNkRBNzg2MTEzMUJDQ0ZFQTFGN0I3QUJE MzUxRDIzMkYwHhcNMjUwNDI5MDIzNjU5WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwM2I0Yi1iNDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunv4rWtqGU8FSiz17e5jwKSEltS9rN0jDsqSS4VINE8+JTI0qGiLpPSt2K+3 cC29ImykrQ6eqy8ATmUPED12QuISecdFDtBDNoPQAsIbWqJtGMdFthO94g6ZfeQS MKcPMlvH0r/9KZxYuGZ1dNzkACk5LNSyyQm/dzopnJDnpcaM3/hD1eFUQGZtvTfr gV9tfRLT3TJvW8Q5O6jyMSoptljJgzvZ+eqCT2vdU/KBYnn3Rw3oVmeAAfyid6tA iRE6Y/5E1OU3WFgpbhMPjSPw/pYkyKz8bl0Ob0iId+8E/ptjyb+eR/FtKqIeFoRY FK2MrYRgnHRHfFrRqYgDlGC4hQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFHQHNpuo lQXiPcodU18WAH9X74POMB8GA1UdIwQYMBaAFFwSYz5tp4YRMbzP6h97er01HSMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTU3Ny85MDNFNEM3ODAz MTYxMUVEOTBGODg0NEZDNEY5QUUwMi9YQkpqUG0ybmhoRXh2TV9xSDN0NnZUVWRJ eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hCSmpQbTJuaGhFeHZNX3FIM3Q2dlRVZEl5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU1NzcvOTAzRTRDNzgwMzE2MTFFRDkwRjg4NDRGQzRGOUFFMDIvNDE4OTY2REEw MzIwMTFFRDg0RDZDQTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBATKXiADBADLGD8DBADLGywDBAHLHdADBAHLN4YwDQYJKoZI hvcNAQELBQADggEBAEdzKYPLTdkDA+tgzz4y30y0Au/ws4xF4Vzu6CqwKZ4h3UQj Sqr5ncDeqWeZg+AFK8tHCLmzRCEoVmHiOoNRNcKbeDR8LuPp1TLwCF3K1prPf4Ku b8yd5DxgnEdqiMzBMQc8oqsBZSYKdY92BX3xXZmy/YQBlWGydjctM16Bj2Um466/ hT5TPTq+fzs3+LICOmD5qhpns4IcvpPaD/AGRXEBjr1IpZWhCQBwZPgHk+0Uy+G7 q04+xMcHmnBSej8dzHKgj13VXK+ZaiSoE1p9WbXSuUiRwdc0DNXzQv0lV9fb1uB4 sHjquamUjgR8O1r9wYwZaqBn5jS+geIdOgT5MdY= -----END CERTIFICATE-----Generated at Thu Jun 5 19:21:10 2025 by rpki-client