$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/6B10211E032B11ED8B3C5B4EC4F9AE02.roa File: 6B10211E032B11ED8B3C5B4EC4F9AE02.roa (raw, json) Hash identifier: ELuUl8jYoHQdUknrof/L+Xlspg+bgQj1KmK60+o/Jfs= Subject key identifier: DC:3F:56:DD:F0:85:BC:EF:88:E0:87:7C:DE:A1:F7:EF:61:71:0A:CD Certificate issuer: /CN=A91A5577/serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Certificate serial: 029A Authority key identifier: 5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/6B10211E032B11ED8B3C5B4EC4F9AE02.roa Signing time: Tue 29 Apr 2025 02:37:00 +0000 ROA not before: Tue 29 Apr 2025 02:37:00 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 7545 IP address blocks: 202.94.32.0/20 maxlen: 20 203.24.63.0/24 maxlen: 24 203.27.44.0/24 maxlen: 24 203.29.208.0/23 maxlen: 23 203.55.134.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 01:24:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 666 (0x29a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5577, serialNumber=5C12633E6DA7861131BCCFEA1F7B7ABD351D232F Validity Not Before: Apr 29 02:37:00 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=68103b4c-5a03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:19:b6:9d:b8:2d:3d:51:d0:87:f4:0b:28:42: ff:04:a7:9c:f6:d1:2c:73:51:14:a9:8b:ef:e5:3f: b6:94:c2:e6:49:15:ff:c7:88:bd:22:aa:70:f0:e8: f6:0f:87:72:40:1f:05:1b:c2:87:38:1e:13:36:97: 27:b6:09:e4:6c:96:b6:2a:d6:ff:a2:df:0a:a8:26: f0:31:fa:15:c2:f1:05:51:22:3a:da:c0:36:dd:68: 91:2a:02:aa:c6:9a:05:42:e0:8a:d3:a2:57:64:aa: 01:62:2f:82:06:6a:3c:5e:1e:ff:ad:20:e8:1b:60: 5e:a2:4b:d4:d9:5d:a3:fd:ef:e4:4e:d1:6d:06:88: 1c:ec:bb:b2:fa:2c:59:c3:d0:d6:ed:ab:09:eb:c1: 25:72:4e:44:86:91:a1:d4:59:26:e6:90:09:bd:00: 7a:8a:a9:08:a1:f5:5c:da:bc:f4:a8:b7:01:16:61: e2:7e:73:45:cf:9d:71:00:fc:7f:1c:07:d5:2c:46: e8:a1:dc:ee:d8:d2:0c:14:07:19:a5:ed:e8:f6:33: 62:ac:8a:e6:1b:83:68:aa:96:51:d6:8d:5b:1e:f6: ad:d8:85:3e:60:71:6f:87:e7:66:a6:33:ec:09:3d: 8d:8c:95:c0:d1:e3:63:21:a4:93:28:2d:ac:17:9d: 72:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:3F:56:DD:F0:85:BC:EF:88:E0:87:7C:DE:A1:F7:EF:61:71:0A:CD X509v3 Authority Key Identifier: keyid:5C:12:63:3E:6D:A7:86:11:31:BC:CF:EA:1F:7B:7A:BD:35:1D:23:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/XBJjPm2nhhExvM_qH3t6vTUdIy8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XBJjPm2nhhExvM_qH3t6vTUdIy8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5577/903E4C78031611ED90F8844FC4F9AE02/6B10211E032B11ED8B3C5B4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.94.32.0/20 203.24.63.0/24 203.27.44.0/24 203.29.208.0/23 203.55.134.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:b6:e4:df:3e:15:21:30:9a:87:64:9d:90:ee:f2:fc:24:b9: 01:73:4d:fa:46:09:8d:52:78:d8:72:0c:d1:10:bc:ca:60:6d: c2:22:03:48:d8:d6:19:f1:d8:12:ca:27:6c:87:7d:5b:3d:e1: 8f:9e:00:b5:6d:97:1e:5c:01:18:36:96:eb:9c:4a:f7:58:89: 7b:b5:d1:c1:19:4f:81:7a:8e:40:8a:08:85:00:c3:7e:c6:99: f5:22:ae:7f:69:e1:4e:4c:7e:01:d0:ce:d1:d3:df:d7:f6:6e: d1:eb:93:bf:5d:65:2a:65:6f:30:70:94:26:44:86:38:d9:1b: 1a:24:6a:e1:82:10:88:3a:a8:50:39:2a:e6:ee:9e:ed:22:84: 07:e6:b9:86:9a:fe:33:2b:55:af:72:c1:89:d1:98:ba:20:aa: 18:dc:57:2b:07:4f:df:af:bd:7e:0f:75:16:8b:f9:8b:af:59: c4:ee:bc:88:bf:0b:2b:d7:46:90:19:16:2f:3d:25:66:be:27: 18:47:da:a8:4c:ed:9d:e5:2e:bf:f2:ca:54:aa:53:df:9e:73: b6:e4:d9:ba:42:ad:9a:e9:36:1f:b3:90:80:5e:57:60:ab:28: 9a:d6:de:1d:c2:e8:cb:3f:b9:a4:3a:c1:28:97:a4:32:49:c9: b5:76:56:53 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICApowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1NzcxMTAvBgNVBAUTKDVDMTI2MzNFNkRBNzg2MTEzMUJDQ0ZFQTFGN0I3QUJE MzUxRDIzMkYwHhcNMjUwNDI5MDIzNzAwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEwM2I0Yy01YTAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuhm2nbgtPVHQh/QLKEL/BKec9tEsc1EUqYvv5T+2lMLmSRX/x4i9Iqpw8Oj2 D4dyQB8FG8KHOB4TNpcntgnkbJa2Ktb/ot8KqCbwMfoVwvEFUSI62sA23WiRKgKq xpoFQuCK06JXZKoBYi+CBmo8Xh7/rSDoG2BeokvU2V2j/e/kTtFtBogc7Luy+ixZ w9DW7asJ68Elck5EhpGh1Fkm5pAJvQB6iqkIofVc2rz0qLcBFmHifnNFz51xAPx/ HAfVLEboodzu2NIMFAcZpe3o9jNirIrmG4NoqpZR1o1bHvat2IU+YHFvh+dmpjPs CT2NjJXA0eNjIaSTKC2sF51yaQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFNw/Vt3w hbzviOCHfN6h9+9hcQrNMB8GA1UdIwQYMBaAFFwSYz5tp4YRMbzP6h97er01HSMv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTU3Ny85MDNFNEM3ODAz MTYxMUVEOTBGODg0NEZDNEY5QUUwMi9YQkpqUG0ybmhoRXh2TV9xSDN0NnZUVWRJ eTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hCSmpQbTJuaGhFeHZNX3FIM3Q2dlRVZEl5OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU1NzcvOTAzRTRDNzgwMzE2MTFFRDkwRjg4NDRGQzRGOUFFMDIvNkIxMDIxMUUw MzJCMTFFRDhCM0M1QjRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBATKXiADBADLGD8DBADLGywDBAHLHdADBAHLN4YwDQYJKoZI hvcNAQELBQADggEBAF225N8+FSEwmodknZDu8vwkuQFzTfpGCY1SeNhyDNEQvMpg bcIiA0jY1hnx2BLKJ2yHfVs94Y+eALVtlx5cARg2luucSvdYiXu10cEZT4F6jkCK CIUAw37GmfUirn9p4U5MfgHQztHT39f2btHrk79dZSplbzBwlCZEhjjZGxokauGC EIg6qFA5Kubunu0ihAfmuYaa/jMrVa9ywYnRmLogqhjcVysHT9+vvX4PdRaL+Yuv WcTuvIi/CyvXRpAZFi89JWa+JxhH2qhM7Z3lLr/yylSqU9+ec7bk2bpCrZrpNh+z kIBeV2CrKJrW3h3C6Ms/uaQ6wSiXpDJJybV2VlM= -----END CERTIFICATE-----Generated at Thu Jun 5 19:24:40 2025 by rpki-client