$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/505FA2389AEC11EC9C828D20C4F9AE02.roa File: 505FA2389AEC11EC9C828D20C4F9AE02.roa (raw, json) Hash identifier: wPkkd+9qWmI7GJ+dDqivqy0duNsy/wpor9GTZYCvAn0= Subject key identifier: E2:CA:D3:B8:EA:D1:E2:32:58:BD:86:1F:50:1B:B5:0C:A0:E2:27:1A Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4B1F Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/505FA2389AEC11EC9C828D20C4F9AE02.roa Signing time: Thu 15 May 2025 09:23:31 +0000 ROA not before: Thu 15 May 2025 09:23:31 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 38247 IP address blocks: 45.126.96.0/22 maxlen: 24 59.153.212.0/22 maxlen: 24 103.7.36.0/22 maxlen: 24 103.19.96.0/22 maxlen: 24 103.23.156.0/22 maxlen: 24 103.129.188.0/22 maxlen: 24 103.249.20.0/22 maxlen: 24 202.79.232.0/21 maxlen: 24 203.160.96.0/21 maxlen: 24 203.170.26.0/23 maxlen: 24 2400:e240::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 14:35:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19231 (0x4b1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A, serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: May 15 09:23:31 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6825b293-aa8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d9:8c:32:22:d0:90:77:82:77:87:ac:fb:9f: 2d:0a:49:2c:e0:e0:67:97:06:6a:ed:48:9b:f9:97: 29:3e:85:32:c5:5d:fd:b2:ef:ae:7f:69:9a:7d:58: 5c:b2:ea:8c:60:a6:6a:e3:ea:57:53:93:86:60:b9: 87:ff:2c:08:d0:e9:26:48:fb:11:36:63:77:b4:75: 9b:8d:fc:3d:52:a4:5b:31:90:0e:be:d6:d8:f0:f7: 64:be:cd:87:9f:cf:94:83:00:75:61:34:8c:4d:c3: 7c:46:a8:3f:87:32:41:94:1b:54:2e:11:1a:c6:69: 11:4e:55:a7:b1:69:67:e4:54:86:ba:c5:1e:e8:c6: 16:32:95:22:d2:66:f5:36:0a:cd:f4:fd:57:7f:8c: 44:ac:24:7d:9d:da:2f:d7:e5:88:f6:51:d4:77:03: fa:e1:04:ec:9c:44:68:29:f8:11:1a:4c:1d:3c:5b: 8d:8c:ae:dc:ef:a6:b0:32:23:36:da:80:8c:a5:4e: d1:d0:4c:d8:cd:b0:80:53:39:27:6e:2d:ac:7f:10: 3f:6f:3d:b1:06:4d:ff:0a:d8:f4:b1:9b:37:c3:0a: 5a:53:30:b2:0b:58:a4:09:60:6b:af:11:b4:c7:98: 62:af:dd:52:cf:7a:2a:6a:5f:43:62:47:dd:bd:59: cd:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:CA:D3:B8:EA:D1:E2:32:58:BD:86:1F:50:1B:B5:0C:A0:E2:27:1A X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/505FA2389AEC11EC9C828D20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.126.96.0/22 59.153.212.0/22 103.7.36.0/22 103.19.96.0/22 103.23.156.0/22 103.129.188.0/22 103.249.20.0/22 202.79.232.0/21 203.160.96.0/21 203.170.26.0/23 IPv6: 2400:e240::/32 Signature Algorithm: sha256WithRSAEncryption 3f:34:52:73:f2:e2:6e:16:24:cb:95:49:b0:62:ed:a6:5f:77: 88:b4:00:8e:72:a5:07:ea:5e:c6:9c:7f:8d:f4:e8:95:da:f4: 6e:11:a9:b0:b4:ae:a2:86:91:cf:40:b1:43:d0:e7:6d:fe:61: af:46:a5:04:ed:d7:85:87:31:91:f6:e8:c6:bc:e8:bc:c4:f1: 27:5c:12:4f:16:94:d8:0f:f8:a1:f9:6a:15:c6:8b:98:7f:a2: e9:8d:49:50:6a:2e:0b:61:34:c1:d9:fb:7b:82:7a:cc:99:3c: 05:08:b4:5b:31:0d:f2:fd:51:03:f7:eb:04:19:57:59:b3:95: 43:4f:90:df:5b:eb:44:fa:1d:44:55:55:45:95:87:26:63:08: 1f:93:f4:a9:26:c5:d9:ca:20:76:d8:df:40:fb:32:8b:bf:6e: f3:21:09:38:a8:df:c0:eb:7d:5a:17:12:a0:52:a2:28:09:b3: 6b:cc:73:3e:75:dd:78:86:d8:e7:b6:a1:ea:7b:0f:f5:6b:08: cb:09:05:d8:94:8e:14:74:42:d6:ef:6a:94:09:b8:e8:05:b0: 2d:45:2f:69:cb:98:8f:4d:3c:d5:5d:c5:d3:e6:7d:8e:46:90: 1a:0f:06:bc:2c:de:7c:9d:2a:d9:88:81:5c:b1:0b:cf:dc:38: bc:e2:9c:e2 -----BEGIN CERTIFICATE----- MIIFtjCCBJ6gAwIBAgICSx8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwNTE1MDkyMzMxWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI1YjI5My1hYThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv9mMMiLQkHeCd4es+58tCkks4OBnlwZq7Uib+ZcpPoUyxV39su+uf2mafVhc suqMYKZq4+pXU5OGYLmH/ywI0OkmSPsRNmN3tHWbjfw9UqRbMZAOvtbY8Pdkvs2H n8+UgwB1YTSMTcN8Rqg/hzJBlBtULhEaxmkRTlWnsWln5FSGusUe6MYWMpUi0mb1 NgrN9P1Xf4xErCR9ndov1+WI9lHUdwP64QTsnERoKfgRGkwdPFuNjK7c76awMiM2 2oCMpU7R0EzYzbCAUzknbi2sfxA/bz2xBk3/Ctj0sZs3wwpaUzCyC1ikCWBrrxG0 x5hir91Sz3oqal9DYkfdvVnNNQIDAQABo4IC2jCCAtYwHQYDVR0OBBYEFOLK07jq 0eIyWL2GH1AbtQyg4icaMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNTA1RkEyMzg5 QUVDMTFFQzlDODI4RDIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwZAYIKwYBBQUHAQcBAf8E VTBTMEIEAgABMDwDBAItfmADBAI7mdQDBAJnByQDBAJnE2ADBAJnF5wDBAJngbwD BAJn+RQDBAPKT+gDBAPLoGADBAHLqhowDQQCAAIwBwMFACQA4kAwDQYJKoZIhvcN AQELBQADggEBAD80UnPy4m4WJMuVSbBi7aZfd4i0AI5ypQfqXsacf4306JXa9G4R qbC0rqKGkc9AsUPQ523+Ya9GpQTt14WHMZH26Ma86LzE8SdcEk8WlNgP+KH5ahXG i5h/oumNSVBqLgthNMHZ+3uCesyZPAUItFsxDfL9UQP36wQZV1mzlUNPkN9b60T6 HURVVUWVhyZjCB+T9KkmxdnKIHbY30D7Mou/bvMhCTio38DrfVoXEqBSoigJs2vM cz513XiG2Oe2oep7D/VrCMsJBdiUjhR0QtbvapQJuOgFsC1FL2nLmI9NPNVdxdPm fY5GkBoPBrws3nydKtmIgVyxC8/cOLzinOI= -----END CERTIFICATE-----Generated at Tue Jun 3 23:44:19 2025 by rpki-client