$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/D8346320F7A011EE8BE8843BC4F9AE02.roa File: D8346320F7A011EE8BE8843BC4F9AE02.roa (raw, json) Hash identifier: w5ofhzUzRvCot65WQ4cidA6AcgZbPr0ZDlGiXy64td8= Subject key identifier: AD:12:37:7B:C4:05:97:64:28:9B:D1:A1:7D:AB:AF:3E:3F:0A:15:A4 Certificate issuer: /CN=A91A5849/serialNumber=536BF8DDCE802667378F47BD4954A90B7C7009C1 Certificate serial: CB Authority key identifier: 53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/D8346320F7A011EE8BE8843BC4F9AE02.roa Signing time: Sat 03 May 2025 05:12:27 +0000 ROA not before: Sat 03 May 2025 05:12:27 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 14618 IP address blocks: 202.37.173.0/24 maxlen: 24 2001:df3:aac0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5849, serialNumber=536BF8DDCE802667378F47BD4954A90B7C7009C1 Validity Not Before: May 3 05:12:27 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6815a5bb-5338 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e3:38:b5:50:3d:f6:5f:c0:e4:0d:01:7e:29: 82:10:51:d1:1b:32:19:32:a5:32:06:75:bf:18:fa: 99:d5:dd:15:75:53:82:bb:30:35:dd:74:19:f5:a9: 5c:9e:ee:9a:23:65:84:a5:2b:79:41:c3:ef:31:76: 4e:6e:d9:50:d3:5b:01:2a:e1:11:12:53:ff:27:c6: 3b:2c:39:0f:12:fd:a5:a5:08:08:f7:40:25:95:a7: c7:93:2b:25:76:57:6e:15:03:eb:2e:96:d5:8e:65: cd:10:d3:fe:0c:b6:97:6f:30:42:40:22:c9:17:aa: 03:50:f3:9c:2c:ac:20:db:8a:ca:26:e5:14:6b:18: 70:5c:a1:28:4e:dc:50:a2:0f:4d:a4:c0:64:a8:69: f6:30:fd:7a:0e:6d:5e:5f:84:ce:53:89:d2:29:88: e0:33:c6:14:ec:fc:9f:7e:eb:c6:a3:d7:f4:63:9e: 39:6e:30:f8:9d:56:02:b8:22:7d:9c:2b:4c:c8:71: 52:a9:d0:6b:8f:24:dc:bd:e0:de:25:5e:73:49:cf: 04:63:d5:e3:40:44:12:32:3c:55:db:c8:b2:06:ad: b6:0c:c7:77:79:74:94:b7:3b:a3:f9:ce:22:e6:86: 57:3f:a7:ce:fd:d3:15:10:51:0b:0b:5d:31:b8:2d: 7c:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:12:37:7B:C4:05:97:64:28:9B:D1:A1:7D:AB:AF:3E:3F:0A:15:A4 X509v3 Authority Key Identifier: keyid:53:6B:F8:DD:CE:80:26:67:37:8F:47:BD:49:54:A9:0B:7C:70:09:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/U2v43c6AJmc3j0e9SVSpC3xwCcE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U2v43c6AJmc3j0e9SVSpC3xwCcE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5849/DBAD384EF79E11EEA45AAE2CC4F9AE02/D8346320F7A011EE8BE8843BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.37.173.0/24 IPv6: 2001:df3:aac0::/48 Signature Algorithm: sha256WithRSAEncryption 78:8b:bd:19:98:18:56:56:1a:28:7b:4d:3b:f6:7d:de:14:cc: 36:74:4d:3c:76:a3:fc:31:49:ba:3f:55:0e:1b:65:33:f4:ba: 4b:55:6f:06:8d:03:7c:f2:a5:8f:d3:c0:06:17:7f:5f:ac:29: 86:d1:b9:85:7b:77:45:87:09:3e:b6:7e:b6:fb:ab:0a:20:d1: 8d:82:79:95:50:46:09:b0:7e:20:f0:e6:b3:2d:7b:e2:30:f3: af:81:96:07:56:3f:5e:e7:f1:68:c8:8d:3b:46:02:7d:ee:3a: 05:c3:8d:3e:8a:39:32:47:67:53:b0:30:01:2c:99:b9:4e:f1: e1:ca:05:39:8d:20:58:bb:05:b8:64:20:e6:93:93:7b:59:4d: ec:cb:44:56:56:a3:9e:64:4a:2c:a5:c5:52:e1:4e:2a:7f:25: 2f:81:3f:aa:17:0e:d2:19:b6:c9:74:69:bc:08:4e:cb:b3:e5: 8c:1c:77:b9:0d:b0:b6:ba:66:de:1c:e4:aa:53:8d:40:3b:14: 1d:48:d4:b9:b3:cd:40:2c:90:af:b6:42:f4:d5:c5:7a:f9:24: e3:dd:8e:f2:e3:b8:8e:4e:78:f4:be:77:97:37:69:84:05:33: e9:f8:ed:72:02:c1:6d:5e:ea:5f:9e:90:12:27:dc:fb:85:a5: f2:6a:dd:5d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU4NDkxMTAvBgNVBAUTKDUzNkJGOEREQ0U4MDI2NjczNzhGNDdCRDQ5NTRBOTBC N0M3MDA5QzEwHhcNMjUwNTAzMDUxMjI3WhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1YTViYi01MzM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmuM4tVA99l/A5A0BfimCEFHRGzIZMqUyBnW/GPqZ1d0VdVOCuzA13XQZ9alc nu6aI2WEpSt5QcPvMXZObtlQ01sBKuERElP/J8Y7LDkPEv2lpQgI90AllafHkysl dlduFQPrLpbVjmXNENP+DLaXbzBCQCLJF6oDUPOcLKwg24rKJuUUaxhwXKEoTtxQ og9NpMBkqGn2MP16Dm1eX4TOU4nSKYjgM8YU7PyffuvGo9f0Y545bjD4nVYCuCJ9 nCtMyHFSqdBrjyTcveDeJV5zSc8EY9XjQEQSMjxV28iyBq22DMd3eXSUtzuj+c4i 5oZXP6fO/dMVEFELC10xuC18MwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFK0SN3vE BZdkKJvRoX2rrz4/ChWkMB8GA1UdIwQYMBaAFFNr+N3OgCZnN49HvUlUqQt8cAnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTg0OS9EQkFEMzg0RUY3 OUUxMUVFQTQ1QUFFMkNDNEY5QUUwMi9VMnY0M2M2QUptYzNqMGU5U1ZTcEMzeHdD Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1UydjQzYzZBSm1jM2owZTlTVlNwQzN4d0NjRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU4NDkvREJBRDM4NEVGNzlFMTFFRUE0NUFBRTJDQzRGOUFFMDIvRDgzNDYzMjBG N0EwMTFFRThCRTg4NDNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKJa0wDwQCAAIwCQMHACABDfOqwDANBgkqhkiG9w0BAQsF AAOCAQEAeIu9GZgYVlYaKHtNO/Z93hTMNnRNPHaj/DFJuj9VDhtlM/S6S1VvBo0D fPKlj9PABhd/X6wphtG5hXt3RYcJPrZ+tvurCiDRjYJ5lVBGCbB+IPDmsy174jDz r4GWB1Y/XufxaMiNO0YCfe46BcONPoo5MkdnU7AwASyZuU7x4coFOY0gWLsFuGQg 5pOTe1lN7MtEVlajnmRKLKXFUuFOKn8lL4E/qhcO0hm2yXRpvAhOy7PljBx3uQ2w trpm3hzkqlONQDsUHUjUubPNQCyQr7ZC9NXFevkk492O8uO4jk549L53lzdphAUz 6fjtcgLBbV7qX56QEifc+4Wl8mrdXQ== -----END CERTIFICATE-----Generated at Tue Jun 3 23:51:28 2025 by rpki-client