$ rpki-client -vvf rpki.apnic.net/member_repository/A91A839E/345D0586336811F0B1B56D6CC4F9AE02/C317D9BA341A11F0B6835730C4F9AE02.roa File: C317D9BA341A11F0B6835730C4F9AE02.roa (raw, json) Hash identifier: slKnmbx+8GFjxzbTLlGteNrzM3mXfRGAHKxnN7Hj2s4= Subject key identifier: 66:E4:A7:25:65:43:56:AB:AE:02:CA:71:0F:19:4A:E2:61:64:0E:33 Certificate issuer: /CN=A91A839E/serialNumber=C12109F55C55873A41C3778372FB09A0B740D2CD Certificate serial: 03 Authority key identifier: C1:21:09:F5:5C:55:87:3A:41:C3:77:83:72:FB:09:A0:B7:40:D2:CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wSEJ9VxVhzpBw3eDcvsJoLdA0s0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A839E/345D0586336811F0B1B56D6CC4F9AE02/C317D9BA341A11F0B6835730C4F9AE02.roa Signing time: Sun 18 May 2025 19:03:20 +0000 ROA not before: Sun 18 May 2025 19:03:20 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 397032 IP address blocks: 163.227.178.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A839E/345D0586336811F0B1B56D6CC4F9AE02/wSEJ9VxVhzpBw3eDcvsJoLdA0s0.crl rsync://rpki.apnic.net/member_repository/A91A839E/345D0586336811F0B1B56D6CC4F9AE02/wSEJ9VxVhzpBw3eDcvsJoLdA0s0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wSEJ9VxVhzpBw3eDcvsJoLdA0s0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 08:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A839E, serialNumber=C12109F55C55873A41C3778372FB09A0B740D2CD Validity Not Before: May 18 19:03:20 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682a2ef7-949c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:cc:fc:d3:dc:a3:e1:a3:f6:6d:15:79:12:6b: d4:96:47:2a:4c:bf:d4:4a:65:1e:42:f7:e0:b1:39: 0b:08:93:76:6f:cc:75:6b:e4:c6:69:ab:a1:81:91: 59:34:66:d8:dc:47:5d:bd:29:d1:db:e8:ee:36:86: 59:35:da:a7:58:e3:48:f7:10:1b:ac:54:a7:23:a2: 91:f1:03:34:a5:2f:20:d6:48:43:ee:2b:a1:07:95: 31:03:79:e7:9a:1c:bc:95:b0:64:22:b1:a4:cb:32: 47:b2:5f:5b:af:61:3c:3b:83:1f:be:2c:fe:db:75: 91:d8:ed:f1:2a:fb:8b:4e:41:d2:75:7e:c1:3f:ef: a5:9e:03:f2:35:0a:95:e4:ff:fb:ef:95:a1:91:51: 2d:fa:f7:ff:74:97:da:7b:24:43:bf:64:5b:8a:a1: b9:a8:c2:f8:52:a0:fa:86:cf:54:77:5e:fb:c1:90: f9:63:1b:d2:c6:7d:8a:c5:64:b2:49:41:65:b8:6a: 59:38:cd:6f:c0:34:a7:34:68:b0:a2:9d:5c:ac:44: 15:c1:f6:b7:46:87:09:57:8f:e5:15:2c:bc:33:52: 23:d4:a8:ec:17:f6:4a:42:90:d2:bd:0d:7d:59:ae: 91:9b:9b:5f:39:f3:13:18:ce:91:27:63:cc:94:1a: ba:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:E4:A7:25:65:43:56:AB:AE:02:CA:71:0F:19:4A:E2:61:64:0E:33 X509v3 Authority Key Identifier: keyid:C1:21:09:F5:5C:55:87:3A:41:C3:77:83:72:FB:09:A0:B7:40:D2:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A839E/345D0586336811F0B1B56D6CC4F9AE02/wSEJ9VxVhzpBw3eDcvsJoLdA0s0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wSEJ9VxVhzpBw3eDcvsJoLdA0s0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A839E/345D0586336811F0B1B56D6CC4F9AE02/C317D9BA341A11F0B6835730C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.178.0/23 Signature Algorithm: sha256WithRSAEncryption 99:a2:2f:9d:b2:ec:ac:1b:72:a6:dd:a2:51:ed:c5:5e:a7:37: c1:91:8b:07:38:b6:2d:ba:fb:88:74:f0:f0:f8:50:78:3f:23: 18:7c:11:1a:1e:31:33:d8:23:35:2f:31:ef:f6:76:3f:71:b4: 11:8a:05:0f:bc:5e:1a:ee:b3:d9:89:f7:4a:e7:d8:13:df:22: 46:18:6a:7c:71:90:16:02:31:ba:8c:49:27:81:6c:6f:48:e0: 0f:f9:cf:eb:90:cf:f8:94:fd:5b:b9:07:09:8f:1a:56:69:13: c6:4e:b8:bd:48:4a:77:d0:5a:a8:04:31:fa:95:45:96:2b:bd: 69:61:7a:b5:5e:d4:5b:34:3a:a9:f9:7b:2b:d1:23:26:03:69: 20:3f:10:f1:09:0d:0b:6c:a6:65:5b:aa:6c:4c:63:e4:64:d0: 11:ce:ce:4c:a4:f0:a6:39:2f:05:ee:16:97:ce:00:12:e7:ef: d9:a0:fd:9c:69:a7:11:2b:93:ad:17:8a:14:dc:97:ac:22:85: af:00:6a:90:72:6a:50:31:6e:28:6c:22:ee:26:60:f0:e1:59: 07:fc:5a:4e:19:87:ea:41:bc:71:12:d7:80:6f:6a:54:a6:aa: 7d:d2:b4:45:c6:43:a8:34:36:93:3d:3a:ef:18:83:18:8a:32: 3a:f7:e5:0d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB ODM5RTExMC8GA1UEBRMoQzEyMTA5RjU1QzU1ODczQTQxQzM3NzgzNzJGQjA5QTBC NzQwRDJDRDAeFw0yNTA1MTgxOTAzMjBaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MmEyZWY3LTk0OWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCezPzT3KPho/ZtFXkSa9SWRypMv9RKZR5C9+CxOQsIk3ZvzHVr5MZpq6GBkVk0 ZtjcR129KdHb6O42hlk12qdY40j3EBusVKcjopHxAzSlLyDWSEPuK6EHlTEDeeea HLyVsGQisaTLMkeyX1uvYTw7gx++LP7bdZHY7fEq+4tOQdJ1fsE/76WeA/I1CpXk //vvlaGRUS369/90l9p7JEO/ZFuKobmowvhSoPqGz1R3XvvBkPljG9LGfYrFZLJJ QWW4alk4zW/ANKc0aLCinVysRBXB9rdGhwlXj+UVLLwzUiPUqOwX9kpCkNK9DX1Z rpGbm1858xMYzpEnY8yUGrpLAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUZuSnJWVD VquuAspxDxlK4mFkDjMwHwYDVR0jBBgwFoAUwSEJ9VxVhzpBw3eDcvsJoLdA0s0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE4MzlFLzM0NUQwNTg2MzM2 ODExRjBCMUI1NkQ2Q0M0RjlBRTAyL3dTRUo5VnhWaHpwQnczZURjdnNKb0xkQTBz MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvd1NFSjlWeFZoenBCdzNlRGN2c0pvTGRBMHMwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB ODM5RS8zNDVEMDU4NjMzNjgxMUYwQjFCNTZENkNDNEY5QUUwMi9DMzE3RDlCQTM0 MUExMUYwQjY4MzU3MzBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaPjsjANBgkqhkiG9w0BAQsFAAOCAQEAmaIvnbLsrBtypt2i Ue3FXqc3wZGLBzi2Lbr7iHTw8PhQeD8jGHwRGh4xM9gjNS8x7/Z2P3G0EYoFD7xe Gu6z2Yn3SufYE98iRhhqfHGQFgIxuoxJJ4Fsb0jgD/nP65DP+JT9W7kHCY8aVmkT xk64vUhKd9BaqAQx+pVFliu9aWF6tV7UWzQ6qfl7K9EjJgNpID8Q8QkNC2ymZVuq bExj5GTQEc7OTKTwpjkvBe4Wl84AEufv2aD9nGmnESuTrReKFNyXrCKFrwBqkHJq UDFuKGwi7iZg8OFZB/xaThmH6kG8cRLXgG9qVKaqfdK0RcZDqDQ2kz067xiDGIoy OvflDQ== -----END CERTIFICATE-----Generated at Wed Jun 4 00:03:53 2025 by rpki-client