$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1033/378FDDAE554211EBA3CC727EC4F9AE02/F87F8298554311EBAAB65382C4F9AE02.roa File: F87F8298554311EBAAB65382C4F9AE02.roa (raw, json) Hash identifier: nS8BBJyH5MUGObSYJ3dgBqWPEE+Ak2G7WYEplUOFwrg= Subject key identifier: FE:C7:37:2B:86:52:C4:A5:E6:34:1C:1A:B1:07:FD:EE:1C:9C:CE:11 Certificate issuer: /CN=A91B1033/serialNumber=D86114972E30CE9C16058AD59FDBF6988D083919 Certificate serial: 06DA Authority key identifier: D8:61:14:97:2E:30:CE:9C:16:05:8A:D5:9F:DB:F6:98:8D:08:39:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2GEUly4wzpwWBYrVn9v2mI0IORk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1033/378FDDAE554211EBA3CC727EC4F9AE02/F87F8298554311EBAAB65382C4F9AE02.roa Signing time: Fri 30 May 2025 22:41:45 +0000 ROA not before: Fri 30 May 2025 22:41:45 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 1221 IP address blocks: 202.74.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1033/378FDDAE554211EBA3CC727EC4F9AE02/2GEUly4wzpwWBYrVn9v2mI0IORk.crl rsync://rpki.apnic.net/member_repository/A91B1033/378FDDAE554211EBA3CC727EC4F9AE02/2GEUly4wzpwWBYrVn9v2mI0IORk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2GEUly4wzpwWBYrVn9v2mI0IORk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 22:06:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1754 (0x6da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1033, serialNumber=D86114972E30CE9C16058AD59FDBF6988D083919 Validity Not Before: May 30 22:41:45 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=683a3428-89bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:c2:95:ea:9b:70:ad:64:de:31:2f:1b:f1:8a: d1:39:f0:43:1a:1b:22:05:58:2e:17:7f:03:6e:31: e4:10:f8:64:c2:0b:ee:5a:93:32:68:e6:6e:87:f3: 20:7e:f5:f9:dc:60:35:0c:b0:4c:c1:bb:4d:51:78: 1e:e1:06:fd:75:b1:1d:b2:9c:cd:2a:b0:7d:ce:0d: 30:1f:11:9d:9a:1c:65:5c:de:b5:c2:02:dd:1e:9f: a4:97:1e:4f:71:98:96:13:67:23:8f:e2:cf:42:ed: af:49:10:df:37:76:a5:a2:dd:85:a3:6b:93:dd:33: 49:85:1e:c7:5c:c2:1c:c9:ee:eb:f9:19:eb:0e:c6: 1d:50:26:c5:e9:3c:4b:20:0a:7d:bc:a9:84:0a:b7: 8d:1c:45:b3:1b:9b:96:15:6d:22:7f:75:f8:81:4b: 45:4b:c5:f0:32:d4:6d:95:f2:75:39:79:43:a7:1b: 2d:ad:87:63:a8:7f:99:c6:35:25:43:53:3b:21:71: dc:cf:a9:8a:1e:15:2c:8b:a7:78:dd:65:03:16:15: fc:0e:35:21:45:18:04:90:e9:b9:3f:d1:41:e0:be: 59:29:d4:a3:b2:aa:c1:3b:4f:8b:e5:29:a5:31:a7: 5c:b6:51:29:d2:0e:d2:3e:ac:0f:47:ef:74:06:4c: 24:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:C7:37:2B:86:52:C4:A5:E6:34:1C:1A:B1:07:FD:EE:1C:9C:CE:11 X509v3 Authority Key Identifier: keyid:D8:61:14:97:2E:30:CE:9C:16:05:8A:D5:9F:DB:F6:98:8D:08:39:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1033/378FDDAE554211EBA3CC727EC4F9AE02/2GEUly4wzpwWBYrVn9v2mI0IORk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2GEUly4wzpwWBYrVn9v2mI0IORk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1033/378FDDAE554211EBA3CC727EC4F9AE02/F87F8298554311EBAAB65382C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.74.252.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:51:f6:e3:32:18:96:09:c2:47:8f:de:d9:11:86:cb:10:2f: 2f:a8:91:40:31:f5:fa:8a:7e:50:9c:b9:2b:36:90:1a:ae:72: 83:3c:b2:e3:ce:a5:8f:46:17:19:25:a1:25:5b:7a:d4:6d:e3: ad:f3:0c:5d:c1:42:eb:a0:62:3e:07:c6:a7:51:c6:6c:0c:4e: 4d:e2:40:12:80:1b:34:7a:ba:21:2a:e0:94:54:a3:f2:5e:97: 51:6d:be:88:c2:89:94:68:4d:23:f3:77:14:70:25:74:ee:7e: cd:7f:fc:02:13:c1:18:02:4e:d4:44:ec:98:41:20:d9:03:8b: 24:fb:a7:ae:18:4e:51:cc:88:b3:87:e3:e6:5f:51:96:fc:1a: fe:20:b5:d2:78:95:eb:29:b6:7e:66:7f:b8:73:5e:c5:00:73: 5a:9d:6c:3d:7b:1d:92:da:98:69:9a:18:b2:d4:30:95:73:fd: 92:7d:e0:c3:ae:a2:6c:93:bd:de:ed:c3:ba:5d:07:5d:d0:60: ce:26:22:90:61:e3:8d:cc:2a:8b:70:9d:31:14:20:86:f4:13: 4e:8e:63:f8:04:c6:bc:ba:7d:09:30:88:2b:15:a3:13:77:12: 1f:96:60:2c:24:b8:2b:4e:08:e5:15:e9:f5:c4:94:15:ce:66: a0:5a:f5:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwMzMxMTAvBgNVBAUTKEQ4NjExNDk3MkUzMENFOUMxNjA1OEFENTlGREJGNjk4 OEQwODM5MTkwHhcNMjUwNTMwMjI0MTQ1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNhMzQyOC04OWJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy8KV6ptwrWTeMS8b8YrROfBDGhsiBVguF38DbjHkEPhkwgvuWpMyaOZuh/Mg fvX53GA1DLBMwbtNUXge4Qb9dbEdspzNKrB9zg0wHxGdmhxlXN61wgLdHp+klx5P cZiWE2cjj+LPQu2vSRDfN3alot2Fo2uT3TNJhR7HXMIcye7r+RnrDsYdUCbF6TxL IAp9vKmECreNHEWzG5uWFW0if3X4gUtFS8XwMtRtlfJ1OXlDpxstrYdjqH+ZxjUl Q1M7IXHcz6mKHhUsi6d43WUDFhX8DjUhRRgEkOm5P9FB4L5ZKdSjsqrBO0+L5Sml MadctlEp0g7SPqwPR+90BkwkqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFP7HNyuG UsSl5jQcGrEH/e4cnM4RMB8GA1UdIwQYMBaAFNhhFJcuMM6cFgWK1Z/b9piNCDkZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTAzMy8zNzhGRERBRTU1 NDIxMUVCQTNDQzcyN0VDNEY5QUUwMi8yR0VVbHk0d3pwd1dCWXJWbjl2Mm1JMElP UmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJHRVVseTR3enB3V0JZclZuOXYybUkwSU9Say5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjEwMzMvMzc4RkREQUU1NTQyMTFFQkEzQ0M3MjdFQzRGOUFFMDIvRjg3RjgyOTg1 NTQzMTFFQkFBQjY1MzgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKSvwwDQYJKoZIhvcNAQELBQADggEBAI1R9uMyGJYJwkeP 3tkRhssQLy+okUAx9fqKflCcuSs2kBqucoM8suPOpY9GFxkloSVbetRt463zDF3B QuugYj4HxqdRxmwMTk3iQBKAGzR6uiEq4JRUo/Jel1FtvojCiZRoTSPzdxRwJXTu fs1//AITwRgCTtRE7JhBINkDiyT7p64YTlHMiLOH4+ZfUZb8Gv4gtdJ4lesptn5m f7hzXsUAc1qdbD17HZLamGmaGLLUMJVz/ZJ94MOuomyTvd7tw7pdB13QYM4mIpBh 443MKotwnTEUIIb0E06OY/gExry6fQkwiCsVoxN3Eh+WYCwkuCtOCOUV6fXElBXO ZqBa9VQ= -----END CERTIFICATE-----Generated at Mon Jun 2 05:26:43 2025 by rpki-client