$ rpki-client -vvf rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/C34EB9A6C28311EB9370913FC4F9AE02.roa File: C34EB9A6C28311EB9370913FC4F9AE02.roa (raw, json) Hash identifier: Al61RmIvimM1KwvJGrf39fcF1DIlgNVctNk1tZ67VR0= Subject key identifier: CD:30:F2:F9:24:CB:94:78:36:4E:F4:76:4B:81:6E:B4:16:8B:BB:EE Certificate issuer: /CN=A91C0E5D/serialNumber=02BEB3E621FABA63421ED3F884FA270BCD331D77 Certificate serial: 0643 Authority key identifier: 02:BE:B3:E6:21:FA:BA:63:42:1E:D3:F8:84:FA:27:0B:CD:33:1D:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ar6z5iH6umNCHtP4hPonC80zHXc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/C34EB9A6C28311EB9370913FC4F9AE02.roa Signing time: Fri 16 May 2025 23:32:11 +0000 ROA not before: Fri 16 May 2025 23:32:11 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 56166 IP address blocks: 203.18.51.0/24 maxlen: 24 2001:df0:207::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.crl rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ar6z5iH6umNCHtP4hPonC80zHXc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 22:44:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1603 (0x643) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C0E5D, serialNumber=02BEB3E621FABA63421ED3F884FA270BCD331D77 Validity Not Before: May 16 23:32:11 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6827cafa-aac2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:06:d1:44:69:77:ec:6e:28:1a:45:a1:bf:07: b4:e8:f7:51:dd:54:1d:47:ef:e7:56:7e:3d:35:cf: 65:57:04:ea:cf:59:6f:98:01:5b:e5:65:0f:0a:36: 00:a8:3f:15:81:57:d9:0e:69:ac:42:3a:75:0e:f1: 10:72:86:99:2b:9e:90:b7:7f:c5:81:5a:fd:cf:75: 25:2c:1d:3a:ed:84:43:36:23:0a:1b:bd:6e:4e:3a: 46:00:45:c8:e0:41:d4:d8:28:d2:e9:35:59:99:36: cc:2d:f5:ee:df:5a:61:10:d6:fe:56:4a:65:64:a6: 38:c8:de:e1:96:59:32:4a:e3:d0:04:80:41:fd:f5: 05:f8:18:c2:af:6e:33:e1:6a:d3:63:78:1b:b7:de: b2:49:5b:0e:77:8b:48:47:29:5d:bf:17:67:34:b6: 73:c5:00:1a:11:0d:aa:fa:f1:89:f8:42:da:7e:5d: a3:19:ec:cd:70:78:a3:c5:fb:bb:71:d4:e9:45:aa: 7a:cf:5c:6f:52:e7:8a:57:e8:a3:7b:9f:78:79:70: a9:cd:e6:87:e1:74:b6:c7:8e:e0:e4:ce:fd:d8:2f: 70:b4:25:7a:aa:1a:ab:4d:62:d8:0f:d8:c2:b8:03: 2d:18:ed:25:18:68:f4:f7:6c:e4:29:1d:b1:b2:87: c1:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:30:F2:F9:24:CB:94:78:36:4E:F4:76:4B:81:6E:B4:16:8B:BB:EE X509v3 Authority Key Identifier: keyid:02:BE:B3:E6:21:FA:BA:63:42:1E:D3:F8:84:FA:27:0B:CD:33:1D:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/Ar6z5iH6umNCHtP4hPonC80zHXc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ar6z5iH6umNCHtP4hPonC80zHXc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C0E5D/0D0FFBDC91D711EB86FA3426C4F9AE02/C34EB9A6C28311EB9370913FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.18.51.0/24 IPv6: 2001:df0:207::/48 Signature Algorithm: sha256WithRSAEncryption 22:85:3a:da:78:5a:78:30:a8:15:51:fe:a7:cd:b3:47:8d:08: ee:c3:dc:b9:7f:4f:09:3d:99:d9:b4:6c:20:2f:47:26:bb:aa: 81:52:dd:bd:55:4a:c8:96:35:14:98:c8:fd:61:d2:42:0c:48: 49:d2:ee:5e:3e:4a:b3:54:f5:2b:20:d8:4e:63:28:5c:41:73: 27:2f:29:4d:95:ef:e7:4c:bc:5f:e6:a5:d7:f1:75:5a:73:db: b2:b5:cb:1e:61:8c:94:25:7a:d0:1d:b8:51:3f:d3:d2:4d:ff: a2:6f:da:31:c2:df:9a:91:9d:4d:be:f8:c4:55:d6:80:b4:cf: f4:78:6c:ec:ae:8e:96:80:d0:ff:a0:66:c3:37:65:44:11:c2: 68:c7:71:7e:97:5d:8d:5a:6b:b9:43:e7:18:57:b5:ea:fc:3c: 88:eb:c8:2f:e4:32:fd:42:33:5d:5d:bd:41:36:8c:ee:25:85: 2c:7c:54:7e:c9:a2:6d:41:14:32:fe:ef:96:29:b5:92:6f:e6: 97:fe:65:39:7f:d3:09:fc:ff:f8:0a:7a:c2:09:fc:4d:22:4b: f5:46:12:71:f6:b0:fc:9b:46:58:36:26:8d:13:fa:0e:27:5b: 60:00:7b:91:fe:47:3e:85:44:e3:f2:47:6f:3c:10:08:d5:5a: 3a:bc:84:e4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzBFNUQxMTAvBgNVBAUTKDAyQkVCM0U2MjFGQUJBNjM0MjFFRDNGODg0RkEyNzBC Q0QzMzFENzcwHhcNMjUwNTE2MjMzMjExWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI3Y2FmYS1hYWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxgbRRGl37G4oGkWhvwe06PdR3VQdR+/nVn49Nc9lVwTqz1lvmAFb5WUPCjYA qD8VgVfZDmmsQjp1DvEQcoaZK56Qt3/FgVr9z3UlLB067YRDNiMKG71uTjpGAEXI 4EHU2CjS6TVZmTbMLfXu31phENb+VkplZKY4yN7hllkySuPQBIBB/fUF+BjCr24z 4WrTY3gbt96ySVsOd4tIRyldvxdnNLZzxQAaEQ2q+vGJ+ELafl2jGezNcHijxfu7 cdTpRap6z1xvUueKV+ije594eXCpzeaH4XS2x47g5M792C9wtCV6qhqrTWLYD9jC uAMtGO0lGGj092zkKR2xsofBNwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFM0w8vkk y5R4Nk70dkuBbrQWi7vuMB8GA1UdIwQYMBaAFAK+s+Yh+rpjQh7T+IT6JwvNMx13 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMEU1RC8wRDBGRkJEQzkx RDcxMUVCODZGQTM0MjZDNEY5QUUwMi9BcjZ6NWlINnVtTkNIdFA0aFBvbkM4MHpI WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FyNno1aUg2dW1OQ0h0UDRoUG9uQzgwekhYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzBFNUQvMEQwRkZCREM5MUQ3MTFFQjg2RkEzNDI2QzRGOUFFMDIvQzM0RUI5QTZD MjgzMTFFQjkzNzA5MTNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLEjMwDwQCAAIwCQMHACABDfACBzANBgkqhkiG9w0BAQsF AAOCAQEAIoU62nhaeDCoFVH+p82zR40I7sPcuX9PCT2Z2bRsIC9HJruqgVLdvVVK yJY1FJjI/WHSQgxISdLuXj5Ks1T1KyDYTmMoXEFzJy8pTZXv50y8X+al1/F1WnPb srXLHmGMlCV60B24UT/T0k3/om/aMcLfmpGdTb74xFXWgLTP9Hhs7K6OloDQ/6Bm wzdlRBHCaMdxfpddjVpruUPnGFe16vw8iOvIL+Qy/UIzXV29QTaM7iWFLHxUfsmi bUEUMv7vlim1km/ml/5lOX/TCfz/+Ap6wgn8TSJL9UYScfaw/JtGWDYmjRP6Didb YAB7kf5HPoVE4/JHbzwQCNVaOryE5A== -----END CERTIFICATE-----Generated at Mon Jun 2 06:18:35 2025 by rpki-client