$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/00E626A4A57611EF98285E5FC4F9AE02.roa File: 00E626A4A57611EF98285E5FC4F9AE02.roa (raw, json) Hash identifier: Qgji862kow2VwzLmbLL0a0Y2hhvgFChH2ZT0r4kSTl8= Subject key identifier: 32:BF:1C:D3:40:60:11:D1:BF:31:7B:21:8C:68:74:1C:9F:8E:39:EA Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 016B Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/00E626A4A57611EF98285E5FC4F9AE02.roa Signing time: Fri 23 May 2025 03:23:17 +0000 ROA not before: Fri 23 May 2025 03:23:17 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 209242 IP address blocks: 203.6.66.0/24 maxlen: 24 203.6.68.0/24 maxlen: 24 203.6.69.0/24 maxlen: 24 203.6.74.0/24 maxlen: 24 203.6.76.0/24 maxlen: 24 203.6.77.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 04:10:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 363 (0x16b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: May 23 03:23:17 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=682fea25-d5dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1c:a2:e6:fd:e9:aa:f1:78:f4:f6:22:3f:66: 6d:9b:cd:58:a3:ac:22:d2:d1:e7:5f:5f:00:ad:b0: e1:3a:0b:d1:b5:05:66:9f:18:5a:1b:58:46:e3:dc: 4a:f5:59:c5:02:31:ce:34:e0:3e:cb:2f:d3:8d:55: 99:df:45:07:4c:f9:94:65:ab:20:08:dd:69:b9:14: 85:55:24:59:41:ac:88:38:ac:c3:24:3f:03:95:24: 75:b9:4f:5d:32:5f:16:7a:55:f8:e3:a3:17:5a:11: 30:9e:e9:69:8c:42:c0:eb:04:09:b2:3c:5e:65:0b: 34:71:36:f1:04:6c:44:de:15:74:9a:19:e8:5e:c7: cb:e3:49:4e:ac:43:f3:5a:68:5d:2d:51:95:77:de: 43:c9:b6:30:a2:83:86:40:14:aa:64:ef:0c:04:86: f5:11:d4:eb:f4:67:3e:33:c6:57:2a:a4:db:b2:11: c8:f9:3a:77:89:d5:0b:45:78:eb:c6:19:24:c2:f4: d7:ab:0d:59:c6:cb:6c:6c:e5:8b:40:9c:23:6e:8c: 9a:e3:b4:22:29:fd:3b:4e:d3:8f:d0:2e:43:c8:13: 72:31:2f:ab:c7:1a:30:e7:76:08:f8:ec:17:1c:4e: e2:49:df:d0:35:28:9f:99:5a:19:6e:77:ce:51:ec: 97:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:BF:1C:D3:40:60:11:D1:BF:31:7B:21:8C:68:74:1C:9F:8E:39:EA X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/00E626A4A57611EF98285E5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.6.66.0/24 203.6.68.0/23 203.6.74.0/24 203.6.76.0/23 Signature Algorithm: sha256WithRSAEncryption 63:58:98:7d:59:02:0b:16:91:67:d5:6c:8e:21:37:74:04:98: 9e:09:84:ec:49:89:0e:5f:64:24:d1:57:8b:f3:55:45:26:39: 1f:c4:91:4d:54:50:4b:dd:07:26:c2:4f:3c:af:26:8d:01:b0: 90:0d:63:1e:da:a9:3e:5c:76:35:6f:55:68:aa:fb:5e:be:e0: 5a:09:e9:39:30:2b:dc:c8:a7:f2:78:75:f6:ec:6b:6b:ca:ee: f1:10:0e:a4:96:b2:12:be:c5:80:57:54:6a:37:f0:85:cf:96: 09:da:37:48:4c:ab:b3:e8:af:e9:71:25:0b:18:24:1c:56:84: a0:88:7c:cf:94:a4:37:04:ca:9f:dc:a3:f4:c9:5b:1c:cc:38: 1e:c4:46:26:c3:5c:bb:11:e8:6f:1f:be:23:73:a4:19:0f:12: bb:ca:66:fb:9a:30:04:b4:45:0f:eb:02:42:b8:db:e6:97:16: da:0f:f9:a4:4c:98:71:ca:56:a2:3f:3f:d7:3a:b6:1c:9c:0d: 4f:37:d7:93:61:aa:9b:c3:11:23:69:de:96:2d:73:0f:6f:99: 93:73:f8:6e:66:a1:bc:20:16:8e:0b:a2:ca:99:de:06:0e:33: ac:ee:f9:74:2d:07:d7:c4:62:95:69:5d:99:89:8e:d3:72:d1: 05:e1:a1:db -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICAWswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjUwNTIzMDMyMzE3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmZWEyNS1kNWRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsRyi5v3pqvF49PYiP2Ztm81Yo6wi0tHnX18ArbDhOgvRtQVmnxhaG1hG49xK 9VnFAjHONOA+yy/TjVWZ30UHTPmUZasgCN1puRSFVSRZQayIOKzDJD8DlSR1uU9d Ml8WelX446MXWhEwnulpjELA6wQJsjxeZQs0cTbxBGxE3hV0mhnoXsfL40lOrEPz WmhdLVGVd95DybYwooOGQBSqZO8MBIb1EdTr9Gc+M8ZXKqTbshHI+Tp3idULRXjr xhkkwvTXqw1ZxstsbOWLQJwjboya47QiKf07TtOP0C5DyBNyMS+rxxow53YI+OwX HE7iSd/QNSifmVoZbnfOUeyX+QIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFDK/HNNA YBHRvzF7IYxodByfjjnqMB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzlFODIvRUE3RTVGQTY2MzZGMTFFRTk3Qzc0QjVDQzRGOUFFMDIvMDBFNjI2QTRB NTc2MTFFRjk4Mjg1RTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBADLBkIDBAHLBkQDBADLBkoDBAHLBkwwDQYJKoZIhvcNAQEL BQADggEBAGNYmH1ZAgsWkWfVbI4hN3QEmJ4JhOxJiQ5fZCTRV4vzVUUmOR/EkU1U UEvdBybCTzyvJo0BsJANYx7aqT5cdjVvVWiq+16+4FoJ6TkwK9zIp/J4dfbsa2vK 7vEQDqSWshK+xYBXVGo38IXPlgnaN0hMq7Por+lxJQsYJBxWhKCIfM+UpDcEyp/c o/TJWxzMOB7ERibDXLsR6G8fviNzpBkPErvKZvuaMAS0RQ/rAkK42+aXFtoP+aRM mHHKVqI/P9c6thycDU8315NhqpvDESNp3pYtcw9vmZNz+G5mobwgFo4LosqZ3gYO M6zu+XQtB9fEYpVpXZmJjtNy0QXhods= -----END CERTIFICATE-----Generated at Mon Jun 2 05:22:18 2025 by rpki-client