$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/943D15902D1011EFBBEBA67BC4F9AE02.roa File: 943D15902D1011EFBBEBA67BC4F9AE02.roa (raw, json) Hash identifier: r7+Epywiay/UAmGWjEXTbZ6MxuYjSj6zJi2sl5IN5FE= Subject key identifier: C6:DE:A8:A4:3F:EA:0C:A4:F4:EB:02:02:98:0B:4A:DD:03:1B:BD:32 Certificate issuer: /CN=A91D1216/serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Certificate serial: 03BA Authority key identifier: 6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/943D15902D1011EFBBEBA67BC4F9AE02.roa Signing time: Mon 26 May 2025 01:48:27 +0000 ROA not before: Mon 26 May 2025 01:48:27 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 17551 IP address blocks: 123.50.128.0/20 maxlen: 20 123.50.128.0/21 maxlen: 21 123.50.136.0/22 maxlen: 22 123.50.140.0/22 maxlen: 22 123.50.148.0/22 maxlen: 22 125.254.108.0/23 maxlen: 23 125.254.110.0/23 maxlen: 23 125.254.116.0/23 maxlen: 23 125.254.118.0/23 maxlen: 23 125.254.120.0/21 maxlen: 21 125.254.120.0/22 maxlen: 22 125.254.124.0/22 maxlen: 22 202.169.22.0/24 maxlen: 24 210.56.224.0/22 maxlen: 22 210.56.228.0/23 maxlen: 23 210.56.237.0/24 maxlen: 24 210.56.241.0/24 maxlen: 24 210.56.243.0/24 maxlen: 24 210.56.254.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 01:15:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 954 (0x3ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1216, serialNumber=6DBD5C4D0121FCB318E78C451B6F567320986002 Validity Not Before: May 26 01:48:27 2025 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6833c86b-37ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ae:8b:c1:c4:b6:b7:90:f8:c2:42:be:75:67: 57:6b:a7:99:c9:d5:7f:ae:cf:1e:b7:c7:8d:8d:4c: 70:e9:4f:73:d1:df:c6:0f:5a:63:a1:9b:56:2c:55: fb:2e:18:97:5d:83:d3:80:9e:b1:38:2c:c2:e1:8d: 52:c4:f0:1c:72:9e:38:8e:0d:6f:e6:8e:5d:a8:33: ec:f6:08:44:89:a6:cd:5c:a4:82:ec:27:1c:10:3f: 45:2a:e8:d2:56:19:25:cb:83:d7:23:a6:f5:ee:75: 0a:b5:0e:30:db:60:9b:8f:6d:10:aa:9e:d9:ae:39: 96:49:84:43:d4:45:a7:a0:07:cc:5d:a0:28:c4:fe: d8:b8:0c:1e:f4:b5:9b:9a:de:00:2e:c5:29:c4:89: 78:fe:31:74:b0:1b:23:92:9a:92:f6:31:94:96:42: e2:fa:1e:72:64:d7:20:0e:04:c2:c8:3c:87:a6:35: 4d:79:39:7a:e2:3c:6f:c8:56:d3:4f:62:68:3a:91: 70:2a:55:39:ab:fa:ee:6b:0b:d7:54:b8:f0:22:2c: 66:47:fb:24:6c:78:f4:55:4e:9c:df:e8:c2:5f:0f: 76:af:c2:8a:6a:0d:90:5a:f5:3f:e9:63:e6:4f:8c: f1:5a:ab:07:ac:9a:97:c7:84:7f:1d:d7:6c:46:46: 33:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:DE:A8:A4:3F:EA:0C:A4:F4:EB:02:02:98:0B:4A:DD:03:1B:BD:32 X509v3 Authority Key Identifier: keyid:6D:BD:5C:4D:01:21:FC:B3:18:E7:8C:45:1B:6F:56:73:20:98:60:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/bb1cTQEh_LMY54xFG29WcyCYYAI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bb1cTQEh_LMY54xFG29WcyCYYAI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1216/DC78268CB94B11EC832B7419C4F9AE02/943D15902D1011EFBBEBA67BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.50.128.0/20 123.50.148.0/22 125.254.108.0/22 125.254.116.0-125.254.127.255 202.169.22.0/24 210.56.224.0-210.56.229.255 210.56.237.0/24 210.56.241.0/24 210.56.243.0/24 210.56.254.0/23 Signature Algorithm: sha256WithRSAEncryption 73:65:f0:a9:15:c6:1f:aa:84:dc:92:d6:ff:39:ba:a3:08:df: ab:b5:6b:01:6f:a6:cb:7a:64:93:44:55:64:77:71:dc:09:1f: cd:e4:46:ea:7a:aa:e2:6f:41:99:d1:70:5a:38:e1:e1:20:1d: 2b:d1:7d:66:7e:0b:61:58:04:0a:95:df:9a:4e:ef:c3:e8:a9: 09:4f:18:0a:af:09:cf:1e:29:3f:f5:e6:0d:8f:e7:a0:b3:05: 09:fe:9b:bc:f7:ec:58:d1:16:ff:56:01:8c:cb:0e:e2:09:b2: 22:b2:b6:b2:3f:f4:9d:3c:c6:b3:4f:79:2d:69:90:82:f4:fa: d6:f3:d8:00:91:fa:26:6f:8d:8a:95:65:3e:c0:67:1e:1a:1d: 11:6e:9f:4c:0a:6a:38:00:ec:57:43:85:4c:5a:d5:d3:37:9b: 24:7d:ad:d5:16:7b:10:aa:b0:76:fe:40:1c:68:23:f5:d8:db: 3c:b2:3a:f5:d2:43:15:8f:51:c8:e2:1b:74:b9:3e:03:60:34: da:a0:94:a4:b0:a8:51:d5:cd:39:db:94:38:a2:e4:6b:b0:63: ee:2d:70:12:ab:a4:91:c8:2c:c9:63:e8:6b:ec:85:ea:fc:8a: 0f:65:6b:fc:00:f6:52:1d:77:14:92:2e:c3:c6:0d:15:d4:b2: 6a:9b:88:10 -----BEGIN CERTIFICATE----- MIIFtzCCBJ+gAwIBAgICA7owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyMTYxMTAvBgNVBAUTKDZEQkQ1QzREMDEyMUZDQjMxOEU3OEM0NTFCNkY1Njcz MjA5ODYwMDIwHhcNMjUwNTI2MDE0ODI3WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODMzYzg2Yi0zN2VhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr66LwcS2t5D4wkK+dWdXa6eZydV/rs8et8eNjUxw6U9z0d/GD1pjoZtWLFX7 LhiXXYPTgJ6xOCzC4Y1SxPAccp44jg1v5o5dqDPs9ghEiabNXKSC7CccED9FKujS Vhkly4PXI6b17nUKtQ4w22Cbj20Qqp7ZrjmWSYRD1EWnoAfMXaAoxP7YuAwe9LWb mt4ALsUpxIl4/jF0sBsjkpqS9jGUlkLi+h5yZNcgDgTCyDyHpjVNeTl64jxvyFbT T2JoOpFwKlU5q/ruawvXVLjwIixmR/skbHj0VU6c3+jCXw92r8KKag2QWvU/6WPm T4zxWqsHrJqXx4R/HddsRkYzxQIDAQABo4IC2zCCAtcwHQYDVR0OBBYEFMbeqKQ/ 6gyk9OsCApgLSt0DG70yMB8GA1UdIwQYMBaAFG29XE0BIfyzGOeMRRtvVnMgmGAC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTIxNi9EQzc4MjY4Q0I5 NEIxMUVDODMyQjc0MTlDNEY5QUUwMi9iYjFjVFFFaF9MTVk1NHhGRzI5V2N5Q1lZ QUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JiMWNUUUVoX0xNWTU0eEZHMjlXY3lDWVlBSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDEyMTYvREM3ODI2OENCOTRCMTFFQzgzMkI3NDE5QzRGOUFFMDIvOTQzRDE1OTAy RDEwMTFFRkJCRUJBNjdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwZQYIKwYBBQUHAQcBAf8E VjBUMFIEAgABMEwDBAR7MoADBAJ7MpQDBAJ9/mwwDAMEAn3+dAMEB33+AAMEAMqp FjAMAwQF0jjgAwQB0jjkAwQA0jjtAwQA0jjxAwQA0jjzAwQB0jj+MA0GCSqGSIb3 DQEBCwUAA4IBAQBzZfCpFcYfqoTcktb/ObqjCN+rtWsBb6bLemSTRFVkd3HcCR/N 5Ebqeqrib0GZ0XBaOOHhIB0r0X1mfgthWAQKld+aTu/D6KkJTxgKrwnPHik/9eYN j+egswUJ/pu89+xY0Rb/VgGMyw7iCbIisrayP/SdPMazT3ktaZCC9PrW89gAkfom b42KlWU+wGceGh0Rbp9MCmo4AOxXQ4VMWtXTN5skfa3VFnsQqrB2/kAcaCP12Ns8 sjr10kMVj1HI4ht0uT4DYDTaoJSksKhR1c0525Q4ouRrsGPuLXASq6SRyCzJY+hr 7IXq/IoPZWv8APZSHXcUki7Dxg0V1LJqm4gQ -----END CERTIFICATE-----Generated at Tue Jun 3 23:50:13 2025 by rpki-client