$ rpki-client -vvf rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/6E41DE08310A11F0AC8DF544C4F9AE02.roa File: 6E41DE08310A11F0AC8DF544C4F9AE02.roa (raw, json) Hash identifier: 1rvs0GBAuHrNAHdvsK+LkWPhncBagdhoXnnxzRRg5HA= Subject key identifier: F9:61:28:11:00:2F:4B:82:D6:AE:B3:10:CF:A1:42:A1:B0:C0:3A:5A Certificate issuer: /CN=A91D366A/serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Certificate serial: 0270 Authority key identifier: B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/6E41DE08310A11F0AC8DF544C4F9AE02.roa Signing time: Wed 14 May 2025 21:28:52 +0000 ROA not before: Wed 14 May 2025 21:28:52 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 58061 IP address blocks: 203.33.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 02:11:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 624 (0x270) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D366A, serialNumber=B067C6BB70DF0DC04CE77F7C8D76706A49F6CB85 Validity Not Before: May 14 21:28:52 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=68250b14-6e9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:5f:4c:cb:19:9b:f6:e0:ab:15:a5:f8:0a:b9: c2:60:b4:d6:e2:14:c2:c8:ea:c9:c8:d0:9a:da:01: 95:f2:a2:11:8d:89:85:03:de:c4:7d:ef:94:38:29: ca:2d:e1:62:40:44:0a:23:2b:a5:8c:d7:b3:ab:bc: 6a:df:c9:f8:76:9b:b8:3a:54:c6:af:e3:a6:57:1f: bc:bc:05:f4:18:ed:c8:71:47:9b:71:cd:4a:c4:fe: 18:bd:e2:0d:64:7e:9c:47:e9:47:43:ee:c5:f7:3d: db:9f:11:c0:9b:de:77:c8:74:b9:bc:35:eb:bf:a5: 0e:68:60:4d:85:1a:d1:02:bc:88:e5:19:9c:a3:e1: eb:db:a3:9e:8b:44:9f:09:c9:dc:56:3a:d3:d2:28: f3:32:0a:6f:83:a3:93:0d:ac:f8:c6:71:02:9d:db: 3b:a2:28:fa:ee:3b:11:97:3d:fd:78:c0:6a:5d:69: d7:be:15:c0:6e:d5:c5:a3:91:82:ad:09:4b:df:8e: 39:f2:23:55:de:d9:c3:8d:c1:24:bd:aa:d7:ca:a5: 06:b0:50:70:47:1d:f0:4d:8c:9d:ee:83:76:1e:d1: 82:5b:9c:a7:69:fa:21:f1:7b:b9:9e:b2:a8:bd:8b: e1:0b:dc:d7:e9:85:c0:94:71:0b:e6:bc:ea:73:69: 43:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:61:28:11:00:2F:4B:82:D6:AE:B3:10:CF:A1:42:A1:B0:C0:3A:5A X509v3 Authority Key Identifier: keyid:B0:67:C6:BB:70:DF:0D:C0:4C:E7:7F:7C:8D:76:70:6A:49:F6:CB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/sGfGu3DfDcBM5398jXZwakn2y4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sGfGu3DfDcBM5398jXZwakn2y4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D366A/EC09AA4A307D11EDA6C3A212C4F9AE02/6E41DE08310A11F0AC8DF544C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.33.239.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:42:a4:b8:48:9b:d3:ff:f3:3b:fd:c5:d7:92:7b:0c:29:19: 64:ab:c3:f9:ee:cc:8f:f0:8b:63:52:7b:75:ca:47:44:ab:5c: 9d:8a:77:d1:27:7e:27:2c:83:95:7f:3b:dc:bb:0d:f8:68:d5: 15:48:df:22:ee:3d:99:2f:02:01:6e:ab:3f:3e:4e:b7:c5:2f: f1:52:dc:7d:95:4f:ff:ec:36:8d:d0:28:4d:5c:63:7f:41:cf: f8:cd:4b:cf:12:cc:3b:89:6e:78:2b:50:4e:0c:51:22:14:6f: e2:e7:f8:bc:8b:64:2b:d4:a8:71:eb:62:a9:0b:ae:bb:9e:2a: d5:56:47:f1:34:44:ae:de:8e:3e:10:25:45:db:43:24:d9:84: 0d:59:4b:89:a2:c4:96:7d:ad:d7:b0:df:16:12:f9:fa:9c:6a: 3f:54:6b:e0:aa:52:99:44:dd:53:85:30:6d:99:b7:fa:13:2e: 5d:7c:8d:51:b3:77:5f:f1:a8:78:51:7b:b5:4e:2f:77:c5:6b: 22:60:2c:7c:93:13:72:7b:8d:28:ef:02:87:12:24:dc:68:44: 5f:59:f0:b4:89:71:2c:4d:41:d8:00:78:e4:5e:4b:b2:d3:93: ac:58:19:78:e5:ac:c1:78:09:2c:8e:3b:d2:75:4e:2a:9d:bf: 5e:a4:66:93 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDM2NkExMTAvBgNVBAUTKEIwNjdDNkJCNzBERjBEQzA0Q0U3N0Y3QzhENzY3MDZB NDlGNkNCODUwHhcNMjUwNTE0MjEyODUyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODI1MGIxNC02ZTljMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA819Myxmb9uCrFaX4CrnCYLTW4hTCyOrJyNCa2gGV8qIRjYmFA97Efe+UOCnK LeFiQEQKIyuljNezq7xq38n4dpu4OlTGr+OmVx+8vAX0GO3IcUebcc1KxP4YveIN ZH6cR+lHQ+7F9z3bnxHAm953yHS5vDXrv6UOaGBNhRrRAryI5Rmco+Hr26Oei0Sf CcncVjrT0ijzMgpvg6OTDaz4xnECnds7oij67jsRlz39eMBqXWnXvhXAbtXFo5GC rQlL34458iNV3tnDjcEkvarXyqUGsFBwRx3wTYyd7oN2HtGCW5ynafoh8Xu5nrKo vYvhC9zX6YXAlHEL5rzqc2lDzwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPlhKBEA L0uC1q6zEM+hQqGwwDpaMB8GA1UdIwQYMBaAFLBnxrtw3w3ATOd/fI12cGpJ9suF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMzY2QS9FQzA5QUE0QTMw N0QxMUVEQTZDM0EyMTJDNEY5QUUwMi9zR2ZHdTNEZkRjQk01Mzk4alhad2FrbjJ5 NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHZkd1M0RmRGNCTTUzOThqWFp3YWtuMnk0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDM2NkEvRUMwOUFBNEEzMDdEMTFFREE2QzNBMjEyQzRGOUFFMDIvNkU0MURFMDgz MTBBMTFGMEFDOERGNTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLIe8wDQYJKoZIhvcNAQELBQADggEBAEpCpLhIm9P/8zv9 xdeSewwpGWSrw/nuzI/wi2NSe3XKR0SrXJ2Kd9Enficsg5V/O9y7Dfho1RVI3yLu PZkvAgFuqz8+TrfFL/FS3H2VT//sNo3QKE1cY39Bz/jNS88SzDuJbngrUE4MUSIU b+Ln+LyLZCvUqHHrYqkLrrueKtVWR/E0RK7ejj4QJUXbQyTZhA1ZS4mixJZ9rdew 3xYS+fqcaj9Ua+CqUplE3VOFMG2Zt/oTLl18jVGzd1/xqHhRe7VOL3fFayJgLHyT E3J7jSjvAocSJNxoRF9Z8LSJcSxNQdgAeOReS7LTk6xYGXjlrMF4CSyOO9J1Tiqd v16kZpM= -----END CERTIFICATE-----Generated at Mon Jun 2 06:34:22 2025 by rpki-client