$ rpki-client -vvf rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/2575F02EF56011EEACB7CB3CC4F9AE02.roa File: 2575F02EF56011EEACB7CB3CC4F9AE02.roa (raw, json) Hash identifier: KFC3fNOGbggZ+0GBW6U9NwCDNNl5aIjRFI0d9Wv5l3w= Subject key identifier: 6D:F7:A7:50:04:23:A5:51:B3:27:F0:B4:60:79:F4:0D:65:41:AF:43 Certificate issuer: /CN=A91DC931/serialNumber=198C4364CF032C730D9585834982096D50A752C9 Certificate serial: D4 Authority key identifier: 19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/2575F02EF56011EEACB7CB3CC4F9AE02.roa Signing time: Sat 03 May 2025 05:12:20 +0000 ROA not before: Sat 03 May 2025 05:12:20 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 117.55.254.0/24 maxlen: 24 117.55.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:17:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DC931, serialNumber=198C4364CF032C730D9585834982096D50A752C9 Validity Not Before: May 3 05:12:20 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6815a5b4-87d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:91:bc:65:f8:87:e3:86:67:a8:3f:c1:f4:b6: 41:1a:5a:c3:2a:d7:36:6c:b1:ad:a5:98:9c:2c:79: eb:dc:92:f2:ab:e8:bb:e3:ec:92:b4:ad:d0:8a:60: d1:bf:ca:6b:95:99:fb:fa:bf:86:66:e0:c7:9a:96: 52:b5:df:c6:57:25:c5:7d:f9:29:dd:45:e6:85:16: cc:5a:c0:8f:ca:8f:c4:8e:c7:0c:23:3e:e7:92:d5: 39:a0:c6:f2:86:38:a9:33:96:b6:d3:86:be:fd:ec: 88:a7:cb:22:50:10:ff:ca:8d:3d:49:fd:ba:a1:8c: 95:ab:36:46:86:88:37:9e:63:00:e7:3d:3c:21:1e: 47:bd:c6:6a:63:58:46:22:c9:be:47:f4:54:6d:42: 59:8a:0d:0c:42:ad:07:72:e6:65:ff:a7:28:28:12: b6:8e:34:32:b5:44:3f:15:30:ff:64:88:e9:94:11: 7d:6c:18:1d:a2:58:9e:e0:06:cb:14:57:83:d1:ca: 6b:b6:25:74:24:2c:60:32:ea:3b:b4:61:83:c6:04: c9:4b:95:73:82:3a:f5:d9:cc:fb:64:17:6e:04:37: c4:7d:19:3e:a8:56:09:6b:27:3d:80:60:a4:f9:74: fb:14:81:0b:6a:82:60:1a:11:32:a7:ee:5c:0c:73: 42:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F7:A7:50:04:23:A5:51:B3:27:F0:B4:60:79:F4:0D:65:41:AF:43 X509v3 Authority Key Identifier: keyid:19:8C:43:64:CF:03:2C:73:0D:95:85:83:49:82:09:6D:50:A7:52:C9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/GYxDZM8DLHMNlYWDSYIJbVCnUsk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GYxDZM8DLHMNlYWDSYIJbVCnUsk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DC931/4A25B6A0F55D11EE9BE19780C4F9AE02/2575F02EF56011EEACB7CB3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.254.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:61:76:ac:8d:d0:8e:79:0c:24:da:d0:ea:19:e4:a5:07:10: b0:12:65:10:77:a7:bc:7a:c0:65:ad:93:23:1c:3a:65:8d:7f: c5:f8:32:de:ff:fe:86:87:61:9b:f1:e8:4e:5d:82:68:0a:78: 44:8d:c1:7f:68:b4:21:6f:d8:f2:50:f6:77:61:57:a0:41:aa: 62:f2:dd:08:39:c8:4c:54:e4:b4:43:9a:0d:70:9a:68:af:3b: 7d:42:76:38:72:48:a9:df:6e:0e:b3:a7:c7:2c:a2:c7:1e:64: 60:5e:94:28:56:5a:d8:41:b9:f6:0c:9b:8e:8b:bc:19:a5:5c: 98:fb:ce:4b:65:06:51:d8:de:b4:92:ae:f3:37:60:65:14:bb: 23:b4:a0:81:f0:7a:74:c4:4c:ba:d8:cf:ba:24:48:24:b9:4c: 47:99:fe:6d:9c:76:b5:ed:82:6a:4a:b7:d5:b8:02:36:c4:49: 69:f6:22:2e:a3:50:64:bd:59:8d:1c:6f:e0:ba:94:3e:37:08: 66:8e:b3:5f:6a:cb:b1:2d:02:0d:3b:4c:87:d1:be:7f:50:5f: b6:91:71:88:35:45:1a:87:df:aa:a1:68:8d:8b:fa:d3:01:7a: 04:65:ba:20:b5:26:b8:05:9c:40:46:08:9c:8e:d8:60:82:85: d6:e3:49:14 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REM5MzExMTAvBgNVBAUTKDE5OEM0MzY0Q0YwMzJDNzMwRDk1ODU4MzQ5ODIwOTZE NTBBNzUyQzkwHhcNMjUwNTAzMDUxMjIwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODE1YTViNC04N2QxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsZG8ZfiH44ZnqD/B9LZBGlrDKtc2bLGtpZicLHnr3JLyq+i74+yStK3QimDR v8prlZn7+r+GZuDHmpZStd/GVyXFffkp3UXmhRbMWsCPyo/EjscMIz7nktU5oMby hjipM5a204a+/eyIp8siUBD/yo09Sf26oYyVqzZGhog3nmMA5z08IR5HvcZqY1hG Ism+R/RUbUJZig0MQq0HcuZl/6coKBK2jjQytUQ/FTD/ZIjplBF9bBgdolie4AbL FFeD0cprtiV0JCxgMuo7tGGDxgTJS5Vzgjr12cz7ZBduBDfEfRk+qFYJayc9gGCk +XT7FIELaoJgGhEyp+5cDHNC2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFG33p1AE I6VRsyfwtGB59A1lQa9DMB8GA1UdIwQYMBaAFBmMQ2TPAyxzDZWFg0mCCW1Qp1LJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQzkzMS80QTI1QjZBMEY1 NUQxMUVFOUJFMTk3ODBDNEY5QUUwMi9HWXhEWk04RExITU5sWVdEU1lJSmJWQ25V c2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dZeERaTThETEhNTmxZV0RTWUlKYlZDblVzay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REM5MzEvNEEyNUI2QTBGNTVEMTFFRTlCRTE5NzgwQzRGOUFFMDIvMjU3NUYwMkVG NTYwMTFFRUFDQjdDQjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF1N/4wDQYJKoZIhvcNAQELBQADggEBAJxhdqyN0I55DCTa 0OoZ5KUHELASZRB3p7x6wGWtkyMcOmWNf8X4Mt7//oaHYZvx6E5dgmgKeESNwX9o tCFv2PJQ9ndhV6BBqmLy3Qg5yExU5LRDmg1wmmivO31CdjhySKnfbg6zp8csosce ZGBelChWWthBufYMm46LvBmlXJj7zktlBlHY3rSSrvM3YGUUuyO0oIHwenTETLrY z7okSCS5TEeZ/m2cdrXtgmpKt9W4AjbESWn2Ii6jUGS9WY0cb+C6lD43CGaOs19q y7EtAg07TIfRvn9QX7aRcYg1RRqH36qhaI2L+tMBegRluiC1JrgFnEBGCJyO2GCC hdbjSRQ= -----END CERTIFICATE-----Generated at Tue Jun 3 23:59:42 2025 by rpki-client