$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/069E7950F3C611EE807A6F3EC4F9AE02.roa File: 069E7950F3C611EE807A6F3EC4F9AE02.roa (raw, json) Hash identifier: GMXU4PxSO88RcbBqzb2gyEchtqA2OVDVG15sHhZwd7g= Subject key identifier: 6E:82:6E:F1:27:E8:74:A1:3A:E1:C5:3A:CA:AB:FE:1F:C3:0B:37:C7 Certificate issuer: /CN=A91DEF41/serialNumber=336DDE7EC3280499964371CAEE2620FBFCACDC98 Certificate serial: DE Authority key identifier: 33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/069E7950F3C611EE807A6F3EC4F9AE02.roa Signing time: Fri 23 May 2025 04:56:00 +0000 ROA not before: Fri 23 May 2025 04:56:00 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 14618 IP address blocks: 203.170.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.crl rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:16:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEF41, serialNumber=336DDE7EC3280499964371CAEE2620FBFCACDC98 Validity Not Before: May 23 04:56:00 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=682fffdf-9d91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:71:f5:9f:5b:a1:4e:72:3a:91:da:9b:9b:a7: 5c:29:20:1d:f0:fa:2e:4a:95:cb:d9:ef:0e:02:1e: e4:bc:49:b7:a0:e6:1a:57:7f:f0:57:78:cd:15:3e: 89:bf:86:ec:25:c0:9a:82:e2:05:1d:bc:9e:17:ca: 48:5e:f0:c0:5b:fb:2c:d9:16:4d:43:36:0d:5c:08: 71:19:b4:ae:64:45:e2:5d:e9:3f:97:08:bb:43:fa: 0e:d0:bb:c0:fa:ac:8d:82:37:19:86:d8:ca:ab:be: 6d:35:61:cf:8a:d1:8b:4f:70:f8:f9:e8:01:92:fa: 21:0b:b0:a0:27:81:fe:f1:1e:76:54:30:77:38:3c: 88:81:b8:87:40:26:5c:af:aa:8e:72:54:91:f1:45: 54:51:90:80:eb:17:1d:99:2c:cb:fc:0f:1a:72:78: 5d:b2:a4:12:80:46:8c:c7:6f:0c:67:a8:55:cb:25: e9:2e:04:b8:7e:a5:20:e4:29:b3:d5:06:13:a3:38: 9a:76:41:82:46:e8:9c:b9:1b:10:06:85:27:92:31: 7e:d1:9f:73:d7:00:26:c3:07:c8:40:7c:8f:d6:52: 16:cc:c7:40:c3:68:e2:b0:58:ae:c1:8b:98:ff:4a: 7f:ff:e7:88:da:00:ec:7e:38:2c:ac:b1:f9:ab:2b: 1d:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:82:6E:F1:27:E8:74:A1:3A:E1:C5:3A:CA:AB:FE:1F:C3:0B:37:C7 X509v3 Authority Key Identifier: keyid:33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/069E7950F3C611EE807A6F3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.170.90.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:14:4a:2c:86:cf:77:5a:cb:c2:59:97:df:99:c6:a1:52:48: 37:91:e6:29:eb:69:07:81:e5:00:bb:ab:8a:e0:49:ed:69:63: a0:43:6b:90:37:c8:e2:b6:5c:8e:6c:31:a4:23:6d:2d:31:51: d2:8b:1e:d7:00:a5:89:8a:75:ea:37:04:bf:ca:9e:f2:d4:e0: 4b:ed:6e:5a:78:1f:cc:ac:fd:4a:9c:46:16:9c:0b:52:0b:15: 19:0c:77:e9:fc:60:56:56:56:cf:69:2d:4e:ce:5a:70:8c:ec: b5:0c:8b:42:00:07:18:13:f3:bf:8d:01:51:f6:48:87:9d:46: bc:dd:6f:ab:f8:b8:16:a7:7d:ca:82:84:3b:45:51:d3:b1:50: 5a:c3:22:4f:0f:73:9d:51:5b:4d:8d:2c:dc:55:f3:dc:6b:b4: 0e:f9:58:bd:91:0b:03:97:a5:aa:b8:9f:25:10:31:76:4f:39: 27:0e:7c:51:3b:6c:06:a3:08:4b:2a:e3:ad:67:43:3f:45:c4: 1c:af:f8:3e:f6:87:e5:2e:d5:7f:8a:a8:dd:25:bf:f5:08:68: 41:6b:b5:80:49:06:ef:c9:b0:94:9d:61:93:b9:84:8e:24:e0: 8c:d5:3c:15:6c:fd:ae:29:f0:f6:73:55:22:09:6b:a0:0d:46: e8:d3:43:13 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGNDExMTAvBgNVBAUTKDMzNkRERTdFQzMyODA0OTk5NjQzNzFDQUVFMjYyMEZC RkNBQ0RDOTgwHhcNMjUwNTIzMDQ1NjAwWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmZmZkZi05ZDkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5XH1n1uhTnI6kdqbm6dcKSAd8PouSpXL2e8OAh7kvEm3oOYaV3/wV3jNFT6J v4bsJcCaguIFHbyeF8pIXvDAW/ss2RZNQzYNXAhxGbSuZEXiXek/lwi7Q/oO0LvA +qyNgjcZhtjKq75tNWHPitGLT3D4+egBkvohC7CgJ4H+8R52VDB3ODyIgbiHQCZc r6qOclSR8UVUUZCA6xcdmSzL/A8acnhdsqQSgEaMx28MZ6hVyyXpLgS4fqUg5Cmz 1QYToziadkGCRuicuRsQBoUnkjF+0Z9z1wAmwwfIQHyP1lIWzMdAw2jisFiuwYuY /0p//+eI2gDsfjgsrLH5qysdJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFG6CbvEn 6HShOuHFOsqr/h/DCzfHMB8GA1UdIwQYMBaAFDNt3n7DKASZlkNxyu4mIPv8rNyY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUY0MS9DNzVEQTEzMkYy RkIxMUVFOUZDRjc2NENDNEY5QUUwMi9NMjNlZnNNb0JKbVdRM0hLN2lZZy1feXMz SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00yM2Vmc01vQkptV1EzSEs3aVlnLV95czNKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVGNDEvQzc1REExMzJGMkZCMTFFRTlGQ0Y3NjRDQzRGOUFFMDIvMDY5RTc5NTBG M0M2MTFFRTgwN0E2RjNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLqlowDQYJKoZIhvcNAQELBQADggEBAG8USiyGz3day8JZ l9+ZxqFSSDeR5inraQeB5QC7q4rgSe1pY6BDa5A3yOK2XI5sMaQjbS0xUdKLHtcA pYmKdeo3BL/KnvLU4Evtblp4H8ys/UqcRhacC1ILFRkMd+n8YFZWVs9pLU7OWnCM 7LUMi0IABxgT87+NAVH2SIedRrzdb6v4uBanfcqChDtFUdOxUFrDIk8Pc51RW02N LNxV89xrtA75WL2RCwOXpaq4nyUQMXZPOScOfFE7bAajCEsq461nQz9FxByv+D72 h+Uu1X+KqN0lv/UIaEFrtYBJBu/JsJSdYZO5hI4k4IzVPBVs/a4p8PZzVSIJa6AN RujTQxM= -----END CERTIFICATE-----Generated at Tue Jun 3 23:45:25 2025 by rpki-client