$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/07258E36F3C611EE807A6F3EC4F9AE02.roa File: 07258E36F3C611EE807A6F3EC4F9AE02.roa (raw, json) Hash identifier: UOVpPqyzylpvUS4PFJS4QPq1eALE7pHfj83Afvy+ymM= Subject key identifier: F6:CB:70:42:A7:ED:1F:90:79:22:E7:CD:47:B9:DA:CD:9A:A8:69:54 Certificate issuer: /CN=A91DEF41/serialNumber=336DDE7EC3280499964371CAEE2620FBFCACDC98 Certificate serial: E0 Authority key identifier: 33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/07258E36F3C611EE807A6F3EC4F9AE02.roa Signing time: Fri 23 May 2025 04:56:02 +0000 ROA not before: Fri 23 May 2025 04:56:02 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 16509 IP address blocks: 203.170.90.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.crl rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 05:16:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 224 (0xe0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEF41, serialNumber=336DDE7EC3280499964371CAEE2620FBFCACDC98 Validity Not Before: May 23 04:56:02 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=682fffe1-9425 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:06:06:f4:7c:af:1f:58:1c:0d:a1:7d:27:8b: 2d:88:d0:af:0a:fe:60:f7:61:e3:61:2f:dc:4e:03: 31:94:c4:f3:26:25:18:e3:33:0c:ba:bb:b2:91:cf: ee:4d:85:de:7a:f6:7d:90:40:db:b3:f8:06:d2:d5: ba:98:62:8a:ef:e4:8f:5e:c4:73:8b:fe:a8:10:5f: e6:bc:93:85:09:aa:af:70:7c:42:47:c0:c2:a5:2b: bb:cd:06:f5:46:02:f2:50:34:47:b2:37:b9:3c:42: 2e:0b:34:06:fe:b0:df:ae:7d:6f:d0:29:b2:9f:28: b4:67:e8:ce:80:c0:4f:f7:6d:47:1f:a2:ff:c5:9e: 64:45:5d:9d:17:5d:cf:a9:55:50:48:7f:16:05:5e: 2c:fb:54:19:b9:4d:8e:56:92:08:a0:06:04:9f:7d: 43:9d:6a:bf:60:aa:87:b9:c8:68:0c:ce:b1:9a:dc: df:3e:62:08:5b:69:a6:b8:d7:9c:c9:da:0e:63:60: 3e:af:3d:4b:06:7c:b1:b3:ae:78:27:de:0e:23:8b: bb:39:2f:a8:fb:96:14:19:52:a4:c4:ca:7d:1a:d6: c3:04:01:2e:c9:f5:f4:6a:a0:7e:8a:60:bf:48:c8: 84:4a:27:03:f4:bc:b3:2a:d8:3d:fe:54:cc:4d:34: bb:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:CB:70:42:A7:ED:1F:90:79:22:E7:CD:47:B9:DA:CD:9A:A8:69:54 X509v3 Authority Key Identifier: keyid:33:6D:DE:7E:C3:28:04:99:96:43:71:CA:EE:26:20:FB:FC:AC:DC:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/M23efsMoBJmWQ3HK7iYg-_ys3Jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M23efsMoBJmWQ3HK7iYg-_ys3Jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEF41/C75DA132F2FB11EE9FCF764CC4F9AE02/07258E36F3C611EE807A6F3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.170.90.0/23 Signature Algorithm: sha256WithRSAEncryption 1e:65:ed:ff:a6:15:e6:c7:b1:f2:94:7f:a3:2e:d3:8d:42:61: 8f:69:26:39:e1:3d:5f:07:ad:24:e2:23:27:2e:f3:95:7b:5b: f3:59:26:39:8f:82:24:b4:66:3d:5e:1a:33:d1:c4:dc:cf:d1: c4:41:e0:ec:05:cb:ff:6e:56:d1:d9:af:32:a4:00:11:40:fc: 60:64:de:7d:fb:81:5c:a5:87:3a:2d:c2:86:ef:30:3a:1e:b4: b3:a8:e8:2a:5c:b6:0f:87:4f:28:ed:05:db:43:37:6a:b1:92: d1:b1:79:2b:4a:45:55:67:fb:ba:82:4e:ca:a3:c5:77:81:71: 75:41:bd:04:d8:78:80:9e:78:2c:23:e1:4c:25:83:8d:8e:83: cc:bb:52:16:b3:80:37:b3:eb:46:81:81:78:d6:9d:05:8a:1d: c2:35:c2:27:75:07:7e:68:81:d4:c4:02:21:88:77:95:49:9e: f6:fa:95:dd:4f:3c:b1:f7:34:3f:19:0f:5e:5d:d0:a5:cf:ff: ed:5f:8f:72:90:93:dd:8d:d7:39:31:31:d5:20:53:8a:08:34: 9d:4f:17:7e:8a:46:61:95:ef:ea:02:99:c2:3c:d6:12:a2:5b: 43:30:89:ab:a0:42:ac:62:e6:35:3b:96:6f:54:11:f6:bd:93: 94:88:e9:6c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVGNDExMTAvBgNVBAUTKDMzNkRERTdFQzMyODA0OTk5NjQzNzFDQUVFMjYyMEZC RkNBQ0RDOTgwHhcNMjUwNTIzMDQ1NjAyWhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODJmZmZlMS05NDI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3gYG9HyvH1gcDaF9J4stiNCvCv5g92HjYS/cTgMxlMTzJiUY4zMMuruykc/u TYXeevZ9kEDbs/gG0tW6mGKK7+SPXsRzi/6oEF/mvJOFCaqvcHxCR8DCpSu7zQb1 RgLyUDRHsje5PEIuCzQG/rDfrn1v0Cmynyi0Z+jOgMBP921HH6L/xZ5kRV2dF13P qVVQSH8WBV4s+1QZuU2OVpIIoAYEn31DnWq/YKqHuchoDM6xmtzfPmIIW2mmuNec ydoOY2A+rz1LBnyxs654J94OI4u7OS+o+5YUGVKkxMp9GtbDBAEuyfX0aqB+imC/ SMiESicD9LyzKtg9/lTMTTS70QIDAQABo4IClTCCApEwHQYDVR0OBBYEFPbLcEKn 7R+QeSLnzUe52s2aqGlUMB8GA1UdIwQYMBaAFDNt3n7DKASZlkNxyu4mIPv8rNyY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUY0MS9DNzVEQTEzMkYy RkIxMUVFOUZDRjc2NENDNEY5QUUwMi9NMjNlZnNNb0JKbVdRM0hLN2lZZy1feXMz SmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL00yM2Vmc01vQkptV1EzSEs3aVlnLV95czNKZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVGNDEvQzc1REExMzJGMkZCMTFFRTlGQ0Y3NjRDQzRGOUFFMDIvMDcyNThFMzZG M0M2MTFFRTgwN0E2RjNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLqlowDQYJKoZIhvcNAQELBQADggEBAB5l7f+mFebHsfKU f6Mu041CYY9pJjnhPV8HrSTiIycu85V7W/NZJjmPgiS0Zj1eGjPRxNzP0cRB4OwF y/9uVtHZrzKkABFA/GBk3n37gVylhzotwobvMDoetLOo6Cpctg+HTyjtBdtDN2qx ktGxeStKRVVn+7qCTsqjxXeBcXVBvQTYeICeeCwj4Uwlg42Og8y7UhazgDez60aB gXjWnQWKHcI1wid1B35ogdTEAiGId5VJnvb6ld1PPLH3ND8ZD15d0KXP/+1fj3KQ k92N1zkxMdUgU4oINJ1PF36KRmGV7+oCmcI81hKiW0MwiaugQqxi5jU7lm9UEfa9 k5SI6Ww= -----END CERTIFICATE-----Generated at Tue Jun 3 23:45:03 2025 by rpki-client