$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/9C6F02C6249D11EF9532356DC4F9AE02.roa File: 9C6F02C6249D11EF9532356DC4F9AE02.roa (raw, json) Hash identifier: Ah9DA9XDU6AgPBrVhyRA7IEj119ByF47rhFGR96tGKc= Subject key identifier: CB:A0:C1:2D:57:4D:5C:CA:15:63:36:A7:3C:A5:CE:8D:B3:CC:32:20 Certificate issuer: /CN=A91E28E2/serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Certificate serial: 01B3 Authority key identifier: B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/9C6F02C6249D11EF9532356DC4F9AE02.roa Signing time: Thu 05 Jun 2025 03:11:15 +0000 ROA not before: Thu 05 Jun 2025 03:11:15 +0000 ROA not after: Mon 31 Aug 2026 00:00:00 +0000 asID: 134190 IP address blocks: 45.117.123.0/24 maxlen: 24 45.117.123.0/25 maxlen: 32 45.117.123.128/25 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 12 Jun 2025 03:11:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 435 (0x1b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28E2, serialNumber=B481987331E1ED408B51CB9FD8EF4A650AC8669A Validity Not Before: Jun 5 03:11:15 2025 GMT Not After : Aug 31 00:00:00 2026 GMT Subject: CN=68410ad3-06f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:75:c3:5f:0c:af:bf:3c:cc:e3:94:53:67:64: bd:e3:50:ca:3d:71:d1:fd:f5:3a:da:fc:2c:e2:6d: 73:f8:25:2e:05:f5:2b:0c:ee:9f:bd:a3:6e:87:d4: 58:28:f0:6a:36:ff:0a:16:90:76:9c:1b:c1:36:a7: bd:6a:f6:f7:c8:6f:71:a2:0f:7c:99:d9:f4:60:d8: b4:45:a6:5b:2f:ce:1a:85:7d:a1:49:26:bb:bf:ac: 5f:65:e3:a4:b1:a9:c0:c1:39:fc:43:a6:23:e2:76: fc:d7:a9:a5:df:f8:1a:1d:4c:c4:e7:8d:1f:b8:10: 58:2c:bd:65:1e:0a:0e:a3:6d:c0:b8:f8:6f:11:7d: 8b:1a:8a:69:71:a2:2e:07:b5:66:12:d6:f8:bc:b9: 08:ca:49:84:a8:f1:ad:5d:d2:ec:85:60:dc:22:c3: bf:43:7d:32:6a:26:c7:63:54:28:e1:e5:53:bc:31: c8:42:13:4b:7a:6d:58:a6:4f:23:fc:5f:de:de:93: 0c:8a:ce:93:f3:b6:f0:53:e0:0d:ec:33:ed:16:c8: 71:f4:db:98:a9:11:73:36:86:a6:8e:4e:c0:3d:7f: 6c:18:7f:d7:a5:13:e3:0d:e6:e0:8e:2b:09:d4:21: 7b:e7:33:89:a3:0d:d7:a0:f6:c0:60:b7:35:2d:97: e7:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:A0:C1:2D:57:4D:5C:CA:15:63:36:A7:3C:A5:CE:8D:B3:CC:32:20 X509v3 Authority Key Identifier: keyid:B4:81:98:73:31:E1:ED:40:8B:51:CB:9F:D8:EF:4A:65:0A:C8:66:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/tIGYczHh7UCLUcuf2O9KZQrIZpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tIGYczHh7UCLUcuf2O9KZQrIZpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28E2/952FA632D2E611ED9A52D55AC4F9AE02/9C6F02C6249D11EF9532356DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.117.123.0/24 Signature Algorithm: sha256WithRSAEncryption 39:0e:4f:81:84:ab:39:ef:38:2e:62:74:dc:ac:5b:5c:e8:41: 7e:0e:b8:1a:0d:f6:04:4f:ab:14:93:18:b6:42:73:28:77:40: 1b:ac:5c:81:6c:a1:b2:e7:14:4f:26:64:86:c5:9a:a6:dc:31: 07:87:aa:d6:90:1d:34:97:df:d9:f0:64:3a:6e:ab:ec:01:3b: bc:f0:04:93:e0:8f:d0:68:6e:3c:e7:47:1f:97:fd:21:69:17: f4:c6:8b:c1:a9:c5:d6:40:d4:c4:0c:df:b4:ff:e7:b2:1f:2d: 59:5d:00:e8:e4:4b:60:c8:d4:eb:d6:2d:38:1d:42:ad:02:ba: 0a:99:0a:d8:8c:a5:b5:3f:9e:3e:ff:f1:5f:46:26:42:da:55: 63:8d:6c:b4:5f:53:e0:2c:af:67:7d:ab:ed:48:a7:4e:32:6a: 66:b8:1b:ff:bb:9d:fa:63:28:1e:8b:ef:23:00:02:2d:de:ef: 85:a1:05:5b:cf:f2:9b:36:c5:0a:a2:ce:ee:ea:3d:12:4e:fd: 25:f4:c3:43:99:42:5a:4b:8f:aa:66:d4:69:f9:dc:9e:b9:41: 64:f3:05:3a:b6:a1:a7:9b:c1:e0:88:a3:bb:ce:c4:cc:7a:4b: bb:40:18:ee:29:f3:9e:46:98:8d:a4:30:a7:3c:75:08:ce:5f: 9c:bc:3f:d5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAbMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4RTIxMTAvBgNVBAUTKEI0ODE5ODczMzFFMUVENDA4QjUxQ0I5RkQ4RUY0QTY1 MEFDODY2OUEwHhcNMjUwNjA1MDMxMTE1WhcNMjYwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQxMGFkMy0wNmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAunXDXwyvvzzM45RTZ2S941DKPXHR/fU62vws4m1z+CUuBfUrDO6fvaNuh9RY KPBqNv8KFpB2nBvBNqe9avb3yG9xog98mdn0YNi0RaZbL84ahX2hSSa7v6xfZeOk sanAwTn8Q6Yj4nb816ml3/gaHUzE540fuBBYLL1lHgoOo23AuPhvEX2LGoppcaIu B7VmEtb4vLkIykmEqPGtXdLshWDcIsO/Q30yaibHY1Qo4eVTvDHIQhNLem1Ypk8j /F/e3pMMis6T87bwU+AN7DPtFshx9NuYqRFzNoamjk7APX9sGH/XpRPjDebgjisJ 1CF75zOJow3XoPbAYLc1LZfnnQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMugwS1X TVzKFWM2pzylzo2zzDIgMB8GA1UdIwQYMBaAFLSBmHMx4e1Ai1HLn9jvSmUKyGaa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhFMi85NTJGQTYzMkQy RTYxMUVEOUE1MkQ1NUFDNEY5QUUwMi90SUdZY3pIaDdVQ0xVY3VmMk85S1pRckla cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RJR1ljekhoN1VDTFVjdWYyTzlLWlFySVpwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI4RTIvOTUyRkE2MzJEMkU2MTFFRDlBNTJENTVBQzRGOUFFMDIvOUM2RjAyQzYy NDlEMTFFRjk1MzIzNTZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAtdXswDQYJKoZIhvcNAQELBQADggEBADkOT4GEqznvOC5i dNysW1zoQX4OuBoN9gRPqxSTGLZCcyh3QBusXIFsobLnFE8mZIbFmqbcMQeHqtaQ HTSX39nwZDpuq+wBO7zwBJPgj9BobjznRx+X/SFpF/TGi8GpxdZA1MQM37T/57If LVldAOjkS2DI1OvWLTgdQq0CugqZCtiMpbU/nj7/8V9GJkLaVWONbLRfU+Asr2d9 q+1Ip04yama4G/+7nfpjKB6L7yMAAi3e74WhBVvP8ps2xQqizu7qPRJO/SX0w0OZ QlpLj6pm1Gn53J65QWTzBTq2oaebweCIo7vOxMx6S7tAGO4p855GmI2kMKc8dQjO X5y8P9U= -----END CERTIFICATE-----Generated at Thu Jun 5 19:17:14 2025 by rpki-client