$ rpki-client -vvf rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/5F114FB2C28811EB8BB7245FC4F9AE02.roa File: 5F114FB2C28811EB8BB7245FC4F9AE02.roa (raw, json) Hash identifier: NTEzu1pSF4sdWy2GcCcEDp/gqX9S2zLnxs3jJP1dXh4= Subject key identifier: 17:97:E8:3B:4F:4F:9F:2F:47:3A:41:DE:3D:85:AA:C9:E8:F7:AF:95 Certificate issuer: /CN=A91E38C1/serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Certificate serial: 34C5 Authority key identifier: 33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/5F114FB2C28811EB8BB7245FC4F9AE02.roa Signing time: Sat 31 May 2025 15:30:51 +0000 ROA not before: Sat 31 May 2025 15:30:51 +0000 ROA not after: Wed 01 Oct 2025 00:00:00 +0000 asID: 9731 IP address blocks: 119.252.225.0/24 maxlen: 24 119.252.226.0/24 maxlen: 24 119.252.227.0/24 maxlen: 24 119.252.229.0/24 maxlen: 24 119.252.230.0/24 maxlen: 24 119.252.231.0/24 maxlen: 24 119.252.232.0/24 maxlen: 24 119.252.233.0/24 maxlen: 24 119.252.234.0/24 maxlen: 24 119.252.235.0/24 maxlen: 24 119.252.236.0/24 maxlen: 24 119.252.237.0/24 maxlen: 24 119.252.238.0/24 maxlen: 24 119.252.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.crl rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 19 Jun 2025 14:50:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13509 (0x34c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E38C1, serialNumber=338BD781ED21E5DB14057B37B903A2A408E24202 Validity Not Before: May 31 15:30:51 2025 GMT Not After : Oct 1 00:00:00 2025 GMT Subject: CN=683b20ab-4a8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f1:f1:0d:79:02:15:a6:cb:4c:ef:46:7c:56: f3:40:9b:de:ff:76:f5:0f:93:a1:1d:27:10:40:3f: 49:e8:1d:17:6f:c9:83:44:c7:51:fc:ae:4b:02:67: d4:c0:b9:50:1d:bf:fb:5d:ef:9e:9e:86:e1:2a:b8: 13:2f:67:c7:07:0c:c3:bc:f1:dd:10:b7:42:42:c5: 1b:ee:77:a3:ab:1b:0c:1a:0e:2f:c8:21:45:ad:d6: b2:6b:b8:79:48:16:aa:73:2b:36:26:39:00:ba:ce: bc:47:8a:dd:5b:45:fa:a7:ae:c5:69:e5:dd:f7:0b: 1a:77:58:d4:b6:3b:fe:ab:0b:4f:05:4b:2e:d6:08: 1f:ba:df:16:e4:3f:22:f9:1d:cf:d2:65:da:b3:53: 2f:8e:81:5e:13:1d:73:37:6d:4a:59:42:f9:7c:c7: 2a:99:8d:0f:60:45:3d:1c:cd:59:55:bf:c6:8c:7d: f1:45:4a:9f:3f:df:54:dd:6d:7a:32:22:80:78:18: b6:fa:f3:61:55:19:96:11:61:f1:19:45:b6:27:4c: 56:f0:bb:9c:49:88:86:35:2e:1d:6b:61:c5:ae:65: e3:ab:ab:3b:26:a9:73:04:5b:0d:8d:33:76:64:52: 03:41:d3:8e:66:9c:b5:a4:9e:9c:79:0a:75:a1:6f: ef:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:97:E8:3B:4F:4F:9F:2F:47:3A:41:DE:3D:85:AA:C9:E8:F7:AF:95 X509v3 Authority Key Identifier: keyid:33:8B:D7:81:ED:21:E5:DB:14:05:7B:37:B9:03:A2:A4:08:E2:42:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/M4vXge0h5dsUBXs3uQOipAjiQgI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M4vXge0h5dsUBXs3uQOipAjiQgI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E38C1/E75AC2621D9711E28EF8928108B02CD2/5F114FB2C28811EB8BB7245FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.252.225.0-119.252.227.255 119.252.229.0-119.252.239.255 Signature Algorithm: sha256WithRSAEncryption 11:a4:e8:5d:69:05:06:3e:8a:b1:a6:ee:f7:3f:40:1a:2d:72: 12:e3:e9:69:9a:d3:f9:a7:32:ee:68:d9:b9:a1:8b:4d:59:4a: 55:3b:51:da:68:f6:f3:5f:97:fe:3d:6f:35:8d:0c:db:c7:d5: 50:c3:d1:02:4a:ea:10:04:f5:e3:27:bd:2f:91:a6:37:81:60: 8c:77:03:50:f0:09:67:70:77:5d:8b:04:eb:af:a8:8a:94:9e: 73:4f:73:87:fa:52:a1:b3:db:5c:6b:43:f8:58:60:f1:ec:be: 1b:50:e5:f6:7d:fc:4e:02:02:57:17:61:1d:19:51:9a:a1:71: 6a:d4:44:c0:e2:e7:a7:eb:71:36:d1:05:34:54:8e:b6:be:55: 86:ac:1f:9d:6e:aa:d0:30:c4:f7:50:79:05:72:4e:db:5a:8b: 79:a9:d8:0e:75:40:f5:f9:c0:23:b1:fc:20:62:20:7f:3b:9a: 49:40:7d:32:49:f6:9d:63:b4:6a:46:d9:ff:76:27:4a:14:ae: 75:bf:ae:7c:1a:95:3c:1c:73:5c:7e:fe:af:a0:ea:0e:bc:1b: 1d:8c:63:b2:d7:9d:0a:02:c0:97:3a:c5:e2:34:07:49:51:5c: ab:89:23:2b:d6:61:f6:59:bd:d2:e9:2f:fa:25:a9:e1:91:58: 00:f7:24:a6 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICNMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTM4QzExMTAvBgNVBAUTKDMzOEJENzgxRUQyMUU1REIxNDA1N0IzN0I5MDNBMkE0 MDhFMjQyMDIwHhcNMjUwNTMxMTUzMDUxWhcNMjUxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODNiMjBhYi00YThhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7PHxDXkCFabLTO9GfFbzQJve/3b1D5OhHScQQD9J6B0Xb8mDRMdR/K5LAmfU wLlQHb/7Xe+enobhKrgTL2fHBwzDvPHdELdCQsUb7nejqxsMGg4vyCFFrdaya7h5 SBaqcys2JjkAus68R4rdW0X6p67FaeXd9wsad1jUtjv+qwtPBUsu1ggfut8W5D8i +R3P0mXas1MvjoFeEx1zN21KWUL5fMcqmY0PYEU9HM1ZVb/GjH3xRUqfP99U3W16 MiKAeBi2+vNhVRmWEWHxGUW2J0xW8LucSYiGNS4da2HFrmXjq6s7JqlzBFsNjTN2 ZFIDQdOOZpy1pJ6ceQp1oW/viQIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFBeX6DtP T58vRzpB3j2Fqsno96+VMB8GA1UdIwQYMBaAFDOL14HtIeXbFAV7N7kDoqQI4kIC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMzhDMS9FNzVBQzI2MjFE OTcxMUUyOEVGODkyODEwOEIwMkNEMi9NNHZYZ2UwaDVkc1VCWHMzdVFPaXBBamlR Z0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL000dlhnZTBoNWRzVUJYczN1UU9pcEFqaVFnSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTM4QzEvRTc1QUMyNjIxRDk3MTFFMjhFRjg5MjgxMDhCMDJDRDIvNUYxMTRGQjJD Mjg4MTFFQjhCQjcyNDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgABMBwwDAMEAHf84QMEAnf84DAMAwQAd/zlAwQEd/zgMA0GCSqGSIb3 DQEBCwUAA4IBAQARpOhdaQUGPoqxpu73P0AaLXIS4+lpmtP5pzLuaNm5oYtNWUpV O1HaaPbzX5f+PW81jQzbx9VQw9ECSuoQBPXjJ70vkaY3gWCMdwNQ8AlncHddiwTr r6iKlJ5zT3OH+lKhs9tca0P4WGDx7L4bUOX2ffxOAgJXF2EdGVGaoXFq1ETA4uen 63E20QU0VI62vlWGrB+dbqrQMMT3UHkFck7bWot5qdgOdUD1+cAjsfwgYiB/O5pJ QH0ySfadY7RqRtn/didKFK51v658GpU8HHNcfv6voOoOvBsdjGOy150KAsCXOsXi NAdJUVyriSMr1mH2Wb3S6S/6JanhkVgA9ySm -----END CERTIFICATE-----Generated at Fri Jun 13 02:50:52 2025 by rpki-client