$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/74B37F24275211F0A14FD328C4F9AE02.roa File: 74B37F24275211F0A14FD328C4F9AE02.roa (raw, json) Hash identifier: 5FSb2Jsk8vMB09hl36LtVE9KBpWP+PzKRBhhPkFdcWI= Subject key identifier: D6:C1:FE:C3:FB:E0:BB:2D:87:2B:C5:24:8A:95:C0:91:AE:09:D2:98 Certificate issuer: /CN=A91E7A75/serialNumber=97ACDDE2911A09F3935F1860DB057D4CFF46B2C5 Certificate serial: 08 Authority key identifier: 97:AC:DD:E2:91:1A:09:F3:93:5F:18:60:DB:05:7D:4C:FF:46:B2:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l6zd4pEaCfOTXxhg2wV9TP9GssU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/74B37F24275211F0A14FD328C4F9AE02.roa Signing time: Fri 02 May 2025 13:07:01 +0000 ROA not before: Fri 02 May 2025 13:07:01 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 37989 IP address blocks: 203.123.48.0/21 maxlen: 21 203.123.48.0/22 maxlen: 22 2405:fc00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/l6zd4pEaCfOTXxhg2wV9TP9GssU.crl rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/l6zd4pEaCfOTXxhg2wV9TP9GssU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l6zd4pEaCfOTXxhg2wV9TP9GssU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 10 Jun 2025 07:55:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7A75, serialNumber=97ACDDE2911A09F3935F1860DB057D4CFF46B2C5 Validity Not Before: May 2 13:07:01 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=6814c374-a355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ee:01:ae:2c:04:36:ef:34:9d:55:24:bc:59: 1a:a2:3f:7f:ff:eb:b9:53:14:c8:e3:ac:d4:3b:8a: 17:19:21:79:fe:c2:72:26:c9:fb:d2:f9:c4:a4:c9: 91:0f:a3:0b:91:1f:86:7f:6a:e4:26:d3:ff:f5:94: 12:1a:be:6b:06:44:de:bc:fa:5f:cd:d9:be:ea:57: 3f:4a:a5:f8:4b:be:f4:62:d6:bb:38:1b:99:a1:25: d9:6a:d2:28:2a:0b:43:5b:dc:27:ea:8f:a4:77:29: 74:d6:7a:67:d7:d8:f0:2f:4d:ba:0a:e5:f5:c9:69: 7e:ff:cf:d4:cd:d5:04:6b:14:fe:7a:87:b7:a8:13: 0d:1c:81:91:f7:2f:c9:d6:30:1f:17:50:d5:7f:99: ff:cb:ce:b6:d5:44:5e:14:9a:7c:f3:04:6e:44:b2: 73:89:10:22:20:33:1e:e1:a3:24:f0:f6:62:87:f2: 17:42:70:6f:b3:6c:2b:49:7c:8b:7a:fc:de:a1:ed: 8e:74:cb:69:c7:ec:89:10:91:f4:01:a2:66:44:56: 34:ca:ae:b8:e5:7b:9a:27:00:af:b3:aa:de:6a:41: bb:5b:df:4b:92:0a:1a:8b:05:46:ee:5c:37:8d:45: be:d2:db:08:1c:c8:bf:d4:3c:8a:b8:1b:77:67:e8: 5d:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:C1:FE:C3:FB:E0:BB:2D:87:2B:C5:24:8A:95:C0:91:AE:09:D2:98 X509v3 Authority Key Identifier: keyid:97:AC:DD:E2:91:1A:09:F3:93:5F:18:60:DB:05:7D:4C:FF:46:B2:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/l6zd4pEaCfOTXxhg2wV9TP9GssU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l6zd4pEaCfOTXxhg2wV9TP9GssU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7A75/E6F4B6DA275111F0ACF0AF24C4F9AE02/74B37F24275211F0A14FD328C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.123.48.0/21 IPv6: 2405:fc00::/32 Signature Algorithm: sha256WithRSAEncryption 29:a0:5f:4d:e2:ba:b2:b1:3b:82:1e:30:2d:5d:4f:bd:95:8e: c9:5a:dd:f3:96:3a:a4:99:97:0b:07:fe:3d:72:bc:ef:24:2f: a4:67:45:6a:25:7b:63:cb:63:b4:aa:16:d5:1e:16:6a:0f:08: 95:e8:52:04:8b:0b:91:ed:5e:3b:60:50:e8:68:09:4a:55:58: 02:e8:ba:f6:0f:32:f9:f7:fe:c8:f9:02:8a:0a:0d:39:26:f7: fc:ab:d8:e8:a3:f7:49:6e:70:f8:73:c6:84:d7:cd:10:b5:7b: 83:97:8f:67:94:7a:ea:34:a3:e0:c3:0c:bb:8c:c1:8d:e9:44: d5:9e:73:52:6a:aa:7d:0f:18:63:9f:21:43:4b:82:c8:ed:b2: 74:1b:2e:33:8c:a2:bb:90:e6:34:84:7b:f4:d9:a8:b6:f2:48: 0b:aa:84:e4:95:ca:a0:25:b8:43:95:d3:20:f7:fa:39:c7:5b: 0d:a4:91:99:90:30:fe:a9:f6:54:8e:02:83:38:51:37:5d:dc: 38:49:c1:7c:d9:fb:34:62:fe:0d:df:d5:24:1b:aa:5d:0b:41: 64:3d:34:13:d8:a8:8e:84:de:3e:58:53:0d:db:af:68:0d:98: ed:54:c2:d2:c9:a6:5e:8b:ad:70:e8:d1:e6:2a:f2:a2:96:c4: 13:82:bf:f6 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF N0E3NTExMC8GA1UEBRMoOTdBQ0RERTI5MTFBMDlGMzkzNUYxODYwREIwNTdENENG RjQ2QjJDNTAeFw0yNTA1MDIxMzA3MDFaFw0yNjA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MTRjMzc0LWEzNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDp7gGuLAQ27zSdVSS8WRqiP3//67lTFMjjrNQ7ihcZIXn+wnImyfvS+cSkyZEP owuRH4Z/auQm0//1lBIavmsGRN68+l/N2b7qVz9KpfhLvvRi1rs4G5mhJdlq0igq C0Nb3Cfqj6R3KXTWemfX2PAvTboK5fXJaX7/z9TN1QRrFP56h7eoEw0cgZH3L8nW MB8XUNV/mf/LzrbVRF4UmnzzBG5EsnOJECIgMx7hoyTw9mKH8hdCcG+zbCtJfIt6 /N6h7Y50y2nH7IkQkfQBomZEVjTKrrjle5onAK+zqt5qQbtb30uSChqLBUbuXDeN Rb7S2wgcyL/UPIq4G3dn6F1TAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQU1sH+w/vg uy2HK8UkipXAka4J0pgwHwYDVR0jBBgwFoAUl6zd4pEaCfOTXxhg2wV9TP9GssUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU3QTc1L0U2RjRCNkRBMjc1 MTExRjBBQ0YwQUYyNEM0RjlBRTAyL2w2emQ0cEVhQ2ZPVFh4aGcyd1Y5VFA5R3Nz VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbDZ6ZDRwRWFDZk9UWHhoZzJ3VjlUUDlHc3NVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF N0E3NS9FNkY0QjZEQTI3NTExMUYwQUNGMEFGMjRDNEY5QUUwMi83NEIzN0YyNDI3 NTIxMUYwQTE0RkQzMjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEA8t7MDANBAIAAjAHAwUAJAX8ADANBgkqhkiG9w0BAQsFAAOC AQEAKaBfTeK6srE7gh4wLV1PvZWOyVrd85Y6pJmXCwf+PXK87yQvpGdFaiV7Y8tj tKoW1R4Wag8IlehSBIsLke1eO2BQ6GgJSlVYAui69g8y+ff+yPkCigoNOSb3/KvY 6KP3SW5w+HPGhNfNELV7g5ePZ5R66jSj4MMMu4zBjelE1Z5zUmqqfQ8YY58hQ0uC yO2ydBsuM4yiu5DmNIR79NmotvJIC6qE5JXKoCW4Q5XTIPf6OcdbDaSRmZAw/qn2 VI4CgzhRN13cOEnBfNn7NGL+Dd/VJBuqXQtBZD00E9iojoTePlhTDduvaA2Y7VTC 0smmXoutcOjR5iryopbEE4K/9g== -----END CERTIFICATE-----Generated at Wed Jun 4 00:08:46 2025 by rpki-client