$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9CCC/758C80A22FD711F0862A6385C4F9AE02/5A8BA4982FDE11F0A4AB5D57C4F9AE02.roa File: 5A8BA4982FDE11F0A4AB5D57C4F9AE02.roa (raw, json) Hash identifier: AMD2GEEFiF8rkGOwYs1r+qxOyHQFwJJUEW+dwUt3a3s= Subject key identifier: C6:50:38:47:D6:7F:B1:F6:00:36:6D:B2:A0:9C:1B:36:9F:7B:C1:EA Certificate issuer: /CN=A91E9CCC/serialNumber=93076E2CB5E099542AB210FEB4860190C545C436 Certificate serial: 08 Authority key identifier: 93:07:6E:2C:B5:E0:99:54:2A:B2:10:FE:B4:86:01:90:C5:45:C4:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwduLLXgmVQqshD-tIYBkMVFxDY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9CCC/758C80A22FD711F0862A6385C4F9AE02/5A8BA4982FDE11F0A4AB5D57C4F9AE02.roa Signing time: Tue 13 May 2025 09:53:39 +0000 ROA not before: Tue 13 May 2025 09:53:39 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 153834 IP address blocks: 163.227.194.0/23 maxlen: 23 163.227.194.0/24 maxlen: 24 163.227.195.0/24 maxlen: 24 2001:df5:79c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9CCC/758C80A22FD711F0862A6385C4F9AE02/kwduLLXgmVQqshD-tIYBkMVFxDY.crl rsync://rpki.apnic.net/member_repository/A91E9CCC/758C80A22FD711F0862A6385C4F9AE02/kwduLLXgmVQqshD-tIYBkMVFxDY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwduLLXgmVQqshD-tIYBkMVFxDY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 08 Jun 2025 07:48:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9CCC, serialNumber=93076E2CB5E099542AB210FEB4860190C545C436 Validity Not Before: May 13 09:53:39 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=682316a2-e2c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:b3:4c:d0:70:cb:37:ea:d3:68:58:73:f5:1b: 84:b2:5f:a5:3e:7e:10:90:7f:04:60:d9:5a:4a:44: c4:63:cd:86:f9:38:1e:f9:fa:f2:95:71:fb:3d:ce: d4:da:17:f8:d2:ce:31:78:49:1f:fb:e3:33:ba:51: ff:ed:4c:56:69:e6:0c:d1:7f:c8:cf:9e:d2:a7:37: 9f:bf:5c:8e:a1:71:de:0a:31:1e:ce:cf:be:4c:f7: e5:51:75:ec:f8:74:fe:0c:d4:5a:08:c8:eb:22:df: d4:3d:b0:a6:ef:6a:17:b0:30:1d:d6:b3:84:b9:1c: 56:e9:b1:83:a1:f1:9f:9c:57:bf:cc:53:e5:93:f5: 1e:f6:43:fd:78:22:b4:20:aa:0a:96:ec:84:ce:f7: d1:26:ea:ce:8d:5f:9d:43:9c:b4:6d:74:9c:44:e2: 42:88:a5:f0:02:d0:56:37:16:76:65:8f:73:1e:1f: 5b:0a:0d:4b:39:84:63:48:15:f5:da:7e:cf:d5:70: 73:86:f1:00:76:d9:77:1c:ab:30:df:14:05:ad:55: 65:0c:6d:9d:ed:73:5d:b4:27:af:0e:f8:b0:c2:73: ed:17:2d:a0:d2:9b:68:8f:c7:0c:14:a2:4a:59:64: 65:25:76:3c:92:6d:16:e6:d5:2e:05:55:c7:25:36: 21:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:50:38:47:D6:7F:B1:F6:00:36:6D:B2:A0:9C:1B:36:9F:7B:C1:EA X509v3 Authority Key Identifier: keyid:93:07:6E:2C:B5:E0:99:54:2A:B2:10:FE:B4:86:01:90:C5:45:C4:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9CCC/758C80A22FD711F0862A6385C4F9AE02/kwduLLXgmVQqshD-tIYBkMVFxDY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwduLLXgmVQqshD-tIYBkMVFxDY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9CCC/758C80A22FD711F0862A6385C4F9AE02/5A8BA4982FDE11F0A4AB5D57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.227.194.0/23 IPv6: 2001:df5:79c0::/48 Signature Algorithm: sha256WithRSAEncryption 7d:64:a2:16:7a:42:d0:0e:f1:4f:91:7e:42:47:56:f9:b7:73: 73:46:d4:ea:e8:60:d4:10:ee:46:1f:27:fb:88:76:bf:ab:68: 9a:94:9e:54:bc:0e:91:0a:96:98:48:1b:dd:b8:0c:6b:5c:0c: 02:08:e2:89:b0:b9:c5:72:fe:35:3e:c9:be:58:ff:8e:80:83: 34:18:86:2b:23:46:53:00:77:ad:e9:1e:bc:b8:fa:92:a3:7b: 5f:86:5a:b2:94:4e:a6:e2:42:70:e4:34:c1:a4:23:47:30:30: c5:df:29:38:d2:ed:46:f5:c9:08:f9:e7:20:d5:cb:0c:f0:86: 96:2c:89:60:42:89:c8:a1:56:a8:19:60:46:5d:a3:19:06:32: 06:9f:13:9b:2e:a6:53:51:7b:29:1d:36:e2:74:28:9c:dd:7d: ed:ba:ae:19:a6:f7:46:27:3e:5c:54:43:d7:bc:9e:82:e1:55: 29:e0:9f:78:90:79:d2:d0:80:28:e6:82:ef:e0:a6:d0:26:07: 66:a0:dd:b6:ba:55:e0:ff:52:b4:8e:2d:9b:a1:0d:32:aa:8f: aa:a8:c6:51:bc:d4:e6:37:c5:99:ad:fe:10:b0:e1:f9:a6:3d: 67:81:3a:09:51:54:99:83:0b:aa:fc:b3:22:a1:bb:ab:52:18: dd:ea:14:f0 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF OUNDQzExMC8GA1UEBRMoOTMwNzZFMkNCNUUwOTk1NDJBQjIxMEZFQjQ4NjAxOTBD NTQ1QzQzNjAeFw0yNTA1MTMwOTUzMzlaFw0yNjA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY4MjMxNmEyLWUyYzIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGs0zQcMs36tNoWHP1G4SyX6U+fhCQfwRg2VpKRMRjzYb5OB75+vKVcfs9ztTa F/jSzjF4SR/74zO6Uf/tTFZp5gzRf8jPntKnN5+/XI6hcd4KMR7Oz75M9+VRdez4 dP4M1FoIyOsi39Q9sKbvahewMB3Ws4S5HFbpsYOh8Z+cV7/MU+WT9R72Q/14IrQg qgqW7ITO99Em6s6NX51DnLRtdJxE4kKIpfAC0FY3FnZlj3MeH1sKDUs5hGNIFfXa fs/VcHOG8QB22XccqzDfFAWtVWUMbZ3tc120J68O+LDCc+0XLaDSm2iPxwwUokpZ ZGUldjySbRbm1S4FVcclNiEjAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUxlA4R9Z/ sfYANm2yoJwbNp97weowHwYDVR0jBBgwFoAUkwduLLXgmVQqshD+tIYBkMVFxDYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU5Q0NDLzc1OEM4MEEyMkZE NzExRjA4NjJBNjM4NUM0RjlBRTAyL2t3ZHVMTFhnbVZRcXNoRC10SVlCa01WRnhE WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva3dkdUxMWGdtVlFxc2hELXRJWUJrTVZGeERZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF OUNDQy83NThDODBBMjJGRDcxMUYwODYyQTYzODVDNEY5QUUwMi81QThCQTQ5ODJG REUxMUYwQTRBQjVENTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAaPjwjAPBAIAAjAJAwcAIAEN9XnAMA0GCSqGSIb3DQEBCwUA A4IBAQB9ZKIWekLQDvFPkX5CR1b5t3NzRtTq6GDUEO5GHyf7iHa/q2ialJ5UvA6R CpaYSBvduAxrXAwCCOKJsLnFcv41Psm+WP+OgIM0GIYrI0ZTAHet6R68uPqSo3tf hlqylE6m4kJw5DTBpCNHMDDF3yk40u1G9ckI+ecg1csM8IaWLIlgQonIoVaoGWBG XaMZBjIGnxObLqZTUXspHTbidCic3X3tuq4ZpvdGJz5cVEPXvJ6C4VUp4J94kHnS 0IAo5oLv4KbQJgdmoN22ulXg/1K0ji2boQ0yqo+qqMZRvNTmN8WZrf4QsOH5pj1n gToJUVSZgwuq/LMioburUhjd6hTw -----END CERTIFICATE-----Generated at Mon Jun 2 06:27:43 2025 by rpki-client