$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/E404430CB0F811E595E0F761C4F9AE02.roa File: E404430CB0F811E595E0F761C4F9AE02.roa (raw, json) Hash identifier: aPLpTjVx3H8dG+sQrN1VcBaFu+dKTfAESi5mspAt7yo= Subject key identifier: E1:5B:63:E8:57:25:2F:F1:05:4D:2F:91:B9:1E:1E:64:8C:7E:27:C1 Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 34C6 Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/E404430CB0F811E595E0F761C4F9AE02.roa Signing time: Fri 30 May 2025 14:30:10 +0000 ROA not before: Fri 30 May 2025 14:30:10 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 132696 IP address blocks: 202.3.78.0/24 maxlen: 24 2001:df0:214::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 14:19:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13510 (0x34c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A, serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: May 30 14:30:10 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6839c0f2-a86f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:9a:11:93:dd:72:72:2b:1c:0d:9e:30:31:f6: e2:16:f7:12:35:fb:55:cb:69:51:19:25:89:15:40: da:d3:33:c8:00:95:86:f8:52:7e:73:10:5d:e3:31: 5d:80:f2:02:3c:f6:93:02:c5:28:b8:1e:3c:88:f4: 91:6b:2b:7b:0c:96:f1:70:11:7c:e5:e3:b4:80:58: b5:a1:2d:4e:7e:19:f8:48:f1:22:17:2c:41:ed:7a: b9:e2:d3:71:34:c2:74:a8:59:13:1d:e1:2b:9b:07: a5:17:49:08:b8:a1:8d:87:21:5b:7a:97:64:c2:c5: 47:cb:8d:d9:3a:b4:4d:5b:9e:63:46:49:3e:0a:c9: cc:3a:1b:b1:e4:d5:d1:06:e3:8b:4d:02:1b:c5:f6: 51:14:e0:44:52:92:cf:d0:c8:a8:cb:d8:86:0d:8d: b1:f2:e6:24:a2:92:5a:f3:05:ec:7d:16:c2:d8:8c: b0:4c:dc:2d:52:e2:4a:dd:f4:5f:1b:ee:57:b4:a0: 0b:5d:8d:fa:c3:cf:13:94:e8:e8:40:c2:05:31:30: 89:49:57:a6:18:fe:26:18:84:85:bc:d0:79:86:1e: 4e:3f:f7:5f:51:22:ee:aa:c5:aa:79:5f:74:ff:ec: c7:29:97:1b:80:d5:ce:8d:ec:42:89:41:dd:8e:54: ed:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:5B:63:E8:57:25:2F:F1:05:4D:2F:91:B9:1E:1E:64:8C:7E:27:C1 X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/E404430CB0F811E595E0F761C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.3.78.0/24 IPv6: 2001:df0:214::/48 Signature Algorithm: sha256WithRSAEncryption 63:bb:06:91:a3:c7:86:29:c9:33:3c:68:62:08:9b:94:fe:8b: 70:d9:f0:7f:2b:a9:6a:48:02:7e:80:71:20:34:76:eb:34:40: d4:d1:5c:33:3e:d8:85:b9:57:d8:82:72:2e:f2:0d:08:6f:c6: 54:0d:35:e8:6e:5d:78:f1:11:22:23:43:cf:b6:a0:cd:bd:1d: 80:73:1b:ac:2c:81:15:60:5a:40:1a:ef:5c:d1:74:a8:94:85: 0c:15:ce:2e:fb:22:85:a1:42:4f:9e:c2:e6:a5:6e:e3:7c:23: 8e:6d:cd:1c:a2:95:c1:fc:2d:dc:cb:cf:2a:8c:9b:8e:80:c0: cb:9d:90:bf:53:a6:29:f8:cc:e6:50:4f:c8:8d:3d:4b:d4:36: 65:fb:a0:cd:c1:40:8f:14:ed:1b:99:03:c9:84:17:4b:0c:aa: c8:eb:20:a9:53:6b:ca:6f:8a:45:7d:15:32:4e:e7:28:68:75: 75:4d:3f:20:75:b9:11:d3:1f:5a:82:b6:b1:0f:f4:4c:17:13: 65:61:fd:09:c7:08:65:26:2f:18:bb:00:fa:33:2e:fe:3f:29: 2f:0f:75:1c:f3:68:1a:f2:77:bb:07:69:3e:69:f7:82:a0:30: ba:03:74:20:e1:9b:6c:e5:80:65:8b:ce:1c:45:a3:1d:87:40: 1e:73:12:30 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNMYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjUwNTMwMTQzMDEwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM5YzBmMi1hODZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA35oRk91yciscDZ4wMfbiFvcSNftVy2lRGSWJFUDa0zPIAJWG+FJ+cxBd4zFd gPICPPaTAsUouB48iPSRayt7DJbxcBF85eO0gFi1oS1Ofhn4SPEiFyxB7Xq54tNx NMJ0qFkTHeErmwelF0kIuKGNhyFbepdkwsVHy43ZOrRNW55jRkk+CsnMOhux5NXR BuOLTQIbxfZRFOBEUpLP0Mioy9iGDY2x8uYkopJa8wXsfRbC2IywTNwtUuJK3fRf G+5XtKALXY36w88TlOjoQMIFMTCJSVemGP4mGISFvNB5hh5OP/dfUSLuqsWqeV90 /+zHKZcbgNXOjexCiUHdjlTtdwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOFbY+hX JS/xBU0vkbkeHmSMfifBMB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTlEMUEvQzU5QjAyREExRDcwMTFFMjg2RjE0N0I1MDhCMDJDRDIvRTQwNDQzMENC MEY4MTFFNTk1RTBGNzYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKA04wDwQCAAIwCQMHACABDfACFDANBgkqhkiG9w0BAQsF AAOCAQEAY7sGkaPHhinJMzxoYgiblP6LcNnwfyupakgCfoBxIDR26zRA1NFcMz7Y hblX2IJyLvINCG/GVA016G5dePERIiNDz7agzb0dgHMbrCyBFWBaQBrvXNF0qJSF DBXOLvsihaFCT57C5qVu43wjjm3NHKKVwfwt3MvPKoybjoDAy52Qv1OmKfjM5lBP yI09S9Q2ZfugzcFAjxTtG5kDyYQXSwyqyOsgqVNrym+KRX0VMk7nKGh1dU0/IHW5 EdMfWoK2sQ/0TBcTZWH9CccIZSYvGLsA+jMu/j8pLw91HPNoGvJ3uwdpPmn3gqAw ugN0IOGbbOWAZYvOHEWjHYdAHnMSMA== -----END CERTIFICATE-----Generated at Mon Jun 2 07:11:29 2025 by rpki-client