$ rpki-client -vvf rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7273624619B511EC98D2A883C4F9AE02.roa File: 7273624619B511EC98D2A883C4F9AE02.roa (raw, json) Hash identifier: 5fcNDjODuX+Wud6BJhR1unaL4AuUrkvgumx1Eb2bLL0= Subject key identifier: D1:06:C9:31:BA:88:DA:F4:19:1A:A5:13:E0:78:CB:7D:24:09:53:6D Certificate issuer: /CN=A91ED931/serialNumber=C035450BD1A2D44B151EE38C089888A5AF4B8059 Certificate serial: 04F8 Authority key identifier: C0:35:45:0B:D1:A2:D4:4B:15:1E:E3:8C:08:98:88:A5:AF:4B:80:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7273624619B511EC98D2A883C4F9AE02.roa Signing time: Wed 04 Jun 2025 23:44:23 +0000 ROA not before: Wed 04 Jun 2025 23:44:23 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 19905 IP address blocks: 202.49.96.0/24 maxlen: 24 202.49.97.0/24 maxlen: 24 202.49.98.0/24 maxlen: 24 202.49.99.0/24 maxlen: 24 202.49.100.0/24 maxlen: 24 202.49.101.0/24 maxlen: 24 202.49.102.0/24 maxlen: 24 202.49.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.crl rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 23:44:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1272 (0x4f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ED931, serialNumber=C035450BD1A2D44B151EE38C089888A5AF4B8059 Validity Not Before: Jun 4 23:44:23 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6840da56-3ef8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d3:cc:ea:51:36:1d:c6:7b:d0:3b:a5:5b:d8: 39:fc:ec:02:48:a6:65:1d:27:1f:cd:68:9d:6a:d9: 38:a0:e0:52:21:ff:4b:09:0d:25:cb:68:78:2e:05: e8:74:2a:ac:0d:ab:39:a0:42:d3:72:e0:41:3c:01: 97:8c:50:50:bb:3a:9c:6a:55:12:1f:af:6b:02:6f: 7e:b1:c6:fd:96:3d:68:1b:d1:b3:3b:37:52:f4:66: 60:58:ba:a8:6a:6c:96:ef:39:e2:ae:1c:11:4f:48: e9:4a:6e:79:66:3c:2d:d1:bd:d2:54:a4:77:22:ef: 04:a0:38:de:c6:3f:c5:2d:91:c6:7f:55:0b:e5:92: 7f:6e:7b:69:b3:bb:a7:2a:07:09:c9:6d:62:26:24: ea:1a:92:40:e6:e9:7a:3a:14:4d:2e:02:54:4b:f1: 43:b8:d9:5e:fd:5f:ef:c1:cb:a5:e7:ae:a0:13:59: 16:9e:70:6f:09:bc:92:f1:63:ca:f3:f9:1d:19:5e: bd:89:d3:f3:3b:10:97:9c:8c:81:6a:94:66:9a:2c: fa:55:3e:be:0e:75:6c:f2:74:4f:61:ca:7a:90:e9: 4f:20:18:5c:d6:eb:1f:a9:58:5b:62:8d:db:5a:c8: eb:d3:c8:9e:5c:59:a8:09:ed:e6:08:be:0f:f1:db: c2:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:06:C9:31:BA:88:DA:F4:19:1A:A5:13:E0:78:CB:7D:24:09:53:6D X509v3 Authority Key Identifier: keyid:C0:35:45:0B:D1:A2:D4:4B:15:1E:E3:8C:08:98:88:A5:AF:4B:80:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wDVFC9Gi1EsVHuOMCJiIpa9LgFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ED931/D1D32B6E19AF11ECAF84CD76C4F9AE02/7273624619B511EC98D2A883C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.49.96.0/21 Signature Algorithm: sha256WithRSAEncryption 4e:00:6c:51:15:09:b0:ad:bb:7d:32:dc:0b:1a:26:0d:aa:41: 9f:a6:1f:d2:df:44:28:1a:7d:94:ca:0d:fe:2c:42:92:07:55: 97:ba:22:1b:ce:98:0c:33:0b:62:d2:45:87:92:19:02:e3:a6: af:fe:66:f3:39:01:4f:af:1c:23:d4:50:28:6a:b3:14:96:ee: 09:1d:e4:fd:b3:9d:75:c5:4d:2a:89:bc:9f:c9:83:61:4f:48: 4d:26:6b:69:e2:c3:2e:1e:a5:bf:da:a9:93:ca:d1:24:3d:be: 22:03:29:54:10:26:dd:ac:db:75:42:a9:0f:50:c1:be:3f:c6: 9b:d2:12:b2:94:f5:46:fa:bd:04:ec:5f:47:b0:a0:80:87:00: a8:a7:ef:04:d3:89:2f:ef:eb:3c:51:f9:55:45:cb:c3:95:95: 6e:36:9c:45:4a:83:96:22:b3:84:c0:12:20:b8:33:eb:cf:85: 59:36:0d:15:a5:5c:73:09:e5:13:d9:cb:00:d5:2a:69:60:c1: e3:d4:ff:cf:8c:e2:a0:11:b4:0d:4d:97:bb:f0:45:e2:1d:fa: 9c:27:3c:10:7b:10:01:8c:68:af:a3:64:b4:15:f9:2b:0f:e9: 25:72:22:48:68:6b:33:58:3c:54:ac:36:12:0e:18:eb:01:a0: f3:ae:8b:c7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBPgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUQ5MzExMTAvBgNVBAUTKEMwMzU0NTBCRDFBMkQ0NEIxNTFFRTM4QzA4OTg4OEE1 QUY0QjgwNTkwHhcNMjUwNjA0MjM0NDIzWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODQwZGE1Ni0zZWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwNPM6lE2HcZ70DulW9g5/OwCSKZlHScfzWidatk4oOBSIf9LCQ0ly2h4LgXo dCqsDas5oELTcuBBPAGXjFBQuzqcalUSH69rAm9+scb9lj1oG9GzOzdS9GZgWLqo amyW7znirhwRT0jpSm55Zjwt0b3SVKR3Iu8EoDjexj/FLZHGf1UL5ZJ/bntps7un KgcJyW1iJiTqGpJA5ul6OhRNLgJUS/FDuNle/V/vwcul566gE1kWnnBvCbyS8WPK 8/kdGV69idPzOxCXnIyBapRmmiz6VT6+DnVs8nRPYcp6kOlPIBhc1usfqVhbYo3b Wsjr08ieXFmoCe3mCL4P8dvCgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNEGyTG6 iNr0GRqlE+B4y30kCVNtMB8GA1UdIwQYMBaAFMA1RQvRotRLFR7jjAiYiKWvS4BZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRDkzMS9EMUQzMkI2RTE5 QUYxMUVDQUY4NENENzZDNEY5QUUwMi93RFZGQzlHaTFFc1ZIdU9NQ0ppSXBhOUxn RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dEVkZDOUdpMUVzVkh1T01DSmlJcGE5TGdGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUQ5MzEvRDFEMzJCNkUxOUFGMTFFQ0FGODRDRDc2QzRGOUFFMDIvNzI3MzYyNDYx OUI1MTFFQzk4RDJBODgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKMWAwDQYJKoZIhvcNAQELBQADggEBAE4AbFEVCbCtu30y 3AsaJg2qQZ+mH9LfRCgafZTKDf4sQpIHVZe6IhvOmAwzC2LSRYeSGQLjpq/+ZvM5 AU+vHCPUUChqsxSW7gkd5P2znXXFTSqJvJ/Jg2FPSE0ma2niwy4epb/aqZPK0SQ9 viIDKVQQJt2s23VCqQ9Qwb4/xpvSErKU9Ub6vQTsX0ewoICHAKin7wTTiS/v6zxR +VVFy8OVlW42nEVKg5Yis4TAEiC4M+vPhVk2DRWlXHMJ5RPZywDVKmlgwePU/8+M 4qARtA1Nl7vwReId+pwnPBB7EAGMaK+jZLQV+SsP6SVyIkhoazNYPFSsNhIOGOsB oPOui8c= -----END CERTIFICATE-----Generated at Thu Jun 5 19:13:00 2025 by rpki-client