$ rpki-client -vvf rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/D8EA255C2FBC11EB8E017F5CC4F9AE02.roa File: D8EA255C2FBC11EB8E017F5CC4F9AE02.roa (raw, json) Hash identifier: QcINMhPugXakfHhYWsf4t0lmoNzm+ZXfVIXhNA2VxIA= Subject key identifier: 06:DA:CC:45:BB:D3:82:68:04:31:77:73:81:AB:31:DF:1A:F2:D1:87 Certificate issuer: /CN=A91EE1C4/serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Certificate serial: 0745 Authority key identifier: 70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/D8EA255C2FBC11EB8E017F5CC4F9AE02.roa Signing time: Mon 26 May 2025 22:10:50 +0000 ROA not before: Mon 26 May 2025 22:10:50 +0000 ROA not after: Thu 30 Jul 2026 00:00:00 +0000 asID: 14618 IP address blocks: 202.128.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 09 Jun 2025 21:58:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1861 (0x745) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EE1C4, serialNumber=70BD1E495E250B22E2798296969785A2D77D737F Validity Not Before: May 26 22:10:50 2025 GMT Not After : Jul 30 00:00:00 2026 GMT Subject: CN=6834e6ea-31a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:00:a9:24:96:bc:9d:03:38:35:06:b5:39:e0: 39:42:ee:35:4b:87:c0:1f:95:e8:b4:ae:7b:a0:65: 06:9d:7c:b4:5a:71:58:2d:b8:b2:73:e9:a3:b6:b4: dd:47:e8:68:18:15:bd:ae:9d:26:25:28:a0:33:39: 29:db:0a:ce:3e:e0:5d:30:72:f1:28:3a:04:4d:82: ed:2d:51:d2:41:3d:0b:c9:b9:ac:40:b9:6b:00:66: 8c:58:2e:6f:ee:c8:54:0f:fc:cd:b1:44:c2:ba:0b: dd:bc:a9:78:a2:2b:63:5a:62:21:b2:57:96:32:78: e0:6a:df:cb:77:48:4b:ea:19:03:1f:9e:d2:1e:3d: 4e:6d:e3:43:f4:be:40:4b:27:57:53:d5:5d:32:51: ca:4e:c9:d5:7e:75:9f:ac:fd:43:6e:0b:0d:30:94: e1:16:d9:12:8f:98:bc:e4:be:0b:c0:9c:50:97:8b: fd:dd:88:53:06:b2:c7:45:1b:c3:c6:41:a1:95:0e: a2:1a:14:60:98:b5:6b:c5:97:d0:26:f4:8b:cd:2f: 82:92:c9:53:ec:68:17:8a:c1:c9:37:84:bc:f0:a0: d9:a9:3d:34:12:e5:d0:d9:77:11:67:e3:74:b3:82: 65:5e:1b:3b:d2:46:9a:e9:e8:8b:c6:9b:e0:bb:45: 8c:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:DA:CC:45:BB:D3:82:68:04:31:77:73:81:AB:31:DF:1A:F2:D1:87 X509v3 Authority Key Identifier: keyid:70:BD:1E:49:5E:25:0B:22:E2:79:82:96:96:97:85:A2:D7:7D:73:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/cL0eSV4lCyLieYKWlpeFotd9c38.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0eSV4lCyLieYKWlpeFotd9c38.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EE1C4/FC672B722FAF11EB94155F33C4F9AE02/D8EA255C2FBC11EB8E017F5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.128.99.0/24 Signature Algorithm: sha256WithRSAEncryption 66:64:5a:a0:0d:4f:99:2a:7c:ec:94:1e:e2:bb:d7:02:1a:9a: d2:b4:4b:9d:cb:01:a4:7e:05:42:e4:68:78:db:75:eb:9b:b2: 9a:6f:a0:6c:dd:7f:4e:20:ca:b4:5c:b1:6f:af:cf:d5:2c:98: fe:55:c8:9b:d7:7f:cc:83:9d:b0:d5:dc:c4:3c:50:15:d0:52: dd:9c:bf:4f:46:58:35:8e:21:af:25:ed:dd:e7:66:01:1d:cc: e9:eb:c3:1e:e1:a1:39:42:2d:72:f4:9f:4b:54:08:11:17:65: 62:7f:03:bf:3d:27:20:ed:1e:9c:fa:d9:26:88:6e:28:d5:26: 19:a2:11:7a:d0:86:de:91:44:69:57:dc:c2:cc:7d:65:c6:af: 83:3f:70:c0:06:6c:f0:31:98:bb:be:e2:9b:57:1b:3d:b4:c8: f5:30:bf:f4:16:bc:ad:71:52:be:4d:1b:2a:3b:10:e6:ec:21: 1e:cd:c6:89:cc:9b:12:40:7b:fe:f5:91:af:23:4a:66:57:41: c3:ff:74:a9:55:18:15:46:0a:03:13:f2:ef:2c:c1:c9:fc:0e: 12:74:34:00:0e:17:54:9d:08:a9:a9:14:1c:cf:e1:b0:14:2a: d7:a4:d3:76:73:56:57:20:b9:4c:8c:36:03:6d:5c:ba:f1:d4: 4b:19:70:0e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUUxQzQxMTAvBgNVBAUTKDcwQkQxRTQ5NUUyNTBCMjJFMjc5ODI5Njk2OTc4NUEy RDc3RDczN0YwHhcNMjUwNTI2MjIxMDUwWhcNMjYwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02ODM0ZTZlYS0zMWE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsgCpJJa8nQM4NQa1OeA5Qu41S4fAH5XotK57oGUGnXy0WnFYLbiyc+mjtrTd R+hoGBW9rp0mJSigMzkp2wrOPuBdMHLxKDoETYLtLVHSQT0LybmsQLlrAGaMWC5v 7shUD/zNsUTCugvdvKl4oitjWmIhsleWMnjgat/Ld0hL6hkDH57SHj1ObeND9L5A SydXU9VdMlHKTsnVfnWfrP1DbgsNMJThFtkSj5i85L4LwJxQl4v93YhTBrLHRRvD xkGhlQ6iGhRgmLVrxZfQJvSLzS+CkslT7GgXisHJN4S88KDZqT00EuXQ2XcRZ+N0 s4JlXhs70kaa6eiLxpvgu0WMNwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAbazEW7 04JoBDF3c4GrMd8a8tGHMB8GA1UdIwQYMBaAFHC9HkleJQsi4nmClpaXhaLXfXN/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRTFDNC9GQzY3MkI3MjJG QUYxMUVCOTQxNTVGMzNDNEY5QUUwMi9jTDBlU1Y0bEN5TGllWUtXbHBlRm90ZDlj MzguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NMMGVTVjRsQ3lMaWVZS1dscGVGb3RkOWMzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUUxQzQvRkM2NzJCNzIyRkFGMTFFQjk0MTU1RjMzQzRGOUFFMDIvRDhFQTI1NUMy RkJDMTFFQjhFMDE3RjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKgGMwDQYJKoZIhvcNAQELBQADggEBAGZkWqANT5kqfOyU HuK71wIamtK0S53LAaR+BULkaHjbdeubsppvoGzdf04gyrRcsW+vz9UsmP5VyJvX f8yDnbDV3MQ8UBXQUt2cv09GWDWOIa8l7d3nZgEdzOnrwx7hoTlCLXL0n0tUCBEX ZWJ/A789JyDtHpz62SaIbijVJhmiEXrQht6RRGlX3MLMfWXGr4M/cMAGbPAxmLu+ 4ptXGz20yPUwv/QWvK1xUr5NGyo7EObsIR7NxonMmxJAe/71ka8jSmZXQcP/dKlV GBVGCgMT8u8swcn8DhJ0NAAOF1SdCKmpFBzP4bAUKtek03ZzVlcguUyMNgNtXLrx 1EsZcA4= -----END CERTIFICATE-----Generated at Wed Jun 4 00:00:34 2025 by rpki-client