$ rpki-client -vvf rpki.apnic.net/member_repository/A91FC42A/F3B52E72C87011E98DECA581C4F9AE02/E4653316C87211E9ADADA185C4F9AE02.roa File: E4653316C87211E9ADADA185C4F9AE02.roa (raw, json) Hash identifier: Kl+qHWqwPNXr+jNBmlZ54bsne4TIDTa38/cYe+iBa+g= Subject key identifier: B2:F2:8A:B0:6E:8B:16:EB:78:78:E7:BD:10:C6:FC:D2:F4:71:53:B5 Certificate issuer: /CN=A91FC42A/serialNumber=82B3D4A596BB978855A155CAAFA8B2625330DE8D Certificate serial: 0D6D Authority key identifier: 82:B3:D4:A5:96:BB:97:88:55:A1:55:CA:AF:A8:B2:62:53:30:DE:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grPUpZa7l4hVoVXKr6iyYlMw3o0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FC42A/F3B52E72C87011E98DECA581C4F9AE02/E4653316C87211E9ADADA185C4F9AE02.roa Signing time: Wed 30 Apr 2025 17:57:09 +0000 ROA not before: Wed 30 Apr 2025 17:57:09 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 17733 IP address blocks: 202.161.32.0/19 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FC42A/F3B52E72C87011E98DECA581C4F9AE02/grPUpZa7l4hVoVXKr6iyYlMw3o0.crl rsync://rpki.apnic.net/member_repository/A91FC42A/F3B52E72C87011E98DECA581C4F9AE02/grPUpZa7l4hVoVXKr6iyYlMw3o0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grPUpZa7l4hVoVXKr6iyYlMw3o0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 18:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3437 (0xd6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FC42A, serialNumber=82B3D4A596BB978855A155CAAFA8B2625330DE8D Validity Not Before: Apr 30 17:57:09 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=68126475-f4b0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b4:03:f6:51:de:63:8d:60:e0:40:b5:fc:f4: be:17:e2:8d:ea:51:8c:6b:41:66:ed:b9:b1:1c:0a: d0:4e:d6:37:b5:41:11:2a:7e:1e:a3:71:93:94:33: 12:ff:2d:1c:a2:21:c5:54:6d:d4:05:b1:37:69:30: 80:c5:87:86:18:fc:39:83:91:01:12:e3:c6:85:e3: 51:c8:da:60:29:c0:c4:ef:06:28:f6:4c:bb:f5:00: e9:d8:d0:af:41:de:89:ea:b5:6a:37:86:34:84:91: 52:b8:88:f9:00:ce:0a:6c:f9:55:d4:1e:bd:a0:be: 2c:73:dc:32:95:eb:0b:17:17:c9:b9:aa:c6:a6:2d: e0:ac:6b:d6:73:3a:a1:4b:7b:53:5e:6d:29:d3:d8: f7:99:4e:ed:b2:f5:53:7e:86:b6:52:79:49:68:38: 02:2d:63:99:bf:b4:14:56:a9:7e:9e:23:5e:f3:d8: 4f:87:51:e6:1b:3c:c0:7a:aa:aa:a2:24:82:ac:5a: 7d:81:9a:f9:51:df:10:d5:0a:83:82:d0:0c:8f:68: 6f:81:67:d7:cd:7e:52:b6:39:a1:75:cb:98:56:b8: a7:50:11:60:fc:ac:6a:1c:7f:a8:fb:40:06:5f:df: 95:03:08:36:15:c5:88:03:7b:cb:e6:03:02:31:4a: ac:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:F2:8A:B0:6E:8B:16:EB:78:78:E7:BD:10:C6:FC:D2:F4:71:53:B5 X509v3 Authority Key Identifier: keyid:82:B3:D4:A5:96:BB:97:88:55:A1:55:CA:AF:A8:B2:62:53:30:DE:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FC42A/F3B52E72C87011E98DECA581C4F9AE02/grPUpZa7l4hVoVXKr6iyYlMw3o0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/grPUpZa7l4hVoVXKr6iyYlMw3o0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FC42A/F3B52E72C87011E98DECA581C4F9AE02/E4653316C87211E9ADADA185C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.161.32.0/19 Signature Algorithm: sha256WithRSAEncryption 01:d9:ed:b6:10:10:be:7d:a6:84:6e:e8:e3:ef:0b:09:55:51: d7:17:bc:e6:33:88:36:48:1d:3f:fa:0d:01:d5:33:8c:10:99: 97:7c:40:66:02:23:65:5e:e1:2b:c6:5d:d1:60:0a:9f:b1:cb: 71:b0:fb:aa:dc:74:a8:3b:a8:16:30:0f:2a:47:84:9d:fb:64: c0:da:d5:7a:72:75:60:49:70:19:23:3b:b6:cf:7e:ab:16:44: 5d:7e:8d:35:ec:79:45:be:f2:84:1c:bb:e1:52:68:ea:68:c3: ee:97:be:6f:0d:7a:2e:b7:52:03:25:2d:b2:ea:f3:bb:33:d6: e1:82:49:06:6c:b0:f6:96:41:02:97:dd:9e:72:63:3b:e0:bf: 81:71:94:f7:7d:8b:a1:9f:be:d9:06:69:25:b4:ab:a8:0f:c3: f8:59:4b:cc:8d:b7:c9:0c:40:4a:b5:15:96:ed:7f:61:3b:88: ab:d6:c5:87:1b:c3:b5:4e:f1:bb:ba:a5:43:f5:cc:73:eb:31: 97:9c:a8:76:52:4d:ca:30:fc:bf:3e:e8:fe:1a:23:e6:8f:87: 6c:e2:70:97:ea:bb:00:09:a4:bb:43:61:97:c3:8e:63:fd:9a: 67:de:1b:c2:56:74:df:f8:47:d8:ac:1a:e9:5d:3b:dd:76:f1: 6e:3c:9f:f7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkM0MkExMTAvBgNVBAUTKDgyQjNENEE1OTZCQjk3ODg1NUExNTVDQUFGQThCMjYy NTMzMERFOEQwHhcNMjUwNDMwMTc1NzA5WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODEyNjQ3NS1mNGIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArLQD9lHeY41g4EC1/PS+F+KN6lGMa0Fm7bmxHArQTtY3tUERKn4eo3GTlDMS /y0coiHFVG3UBbE3aTCAxYeGGPw5g5EBEuPGheNRyNpgKcDE7wYo9ky79QDp2NCv Qd6J6rVqN4Y0hJFSuIj5AM4KbPlV1B69oL4sc9wylesLFxfJuarGpi3grGvWczqh S3tTXm0p09j3mU7tsvVTfoa2UnlJaDgCLWOZv7QUVql+niNe89hPh1HmGzzAeqqq oiSCrFp9gZr5Ud8Q1QqDgtAMj2hvgWfXzX5StjmhdcuYVrinUBFg/KxqHH+o+0AG X9+VAwg2FcWIA3vL5gMCMUqsYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLLyirBu ixbreHjnvRDG/NL0cVO1MB8GA1UdIwQYMBaAFIKz1KWWu5eIVaFVyq+osmJTMN6N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQzQyQS9GM0I1MkU3MkM4 NzAxMUU5OERFQ0E1ODFDNEY5QUUwMi9nclBVcFphN2w0aFZvVlhLcjZpeVlsTXcz bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dyUFVwWmE3bDRoVm9WWEtyNml5WWxNdzNvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkM0MkEvRjNCNTJFNzJDODcwMTFFOThERUNBNTgxQzRGOUFFMDIvRTQ2NTMzMTZD ODcyMTFFOUFEQURBMTg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAXKoSAwDQYJKoZIhvcNAQELBQADggEBAAHZ7bYQEL59poRu 6OPvCwlVUdcXvOYziDZIHT/6DQHVM4wQmZd8QGYCI2Ve4SvGXdFgCp+xy3Gw+6rc dKg7qBYwDypHhJ37ZMDa1XpydWBJcBkjO7bPfqsWRF1+jTXseUW+8oQcu+FSaOpo w+6Xvm8Nei63UgMlLbLq87sz1uGCSQZssPaWQQKX3Z5yYzvgv4FxlPd9i6GfvtkG aSW0q6gPw/hZS8yNt8kMQEq1FZbtf2E7iKvWxYcbw7VO8bu6pUP1zHPrMZecqHZS Tcow/L8+6P4aI+aPh2zicJfquwAJpLtDYZfDjmP9mmfeG8JWdN/4R9isGuldO912 8W48n/c= -----END CERTIFICATE-----Generated at Mon Jun 2 05:45:19 2025 by rpki-client