$ rpki-client -vvf rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/FEB0698C941C11EE89E27567C4F9AE02.roa File: FEB0698C941C11EE89E27567C4F9AE02.roa (raw, json) Hash identifier: L26fzptytT9bxS3tMFpfzEmv3OkfRWvu4Ly32GIlRg8= Subject key identifier: 2C:34:61:0B:32:5A:17:E6:F8:2A:12:62:BA:7A:F4:48:F8:1D:1A:AC Certificate issuer: /CN=A91109A3/serialNumber=53C0E7F068AA1EF003A0BEE2A5D52DBC89DCDFB8 Certificate serial: D9 Authority key identifier: 53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/FEB0698C941C11EE89E27567C4F9AE02.roa Signing time: Fri 03 Jan 2025 04:07:11 +0000 ROA not before: Fri 03 Jan 2025 04:07:11 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 152180 IP address blocks: 210.79.184.0/23 maxlen: 23 210.79.184.0/24 maxlen: 24 210.79.185.0/24 maxlen: 24 2401:5660:100::/40 maxlen: 40 2401:5660:fc00::/40 maxlen: 40 2401:5660:fd00::/40 maxlen: 40 2401:5660:fe00::/40 maxlen: 40 2401:5660:ff00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 04:27:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91109A3 Validity Not Before: Jan 3 04:07:11 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6777626f-e316 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:d1:14:63:9d:8d:f6:f2:5c:eb:77:52:77:8c: 92:8f:26:e0:e2:8f:96:8e:20:6f:dd:2f:bb:18:1d: 0e:54:fa:0e:00:e8:8c:9f:77:8d:00:73:43:f4:d2: 0c:13:38:28:77:37:16:e5:8f:7a:7b:3e:b0:a6:df: d8:d7:bc:a0:d8:04:bb:9d:7d:ff:44:d2:28:28:0e: bd:2e:5e:69:e7:48:13:62:87:8e:7c:e1:f3:f5:91: 90:4e:54:0d:4e:c2:fc:c1:96:ed:e8:37:af:24:99: af:8f:7b:5a:11:b9:3b:f8:48:2b:3f:2b:34:95:ab: e7:7d:26:74:34:a8:45:fe:22:e2:ee:e2:53:78:dc: ae:29:1a:02:de:2c:2a:8e:6b:a5:06:33:33:ed:ee: b4:90:c2:be:83:98:70:e5:8d:3b:13:7c:ce:dd:9a: 7d:ed:6e:9c:11:ce:97:7f:0c:08:ee:3e:45:db:14: 41:2f:ad:be:8d:d7:cc:7f:fc:68:08:2d:08:c0:03: 8c:c4:dc:dc:f5:b5:f1:58:bb:4b:d0:57:ef:8c:8e: 19:ee:8f:30:bd:35:b2:dc:33:ca:e0:98:a8:4d:c5: f5:46:2a:62:f5:f5:a3:88:03:84:1a:7c:8d:f7:ec: 01:1e:8a:b1:5d:cc:3c:2f:25:a7:b5:9b:5e:d5:c7: dc:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:34:61:0B:32:5A:17:E6:F8:2A:12:62:BA:7A:F4:48:F8:1D:1A:AC X509v3 Authority Key Identifier: keyid:53:C0:E7:F0:68:AA:1E:F0:03:A0:BE:E2:A5:D5:2D:BC:89:DC:DF:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/U8Dn8GiqHvADoL7ipdUtvInc37g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U8Dn8GiqHvADoL7ipdUtvInc37g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/FEB0698C941C11EE89E27567C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.79.184.0/23 IPv6: 2401:5660:100::/40 2401:5660:fc00::/38 Signature Algorithm: sha256WithRSAEncryption 72:87:37:73:13:bc:19:28:bb:e2:2f:63:55:a6:2d:58:7b:4d: 27:4e:7a:b0:80:8d:7c:5a:10:7c:d9:f9:cb:54:8c:f4:0a:18: 00:11:e2:3e:a9:30:12:89:3c:5e:45:a6:98:fe:59:c4:9f:29: 77:07:83:f5:7f:cb:37:9a:f9:6d:02:71:46:5d:c7:10:92:d1: 95:8b:a7:9e:a1:84:40:f0:82:0f:e0:59:ed:c9:66:ae:e4:31: 62:2f:9c:d7:4d:70:ef:38:fb:b8:81:0e:0d:ac:b7:74:f2:93: 41:06:61:80:86:80:60:e3:cb:03:2c:b2:82:47:97:62:b4:58: 0e:94:39:aa:c4:8b:0f:a6:dd:72:8f:d4:ba:3c:a5:39:37:46: f7:97:13:b3:ed:4b:39:c1:3b:11:4b:0e:02:6f:06:63:ba:c2: cb:c3:c1:50:60:8a:58:c2:10:f3:e0:86:62:f5:96:9c:d5:9d: fa:7f:e9:cd:91:f1:25:1f:f2:ce:c7:f0:3b:94:af:96:e6:26: 18:56:e4:ee:0e:c0:d2:c4:ef:e1:b1:cb:2a:0b:4f:1e:1e:c4: 6a:f5:2a:a5:1e:5a:21:25:75:7a:41:d4:89:f9:ed:d5:85:cb: 64:fb:71:87:fb:f3:28:aa:ad:f5:2e:ce:a7:fc:f4:63:89:3d: d1:b6:78:b7 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA5QTMxMTAvBgNVBAUTKDUzQzBFN0YwNjhBQTFFRjAwM0EwQkVFMkE1RDUyREJD ODlEQ0RGQjgwHhcNMjUwMTAzMDQwNzExWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc3NjI2Zi1lMzE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4dEUY52N9vJc63dSd4ySjybg4o+WjiBv3S+7GB0OVPoOAOiMn3eNAHND9NIM EzgodzcW5Y96ez6wpt/Y17yg2AS7nX3/RNIoKA69Ll5p50gTYoeOfOHz9ZGQTlQN TsL8wZbt6DevJJmvj3taEbk7+EgrPys0lavnfSZ0NKhF/iLi7uJTeNyuKRoC3iwq jmulBjMz7e60kMK+g5hw5Y07E3zO3Zp97W6cEc6XfwwI7j5F2xRBL62+jdfMf/xo CC0IwAOMxNzc9bXxWLtL0FfvjI4Z7o8wvTWy3DPK4JioTcX1Ripi9fWjiAOEGnyN 9+wBHoqxXcw8LyWntZte1cfchQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFCw0YQsy Whfm+CoSYrp69Ej4HRqsMB8GA1UdIwQYMBaAFFPA5/Boqh7wA6C+4qXVLbyJ3N+4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDlBMy80M0ZCNjJGQThG RTgxMUVFOTJGNUM3NkFDNEY5QUUwMi9VOERuOEdpcUh2QURvTDdpcGRVdHZJbmMz N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U4RG44R2lxSHZBRG9MN2lwZFV0dkluYzM3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTA5QTMvNDNGQjYyRkE4RkU4MTFFRTkyRjVDNzZBQzRGOUFFMDIvRkVCMDY5OEM5 NDFDMTFFRTg5RTI3NTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMAwEAgABMAYDBAHST7gwFgQCAAIwEAMGACQBVmABAwYCJAFWYPwwDQYJKoZI hvcNAQELBQADggEBAHKHN3MTvBkou+IvY1WmLVh7TSdOerCAjXxaEHzZ+ctUjPQK GAAR4j6pMBKJPF5Fppj+WcSfKXcHg/V/yzea+W0CcUZdxxCS0ZWLp56hhEDwgg/g We3JZq7kMWIvnNdNcO84+7iBDg2st3Tyk0EGYYCGgGDjywMssoJHl2K0WA6UOarE iw+m3XKP1Lo8pTk3RveXE7PtSznBOxFLDgJvBmO6wsvDwVBgiljCEPPghmL1lpzV nfp/6c2R8SUf8s7H8DuUr5bmJhhW5O4OwNLE7+GxyyoLTx4exGr1KqUeWiEldXpB 1In57dWFy2T7cYf78yiqrfUuzqf89GOJPdG2eLc= -----END CERTIFICATE-----Generated at Sat Apr 5 07:14:04 2025 by rpki-client