$ rpki-client -vvf rpki.apnic.net/member_repository/A91115D5/4EBCAF26D0AF11E8AAEB0756C4F9AE02/4978C5B2089911F0B2664480C4F9AE02.roa File: 4978C5B2089911F0B2664480C4F9AE02.roa (raw, json) Hash identifier: 00dFUbxtRi+P5zmsb5ryh9HhmqE32J+HOZ/FYXFpiHQ= Subject key identifier: EB:AD:A0:31:B0:7B:DE:43:73:6D:DA:62:57:14:8D:B1:E1:B7:39:7E Certificate issuer: /CN=A91115D5/serialNumber=476F572A380236AF33F62D82A5BA264D2FBBAD7C Certificate serial: 127A Authority key identifier: 47:6F:57:2A:38:02:36:AF:33:F6:2D:82:A5:BA:26:4D:2F:BB:AD:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R29XKjgCNq8z9i2CpbomTS-7rXw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91115D5/4EBCAF26D0AF11E8AAEB0756C4F9AE02/4978C5B2089911F0B2664480C4F9AE02.roa Signing time: Wed 02 Apr 2025 17:16:06 +0000 ROA not before: Wed 02 Apr 2025 17:16:06 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 23607 IP address blocks: 116.204.167.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91115D5/4EBCAF26D0AF11E8AAEB0756C4F9AE02/R29XKjgCNq8z9i2CpbomTS-7rXw.crl rsync://rpki.apnic.net/member_repository/A91115D5/4EBCAF26D0AF11E8AAEB0756C4F9AE02/R29XKjgCNq8z9i2CpbomTS-7rXw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R29XKjgCNq8z9i2CpbomTS-7rXw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:12:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4730 (0x127a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91115D5 Validity Not Before: Apr 2 17:16:06 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67ed70d6-d303 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:bc:ed:98:38:34:4e:05:9e:03:af:75:48:7d: 74:65:31:aa:e0:ed:f9:b7:84:0a:17:39:51:76:1b: 6e:47:bc:a0:1b:24:43:04:2f:eb:8f:93:ce:57:77: a8:58:b5:b0:96:51:a4:6f:b1:24:4f:aa:df:a0:74: 53:a5:fe:9b:79:3b:14:16:c5:9b:73:55:ee:91:18: 12:5b:75:2a:9f:f3:82:83:8e:23:e2:89:a9:17:6a: 23:7d:af:85:95:46:09:4a:26:6a:c5:34:fa:0f:ef: cb:a1:95:0c:b4:23:eb:8c:3a:4f:b7:47:21:05:ab: 0e:0c:b3:3c:4b:b9:d1:e5:0d:97:41:dc:0d:ba:65: 65:ad:d3:f1:22:8c:88:fe:33:f6:79:6a:5c:c4:50: 95:fe:b4:5c:7e:55:a4:25:8f:ee:d1:7c:b2:9f:ed: db:97:a6:2f:2d:40:0b:ed:0e:fe:29:ec:29:3a:e8: aa:34:fd:ee:ea:5b:67:c2:5f:31:d9:b3:34:27:43: c8:6f:84:b8:3e:4f:c8:47:51:b9:fd:71:16:1b:47: 14:eb:87:14:d0:97:ae:99:c9:c4:65:ab:39:d1:3c: b2:29:f6:81:af:26:3f:4c:0b:86:b4:a6:55:86:da: 28:68:bb:f7:45:fd:56:a8:a9:cd:9c:7f:3c:cb:b6: 5d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:AD:A0:31:B0:7B:DE:43:73:6D:DA:62:57:14:8D:B1:E1:B7:39:7E X509v3 Authority Key Identifier: keyid:47:6F:57:2A:38:02:36:AF:33:F6:2D:82:A5:BA:26:4D:2F:BB:AD:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91115D5/4EBCAF26D0AF11E8AAEB0756C4F9AE02/R29XKjgCNq8z9i2CpbomTS-7rXw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/R29XKjgCNq8z9i2CpbomTS-7rXw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91115D5/4EBCAF26D0AF11E8AAEB0756C4F9AE02/4978C5B2089911F0B2664480C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.204.167.0/24 Signature Algorithm: sha256WithRSAEncryption 25:9f:b3:05:31:cb:2d:0e:6b:2f:af:44:13:a8:35:20:26:a4: 67:58:66:ad:84:d2:4a:e7:66:48:cc:63:0a:d9:b0:d9:7d:ba: 15:72:6a:c4:9e:93:12:f0:40:2e:03:24:1d:6e:26:36:67:6d: 62:dc:87:75:f2:12:d6:be:ea:db:c1:35:94:cf:5b:e2:ef:47: 3b:df:4e:9e:78:85:4d:05:99:07:e5:52:5c:e8:48:a1:c7:74: 01:7e:30:30:a5:40:bd:f6:f3:a5:ee:92:94:38:53:9f:01:c1: fa:ea:3c:ed:94:49:14:4c:61:13:b6:45:e0:c5:26:e0:58:75: 65:fe:67:60:b2:f6:79:0f:66:5c:6a:3b:63:d4:40:92:06:39: 21:5f:56:0c:09:bc:f9:9f:fa:79:1c:f6:a7:8a:cc:0d:3c:5b: 9a:62:b7:40:de:44:55:1f:e0:86:a1:f7:0b:7a:02:ed:ea:61: c9:f8:1f:a5:9c:4e:6f:26:ac:8d:f8:a8:de:c1:95:29:f1:b0: 43:bd:6d:e4:9c:dc:ae:ac:5c:8f:44:ff:0a:c9:d8:4a:c5:c9: 79:bf:39:23:15:95:8e:69:24:53:e7:aa:89:0f:1a:8f:33:27: 38:7f:fd:62:c3:18:8e:f0:28:40:03:e1:86:10:4e:14:da:02: 85:12:d1:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEnowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTE1RDUxMTAvBgNVBAUTKDQ3NkY1NzJBMzgwMjM2QUYzM0Y2MkQ4MkE1QkEyNjRE MkZCQkFEN0MwHhcNMjUwNDAyMTcxNjA2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2VkNzBkNi1kMzAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv7ztmDg0TgWeA691SH10ZTGq4O35t4QKFzlRdhtuR7ygGyRDBC/rj5POV3eo WLWwllGkb7EkT6rfoHRTpf6beTsUFsWbc1XukRgSW3Uqn/OCg44j4ompF2ojfa+F lUYJSiZqxTT6D+/LoZUMtCPrjDpPt0chBasODLM8S7nR5Q2XQdwNumVlrdPxIoyI /jP2eWpcxFCV/rRcflWkJY/u0Xyyn+3bl6YvLUAL7Q7+KewpOuiqNP3u6ltnwl8x 2bM0J0PIb4S4Pk/IR1G5/XEWG0cU64cU0JeumcnEZas50TyyKfaBryY/TAuGtKZV htooaLv3Rf1WqKnNnH88y7ZdHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOutoDGw e95Dc23aYlcUjbHhtzl+MB8GA1UdIwQYMBaAFEdvVyo4AjavM/YtgqW6Jk0vu618 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTVENS80RUJDQUYyNkQw QUYxMUU4QUFFQjA3NTZDNEY5QUUwMi9SMjlYS2pnQ05xOHo5aTJDcGJvbVRTLTdy WHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1IyOVhLamdDTnE4ejlpMkNwYm9tVFMtN3JYdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTE1RDUvNEVCQ0FGMjZEMEFGMTFFOEFBRUIwNzU2QzRGOUFFMDIvNDk3OEM1QjIw ODk5MTFGMEIyNjY0NDgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0zKcwDQYJKoZIhvcNAQELBQADggEBACWfswUxyy0Oay+v RBOoNSAmpGdYZq2E0krnZkjMYwrZsNl9uhVyasSekxLwQC4DJB1uJjZnbWLch3Xy Eta+6tvBNZTPW+LvRzvfTp54hU0FmQflUlzoSKHHdAF+MDClQL3286XukpQ4U58B wfrqPO2USRRMYRO2ReDFJuBYdWX+Z2Cy9nkPZlxqO2PUQJIGOSFfVgwJvPmf+nkc 9qeKzA08W5pit0DeRFUf4Iah9wt6Au3qYcn4H6WcTm8mrI34qN7BlSnxsEO9beSc 3K6sXI9E/wrJ2ErFyXm/OSMVlY5pJFPnqokPGo8zJzh//WLDGI7wKEAD4YYQThTa AoUS0f4= -----END CERTIFICATE-----Generated at Sat Apr 5 02:15:35 2025 by rpki-client