$ rpki-client -vvf rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/E368BEF2E9D611EFAC604979C4F9AE02.roa File: E368BEF2E9D611EFAC604979C4F9AE02.roa (raw, json) Hash identifier: HfXLWtads28iS5LrLz0AFXei2F6BGIFKfg02w7QPxkY= Subject key identifier: 09:5F:31:01:05:92:79:2C:19:83:08:A6:AC:D9:AC:4D:18:30:37:07 Certificate issuer: /CN=A91180E8/serialNumber=67F29B35A8942AA6B7F41AEFB34A0676FD695097 Certificate serial: 02 Authority key identifier: 67:F2:9B:35:A8:94:2A:A6:B7:F4:1A:EF:B3:4A:06:76:FD:69:50:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_KbNaiUKqa39Brvs0oGdv1pUJc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/E368BEF2E9D611EFAC604979C4F9AE02.roa Signing time: Thu 13 Feb 2025 06:51:02 +0000 ROA not before: Thu 13 Feb 2025 06:51:02 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 139664 IP address blocks: 27.121.112.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.crl rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_KbNaiUKqa39Brvs0oGdv1pUJc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 07:09:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91180E8 Validity Not Before: Feb 13 06:51:02 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67ad9656-8620 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a3:ce:99:f0:03:6f:d1:6d:45:a2:ca:00:4b: 45:a5:e3:54:bb:ec:fb:da:04:85:1d:5f:47:f3:84: e8:f6:d7:b5:05:1d:d2:01:7e:57:7b:0b:1c:ba:e3: e5:e4:d8:2e:20:12:c8:3e:ac:b6:e7:b6:6c:98:bf: 9f:76:66:19:76:98:53:2a:ee:1e:de:e7:61:40:ce: 82:eb:c9:f1:2e:f0:8c:25:6c:ac:f0:59:a2:21:49: ee:34:c4:cf:44:cd:a5:5d:b5:12:89:40:55:30:a7: fc:ce:b8:25:b6:50:f1:35:a1:ef:bc:71:ac:1b:55: 64:23:f3:68:20:90:cb:f6:25:fe:ee:eb:22:4e:e6: f9:ca:d0:07:33:b9:0e:ac:9e:7f:7f:f9:4f:6e:e0: 9d:21:e8:df:5f:82:0e:8a:b2:b7:3f:39:a2:8c:0c: 8c:88:c6:f0:38:b4:89:c9:bf:05:b6:27:54:b4:7f: 70:1d:27:78:73:db:56:48:0d:bb:8e:d5:ad:8d:2b: 8f:f7:02:1d:9a:1e:07:7c:36:86:0b:03:b1:a0:4c: 48:66:9c:54:4d:bb:c1:22:06:17:72:c8:24:08:56: 92:c0:c8:3a:7c:87:db:5e:f7:87:79:ea:a5:dc:b0: 98:09:3c:09:2c:87:e6:0d:ec:21:54:a7:88:25:b0: 9a:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:5F:31:01:05:92:79:2C:19:83:08:A6:AC:D9:AC:4D:18:30:37:07 X509v3 Authority Key Identifier: keyid:67:F2:9B:35:A8:94:2A:A6:B7:F4:1A:EF:B3:4A:06:76:FD:69:50:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/Z_KbNaiUKqa39Brvs0oGdv1pUJc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z_KbNaiUKqa39Brvs0oGdv1pUJc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91180E8/3A9FAC54E9D611EF8D04B677C4F9AE02/E368BEF2E9D611EFAC604979C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.121.112.0/23 Signature Algorithm: sha256WithRSAEncryption 39:05:90:f0:03:44:99:42:04:00:25:53:99:7f:3b:ad:3a:d8: 12:b2:59:a4:7c:4f:28:72:1a:2e:5e:53:ac:82:81:8d:2a:47: 84:81:13:fb:b0:80:07:9b:f3:ae:3a:40:91:76:e9:53:85:f3: a9:36:90:cc:a0:58:9a:e2:04:73:b1:e2:00:5b:7a:03:45:e0: 08:ab:bc:04:7b:69:7b:5d:fc:a8:a5:1a:0f:58:9a:9d:da:40: 85:19:b2:93:07:b5:e9:af:f1:35:fd:f8:97:2f:69:87:4b:7f: 58:68:d6:a0:e3:65:2c:50:01:cf:ca:d2:b1:ee:65:8a:10:17: d9:87:13:3f:8e:a4:08:da:1c:6e:74:25:71:08:23:5b:e4:7b: 96:5d:ab:2e:c4:a8:7c:d5:d1:5a:5a:fb:cb:47:ec:5c:63:56: ed:bd:65:cb:7d:1c:41:06:aa:99:87:3f:59:70:79:9b:8c:ef: 4c:ff:b6:1c:8d:d1:e1:ee:82:ef:c6:26:98:dd:af:39:29:9b: 5a:a8:9e:2e:45:de:5d:1c:ca:68:52:4d:19:fd:eb:3f:74:c5: 1a:1f:40:b9:b6:21:2a:64:34:f3:1b:58:55:2a:c9:a2:be:1c: 1d:95:ba:9c:a6:4e:43:82:3c:c0:e8:eb:ff:24:8b:47:63:53: 82:ed:b4:30 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx ODBFODExMC8GA1UEBRMoNjdGMjlCMzVBODk0MkFBNkI3RjQxQUVGQjM0QTA2NzZG RDY5NTA5NzAeFw0yNTAyMTMwNjUxMDJaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YWQ5NjU2LTg2MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0o86Z8ANv0W1FosoAS0Wl41S77PvaBIUdX0fzhOj217UFHdIBfld7Cxy64+Xk 2C4gEsg+rLbntmyYv592Zhl2mFMq7h7e52FAzoLryfEu8IwlbKzwWaIhSe40xM9E zaVdtRKJQFUwp/zOuCW2UPE1oe+8cawbVWQj82ggkMv2Jf7u6yJO5vnK0AczuQ6s nn9/+U9u4J0h6N9fgg6Ksrc/OaKMDIyIxvA4tInJvwW2J1S0f3AdJ3hz21ZIDbuO 1a2NK4/3Ah2aHgd8NoYLA7GgTEhmnFRNu8EiBhdyyCQIVpLAyDp8h9te94d56qXc sJgJPAksh+YN7CFUp4glsJoxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUCV8xAQWS eSwZgwimrNmsTRgwNwcwHwYDVR0jBBgwFoAUZ/KbNaiUKqa39Brvs0oGdv1pUJcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE4MEU4LzNBOUZBQzU0RTlE NjExRUY4RDA0QjY3N0M0RjlBRTAyL1pfS2JOYWlVS3FhMzlCcnZzMG9HZHYxcFVK Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWl9LYk5haVVLcWEzOUJydnMwb0dkdjFwVUpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx ODBFOC8zQTlGQUM1NEU5RDYxMUVGOEQwNEI2NzdDNEY5QUUwMi9FMzY4QkVGMkU5 RDYxMUVGQUM2MDQ5NzlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEARt5cDANBgkqhkiG9w0BAQsFAAOCAQEAOQWQ8ANEmUIEACVT mX87rTrYErJZpHxPKHIaLl5TrIKBjSpHhIET+7CAB5vzrjpAkXbpU4XzqTaQzKBY muIEc7HiAFt6A0XgCKu8BHtpe138qKUaD1iandpAhRmykwe16a/xNf34ly9ph0t/ WGjWoONlLFABz8rSse5lihAX2YcTP46kCNocbnQlcQgjW+R7ll2rLsSofNXRWlr7 y0fsXGNW7b1ly30cQQaqmYc/WXB5m4zvTP+2HI3R4e6C78YmmN2vOSmbWqieLkXe XRzKaFJNGf3rP3TFGh9AubYhKmQ08xtYVSrJor4cHZW6nKZOQ4I8wOjr/ySLR2NT gu20MA== -----END CERTIFICATE-----Generated at Sat Apr 5 02:20:38 2025 by rpki-client