$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D91E3ADC498E11EF908FD222C4F9AE02.roa File: D91E3ADC498E11EF908FD222C4F9AE02.roa (raw, json) Hash identifier: +ehd8KtxPwFaqFNVmOCKeYgOq8q50OL3e4iQXY+Px88= Subject key identifier: 57:07:E4:91:C1:74:63:48:6E:6B:F8:D0:07:C5:DD:F3:28:0B:9C:A8 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: 85 Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D91E3ADC498E11EF908FD222C4F9AE02.roa Signing time: Tue 18 Mar 2025 06:01:29 +0000 ROA not before: Tue 18 Mar 2025 06:01:29 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 1851 IP address blocks: 130.220.0.0/16 maxlen: 16 130.220.208.0/24 maxlen: 24 130.220.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 05:18:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 133 (0x85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6, serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Mar 18 06:01:29 2025 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67d90c39-f544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a7:d1:b7:b0:11:bc:7e:fc:d6:50:a3:95:5d: 05:ba:95:98:16:80:50:45:30:17:f8:40:84:99:95: fb:c5:ec:1d:ff:6c:06:00:22:30:38:ae:a8:b3:a5: 52:7a:07:e0:7d:7c:16:ba:8e:9d:f0:6b:a8:e0:4d: 41:0d:6f:2a:a2:f5:a8:d7:8c:df:46:ae:86:37:5d: 87:51:70:45:b2:32:61:04:c6:ed:86:3b:e3:dc:7b: 65:1b:f0:ef:0f:b3:1f:a6:a8:d0:41:dd:6f:d9:8b: 40:21:d9:fd:fb:ba:87:4d:05:49:27:30:a9:85:79: 06:1c:d8:3f:ad:ca:d6:5c:20:3c:27:c5:a8:cf:d8: 8a:97:d0:6c:a9:9d:60:9c:c1:cf:67:2c:66:0e:d8: 02:b6:c3:30:07:44:6d:57:6c:a2:e4:2b:d5:0e:01: 11:c8:20:5f:31:af:35:fd:97:0d:8e:0f:cc:b9:e8: f7:7f:0e:66:dd:77:17:42:0b:b2:e0:24:57:66:8c: b4:be:7b:4d:00:3d:d2:bd:45:e9:61:d9:a3:85:4f: 93:33:0b:c9:2b:bc:fc:9c:04:17:0a:3b:e5:4c:e3: a4:2c:90:96:98:74:58:37:f3:63:76:19:00:5c:07: 92:5c:63:3c:6e:14:cb:bc:7f:6d:f7:a8:8d:2c:ac: 34:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:07:E4:91:C1:74:63:48:6E:6B:F8:D0:07:C5:DD:F3:28:0B:9C:A8 X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D91E3ADC498E11EF908FD222C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.220.0.0/16 Signature Algorithm: sha256WithRSAEncryption 90:ad:11:1e:1a:2b:1f:9a:f5:95:0a:94:fe:48:8a:ae:13:1c: 5f:91:c6:5a:1e:f0:99:08:21:ac:74:71:8c:a0:f8:4d:81:35: ee:40:7c:36:64:fc:f1:33:d9:70:85:5d:fa:03:52:9e:0e:22: 2a:c1:39:23:a9:eb:b3:c5:18:b9:b6:7e:ed:88:d2:15:e8:55: 89:83:71:e0:5d:c1:83:9b:8f:ec:04:fe:dc:5f:b5:60:15:85: 2c:9c:aa:2f:8d:5f:fc:4d:2d:5d:a0:d9:a8:7e:e5:13:fc:3b: 35:61:50:cc:2a:79:9c:1f:9e:c5:06:c7:ac:ad:8e:52:dc:d5: 1b:bb:26:59:3d:b4:ff:9c:9c:9e:aa:2f:9a:0c:a6:4d:c8:44: 9b:42:50:dd:3d:7e:3f:36:17:d9:af:c0:af:09:f9:64:ae:f6: 4f:1e:5e:af:47:1c:ac:da:e3:cf:a4:dc:72:e9:38:98:6c:8c: 5f:23:98:2f:cf:28:36:4a:e3:e1:5c:91:25:3d:ed:b2:7d:5c: b6:8a:82:7f:dd:26:5f:0b:98:a8:d1:97:e5:20:d1:0b:d9:98: cc:d0:0e:3c:5f:47:43:b7:13:8b:98:12:8e:13:7a:ad:58:17: 8d:2f:bd:26:52:68:99:b4:df:1f:3c:81:3f:cd:c7:f2:d2:39: 7f:76:4e:4d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAIUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkYzQjYxMTAvBgNVBAUTKDJCMTMxQUExMEQ3RTZCRkVBMzY3RTgxQjczRDdGREIw QUMwMUQ2NzgwHhcNMjUwMzE4MDYwMTI5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q5MGMzOS1mNTQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA36fRt7ARvH781lCjlV0FupWYFoBQRTAX+ECEmZX7xewd/2wGACIwOK6os6VS egfgfXwWuo6d8Guo4E1BDW8qovWo14zfRq6GN12HUXBFsjJhBMbthjvj3HtlG/Dv D7MfpqjQQd1v2YtAIdn9+7qHTQVJJzCphXkGHNg/rcrWXCA8J8Woz9iKl9BsqZ1g nMHPZyxmDtgCtsMwB0RtV2yi5CvVDgERyCBfMa81/ZcNjg/Muej3fw5m3XcXQguy 4CRXZoy0vntNAD3SvUXpYdmjhU+TMwvJK7z8nAQXCjvlTOOkLJCWmHRYN/NjdhkA XAeSXGM8bhTLvH9t96iNLKw0dQIDAQABo4IClDCCApAwHQYDVR0OBBYEFFcH5JHB dGNIbmv40AfF3fMoC5yoMB8GA1UdIwQYMBaAFCsTGqENfmv+o2foG3PX/bCsAdZ4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRjNCNi81MEYwMTFDODQ4 QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9LeE1hb1ExLWFfNmpaLWdiYzlmOXNLd0Ix bmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFuZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkYzQjYvNTBGMDExQzg0OEJBMTFFRkJENDUxNjNEQzRGOUFFMDIvRDkxRTNBREM0 OThFMTFFRjkwOEZEMjIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCC3DANBgkqhkiG9w0BAQsFAAOCAQEAkK0RHhorH5r1lQqU /kiKrhMcX5HGWh7wmQghrHRxjKD4TYE17kB8NmT88TPZcIVd+gNSng4iKsE5I6nr s8UYubZ+7YjSFehViYNx4F3Bg5uP7AT+3F+1YBWFLJyqL41f/E0tXaDZqH7lE/w7 NWFQzCp5nB+exQbHrK2OUtzVG7smWT20/5ycnqovmgymTchEm0JQ3T1+PzYX2a/A rwn5ZK72Tx5er0ccrNrjz6Tccuk4mGyMXyOYL88oNkrj4VyRJT3tsn1ctoqCf90m XwuYqNGX5SDRC9mYzNAOPF9HQ7cTi5gSjhN6rVgXjS+9JlJombTfHzyBP83H8tI5 f3ZOTQ== -----END CERTIFICATE-----Generated at Tue Apr 22 06:13:28 2025 by rpki-client