$ rpki-client -vvf rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/F8B24A3C127911F09BCB8B7AC4F9AE02.roa File: F8B24A3C127911F09BCB8B7AC4F9AE02.roa (raw, json) Hash identifier: duDXgnYLEwRFNw5fNTALQb7WNFeun5hiy5BHL+p0o+Q= Subject key identifier: 3C:97:78:1F:81:A9:15:DC:EB:BE:41:87:8A:09:A0:67:45:13:FF:4D Certificate issuer: /CN=A91348C9/serialNumber=0C762B2C9024B34C988482F1D71D749AE7DC4AEB Certificate serial: E5 Authority key identifier: 0C:76:2B:2C:90:24:B3:4C:98:84:82:F1:D7:1D:74:9A:E7:DC:4A:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHYrLJAks0yYhILx1x10mufcSus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/F8B24A3C127911F09BCB8B7AC4F9AE02.roa Signing time: Sat 05 Apr 2025 23:59:12 +0000 ROA not before: Sat 05 Apr 2025 23:59:12 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 10111 IP address blocks: 43.239.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.crl rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHYrLJAks0yYhILx1x10mufcSus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 04:26:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91348C9, serialNumber=0C762B2C9024B34C988482F1D71D749AE7DC4AEB Validity Not Before: Apr 5 23:59:12 2025 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=67f1c3d0-e5bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:0a:c2:01:bb:4b:9c:86:c1:79:c9:fb:59:8f: 97:21:e9:1d:ea:29:15:72:15:df:bc:20:13:c4:be: 3d:50:4c:39:45:12:b9:d1:23:a3:d2:94:89:1f:82: 6d:6e:30:76:9d:5a:54:ab:3a:07:02:3a:b6:38:b1: 83:0a:55:a0:7d:d0:5a:1d:28:d7:70:77:43:31:3e: fc:42:b7:f9:f9:96:60:a1:92:d7:3d:79:7b:4e:d9: ad:14:6c:ae:02:ed:57:b7:30:90:73:0a:a7:9c:b1: fc:b2:92:e5:1e:bc:25:9e:ec:23:84:9f:9a:19:76: 9e:c7:6b:91:6c:11:16:c0:4c:22:f9:46:20:bb:d3: d5:02:24:70:5a:cd:87:6f:c2:39:7e:a4:63:2f:26: b0:b4:ff:57:f1:08:99:69:20:60:e1:2b:d5:56:a9: 97:6e:21:c2:a2:25:78:70:15:bb:47:b0:f7:cb:8c: 78:53:91:91:17:04:dc:ff:30:c0:23:f2:af:ca:c0: 8a:85:36:67:78:50:e0:e5:84:29:49:c2:cd:a9:3b: bd:47:51:0f:15:df:94:3a:df:d0:c3:1a:c9:72:39: aa:42:11:a2:e5:ba:45:81:01:6c:71:4a:54:1c:c7: 4b:13:cc:f1:30:52:43:dd:24:d1:7b:2a:0f:51:4b: d7:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:97:78:1F:81:A9:15:DC:EB:BE:41:87:8A:09:A0:67:45:13:FF:4D X509v3 Authority Key Identifier: keyid:0C:76:2B:2C:90:24:B3:4C:98:84:82:F1:D7:1D:74:9A:E7:DC:4A:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/DHYrLJAks0yYhILx1x10mufcSus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DHYrLJAks0yYhILx1x10mufcSus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91348C9/CFC10E0ACE9711EE923F0470C4F9AE02/F8B24A3C127911F09BCB8B7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.95.0/24 Signature Algorithm: sha256WithRSAEncryption 49:32:45:31:e6:84:04:9d:dc:26:c5:2a:c0:8a:68:5a:26:3c: 55:b5:e3:ea:2b:95:1a:b7:37:be:ee:06:51:99:8d:aa:42:ea: d3:73:87:d6:8f:ae:31:6c:a7:88:42:33:c1:ff:63:21:64:c7: d9:00:fd:a4:b5:52:75:2e:58:4c:fb:19:99:8a:c0:dc:b0:12: 60:f3:c0:83:f5:a0:12:db:ce:a4:99:74:b9:84:15:20:40:77: 56:9f:12:bf:da:69:00:66:ec:31:a5:53:ad:8f:74:60:46:4a: 7a:10:7a:c1:c4:1c:f1:0a:f2:66:ec:23:fd:f2:d3:9d:b7:1c: 7d:e0:9c:96:8e:70:91:80:cd:0e:d8:5f:64:7c:bf:3e:14:e0: 3b:57:d5:09:e9:ff:49:7c:07:5c:e4:9f:2b:59:69:a9:07:cd: d8:ca:65:7b:e9:1a:2d:d0:77:3a:39:29:28:10:76:20:3c:f5: 87:f9:cc:cf:be:64:c4:90:fe:47:bc:62:62:47:54:65:b3:e8: 93:0a:0f:ee:55:dc:03:b0:14:46:36:c4:3d:19:71:63:0e:9a: 49:7f:e5:7a:f4:f7:c5:da:d7:a7:65:9a:08:b9:d1:b6:f6:40: 1a:e5:95:3d:e2:f6:b7:67:2e:a5:c0:5a:52:2d:97:e4:c9:c2: ea:b9:07:34 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ4QzkxMTAvBgNVBAUTKDBDNzYyQjJDOTAyNEIzNEM5ODg0ODJGMUQ3MUQ3NDlB RTdEQzRBRUIwHhcNMjUwNDA1MjM1OTEyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02N2YxYzNkMC1lNWJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwwrCAbtLnIbBecn7WY+XIekd6ikVchXfvCATxL49UEw5RRK50SOj0pSJH4Jt bjB2nVpUqzoHAjq2OLGDClWgfdBaHSjXcHdDMT78Qrf5+ZZgoZLXPXl7TtmtFGyu Au1XtzCQcwqnnLH8spLlHrwlnuwjhJ+aGXaex2uRbBEWwEwi+UYgu9PVAiRwWs2H b8I5fqRjLyawtP9X8QiZaSBg4SvVVqmXbiHCoiV4cBW7R7D3y4x4U5GRFwTc/zDA I/KvysCKhTZneFDg5YQpScLNqTu9R1EPFd+UOt/QwxrJcjmqQhGi5bpFgQFscUpU HMdLE8zxMFJD3STReyoPUUvXCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDyXeB+B qRXc675Bh4oJoGdFE/9NMB8GA1UdIwQYMBaAFAx2KyyQJLNMmISC8dcddJrn3Err MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDhDOS9DRkMxMEUwQUNF OTcxMUVFOTIzRjA0NzBDNEY5QUUwMi9ESFlyTEpBa3MweVloSUx4MXgxMG11ZmNT dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0RIWXJMSkFrczB5WWhJTHgxeDEwbXVmY1N1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQ4QzkvQ0ZDMTBFMEFDRTk3MTFFRTkyM0YwNDcwQzRGOUFFMDIvRjhCMjRBM0Mx Mjc5MTFGMDlCQ0I4QjdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr718wDQYJKoZIhvcNAQELBQADggEBAEkyRTHmhASd3CbF KsCKaFomPFW14+orlRq3N77uBlGZjapC6tNzh9aPrjFsp4hCM8H/YyFkx9kA/aS1 UnUuWEz7GZmKwNywEmDzwIP1oBLbzqSZdLmEFSBAd1afEr/aaQBm7DGlU62PdGBG SnoQesHEHPEK8mbsI/3y0523HH3gnJaOcJGAzQ7YX2R8vz4U4DtX1Qnp/0l8B1zk nytZaakHzdjKZXvpGi3Qdzo5KSgQdiA89Yf5zM++ZMSQ/ke8YmJHVGWz6JMKD+5V 3AOwFEY2xD0ZcWMOmkl/5Xr098Xa16dlmgi50bb2QBrllT3i9rdnLqXAWlItl+TJ wuq5BzQ= -----END CERTIFICATE-----Generated at Fri Apr 18 17:24:19 2025 by rpki-client