$ rpki-client -vvf rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/54EE8F7615FE11ECAF541012C4F9AE02.roa File: 54EE8F7615FE11ECAF541012C4F9AE02.roa (raw, json) Hash identifier: IA4iHCGoqRIo6kbssAA01N8/wPFo68lHVDwSEc9PASs= Subject key identifier: 68:6D:BA:C7:E0:8C:22:22:3C:AB:E8:4A:54:B4:BE:AB:51:E4:52:C3 Certificate issuer: /CN=A91592B3/serialNumber=3A5C0813C0FED0A83B3DD01B7A5AE1A130827028 Certificate serial: 23F9 Authority key identifier: 3A:5C:08:13:C0:FE:D0:A8:3B:3D:D0:1B:7A:5A:E1:A1:30:82:70:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/54EE8F7615FE11ECAF541012C4F9AE02.roa Signing time: Tue 18 Mar 2025 16:03:22 +0000 ROA not before: Tue 18 Mar 2025 16:03:22 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9911 IP address blocks: 202.40.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9209 (0x23f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91592B3 Validity Not Before: Mar 18 16:03:22 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67d9994a-7ffd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:35:be:83:01:3a:94:fd:3a:c5:df:69:a1:c6: 51:c7:e7:04:f2:4c:c5:14:8f:38:d3:43:a6:e9:5f: c8:2e:c3:bf:ae:89:c4:24:e3:69:2b:9d:82:8a:9a: 73:68:7b:d3:d0:27:f1:35:fc:40:12:11:e6:2e:af: fc:e5:19:03:41:ee:96:00:f5:a2:f0:12:ef:ca:88: 59:e5:1b:e2:52:eb:29:73:b5:6e:1b:fb:04:54:51: c2:88:d3:a6:29:66:c2:0d:40:b8:33:20:be:68:0c: 43:15:76:a6:84:97:93:9d:1f:0e:3a:bb:21:e9:02: e2:b5:33:ed:51:7c:12:5b:c0:d3:cd:f3:bd:bf:20: 9c:73:24:79:8a:4a:55:93:e5:87:e5:78:39:9a:79: b9:5a:5a:de:66:cb:bf:b7:59:48:dd:f0:f3:09:14: e6:22:9d:64:9a:99:4d:8e:e5:10:49:14:82:ed:2b: 13:ba:7c:97:22:68:ca:e9:f3:9b:c9:9d:59:f7:9a: 77:32:24:4e:13:5a:49:f2:c3:e9:aa:0a:30:87:b5: 4f:d1:26:f7:35:63:45:19:1b:d8:fd:7e:21:61:2f: 20:2d:e5:6c:14:55:61:8a:81:a7:15:73:bf:fa:56: 88:31:ee:ef:a1:99:9d:90:60:e5:97:c0:c3:e2:83: 53:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:6D:BA:C7:E0:8C:22:22:3C:AB:E8:4A:54:B4:BE:AB:51:E4:52:C3 X509v3 Authority Key Identifier: keyid:3A:5C:08:13:C0:FE:D0:A8:3B:3D:D0:1B:7A:5A:E1:A1:30:82:70:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/OlwIE8D-0Kg7PdAbelrhoTCCcCg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OlwIE8D-0Kg7PdAbelrhoTCCcCg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91592B3/8917FB2A5D0E11E5B3BEAD57C4F9AE02/54EE8F7615FE11ECAF541012C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.40.224.0/19 Signature Algorithm: sha256WithRSAEncryption 47:3e:23:45:f8:11:f6:c5:e4:d6:9c:34:f8:9d:0e:3b:d9:34: bf:e4:f4:cd:8a:82:0e:68:ee:c9:46:be:c0:7d:1c:f9:f6:a1: 26:aa:bc:75:a4:1f:99:df:9d:24:62:bb:6e:cd:4d:ab:b7:10: 80:67:b4:32:59:b0:de:2d:2e:f9:65:4f:12:fc:2c:7f:d9:c5: 0e:c2:6d:e2:e4:1c:cb:46:24:84:19:8f:a1:a2:75:71:fd:6c: 2e:6d:e1:76:22:49:83:10:f4:17:0d:ad:b8:f9:b3:e2:dc:9c: 67:48:9f:ec:b7:b1:8f:2f:52:86:48:fb:d6:84:77:63:18:0e: 08:9c:54:4a:04:c8:6d:a9:f9:dc:af:8d:91:9a:39:12:7a:a7: b7:2f:54:c1:b1:ab:41:67:73:4e:12:03:50:89:ba:19:f5:b8: 58:93:f8:34:a0:41:6a:07:f1:3d:b4:26:06:9c:c0:f0:dd:e8: 6b:95:6b:3a:d0:fe:fe:f7:d9:7a:7a:88:13:ba:c9:a7:b9:f8: 4d:bd:fe:b4:2e:d3:99:e7:17:45:50:5a:d1:7b:6b:73:54:6c: 6f:cd:61:fc:51:40:c2:fb:62:26:e1:c5:14:48:b3:86:f0:fa: 40:ac:bf:cb:c8:dc:6b:d3:f0:d4:96:93:28:c5:12:c8:83:d7: 78:f8:8c:cb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICI/kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTkyQjMxMTAvBgNVBAUTKDNBNUMwODEzQzBGRUQwQTgzQjNERDAxQjdBNUFFMUEx MzA4MjcwMjgwHhcNMjUwMzE4MTYwMzIyWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2Q5OTk0YS03ZmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyDW+gwE6lP06xd9pocZRx+cE8kzFFI8400Om6V/ILsO/ronEJONpK52Cippz aHvT0CfxNfxAEhHmLq/85RkDQe6WAPWi8BLvyohZ5RviUuspc7VuG/sEVFHCiNOm KWbCDUC4MyC+aAxDFXamhJeTnR8OOrsh6QLitTPtUXwSW8DTzfO9vyCccyR5ikpV k+WH5Xg5mnm5WlreZsu/t1lI3fDzCRTmIp1kmplNjuUQSRSC7SsTunyXImjK6fOb yZ1Z95p3MiROE1pJ8sPpqgowh7VP0Sb3NWNFGRvY/X4hYS8gLeVsFFVhioGnFXO/ +laIMe7voZmdkGDll8DD4oNTqQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGhtusfg jCIiPKvoSlS0vqtR5FLDMB8GA1UdIwQYMBaAFDpcCBPA/tCoOz3QG3pa4aEwgnAo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTJCMy84OTE3RkIyQTVE MEUxMUU1QjNCRUFENTdDNEY5QUUwMi9PbHdJRThELTBLZzdQZEFiZWxyaG9UQ0Nj Q2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09sd0lFOEQtMEtnN1BkQWJlbHJob1RDQ2NDZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTkyQjMvODkxN0ZCMkE1RDBFMTFFNUIzQkVBRDU3QzRGOUFFMDIvNTRFRThGNzYx NUZFMTFFQ0FGNTQxMDEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAXKKOAwDQYJKoZIhvcNAQELBQADggEBAEc+I0X4EfbF5Nac NPidDjvZNL/k9M2Kgg5o7slGvsB9HPn2oSaqvHWkH5nfnSRiu27NTau3EIBntDJZ sN4tLvllTxL8LH/ZxQ7CbeLkHMtGJIQZj6GidXH9bC5t4XYiSYMQ9BcNrbj5s+Lc nGdIn+y3sY8vUoZI+9aEd2MYDgicVEoEyG2p+dyvjZGaORJ6p7cvVMGxq0Fnc04S A1CJuhn1uFiT+DSgQWoH8T20JgacwPDd6GuVazrQ/v732Xp6iBO6yae5+E29/rQu 05nnF0VQWtF7a3NUbG/NYfxRQML7YibhxRRIs4bw+kCsv8vI3GvT8NSWkyjFEsiD 13j4jMs= -----END CERTIFICATE-----Generated at Sun Apr 6 01:51:52 2025 by rpki-client