$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/4B82FA441A8611ECB908E939C4F9AE02.roa File: 4B82FA441A8611ECB908E939C4F9AE02.roa (raw, json) Hash identifier: ioPHlw0sW6GeE8i+5W/iQUIzBchZcQHPRQo5hhiTaFw= Subject key identifier: 38:47:D2:B0:E7:BA:9B:FB:61:0A:46:EF:30:47:65:EB:3F:D6:B9:D4 Certificate issuer: /CN=A91847A2/serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Certificate serial: 0B40 Authority key identifier: 92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/4B82FA441A8611ECB908E939C4F9AE02.roa Signing time: Fri 28 Mar 2025 20:01:51 +0000 ROA not before: Fri 28 Mar 2025 20:01:51 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 136552 IP address blocks: 210.24.100.0/22 maxlen: 24 2400:1700:200::/48 maxlen: 48 2400:1700:210::/48 maxlen: 48 2400:1700:211::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 19:30:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2880 (0xb40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2 Validity Not Before: Mar 28 20:01:51 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e7002f-433c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:bf:ac:d3:ac:24:83:66:df:ce:37:78:9e:8c: bf:14:52:4b:f1:de:bd:2f:4f:df:ed:ee:dc:0d:16: 2b:93:62:de:34:b6:e6:82:d7:e1:8a:e2:92:34:f3: 16:d5:6a:22:24:35:c6:36:c4:50:e8:08:8d:a0:b5: 25:3c:3e:bf:90:ee:e2:75:3f:36:46:3a:c2:71:75: 04:a4:0c:d5:73:95:60:a9:4c:6a:e4:99:69:b3:10: 1f:d9:50:63:35:a9:6f:8c:fe:06:ad:ba:98:88:a9: b7:ca:e5:98:98:cf:15:cc:e4:de:c5:26:26:a9:0f: c8:03:ee:32:45:d0:fa:1a:e8:60:ae:5b:bb:fb:44: 00:23:65:83:fa:6e:32:90:0b:e0:15:7a:3f:10:b2: eb:64:b4:15:7f:5a:c3:fe:30:af:8a:e0:30:a8:24: 18:7c:71:76:9a:61:b9:49:48:19:9d:bd:cc:a6:a5: 8e:8f:21:a1:9f:56:06:15:39:4e:b5:99:b3:46:83: 9a:c1:4c:f2:38:8a:f1:f0:b1:06:24:a4:29:00:d7: 9d:b2:bc:60:04:3b:3b:a0:cd:7b:78:a9:10:88:70: 29:d5:31:29:30:c0:c1:96:cd:14:7a:85:08:47:67: fd:c0:b1:9c:1a:3a:6c:19:bb:50:b4:19:94:56:87: 3b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:47:D2:B0:E7:BA:9B:FB:61:0A:46:EF:30:47:65:EB:3F:D6:B9:D4 X509v3 Authority Key Identifier: keyid:92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/4B82FA441A8611ECB908E939C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.24.100.0/22 IPv6: 2400:1700:200::/48 2400:1700:210::/47 Signature Algorithm: sha256WithRSAEncryption 01:ff:33:fa:96:35:d7:51:cb:c7:50:28:8a:6c:a1:0b:de:3e: 2c:cf:11:93:3c:4c:8f:c2:6d:1f:5a:5b:39:55:76:07:36:a1: e8:86:f5:cb:b4:78:dc:60:aa:10:e4:66:f0:c7:5b:cd:e7:03: 94:6a:71:6f:97:bd:39:a2:cf:25:44:5b:c0:76:45:1a:92:d7: 12:8f:7b:43:59:11:40:c7:df:c9:c7:5c:f5:af:d7:c9:a0:b8: 42:28:8e:3d:f8:6b:95:6e:15:79:42:1f:e2:30:47:fd:08:d0: 45:db:eb:74:d4:3f:73:54:93:f5:b9:5c:06:92:f9:7e:4d:bc: b8:73:d5:f7:8b:b8:2e:8b:cd:d2:48:ff:c8:a8:7a:50:f5:56: 6e:29:70:28:d0:76:61:ab:79:6b:17:51:ce:bb:42:30:7a:37: c8:51:8e:02:21:6e:52:fb:e1:16:8a:fb:52:55:2f:a5:5a:c4: a5:20:3e:bc:99:58:0a:7c:dd:f6:02:42:92:bc:0c:8a:f1:b5: 40:a3:92:27:d4:12:9c:d5:2f:c8:7d:2c:40:46:7b:13:1e:ce: 43:94:38:d1:45:61:8c:5b:7b:16:16:f9:80:ee:ec:1a:8a:18: 2d:78:ab:f1:d4:b4:1e:c5:8c:99:50:43:19:9f:2e:3e:05:97: 45:91:e6:6e -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICC0AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkyODdGNkU4MkY4RjNCQTI0RTA5RDlDNjMxNzhBNUMw QjJEQTAxREUwHhcNMjUwMzI4MjAwMTUxWhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U3MDAyZi00MzNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx7+s06wkg2bfzjd4noy/FFJL8d69L0/f7e7cDRYrk2LeNLbmgtfhiuKSNPMW 1WoiJDXGNsRQ6AiNoLUlPD6/kO7idT82RjrCcXUEpAzVc5VgqUxq5JlpsxAf2VBj NalvjP4GrbqYiKm3yuWYmM8VzOTexSYmqQ/IA+4yRdD6Guhgrlu7+0QAI2WD+m4y kAvgFXo/ELLrZLQVf1rD/jCviuAwqCQYfHF2mmG5SUgZnb3MpqWOjyGhn1YGFTlO tZmzRoOawUzyOIrx8LEGJKQpANedsrxgBDs7oM17eKkQiHAp1TEpMMDBls0UeoUI R2f9wLGcGjpsGbtQtBmUVoc7kwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFDhH0rDn upv7YQpG7zBHZes/1rnUMB8GA1UdIwQYMBaAFJKH9ugvjzuiTgnZxjF4pcCy2gHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9CNTc3M0FBQzU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rb2YyNkMtUE82Sk9DZG5HTVhpbHdMTGFB ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tvZjI2Qy1QTzZKT0NkbkdNWGlsd0xMYUFkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ3QTIvQjU3NzNBQUM1OTQyMTFFQTkzNkZDRTQzQzRGOUFFMDIvNEI4MkZBNDQx QTg2MTFFQ0I5MDhFOTM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBALSGGQwGAQCAAIwEgMHACQAFwACAAMHASQAFwACEDANBgkq hkiG9w0BAQsFAAOCAQEAAf8z+pY111HLx1AoimyhC94+LM8RkzxMj8JtH1pbOVV2 Bzah6Ib1y7R43GCqEORm8MdbzecDlGpxb5e9OaLPJURbwHZFGpLXEo97Q1kRQMff ycdc9a/XyaC4QiiOPfhrlW4VeUIf4jBH/QjQRdvrdNQ/c1ST9blcBpL5fk28uHPV 94u4LovN0kj/yKh6UPVWbilwKNB2Yat5axdRzrtCMHo3yFGOAiFuUvvhFor7UlUv pVrEpSA+vJlYCnzd9gJCkrwMivG1QKOSJ9QSnNUvyH0sQEZ7Ex7OQ5Q40UVhjFt7 Fhb5gO7sGooYLXir8dS0HsWMmVBDGZ8uPgWXRZHmbg== -----END CERTIFICATE-----Generated at Fri Apr 11 17:18:54 2025 by rpki-client