$ rpki-client -vvf rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/B1986BCE2E2411EB8AF6BB67C4F9AE02.roa File: B1986BCE2E2411EB8AF6BB67C4F9AE02.roa (raw, json) Hash identifier: 1Oowb0Op5/Cu+8FSjA8UF2OrKzh23X2j+ax5PBrX1iA= Subject key identifier: 58:CD:5F:C5:B1:5C:01:E9:19:E1:5D:A6:0E:B8:28:90:CD:9D:E0:03 Certificate issuer: /CN=A91847A2/serialNumber=9287F6E82F8F3BA24E09D9C63178A5C0B2DA01DE Certificate serial: 0B45 Authority key identifier: 92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/B1986BCE2E2411EB8AF6BB67C4F9AE02.roa Signing time: Fri 28 Mar 2025 20:01:56 +0000 ROA not before: Fri 28 Mar 2025 20:01:56 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 9255 IP address blocks: 203.120.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 19:30:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2885 (0xb45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91847A2 Validity Not Before: Mar 28 20:01:56 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e70033-0161 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8d:2e:8a:00:94:c5:a1:1b:15:e7:0f:3a:b1: d1:12:07:c9:19:ed:db:76:e7:24:45:5f:2d:fb:2c: 0d:eb:49:21:2e:a6:aa:66:eb:ba:fb:40:42:c3:74: 26:f8:48:17:6d:4c:de:39:39:32:11:6f:43:3a:e6: 32:d3:9b:1e:58:a8:42:8b:df:6d:dd:be:51:35:5b: c6:77:be:cf:33:e4:33:d4:2e:f3:d9:25:74:13:99: 54:5f:5f:ae:1b:eb:fe:96:ae:fe:5c:de:bc:9e:36: 0f:5b:aa:bf:9f:7f:e7:c6:98:0d:86:8c:c0:d1:82: 7c:78:a1:fd:5f:a0:07:b9:d4:63:dc:38:47:99:49: 8c:ab:d2:91:31:fe:5e:6e:c0:b3:8b:69:63:24:72: d4:33:e1:14:ba:78:be:8d:75:58:da:32:88:4e:52: a7:af:f9:2b:b1:28:49:62:f1:ff:d6:38:ee:b6:1b: b0:48:60:96:be:c9:8f:c8:9c:94:0c:c6:90:9e:b1: b6:f5:3b:4c:af:66:d5:03:da:5c:a5:69:4c:78:45: 3e:a5:e2:03:49:8b:04:99:3e:1f:d9:59:f4:19:cc: 94:4f:82:d4:35:cc:82:eb:0a:37:b1:86:11:c8:65: 87:13:dc:16:0a:dd:50:70:a4:70:f7:36:41:a6:45: d0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:CD:5F:C5:B1:5C:01:E9:19:E1:5D:A6:0E:B8:28:90:CD:9D:E0:03 X509v3 Authority Key Identifier: keyid:92:87:F6:E8:2F:8F:3B:A2:4E:09:D9:C6:31:78:A5:C0:B2:DA:01:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/kof26C-PO6JOCdnGMXilwLLaAd4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kof26C-PO6JOCdnGMXilwLLaAd4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91847A2/B5773AAC594211EA936FCE43C4F9AE02/B1986BCE2E2411EB8AF6BB67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.120.124.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:ee:4c:f2:6d:fa:fc:cb:ad:8f:c4:7d:70:f7:de:07:53:4e: 23:bf:a1:9d:70:5f:5a:80:44:a6:ba:a3:50:ad:e5:a4:64:df: ca:d9:9a:c6:97:ea:8a:aa:d9:77:e1:29:5c:0f:bf:9f:02:61: 7d:81:59:74:75:78:fc:54:46:0d:d8:5a:6a:67:2a:14:60:3e: 20:48:ee:51:e7:2b:ce:c4:5c:03:7d:7b:25:14:6d:61:3e:eb: ca:67:7d:2c:66:4c:60:10:52:63:8a:81:0b:b2:16:be:bf:27: a1:df:17:59:58:e0:d6:06:38:b1:3f:89:50:dc:67:52:70:cb: f2:3f:5c:2e:10:8e:93:7f:24:cc:18:fc:32:69:a2:6b:30:f0: 49:77:d4:2c:bf:4e:08:08:8c:4e:3b:fe:d0:ea:dd:30:c6:31: 5e:be:b9:9c:f1:06:b5:2f:12:20:83:8e:06:a4:3b:2d:e3:4b: 3c:01:ae:43:7b:b1:45:e8:b7:27:c8:37:08:af:87:4c:63:40: 5f:f1:89:be:a2:ca:a3:e6:3f:39:5b:a9:62:4c:5f:7c:e4:30: 9a:67:45:b1:cb:90:23:f2:fa:28:eb:15:9c:db:38:75:e0:92: 34:8b:86:45:cb:d7:d0:5e:c7:aa:e2:17:62:54:f7:2c:4c:3c: ac:6e:b7:df -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC0UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODQ3QTIxMTAvBgNVBAUTKDkyODdGNkU4MkY4RjNCQTI0RTA5RDlDNjMxNzhBNUMw QjJEQTAxREUwHhcNMjUwMzI4MjAwMTU2WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2U3MDAzMy0wMTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2o0uigCUxaEbFecPOrHREgfJGe3bduckRV8t+ywN60khLqaqZuu6+0BCw3Qm +EgXbUzeOTkyEW9DOuYy05seWKhCi99t3b5RNVvGd77PM+Qz1C7z2SV0E5lUX1+u G+v+lq7+XN68njYPW6q/n3/nxpgNhozA0YJ8eKH9X6AHudRj3DhHmUmMq9KRMf5e bsCzi2ljJHLUM+EUuni+jXVY2jKITlKnr/krsShJYvH/1jjuthuwSGCWvsmPyJyU DMaQnrG29TtMr2bVA9pcpWlMeEU+peIDSYsEmT4f2Vn0GcyUT4LUNcyC6wo3sYYR yGWHE9wWCt1QcKRw9zZBpkXQIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFjNX8Wx XAHpGeFdpg64KJDNneADMB8GA1UdIwQYMBaAFJKH9ugvjzuiTgnZxjF4pcCy2gHe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NDdBMi9CNTc3M0FBQzU5 NDIxMUVBOTM2RkNFNDNDNEY5QUUwMi9rb2YyNkMtUE82Sk9DZG5HTVhpbHdMTGFB ZDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tvZjI2Qy1QTzZKT0NkbkdNWGlsd0xMYUFkNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODQ3QTIvQjU3NzNBQUM1OTQyMTFFQTkzNkZDRTQzQzRGOUFFMDIvQjE5ODZCQ0Uy RTI0MTFFQjhBRjZCQjY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLeHwwDQYJKoZIhvcNAQELBQADggEBAJruTPJt+vzLrY/E fXD33gdTTiO/oZ1wX1qARKa6o1Ct5aRk38rZmsaX6oqq2XfhKVwPv58CYX2BWXR1 ePxURg3YWmpnKhRgPiBI7lHnK87EXAN9eyUUbWE+68pnfSxmTGAQUmOKgQuyFr6/ J6HfF1lY4NYGOLE/iVDcZ1Jwy/I/XC4QjpN/JMwY/DJpomsw8El31Cy/TggIjE47 /tDq3TDGMV6+uZzxBrUvEiCDjgakOy3jSzwBrkN7sUXotyfINwivh0xjQF/xib6i yqPmPzlbqWJMX3zkMJpnRbHLkCPy+ijrFZzbOHXgkjSLhkXL19Bex6riF2JU9yxM PKxut98= -----END CERTIFICATE-----Generated at Fri Apr 11 16:07:31 2025 by rpki-client