$ rpki-client -vvf rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/B6C4F8787A5911EDB8C4E04FC4F9AE02.roa File: B6C4F8787A5911EDB8C4E04FC4F9AE02.roa (raw, json) Hash identifier: EGxldo7AGw1cFMotW1VKii2ay/EqR5jKmsG9yMQNqRc= Subject key identifier: A1:BD:1F:42:A8:F4:6F:BB:98:11:87:42:94:51:DE:60:4E:C6:32:B3 Certificate issuer: /CN=A918D0AA/serialNumber=60BADC042C377B86C0DC9EEB89512725CE3E2336 Certificate serial: 01AD Authority key identifier: 60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/B6C4F8787A5911EDB8C4E04FC4F9AE02.roa Signing time: Tue 25 Feb 2025 04:35:56 +0000 ROA not before: Tue 25 Feb 2025 04:35:56 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 9555 IP address blocks: 152.91.0.0/16 maxlen: 17 152.91.8.0/24 maxlen: 24 152.91.9.0/24 maxlen: 24 152.91.45.0/24 maxlen: 24 152.91.69.0/24 maxlen: 24 152.91.79.0/24 maxlen: 24 152.91.80.0/24 maxlen: 24 152.91.81.0/24 maxlen: 24 152.91.82.0/24 maxlen: 24 152.91.89.0/24 maxlen: 24 152.91.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 02:09:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 429 (0x1ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918D0AA Validity Not Before: Feb 25 04:35:56 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67bd48ac-6301 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0a:c2:fe:2d:28:41:7e:ae:67:ec:33:8a:34: 0d:d3:77:60:d2:1d:2c:51:8f:cf:42:be:75:ae:74: 70:ab:42:e6:6e:68:a8:f6:4c:df:3c:1c:c5:e2:ef: bc:fc:04:77:ff:da:6d:66:28:7d:b3:a9:bc:48:4c: 27:fb:9e:ab:e7:a8:1f:ab:39:8e:2f:8e:85:68:66: 91:5e:b0:6f:38:26:97:19:03:c0:fd:96:68:31:4f: 08:54:56:84:6f:aa:15:74:87:a0:9c:f0:a4:8a:95: f8:06:e5:f5:8a:d5:1e:9a:e2:8f:57:47:d9:91:d0: 9a:a8:34:b1:ac:bb:ee:dc:ca:f5:26:3c:c2:00:58: b1:ce:5e:83:43:89:ae:69:de:b2:cc:66:42:27:28: 30:d1:62:6a:69:ad:dc:9d:de:6c:c6:5c:dd:57:85: d5:fc:ad:79:e4:fc:bd:86:3a:39:b2:7e:14:a8:42: f7:49:3a:6b:17:a8:87:90:16:5f:5e:75:ca:e8:40: 21:70:9d:99:03:38:ca:f2:64:f2:4b:6a:57:82:84: 0b:a3:d7:5c:58:bb:03:4a:7d:83:c5:96:9f:ea:73: 90:d2:55:1a:6b:96:e3:9f:99:4d:3d:4b:6e:f4:cc: 62:a6:f4:be:67:46:0a:d6:f9:3a:9f:4b:ea:d3:1e: 39:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:BD:1F:42:A8:F4:6F:BB:98:11:87:42:94:51:DE:60:4E:C6:32:B3 X509v3 Authority Key Identifier: keyid:60:BA:DC:04:2C:37:7B:86:C0:DC:9E:EB:89:51:27:25:CE:3E:23:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/YLrcBCw3e4bA3J7riVEnJc4-IzY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YLrcBCw3e4bA3J7riVEnJc4-IzY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918D0AA/2C75FEC87A3C11ED861B2933C4F9AE02/B6C4F8787A5911EDB8C4E04FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 152.91.0.0/16 Signature Algorithm: sha256WithRSAEncryption 72:90:49:ac:6c:27:3c:13:7b:6d:ac:5e:c0:2a:8e:a4:87:da: ee:c4:7e:46:b2:41:c7:54:12:bb:c8:38:34:db:8d:da:e0:0d: 75:82:b7:59:2b:e7:c3:c9:d2:d5:22:69:78:1d:5f:f0:8f:2e: 36:9a:cf:57:de:5f:8e:df:bc:dd:48:a5:85:9f:e4:ac:7a:51: 75:19:8f:a2:28:c8:d2:82:18:b2:3e:8c:7f:c4:22:32:43:08: 75:55:c5:8a:a9:39:eb:9f:54:67:cf:83:d0:18:7f:ba:b7:67: 57:94:8d:a2:55:69:b8:dd:7f:72:ca:bb:55:d4:bb:ae:20:9b: 35:e0:52:cc:c0:04:7b:85:7b:6a:d7:3c:59:02:c4:12:0d:d8: aa:db:fa:37:cc:66:08:3b:28:98:b4:42:b6:8e:bb:e6:9a:39: a2:9b:39:fd:a4:1b:a6:db:ac:0e:99:1d:e7:22:3f:2b:01:ab: ab:95:63:1d:98:6d:9d:66:a4:5b:8d:d6:05:68:78:06:ca:3e: 8c:42:87:f9:ea:dc:aa:5c:74:18:6b:c5:05:0a:af:37:2f:b9: 1d:a2:6b:33:27:8b:ed:43:86:3b:d0:c5:74:eb:6e:dd:b6:d1: 23:95:6e:8e:8d:47:c9:14:79:fc:63:41:7e:c7:28:e6:b5:90: 70:19:6a:a5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAa0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEQwQUExMTAvBgNVBAUTKDYwQkFEQzA0MkMzNzdCODZDMERDOUVFQjg5NTEyNzI1 Q0UzRTIzMzYwHhcNMjUwMjI1MDQzNTU2WhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2JkNDhhYy02MzAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArgrC/i0oQX6uZ+wzijQN03dg0h0sUY/PQr51rnRwq0Lmbmio9kzfPBzF4u+8 /AR3/9ptZih9s6m8SEwn+56r56gfqzmOL46FaGaRXrBvOCaXGQPA/ZZoMU8IVFaE b6oVdIegnPCkipX4BuX1itUemuKPV0fZkdCaqDSxrLvu3Mr1JjzCAFixzl6DQ4mu ad6yzGZCJygw0WJqaa3cnd5sxlzdV4XV/K155Py9hjo5sn4UqEL3STprF6iHkBZf XnXK6EAhcJ2ZAzjK8mTyS2pXgoQLo9dcWLsDSn2DxZaf6nOQ0lUaa5bjn5lNPUtu 9MxipvS+Z0YK1vk6n0vq0x45gQIDAQABo4IClDCCApAwHQYDVR0OBBYEFKG9H0Ko 9G+7mBGHQpRR3mBOxjKzMB8GA1UdIwQYMBaAFGC63AQsN3uGwNye64lRJyXOPiM2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RDBBQS8yQzc1RkVDODdB M0MxMUVEODYxQjI5MzNDNEY5QUUwMi9ZTHJjQkN3M2U0YkEzSjdyaVZFbkpjNC1J elkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1lMcmNCQ3czZTRiQTNKN3JpVkVuSmM0LUl6WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEQwQUEvMkM3NUZFQzg3QTNDMTFFRDg2MUIyOTMzQzRGOUFFMDIvQjZDNEY4Nzg3 QTU5MTFFREI4QzRFMDRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCYWzANBgkqhkiG9w0BAQsFAAOCAQEAcpBJrGwnPBN7baxe wCqOpIfa7sR+RrJBx1QSu8g4NNuN2uANdYK3WSvnw8nS1SJpeB1f8I8uNprPV95f jt+83UilhZ/krHpRdRmPoijI0oIYsj6Mf8QiMkMIdVXFiqk5659UZ8+D0Bh/urdn V5SNolVpuN1/csq7VdS7riCbNeBSzMAEe4V7atc8WQLEEg3Yqtv6N8xmCDsomLRC to675po5ops5/aQbptusDpkd5yI/KwGrq5VjHZhtnWakW43WBWh4Bso+jEKH+erc qlx0GGvFBQqvNy+5HaJrMyeL7UOGO9DFdOtu3bbRI5Vujo1HyRR5/GNBfsco5rWQ cBlqpQ== -----END CERTIFICATE-----Generated at Fri Apr 11 14:20:27 2025 by rpki-client