$ rpki-client -vvf rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/9BC7782069A911EFBF66800FC4F9AE02.roa File: 9BC7782069A911EFBF66800FC4F9AE02.roa (raw, json) Hash identifier: A3vIJwUMYtfFutVYOqaUZlkIJqgqL/aJPc4cakn1uMQ= Subject key identifier: 42:7C:6F:B8:53:C7:E6:55:11:57:6A:AD:AE:22:36:48:AA:DB:85:07 Certificate issuer: /CN=A91911EB/serialNumber=BE3F813B202FFB0A382F737968EE166598E0E8AB Certificate serial: 80 Authority key identifier: BE:3F:81:3B:20:2F:FB:0A:38:2F:73:79:68:EE:16:65:98:E0:E8:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/9BC7782069A911EFBF66800FC4F9AE02.roa Signing time: Tue 25 Mar 2025 06:13:07 +0000 ROA not before: Tue 25 Mar 2025 06:13:07 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 133919 IP address blocks: 203.158.144.0/24 maxlen: 24 203.158.145.0/24 maxlen: 24 203.158.146.0/24 maxlen: 24 203.158.147.0/24 maxlen: 24 203.158.148.0/24 maxlen: 24 203.158.149.0/24 maxlen: 24 203.158.152.0/24 maxlen: 24 203.158.232.0/24 maxlen: 24 203.158.233.0/24 maxlen: 24 203.158.234.0/24 maxlen: 24 203.158.235.0/24 maxlen: 24 203.158.236.0/24 maxlen: 24 203.158.237.0/24 maxlen: 24 203.158.238.0/24 maxlen: 24 203.158.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.crl rsync://rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 06:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 128 (0x80) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91911EB Validity Not Before: Mar 25 06:13:07 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67e24973-1db4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b9:0f:02:56:31:19:60:49:c5:d4:15:5f:3f: 63:21:82:02:9c:8c:87:f7:10:a4:0d:ea:87:33:e5: 0f:81:df:b5:c0:ff:ac:d1:43:71:84:d8:02:05:75: 4c:5a:cc:75:7b:6f:44:0e:9c:6b:e7:10:e2:d9:3b: 40:8b:2e:9a:6c:b5:14:ad:8b:6a:b3:65:cf:e1:1e: 87:87:37:31:ac:6b:c8:4f:0f:52:42:c6:dc:45:f0: 16:5b:a8:e0:a3:3c:7d:f5:f5:0d:03:80:30:76:c7: 98:5a:15:31:d7:5a:c7:3e:5a:20:c6:ce:72:c2:45: b5:15:29:ec:87:aa:03:62:e7:90:43:68:c0:2b:2f: c4:5c:19:82:bb:db:3f:60:a9:c9:a7:ab:e0:9b:4f: f2:42:fd:6e:92:53:35:df:31:23:2b:cf:cc:24:7e: b8:32:66:01:a9:b9:3e:43:5b:71:36:0e:ce:c8:d2: 7c:7b:6a:d2:44:bd:8c:b6:df:d5:c2:1f:ed:f3:31: ed:23:24:1a:ae:dc:3c:e7:5b:e3:e6:cb:16:93:16: e9:af:45:76:72:81:1b:da:2c:b2:a7:eb:1c:e0:dc: 95:eb:4a:cf:ef:a9:bc:9e:d2:bc:58:10:1c:67:9a: f0:50:e7:62:f6:b9:8a:af:72:d6:ed:64:a7:2d:31: 17:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:7C:6F:B8:53:C7:E6:55:11:57:6A:AD:AE:22:36:48:AA:DB:85:07 X509v3 Authority Key Identifier: keyid:BE:3F:81:3B:20:2F:FB:0A:38:2F:73:79:68:EE:16:65:98:E0:E8:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vj-BOyAv-wo4L3N5aO4WZZjg6Ks.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91911EB/EDA972B269A211EFAE3AB35AC4F9AE02/9BC7782069A911EFBF66800FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.158.144.0-203.158.149.255 203.158.152.0/24 203.158.232.0/21 Signature Algorithm: sha256WithRSAEncryption 52:f7:72:26:62:fb:6b:88:47:a6:30:2c:35:18:2e:28:b2:73: 6d:67:01:45:07:12:2c:ab:9d:56:c2:1d:e9:7d:fb:ce:1b:65: 0b:f4:2f:31:d0:9e:75:07:74:61:63:9b:d7:6c:d3:65:10:d0: 81:5c:6e:26:28:c1:24:be:7d:c7:32:12:a7:e5:ee:3a:9f:17: fe:a7:79:db:98:df:48:73:d7:9b:20:78:66:65:22:ec:08:1c: cb:b9:aa:a3:62:88:45:d4:4b:ce:30:b4:78:98:5c:34:a0:01: ab:d2:7a:11:18:62:ae:af:fe:9c:27:00:ce:ce:c8:1a:c5:7f: 5c:0b:48:b9:17:d0:de:04:c0:7a:7c:ab:b2:64:24:77:7f:29: ad:be:7b:60:25:25:d9:24:46:ec:6d:9e:e1:0b:f7:22:1b:89: 09:b1:b8:4e:da:44:6c:b6:67:b8:cc:a9:e2:81:0b:73:81:85: 06:37:0e:e5:c6:82:94:71:76:76:57:bf:ee:69:a2:e5:a4:ae: bf:1b:62:a2:39:c9:55:66:94:04:74:22:9d:fd:1c:8e:09:9e: f2:6c:c0:68:16:78:ed:75:b7:b7:c7:7e:bf:3e:cb:ba:0d:df: f0:99:59:31:1a:ea:d8:89:ea:2a:90:e1:01:d3:8d:56:1c:95: 22:fb:14:21 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICAIAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTExRUIxMTAvBgNVBAUTKEJFM0Y4MTNCMjAyRkZCMEEzODJGNzM3OTY4RUUxNjY1 OThFMEU4QUIwHhcNMjUwMzI1MDYxMzA3WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2UyNDk3My0xZGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzbkPAlYxGWBJxdQVXz9jIYICnIyH9xCkDeqHM+UPgd+1wP+s0UNxhNgCBXVM Wsx1e29EDpxr5xDi2TtAiy6abLUUrYtqs2XP4R6HhzcxrGvITw9SQsbcRfAWW6jg ozx99fUNA4AwdseYWhUx11rHPlogxs5ywkW1FSnsh6oDYueQQ2jAKy/EXBmCu9s/ YKnJp6vgm0/yQv1uklM13zEjK8/MJH64MmYBqbk+Q1txNg7OyNJ8e2rSRL2Mtt/V wh/t8zHtIyQartw851vj5ssWkxbpr0V2coEb2iyyp+sc4NyV60rP76m8ntK8WBAc Z5rwUOdi9rmKr3LW7WSnLTEXkQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFEJ8b7hT x+ZVEVdqra4iNkiq24UHMB8GA1UdIwQYMBaAFL4/gTsgL/sKOC9zeWjuFmWY4Oir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTFFQi9FREE5NzJCMjY5 QTIxMUVGQUUzQUIzNUFDNEY5QUUwMi92ai1CT3lBdi13bzRMM041YU80V1paamc2 S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZqLUJPeUF2LXdvNEwzTjVhTzRXWlpqZzZLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTExRUIvRURBOTcyQjI2OUEyMTFFRkFFM0FCMzVBQzRGOUFFMDIvOUJDNzc4MjA2 OUE5MTFFRkJGNjY4MDBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEBMuekAMEAcuelAMEAMuemAMEA8ue6DANBgkqhkiG9w0B AQsFAAOCAQEAUvdyJmL7a4hHpjAsNRguKLJzbWcBRQcSLKudVsId6X37zhtlC/Qv MdCedQd0YWOb12zTZRDQgVxuJijBJL59xzISp+XuOp8X/qd525jfSHPXmyB4ZmUi 7Agcy7mqo2KIRdRLzjC0eJhcNKABq9J6ERhirq/+nCcAzs7IGsV/XAtIuRfQ3gTA enyrsmQkd38prb57YCUl2SRG7G2e4Qv3IhuJCbG4TtpEbLZnuMyp4oELc4GFBjcO 5caClHF2dle/7mmi5aSuvxtiojnJVWaUBHQinf0cjgme8mzAaBZ47XW3t8d+vz7L ug3f8JlZMRrq2InqKpDhAdONVhyVIvsUIQ== -----END CERTIFICATE-----Generated at Sat Apr 5 19:48:17 2025 by rpki-client