$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/79E6617E073111EA993EC663C4F9AE02.roa File: 79E6617E073111EA993EC663C4F9AE02.roa (raw, json) Hash identifier: KNdMMV4ddPG1PIYxHZGgTtyP02+HxhUN5trL6X8W8ws= Subject key identifier: EF:9E:ED:8D:FA:A2:33:B0:56:7B:FC:7D:5C:F7:EA:E6:E5:B5:2D:7D Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0F7E Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/79E6617E073111EA993EC663C4F9AE02.roa Signing time: Fri 28 Feb 2025 19:29:56 +0000 ROA not before: Fri 28 Feb 2025 19:29:56 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397224 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3966 (0xf7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA Validity Not Before: Feb 28 19:29:56 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c20eb4-371b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1e:39:2e:13:fb:83:a5:aa:e2:d8:16:65:e6: 2b:64:84:fb:31:69:6e:f3:00:f4:86:2b:48:55:20: a5:62:55:b1:82:85:0d:f9:36:77:bf:00:d0:eb:4d: 77:3e:98:ba:58:3a:3a:5b:b2:ad:33:7f:40:d5:2d: 6a:4b:6f:53:6f:61:ed:43:6d:db:ee:5d:43:ad:a4: ef:f6:1d:a5:ed:3b:1f:6d:50:13:09:7b:20:45:8b: 65:db:a5:0d:89:19:67:da:d6:52:63:bf:b9:93:5b: 24:c0:8f:1f:6f:f0:a8:97:8e:6b:4b:16:c0:fd:54: b8:e5:9d:07:70:90:04:78:91:b0:88:bb:aa:da:9a: 9a:a1:32:0d:d3:5b:d5:43:7e:35:a7:ee:e6:24:09: a3:3b:99:9a:e5:e8:3f:40:52:f0:d0:01:76:9a:fd: 68:42:81:d2:25:3a:e0:a0:9a:2e:2c:43:bc:26:a8: e4:72:e2:db:df:12:b0:91:9c:2d:fa:66:a6:26:62: 44:a1:c7:b4:80:0a:6e:fb:8a:14:f6:43:b8:b9:e0: 4b:12:03:ff:9c:a7:c5:2b:d4:44:31:e7:38:d6:b0: bc:c2:e8:03:a9:31:e7:ad:49:0a:bf:46:bf:7e:79: 0f:43:56:91:02:de:5e:fa:ad:2f:90:b4:f6:50:e6: 74:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:9E:ED:8D:FA:A2:33:B0:56:7B:FC:7D:5C:F7:EA:E6:E5:B5:2D:7D X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/79E6617E073111EA993EC663C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 06:42:44:6a:0c:43:e0:73:59:cc:49:3e:6e:e3:bb:47:d1:b6: c7:83:30:93:3c:04:8c:1a:43:3a:2e:d6:d1:08:65:70:e4:31: 70:eb:f6:a9:68:ce:67:17:db:87:8f:44:3a:9f:27:f2:83:3b: 56:f6:5a:44:f2:88:18:93:6c:14:df:1a:f4:69:59:e2:53:bc: 31:56:44:0b:8a:0e:aa:cc:59:c0:b4:a4:7a:15:ae:98:f2:04: 27:0e:3c:b2:17:e9:7f:83:e7:a5:4f:c0:73:2e:10:5e:7b:cd: 29:f0:3d:33:04:b1:15:cc:6a:6b:cc:b2:33:83:56:1c:7b:0f: 28:a7:68:90:50:4f:2c:dc:98:36:72:dc:53:6b:94:66:09:fe: ea:f7:40:fd:c5:ef:82:aa:bc:6d:0a:1d:30:73:e7:e2:cf:68: 6f:93:d3:20:49:a0:31:43:78:ea:a4:6b:16:3d:60:f8:46:b1: 33:24:f2:24:ff:56:8c:18:07:09:36:6b:71:8b:c2:c5:3b:c1: 2a:a1:df:47:42:0b:ef:5d:0b:0a:b6:9b:88:e5:ad:76:24:6a: 45:d2:bc:97:25:a8:b4:00:ba:dc:80:17:c7:56:74:1c:86:6c: 2a:40:c3:02:6e:58:86:7d:ad:d6:cd:2a:c9:5f:c2:fd:67:44: c9:54:35:72 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICD34wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkyOTU2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyMGViNC0zNzFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArx45LhP7g6Wq4tgWZeYrZIT7MWlu8wD0hitIVSClYlWxgoUN+TZ3vwDQ6013 Ppi6WDo6W7KtM39A1S1qS29Tb2HtQ23b7l1DraTv9h2l7TsfbVATCXsgRYtl26UN iRln2tZSY7+5k1skwI8fb/Col45rSxbA/VS45Z0HcJAEeJGwiLuq2pqaoTIN01vV Q341p+7mJAmjO5ma5eg/QFLw0AF2mv1oQoHSJTrgoJouLEO8JqjkcuLb3xKwkZwt +mamJmJEoce0gApu+4oU9kO4ueBLEgP/nKfFK9REMec41rC8wugDqTHnrUkKv0a/ fnkPQ1aRAt5e+q0vkLT2UOZ0CwIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFO+e7Y36 ojOwVnv8fVz36ubltS19MB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvNzlFNjYxN0Uw NzMxMTFFQTk5M0VDNjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAAZCRGoMQ+Bz WcxJPm7ju0fRtseDMJM8BIwaQzou1tEIZXDkMXDr9qlozmcX24ePRDqfJ/KDO1b2 WkTyiBiTbBTfGvRpWeJTvDFWRAuKDqrMWcC0pHoVrpjyBCcOPLIX6X+D56VPwHMu EF57zSnwPTMEsRXMamvMsjODVhx7DyinaJBQTyzcmDZy3FNrlGYJ/ur3QP3F74Kq vG0KHTBz5+LPaG+T0yBJoDFDeOqkaxY9YPhGsTMk8iT/VowYBwk2a3GLwsU7wSqh 30dCC+9dCwq2m4jlrXYkakXSvJclqLQAutyAF8dWdByGbCpAwwJuWIZ9rdbNKslf wv1nRMlUNXI= -----END CERTIFICATE-----Generated at Sat Apr 5 06:15:26 2025 by rpki-client