$ rpki-client -vvf rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F0735BD8099A11EAB5891D5BC4F9AE02.roa File: F0735BD8099A11EAB5891D5BC4F9AE02.roa (raw, json) Hash identifier: gZW5b4GbZln6AGw6rT+ITMFh9KpuonYuWjnon6ryE+Q= Subject key identifier: A7:2C:83:AD:A5:81:95:2F:2F:58:7D:7F:0D:78:03:00:25:BC:57:2A Certificate issuer: /CN=A91919EA/serialNumber=7B01CACC170FE6A61B20304185E868946DF7285A Certificate serial: 0F79 Authority key identifier: 7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F0735BD8099A11EAB5891D5BC4F9AE02.roa Signing time: Fri 28 Feb 2025 19:29:51 +0000 ROA not before: Fri 28 Feb 2025 19:29:51 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 397219 IP address blocks: 120.29.252.0/24 maxlen: 24 120.29.253.0/24 maxlen: 24 120.29.254.0/24 maxlen: 24 203.17.72.0/24 maxlen: 24 2001:dcd:1::/48 maxlen: 48 2001:dcd:2::/48 maxlen: 48 2001:dcd:3::/48 maxlen: 48 2001:dcd:4::/48 maxlen: 48 2001:dcd:5::/48 maxlen: 48 2001:dcd:6::/48 maxlen: 48 2001:dcd:7::/48 maxlen: 48 2001:dcd:dd05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 18:34:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3961 (0xf79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91919EA Validity Not Before: Feb 28 19:29:51 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c20eae-6821 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:1f:75:52:94:d0:34:e8:d8:cd:7b:75:f5:b0: 64:7c:c0:ec:c2:09:85:4d:61:aa:e0:bc:0f:0d:ac: 7c:9a:15:26:7d:32:78:89:58:8c:16:f4:89:f0:6c: df:ba:b4:17:88:0b:84:e4:3a:5e:9f:eb:e7:84:0f: 76:84:b6:e8:af:d9:ac:95:e4:1b:1e:93:7f:f0:3f: 31:cb:b6:3d:c6:9d:ff:60:58:38:84:97:8f:9a:86: 16:cd:04:ed:fe:45:e2:bf:df:eb:69:63:1d:f8:fa: 74:69:27:c4:21:47:b2:66:b6:5c:a5:76:76:d9:6a: a5:96:fe:88:ca:a0:5d:6a:ed:77:54:b5:52:d5:ec: 37:0b:36:ce:fa:e7:a7:f6:ff:a2:6b:fa:8b:91:f8: 1c:10:72:d5:3a:76:4d:af:7b:51:2d:82:cb:60:ae: 06:3e:aa:10:5e:9b:d4:8b:7c:27:21:81:5a:f7:df: c5:90:1c:5c:b0:7f:d7:c3:68:52:a9:20:9c:49:44: 72:e8:eb:a8:bd:21:e7:60:9a:93:f4:6d:b5:dd:ce: db:49:22:7c:4a:2b:e8:c4:d6:81:3a:0a:22:47:55: 2f:45:95:35:58:58:eb:78:e8:76:04:df:69:ca:b6: 9d:07:57:e0:fd:b9:5d:2a:96:09:1a:87:6f:bb:d5: d6:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:2C:83:AD:A5:81:95:2F:2F:58:7D:7F:0D:78:03:00:25:BC:57:2A X509v3 Authority Key Identifier: keyid:7B:01:CA:CC:17:0F:E6:A6:1B:20:30:41:85:E8:68:94:6D:F7:28:5A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/ewHKzBcP5qYbIDBBheholG33KFo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ewHKzBcP5qYbIDBBheholG33KFo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91919EA/6D463CFE04FD11EA82CCCA18C4F9AE02/F0735BD8099A11EAB5891D5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.29.252.0-120.29.254.255 203.17.72.0/24 IPv6: 2001:dcd:1::-2001:dcd:7:ffff:ffff:ffff:ffff:ffff 2001:dcd:dd05::/48 Signature Algorithm: sha256WithRSAEncryption 49:b0:8f:47:ee:06:5b:09:f1:de:5f:77:52:ef:56:da:8f:0b: 4b:88:cc:d6:3e:42:aa:74:c6:23:7f:61:7a:44:33:3e:80:58: bd:5e:cf:d7:28:40:07:80:05:f7:c7:5f:53:40:d5:54:7b:ed: 39:5f:d1:86:ad:37:44:1b:4b:8d:dc:3f:6d:b6:a7:13:f8:9f: ad:b3:0f:59:86:71:7c:50:79:6e:e4:a8:c8:38:40:76:8c:dc: f4:38:54:b9:fb:fd:ba:43:b2:3e:df:8b:12:34:5a:ec:51:a1: 83:8e:4e:a3:0e:c4:a1:bd:2a:0d:78:0a:2c:7e:bb:14:bd:67: 92:17:7f:0f:bc:b8:56:e1:01:a6:1d:f3:f2:0a:8b:f6:b6:b5: 9f:7b:c3:03:c4:11:93:4e:7d:e7:9b:10:22:a6:fe:4c:5a:26: aa:6b:89:de:29:46:97:ed:d9:52:45:68:20:2d:4a:d5:91:c0: 57:6a:9f:dd:0e:34:cb:ea:ee:4b:74:0c:54:8e:da:b9:77:f6: 90:85:4b:30:a7:2c:01:72:d0:13:47:d4:61:4d:13:33:c4:d4: c9:bb:d4:f5:24:3c:5b:a7:d8:5d:8b:ce:fd:8a:82:24:4c:22: 4e:d3:8d:89:2a:d7:79:74:bb:11:ee:8f:68:81:04:c4:d8:3c: ee:30:4d:36 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgICD3kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTE5RUExMTAvBgNVBAUTKDdCMDFDQUNDMTcwRkU2QTYxQjIwMzA0MTg1RTg2ODk0 NkRGNzI4NUEwHhcNMjUwMjI4MTkyOTUxWhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2MyMGVhZS02ODIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwh91UpTQNOjYzXt19bBkfMDswgmFTWGq4LwPDax8mhUmfTJ4iViMFvSJ8Gzf urQXiAuE5Dpen+vnhA92hLbor9msleQbHpN/8D8xy7Y9xp3/YFg4hJePmoYWzQTt /kXiv9/raWMd+Pp0aSfEIUeyZrZcpXZ22Wqllv6IyqBdau13VLVS1ew3CzbO+uen 9v+ia/qLkfgcEHLVOnZNr3tRLYLLYK4GPqoQXpvUi3wnIYFa99/FkBxcsH/Xw2hS qSCcSURy6OuovSHnYJqT9G213c7bSSJ8SivoxNaBOgoiR1UvRZU1WFjreOh2BN9p yradB1fg/bldKpYJGodvu9XWHwIDAQABo4ICyDCCAsQwHQYDVR0OBBYEFKcsg62l gZUvL1h9fw14AwAlvFcqMB8GA1UdIwQYMBaAFHsByswXD+amGyAwQYXoaJRt9yha MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MTlFQS82RDQ2M0NGRTA0 RkQxMUVBODJDQ0NBMThDNEY5QUUwMi9ld0hLekJjUDVxWWJJREJCaGVob2xHMzNL Rm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V3SEt6QmNQNXFZYklEQkJoZWhvbEczM0tGby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTE5RUEvNkQ0NjNDRkUwNEZEMTFFQTgyQ0NDQTE4QzRGOUFFMDIvRjA3MzVCRDgw OTlBMTFFQUI1ODkxRDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwUgYIKwYBBQUHAQcBAf8E QzBBMBoEAgABMBQwDAMEAngd/AMEAHgd/gMEAMsRSDAjBAIAAjAdMBIDBwAgAQ3N AAEDBwMgAQ3NAAADBwAgAQ3N3QUwDQYJKoZIhvcNAQELBQADggEBAEmwj0fuBlsJ 8d5fd1LvVtqPC0uIzNY+Qqp0xiN/YXpEMz6AWL1ez9coQAeABffHX1NA1VR77Tlf 0YatN0QbS43cP222pxP4n62zD1mGcXxQeW7kqMg4QHaM3PQ4VLn7/bpDsj7fixI0 WuxRoYOOTqMOxKG9Kg14Cix+uxS9Z5IXfw+8uFbhAaYd8/IKi/a2tZ97wwPEEZNO feebECKm/kxaJqprid4pRpft2VJFaCAtStWRwFdqn90ONMvq7kt0DFSO2rl39pCF SzCnLAFy0BNH1GFNEzPE1Mm71PUkPFun2F2Lzv2KgiRMIk7TjYkq13l0uxHuj2iB BMTYPO4wTTY= -----END CERTIFICATE-----Generated at Sat Apr 5 03:26:21 2025 by rpki-client