$ rpki-client -vvf rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/0537EDD4E37C11EA8C217816C4F9AE02.roa File: 0537EDD4E37C11EA8C217816C4F9AE02.roa (raw, json) Hash identifier: SqzEVckRy0F20kGZ/i2KdXyFceQ+W0O7xzAWCq702q0= Subject key identifier: B1:E4:33:86:B2:9E:74:9C:D1:3C:DD:4B:7F:37:43:27:9E:C9:19:92 Certificate issuer: /CN=A9191A09/serialNumber=ACF2C8D0DCFBA74516B33CEBE26AE14F8B067C80 Certificate serial: 34DF Authority key identifier: AC:F2:C8:D0:DC:FB:A7:45:16:B3:3C:EB:E2:6A:E1:4F:8B:06:7C:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/0537EDD4E37C11EA8C217816C4F9AE02.roa Signing time: Thu 30 Jan 2025 15:00:43 +0000 ROA not before: Thu 30 Jan 2025 15:00:43 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 24492 IP address blocks: 27.111.8.0/22 maxlen: 24 43.245.216.0/22 maxlen: 24 49.156.32.0/20 maxlen: 23 49.156.32.0/20 maxlen: 24 49.156.34.0/23 maxlen: 24 49.156.36.0/22 maxlen: 24 49.156.40.0/21 maxlen: 24 103.17.212.0/22 maxlen: 24 116.206.16.0/22 maxlen: 24 119.15.80.0/20 maxlen: 24 202.79.24.0/21 maxlen: 24 218.100.71.0/24 maxlen: 24 2405:1a00::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.crl rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:41:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13535 (0x34df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191A09 Validity Not Before: Jan 30 15:00:43 2025 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=679b941b-0b18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:13:d7:e0:a1:08:9e:bf:f6:7e:8c:e6:8d:24: 7c:9c:26:76:a6:1e:31:3c:bc:b1:73:6e:01:0e:06: 9a:d8:aa:c8:99:4f:2c:e4:a5:1a:f3:96:a4:74:4c: 50:af:2d:63:f1:68:1b:a8:84:07:0b:ab:b3:d2:75: 5c:cb:fd:5e:08:24:33:7d:98:00:89:ac:04:fa:ec: b2:ee:c1:ae:e8:d2:23:77:14:d0:eb:a5:c3:b7:a6: fb:b8:56:2f:95:62:1b:ce:61:04:84:c1:e3:bd:f8: ce:da:0f:a1:14:4d:3f:86:41:ec:7c:8f:84:63:41: fb:f0:30:cc:03:c3:0a:c4:34:56:9e:db:c8:10:e0: cf:ac:73:28:92:85:5a:58:56:9e:51:79:3b:ff:f9: 7e:fb:80:0a:71:c4:c7:93:b6:1a:3f:07:35:f8:26: cf:28:ed:cc:82:7c:9e:70:c5:ac:5d:70:94:78:db: 3e:89:20:2c:d4:22:f0:58:85:87:c2:b4:8a:55:59: 03:d9:24:91:e0:e0:b6:a4:43:91:5b:4d:f8:34:a8: a5:89:2b:5d:60:f8:cc:59:e4:7e:1e:7f:2d:6a:eb: 87:5f:23:b7:99:c6:8b:f6:ef:c5:45:bc:f0:01:6c: 16:04:63:92:ca:b6:93:d1:78:a3:38:35:7d:47:4b: 6b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:E4:33:86:B2:9E:74:9C:D1:3C:DD:4B:7F:37:43:27:9E:C9:19:92 X509v3 Authority Key Identifier: keyid:AC:F2:C8:D0:DC:FB:A7:45:16:B3:3C:EB:E2:6A:E1:4F:8B:06:7C:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rPLI0Nz7p0UWszzr4mrhT4sGfIA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191A09/4ACFF3601D9011E2B87CF2EF08B02CD2/0537EDD4E37C11EA8C217816C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.111.8.0/22 43.245.216.0/22 49.156.32.0/20 103.17.212.0/22 116.206.16.0/22 119.15.80.0/20 202.79.24.0/21 218.100.71.0/24 IPv6: 2405:1a00::/32 Signature Algorithm: sha256WithRSAEncryption 93:4f:90:b2:0a:e4:93:af:78:11:13:04:92:26:c6:b4:25:a0: 2b:c5:ac:e7:06:9f:2f:d4:5a:1d:c1:a8:e8:f3:a9:53:95:11: 8b:63:f7:f1:c6:ee:c7:14:ac:9d:40:d6:2d:ba:7a:ba:c2:0e: 8e:98:e0:e5:12:d9:6b:50:4b:82:db:42:e3:4a:78:3b:a0:18: 43:ac:ec:a8:15:7e:8a:d9:e1:b6:f9:20:53:1d:f0:7f:e7:49: 0a:8d:b1:79:77:cd:ac:b7:6a:26:52:85:cf:3c:fd:5d:cc:98: 5f:58:f3:8f:5e:5c:84:b8:64:fc:89:80:59:17:80:1a:9f:38: 71:21:ca:21:e5:69:3d:47:46:25:f7:a1:1e:e6:7b:fd:1c:40: 6d:d9:1f:58:d5:fe:75:06:f9:c8:e7:09:8e:53:65:54:60:62: e0:31:7a:6e:58:eb:71:80:ed:9d:d9:5c:44:91:88:f3:e5:76: c5:38:34:5f:08:47:35:7e:29:3e:7b:06:aa:50:34:53:35:2c: 19:6a:1e:c3:b2:8d:da:54:d6:6e:12:c9:b0:bd:68:7e:c3:df: 11:99:87:e3:91:be:51:f2:f0:04:0d:6a:62:52:0e:60:51:e0: 72:70:33:cf:ee:1e:d0:9c:a2:09:92:d9:49:4a:ac:df:9b:60: d2:9e:99:df -----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgICNN8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFBMDkxMTAvBgNVBAUTKEFDRjJDOEQwRENGQkE3NDUxNkIzM0NFQkUyNkFFMTRG OEIwNjdDODAwHhcNMjUwMTMwMTUwMDQzWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzliOTQxYi0wYjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2BPX4KEInr/2fozmjSR8nCZ2ph4xPLyxc24BDgaa2KrImU8s5KUa85akdExQ ry1j8WgbqIQHC6uz0nVcy/1eCCQzfZgAiawE+uyy7sGu6NIjdxTQ66XDt6b7uFYv lWIbzmEEhMHjvfjO2g+hFE0/hkHsfI+EY0H78DDMA8MKxDRWntvIEODPrHMokoVa WFaeUXk7//l++4AKccTHk7YaPwc1+CbPKO3MgnyecMWsXXCUeNs+iSAs1CLwWIWH wrSKVVkD2SSR4OC2pEORW034NKiliStdYPjMWeR+Hn8tauuHXyO3mcaL9u/FRbzw AWwWBGOSyraT0XijODV9R0tr0wIDAQABo4ICzjCCAsowHQYDVR0OBBYEFLHkM4ay nnSc0TzdS383QyeeyRmSMB8GA1UdIwQYMBaAFKzyyNDc+6dFFrM86+Jq4U+LBnyA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUEwOS80QUNGRjM2MDFE OTAxMUUyQjg3Q0YyRUYwOEIwMkNEMi9yUExJME56N3AwVVdzenpyNG1yaFQ0c0dm SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JQTEkwTno3cDBVV3N6enI0bXJoVDRzR2ZJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFBMDkvNEFDRkYzNjAxRDkwMTFFMkI4N0NGMkVGMDhCMDJDRDIvMDUzN0VERDRF MzdDMTFFQThDMjE3ODE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWAYIKwYBBQUHAQcBAf8E STBHMDYEAgABMDADBAIbbwgDBAIr9dgDBAQxnCADBAJnEdQDBAJ0zhADBAR3D1AD BAPKTxgDBADaZEcwDQQCAAIwBwMFACQFGgAwDQYJKoZIhvcNAQELBQADggEBAJNP kLIK5JOveBETBJImxrQloCvFrOcGny/UWh3BqOjzqVOVEYtj9/HG7scUrJ1A1i26 errCDo6Y4OUS2WtQS4LbQuNKeDugGEOs7KgVforZ4bb5IFMd8H/nSQqNsXl3zay3 aiZShc88/V3MmF9Y849eXIS4ZPyJgFkXgBqfOHEhyiHlaT1HRiX3oR7me/0cQG3Z H1jV/nUG+cjnCY5TZVRgYuAxem5Y63GA7Z3ZXESRiPPldsU4NF8IRzV+KT57BqpQ NFM1LBlqHsOyjdpU1m4SybC9aH7D3xGZh+ORvlHy8AQNamJSDmBR4HJwM8/uHtCc ogmS2UlKrN+bYNKemd8= -----END CERTIFICATE-----Generated at Fri Apr 4 23:50:11 2025 by rpki-client