$ rpki-client -vvf rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/05F11BACDF4A11EDA4190947C4F9AE02.roa File: 05F11BACDF4A11EDA4190947C4F9AE02.roa (raw, json) Hash identifier: xNw6lqRZVzml6zGHz7sRyZFWQnA5LMwPw8PJ9UjVWeM= Subject key identifier: F1:CD:B2:43:F2:03:87:13:03:91:26:B7:AF:CB:CC:C4:8D:4A:5D:5E Certificate issuer: /CN=A91934DE/serialNumber=FD49C064FCA3E92DECC18A8F50494B21FC01F256 Certificate serial: 0189 Authority key identifier: FD:49:C0:64:FC:A3:E9:2D:EC:C1:8A:8F:50:49:4B:21:FC:01:F2:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UnAZPyj6S3swYqPUElLIfwB8lY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/05F11BACDF4A11EDA4190947C4F9AE02.roa Signing time: Thu 03 Apr 2025 03:30:49 +0000 ROA not before: Thu 03 Apr 2025 03:30:49 +0000 ROA not after: Sat 01 Jul 2028 00:00:00 +0000 asID: 132581 IP address blocks: 203.149.89.0/24 maxlen: 24 203.149.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.crl rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UnAZPyj6S3swYqPUElLIfwB8lY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:13:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 393 (0x189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91934DE Validity Not Before: Apr 3 03:30:49 2025 GMT Not After : Jul 1 00:00:00 2028 GMT Subject: CN=67ee00e8-8f0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3e:e6:2e:f9:44:85:71:d7:52:aa:7f:22:89: 60:7f:af:8c:65:6e:05:11:30:d2:7d:d7:7f:da:90: 0a:7d:2d:b8:dd:15:da:de:df:c9:02:d9:fe:62:4e: de:77:d5:c5:e3:b6:f5:2d:9b:24:13:7c:f4:d0:af: 6d:0d:d5:0d:c3:44:f8:a0:f1:7d:7a:7d:89:04:88: a5:bf:b0:11:da:5b:3e:aa:aa:e2:e2:c4:45:ee:86: 69:1c:b7:cb:df:c8:2b:3d:ca:17:1e:af:e1:1a:c8: 25:c0:bc:ef:5e:eb:46:b5:7f:4b:a4:d3:22:b1:81: 90:0a:4f:88:23:a3:3e:0c:c8:e8:d7:54:07:aa:b8: 07:44:60:06:88:1f:d0:9e:52:bc:3c:d9:33:ce:74: bc:a9:dd:c8:b7:e9:f0:fb:42:1f:ae:90:b9:a5:e6: 60:65:c4:40:18:72:6e:89:90:21:33:20:73:f9:b3: a8:cb:67:2b:43:b4:b8:52:a2:aa:f7:49:48:e6:93: 8c:72:a1:da:51:cf:f8:d7:ae:02:74:44:d8:a9:14: 2e:86:60:8a:88:e8:af:c7:5f:86:95:2e:83:6e:e0: 98:63:00:21:5e:66:d6:cd:ee:60:f3:c1:e0:89:87: 48:ba:f6:8d:1a:3c:71:4a:81:f4:d6:60:b9:e2:09: 1d:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:CD:B2:43:F2:03:87:13:03:91:26:B7:AF:CB:CC:C4:8D:4A:5D:5E X509v3 Authority Key Identifier: keyid:FD:49:C0:64:FC:A3:E9:2D:EC:C1:8A:8F:50:49:4B:21:FC:01:F2:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/_UnAZPyj6S3swYqPUElLIfwB8lY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_UnAZPyj6S3swYqPUElLIfwB8lY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91934DE/A941D5E2D8E411ED92EA3620C4F9AE02/05F11BACDF4A11EDA4190947C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.149.89.0/24 203.149.91.0/24 Signature Algorithm: sha256WithRSAEncryption 07:a7:2d:97:28:5e:99:d9:11:8b:e7:da:d2:e1:b3:ff:e5:bd: d5:b8:17:29:cb:7b:96:7c:f3:d1:6a:b5:77:a9:43:15:ae:52: e8:ba:36:07:bc:5f:03:f7:f1:88:87:d1:ca:a0:cf:9b:86:e1: cb:45:3c:34:ad:a5:c4:97:1c:94:ce:b8:c8:0a:7a:98:9d:ea: 58:6a:16:24:e7:27:2c:80:b4:a0:6b:e2:61:b4:19:e1:0d:1c: 06:87:38:e1:c1:19:83:00:0a:f9:4d:73:3e:67:86:5b:6f:51: 8c:92:ea:a0:1a:98:c7:62:e5:85:b3:29:c7:ae:84:fe:ce:56: d2:a9:3b:7b:20:1c:97:dd:3a:9a:34:5f:08:d1:53:e8:3f:3a: 8f:cb:d7:26:c7:84:10:dc:f9:d8:9c:9c:ce:9a:81:ae:6a:16: b7:3f:84:bc:e2:68:1d:b5:43:6b:70:97:ea:88:eb:2d:0c:a5: b3:45:48:a5:4d:34:43:82:54:66:f5:1e:fe:8d:6d:d0:f9:7b: ce:b7:2e:0f:80:c2:f0:cc:62:94:73:b0:69:dd:41:84:d8:8d: a0:64:65:25:03:2e:ee:70:b6:54:a7:e1:65:96:5a:22:86:ac: a8:05:d7:f5:1e:a9:dc:8f:b4:3c:c7:f8:88:5e:84:d4:a8:79: a5:78:1b:d9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTM0REUxMTAvBgNVBAUTKEZENDlDMDY0RkNBM0U5MkRFQ0MxOEE4RjUwNDk0QjIx RkMwMUYyNTYwHhcNMjUwNDAzMDMzMDQ5WhcNMjgwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2VlMDBlOC04ZjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArj7mLvlEhXHXUqp/Iolgf6+MZW4FETDSfdd/2pAKfS243RXa3t/JAtn+Yk7e d9XF47b1LZskE3z00K9tDdUNw0T4oPF9en2JBIilv7AR2ls+qqri4sRF7oZpHLfL 38grPcoXHq/hGsglwLzvXutGtX9LpNMisYGQCk+II6M+DMjo11QHqrgHRGAGiB/Q nlK8PNkzznS8qd3It+nw+0IfrpC5peZgZcRAGHJuiZAhMyBz+bOoy2crQ7S4UqKq 90lI5pOMcqHaUc/4164CdETYqRQuhmCKiOivx1+GlS6DbuCYYwAhXmbWze5g88Hg iYdIuvaNGjxxSoH01mC54gkdowIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPHNskPy A4cTA5Emt6/LzMSNSl1eMB8GA1UdIwQYMBaAFP1JwGT8o+kt7MGKj1BJSyH8AfJW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzRERS9BOTQxRDVFMkQ4 RTQxMUVEOTJFQTM2MjBDNEY5QUUwMi9fVW5BWlB5ajZTM3N3WXFQVUVsTElmd0I4 bFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19VbkFaUHlqNlMzc3dZcVBVRWxMSWZ3QjhsWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTM0REUvQTk0MUQ1RTJEOEU0MTFFRDkyRUEzNjIwQzRGOUFFMDIvMDVGMTFCQUNE RjRBMTFFREE0MTkwOTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLlVkDBADLlVswDQYJKoZIhvcNAQELBQADggEBAAenLZco XpnZEYvn2tLhs//lvdW4FynLe5Z889FqtXepQxWuUui6Nge8XwP38YiH0cqgz5uG 4ctFPDStpcSXHJTOuMgKepid6lhqFiTnJyyAtKBr4mG0GeENHAaHOOHBGYMACvlN cz5nhltvUYyS6qAamMdi5YWzKceuhP7OVtKpO3sgHJfdOpo0XwjRU+g/Oo/L1ybH hBDc+dicnM6aga5qFrc/hLziaB21Q2twl+qI6y0MpbNFSKVNNEOCVGb1Hv6NbdD5 e863Lg+AwvDMYpRzsGndQYTYjaBkZSUDLu5wtlSn4WWWWiKGrKgF1/UeqdyPtDzH +IhehNSoeaV4G9k= -----END CERTIFICATE-----Generated at Sun Apr 6 09:04:55 2025 by rpki-client