$ rpki-client -vvf rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/B0EB27B470B811E9B32F6726C4F9AE02.roa File: B0EB27B470B811E9B32F6726C4F9AE02.roa (raw, json) Hash identifier: Yn6iyp3sOHzht7NrUVV1K95CTLrIyR+zeCU6DhPlbi0= Subject key identifier: A7:F6:61:6C:A4:3A:B6:1A:60:8A:8B:6A:9F:40:EF:10:B9:32:78:1A Certificate issuer: /CN=A91964B3/serialNumber=B39866A99D1CD9F4E7E8F53C88AD14DA89A18625 Certificate serial: 35CE Authority key identifier: B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/B0EB27B470B811E9B32F6726C4F9AE02.roa Signing time: Mon 30 Dec 2024 14:26:47 +0000 ROA not before: Mon 30 Dec 2024 14:26:47 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 45609 IP address blocks: 59.144.111.0/24 maxlen: 24 125.17.2.0/24 maxlen: 24 125.18.116.0/24 maxlen: 24 125.18.246.0/24 maxlen: 24 125.18.254.0/24 maxlen: 24 125.22.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:24:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13774 (0x35ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91964B3 Validity Not Before: Dec 30 14:26:47 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6772ada7-efcd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:07:33:08:59:2b:f6:90:65:9c:05:dc:6a:1f: ec:48:31:53:2a:85:c2:09:df:9c:3f:9d:96:12:32: da:04:bf:02:43:31:a6:5a:f7:70:90:24:75:81:35: ce:da:2c:c6:44:a1:28:f3:29:76:fe:7e:5b:d3:25: 02:9b:f6:4f:46:a2:53:39:b8:3e:03:f5:7c:0a:ac: 11:09:d7:7f:3e:fc:4a:b9:7f:e1:0a:fa:69:92:a7: 3f:ab:ca:a5:41:e7:79:94:e8:a4:92:bf:4c:9d:c0: 3c:ee:d9:71:2e:7a:79:a6:cb:84:02:13:da:9a:35: 89:e0:18:57:99:02:15:cb:e2:11:dd:f3:12:ce:57: 55:48:76:e8:e3:4a:4b:27:e7:e5:14:18:d5:af:ad: 16:47:8b:e3:19:bf:ad:57:dd:af:ab:42:15:33:fe: dc:2d:b8:35:86:0d:7e:cd:0b:42:1c:d5:f0:59:b7: f8:e8:94:96:2c:8b:53:9f:4e:ce:81:89:94:76:b6: bf:e3:68:7f:92:d1:e1:40:bb:e8:70:cd:46:ea:26: 3d:9c:b2:d3:f8:2f:1b:5c:54:59:a4:19:f8:dc:f3: 22:27:e8:13:67:28:fc:ea:cd:9c:43:ce:c3:87:74: 36:e2:8d:3a:44:cf:96:07:c4:5d:c5:a5:3f:37:8f: d8:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:F6:61:6C:A4:3A:B6:1A:60:8A:8B:6A:9F:40:EF:10:B9:32:78:1A X509v3 Authority Key Identifier: keyid:B3:98:66:A9:9D:1C:D9:F4:E7:E8:F5:3C:88:AD:14:DA:89:A1:86:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s5hmqZ0c2fTn6PU8iK0U2omhhiU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91964B3/E65851121D8411E2A1BA30DB08B02CD2/B0EB27B470B811E9B32F6726C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.144.111.0/24 125.17.2.0/24 125.18.116.0/24 125.18.246.0/24 125.18.254.0/24 125.22.79.0/24 Signature Algorithm: sha256WithRSAEncryption 14:80:08:18:f8:a4:07:ad:89:b4:9c:0a:10:94:0d:41:5c:45: 9a:5f:cc:ae:23:d3:be:88:5e:10:56:57:5f:8a:06:18:f6:5e: 26:3f:3e:74:ef:ea:f5:42:ee:5d:90:29:e0:d4:db:19:37:bb: 70:29:ae:5b:b3:ef:97:4a:a4:81:fe:77:dc:f7:c8:9d:89:c6: ce:54:dc:79:a2:df:33:07:99:98:8d:7b:e8:6c:6c:16:7f:da: 61:8b:54:ef:59:28:ec:7d:16:7f:84:73:c6:59:b7:62:d7:3a: 83:f4:ca:8a:6f:0b:c5:b2:bb:c3:86:2c:28:94:4b:77:9c:32: 54:30:af:e3:df:f0:3d:d4:b9:a4:b6:07:a3:8e:2b:e9:ea:8d: 0a:f9:3c:23:30:bd:0f:a8:8f:a3:61:43:69:f0:ce:c2:0c:9f: 2e:44:fc:80:ad:f9:1d:12:7f:88:be:d6:29:2d:cc:5b:3c:fe: 6e:94:f4:8a:f7:c0:d1:24:5e:1d:91:b4:77:d2:8a:8c:a2:5c: 44:e9:6e:28:bc:4d:00:fe:f6:ba:d4:d6:27:a6:55:26:d6:3b: e1:4d:1d:ad:41:e9:73:5e:89:0e:db:a5:9c:41:7b:b1:4d:37: 65:5b:bf:3b:d6:5b:fd:f4:56:55:ce:2b:52:c5:c6:66:2d:68: 15:8f:85:fe -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICNc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTY0QjMxMTAvBgNVBAUTKEIzOTg2NkE5OUQxQ0Q5RjRFN0U4RjUzQzg4QUQxNERB ODlBMTg2MjUwHhcNMjQxMjMwMTQyNjQ3WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzcyYWRhNy1lZmNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvgczCFkr9pBlnAXcah/sSDFTKoXCCd+cP52WEjLaBL8CQzGmWvdwkCR1gTXO 2izGRKEo8yl2/n5b0yUCm/ZPRqJTObg+A/V8CqwRCdd/PvxKuX/hCvppkqc/q8ql Qed5lOikkr9MncA87tlxLnp5psuEAhPamjWJ4BhXmQIVy+IR3fMSzldVSHbo40pL J+flFBjVr60WR4vjGb+tV92vq0IVM/7cLbg1hg1+zQtCHNXwWbf46JSWLItTn07O gYmUdra/42h/ktHhQLvocM1G6iY9nLLT+C8bXFRZpBn43PMiJ+gTZyj86s2cQ87D h3Q24o06RM+WB8RdxaU/N4/YZwIDAQABo4ICszCCAq8wHQYDVR0OBBYEFKf2YWyk OrYaYIqLap9A7xC5MngaMB8GA1UdIwQYMBaAFLOYZqmdHNn05+j1PIitFNqJoYYl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjRCMy9FNjU4NTExMjFE ODQxMUUyQTFCQTMwREIwOEIwMkNEMi9zNWhtcVowYzJmVG42UFU4aUswVTJvbWho aVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3M1aG1xWjBjMmZUbjZQVThpSzBVMm9taGhpVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTY0QjMvRTY1ODUxMTIxRDg0MTFFMkExQkEzMERCMDhCMDJDRDIvQjBFQjI3QjQ3 MEI4MTFFOUIzMkY2NzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAA7kG8DBAB9EQIDBAB9EnQDBAB9EvYDBAB9Ev4DBAB9Fk8w DQYJKoZIhvcNAQELBQADggEBABSACBj4pAetibScChCUDUFcRZpfzK4j076IXhBW V1+KBhj2XiY/PnTv6vVC7l2QKeDU2xk3u3Aprluz75dKpIH+d9z3yJ2Jxs5U3Hmi 3zMHmZiNe+hsbBZ/2mGLVO9ZKOx9Fn+Ec8ZZt2LXOoP0yopvC8Wyu8OGLCiUS3ec MlQwr+Pf8D3UuaS2B6OOK+nqjQr5PCMwvQ+oj6NhQ2nwzsIMny5E/ICt+R0Sf4i+ 1iktzFs8/m6U9Ir3wNEkXh2RtHfSioyiXETpbii8TQD+9rrU1iemVSbWO+FNHa1B 6XNeiQ7bpZxBe7FNN2VbvzvWW/30VlXOK1LFxmYtaBWPhf4= -----END CERTIFICATE-----Generated at Sat Apr 5 02:10:02 2025 by rpki-client