$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/A40C03B0D3B511EDA2A9DD7BC4F9AE02.roa File: A40C03B0D3B511EDA2A9DD7BC4F9AE02.roa (raw, json) Hash identifier: qTpurh8+bWpZzwTVZxTLGeJXujwiEOMw1H0kXdqpaC8= Subject key identifier: BB:6B:28:8F:43:B1:F7:E9:D4:96:F8:6E:D1:15:D4:77:65:1A:11:29 Certificate issuer: /CN=A91A1C52/serialNumber=A990DA25CF4E01BCEB7EC75C17860FB947BE092A Certificate serial: 0175 Authority key identifier: A9:90:DA:25:CF:4E:01:BC:EB:7E:C7:5C:17:86:0F:B9:47:BE:09:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/A40C03B0D3B511EDA2A9DD7BC4F9AE02.roa Signing time: Wed 05 Mar 2025 04:19:45 +0000 ROA not before: Wed 05 Mar 2025 04:19:45 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 136557 IP address blocks: 203.34.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 03:05:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 373 (0x175) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1C52 Validity Not Before: Mar 5 04:19:45 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c7d0e0-4e4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:77:2c:93:a8:e9:c4:98:c3:60:ea:23:ed:f1: 54:3a:88:0a:36:61:20:da:56:4c:67:de:30:6b:ea: e0:46:b0:d9:b1:73:f8:63:3e:db:72:aa:90:5a:2c: 2e:bb:da:ec:48:ef:cd:63:7e:d4:a6:5c:8a:65:0a: ef:71:5b:0d:3e:dc:06:2d:ac:ee:0a:fb:0a:d5:1d: 4a:58:5d:be:43:e2:fb:4d:f5:c2:61:05:f8:15:94: 47:3a:d7:a0:25:65:6f:31:54:2c:d8:f9:85:17:a0: a8:f9:90:a8:88:a4:86:c8:31:bf:ac:11:d8:0c:cb: 45:67:17:c7:f1:a5:25:2e:c1:10:72:aa:15:5c:a6: 8e:38:5b:a3:d8:22:a3:38:70:c3:61:f3:b6:e9:44: 8d:0f:c0:a5:f2:42:41:a1:72:7a:aa:3d:3d:0d:f4: 20:25:82:07:95:d3:e0:5a:b7:ff:19:40:da:35:8f: 0a:ec:90:26:3a:5b:c8:dd:ec:56:23:59:ac:c4:fa: 91:1c:51:e5:2a:6b:ac:a5:60:ca:75:fd:96:9c:69: cf:7a:df:8b:33:09:d7:79:07:1b:a6:b5:6d:59:3f: 0c:aa:b0:fc:76:45:68:2a:52:63:d9:f5:4e:78:44: ff:98:b1:b5:a1:0e:ec:ea:a9:94:36:6b:5d:ae:13: e9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:6B:28:8F:43:B1:F7:E9:D4:96:F8:6E:D1:15:D4:77:65:1A:11:29 X509v3 Authority Key Identifier: keyid:A9:90:DA:25:CF:4E:01:BC:EB:7E:C7:5C:17:86:0F:B9:47:BE:09:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/qZDaJc9OAbzrfsdcF4YPuUe-CSo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZDaJc9OAbzrfsdcF4YPuUe-CSo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C52/0E5DBFB4C4BC11ED88403A48C4F9AE02/A40C03B0D3B511EDA2A9DD7BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.34.5.0/24 Signature Algorithm: sha256WithRSAEncryption bd:0a:96:7c:60:aa:a0:19:f3:8f:5d:fc:1f:88:76:59:2f:b6: 72:54:c1:22:7f:1a:2e:9a:95:68:3e:5d:54:a9:71:df:ca:5b: a5:2f:07:c7:39:e8:d7:90:17:9c:09:c9:cf:2f:e8:6f:b1:68: d4:d7:d2:05:7a:43:95:11:83:8b:2d:d5:bd:9e:57:ba:bb:34: a6:42:f8:3a:44:61:b6:e2:56:71:21:2e:a3:93:7d:3c:0a:e8: 25:28:8d:8f:83:65:b7:61:49:3c:1d:9d:dc:6c:99:57:50:e1: 8b:40:20:18:a7:82:48:e7:66:0f:b8:c3:ad:6b:e2:1b:f7:7d: ca:85:14:90:13:f2:37:84:c7:3c:aa:06:7e:5b:84:91:f9:cc: d0:13:90:73:83:c8:fe:7a:0b:65:af:55:17:94:f3:6e:91:4c: 56:ef:f9:f1:d9:57:c6:06:06:ae:34:63:cf:1d:6e:ec:17:dd: d0:e9:b3:24:d2:ae:5c:43:f8:f5:b9:05:3a:64:ac:21:cc:06: 20:aa:f0:17:eb:97:59:57:e8:31:23:8c:cd:c6:3b:6b:00:4d: 0b:91:01:3b:6d:49:85:e0:23:ea:8d:b8:93:a1:05:af:2a:89: be:5b:9f:2e:df:85:f9:5d:d9:1a:05:36:7a:af:67:49:0d:d4: 02:1e:ac:62 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAXUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDNTIxMTAvBgNVBAUTKEE5OTBEQTI1Q0Y0RTAxQkNFQjdFQzc1QzE3ODYwRkI5 NDdCRTA5MkEwHhcNMjUwMzA1MDQxOTQ1WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3ZDBlMC00ZTRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuncsk6jpxJjDYOoj7fFUOogKNmEg2lZMZ94wa+rgRrDZsXP4Yz7bcqqQWiwu u9rsSO/NY37UplyKZQrvcVsNPtwGLazuCvsK1R1KWF2+Q+L7TfXCYQX4FZRHOteg JWVvMVQs2PmFF6Co+ZCoiKSGyDG/rBHYDMtFZxfH8aUlLsEQcqoVXKaOOFuj2CKj OHDDYfO26USND8Cl8kJBoXJ6qj09DfQgJYIHldPgWrf/GUDaNY8K7JAmOlvI3exW I1msxPqRHFHlKmuspWDKdf2WnGnPet+LMwnXeQcbprVtWT8MqrD8dkVoKlJj2fVO eET/mLG1oQ7s6qmUNmtdrhPpzQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLtrKI9D sffp1Jb4btEV1HdlGhEpMB8GA1UdIwQYMBaAFKmQ2iXPTgG8637HXBeGD7lHvgkq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUM1Mi8wRTVEQkZCNEM0 QkMxMUVEODg0MDNBNDhDNEY5QUUwMi9xWkRhSmM5T0FienJmc2RjRjRZUHVVZS1D U28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FaRGFKYzlPQWJ6cmZzZGNGNFlQdVVlLUNTby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTFDNTIvMEU1REJGQjRDNEJDMTFFRDg4NDAzQTQ4QzRGOUFFMDIvQTQwQzAzQjBE M0I1MTFFREEyQTlERDdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLIgUwDQYJKoZIhvcNAQELBQADggEBAL0KlnxgqqAZ849d /B+IdlkvtnJUwSJ/Gi6alWg+XVSpcd/KW6UvB8c56NeQF5wJyc8v6G+xaNTX0gV6 Q5URg4st1b2eV7q7NKZC+DpEYbbiVnEhLqOTfTwK6CUojY+DZbdhSTwdndxsmVdQ 4YtAIBingkjnZg+4w61r4hv3fcqFFJAT8jeExzyqBn5bhJH5zNATkHODyP56C2Wv VReU826RTFbv+fHZV8YGBq40Y88dbuwX3dDpsyTSrlxD+PW5BTpkrCHMBiCq8Bfr l1lX6DEjjM3GO2sATQuRATttSYXgI+qNuJOhBa8qib5bny7fhfld2RoFNnqvZ0kN 1AIerGI= -----END CERTIFICATE-----Generated at Sun Apr 6 18:30:27 2025 by rpki-client