$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/5420A28C7F5211ED8A16EF81C4F9AE02.roa File: 5420A28C7F5211ED8A16EF81C4F9AE02.roa (raw, json) Hash identifier: 5EKiWHDPeMiKNhe7uJ6GnZoz2bb2Ob3eC5qrY4BOvLk= Subject key identifier: 1D:95:7A:58:C0:2D:2F:07:17:8B:A3:5F:25:B7:95:14:32:CE:59:32 Certificate issuer: /CN=A91A3E3F/serialNumber=943D3E10B8BBE138B47734554B69053110D45BE3 Certificate serial: 018E Authority key identifier: 94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/5420A28C7F5211ED8A16EF81C4F9AE02.roa Signing time: Sun 15 Dec 2024 02:25:49 +0000 ROA not before: Sun 15 Dec 2024 02:25:49 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 45139 IP address blocks: 167.220.226.0/23 maxlen: 23 167.220.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:36:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 398 (0x18e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3E3F Validity Not Before: Dec 15 02:25:49 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=675e3e2c-7027 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:28:79:8f:d6:d2:bb:32:5e:71:8a:aa:d4:54: 3c:28:71:2b:23:aa:54:35:fa:e1:05:a9:da:46:3e: cc:64:5c:16:ff:d1:a7:d5:24:84:1a:7b:ac:b4:e9: 5c:24:73:1a:56:6a:52:dc:65:0e:79:ea:0a:50:6f: f1:f4:e7:b0:9f:39:25:e8:a3:5d:9c:ef:51:cc:a2: c6:a0:b9:3f:57:b8:21:d7:f0:5d:1e:41:f5:61:d8: 77:8c:9a:73:18:75:4b:80:3d:27:af:8a:94:15:2d: a9:43:7a:43:24:d7:5f:03:4d:f4:ff:60:30:b2:4a: ed:7f:bb:55:59:58:ed:bf:78:18:15:7d:90:ad:05: 96:91:30:6f:9f:44:e0:47:21:f2:af:23:21:e9:c3: 45:ec:72:2a:67:b5:bd:32:59:7d:e3:68:ed:c2:cc: 4a:1d:55:ab:2a:be:9b:5a:17:56:05:3f:65:52:39: f8:fd:fb:30:f4:1b:34:ca:1a:a5:fb:3c:9b:7e:82: 2f:b2:ac:c5:3f:fc:fd:ab:33:a6:63:38:2d:1c:ed: 38:cc:a0:3d:41:65:b0:c8:73:c1:3b:c2:74:9a:bb: 08:a0:16:11:2a:e5:ba:6f:db:7c:83:5a:db:c3:47: ed:75:6a:ae:13:3c:32:a8:09:0a:0c:6c:7a:b1:3d: c1:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:95:7A:58:C0:2D:2F:07:17:8B:A3:5F:25:B7:95:14:32:CE:59:32 X509v3 Authority Key Identifier: keyid:94:3D:3E:10:B8:BB:E1:38:B4:77:34:55:4B:69:05:31:10:D4:5B:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/lD0-ELi74Ti0dzRVS2kFMRDUW-M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/lD0-ELi74Ti0dzRVS2kFMRDUW-M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3E3F/305EB8767CDB11EDAB844C19C4F9AE02/5420A28C7F5211ED8A16EF81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.220.226.0/23 Signature Algorithm: sha256WithRSAEncryption 04:c1:92:db:a8:7f:21:50:08:b7:ae:ec:60:5d:b0:25:17:ff: 11:25:ec:dc:42:f5:17:25:5f:c5:e9:0b:8c:56:7d:13:32:c4: 24:bc:dd:04:b9:77:71:ee:14:47:91:e5:e0:41:a9:e6:48:6e: 5d:33:5e:ba:32:1c:bc:d4:74:b9:51:47:33:62:a5:30:ec:52: d0:8c:e5:1c:97:6b:f7:8c:c5:d4:91:c7:ab:6c:ef:08:49:6b: 54:f9:0d:52:cd:cc:3c:49:4c:18:cd:8c:00:e1:57:58:6c:84: 9c:60:f8:21:f0:eb:56:f9:ea:72:c4:18:f3:20:01:5f:36:76: 94:61:a9:96:cf:ee:61:af:c9:21:ac:d0:69:b6:1f:c4:31:df: ff:e8:a6:71:b3:30:fd:8d:9f:f2:b6:0b:bf:ff:4c:70:15:be: 61:ce:d1:7f:3a:06:ba:93:f9:67:09:84:25:fb:d3:3f:59:12: 9e:51:b1:37:86:a6:c3:1c:74:b0:17:f3:00:12:80:d0:f8:00: 0e:b2:56:74:e7:b7:1e:40:b6:b7:43:d1:a7:87:23:95:75:1a: 55:6e:8b:95:09:95:ae:2c:5f:48:60:7d:73:0f:44:62:1a:db: 3c:60:60:62:e5:50:d9:cd:43:1c:7c:f5:fb:77:b5:d2:2b:10: c0:95:0d:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTNFM0YxMTAvBgNVBAUTKDk0M0QzRTEwQjhCQkUxMzhCNDc3MzQ1NTRCNjkwNTMx MTBENDVCRTMwHhcNMjQxMjE1MDIyNTQ5WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVlM2UyYy03MDI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2yh5j9bSuzJecYqq1FQ8KHErI6pUNfrhBanaRj7MZFwW/9Gn1SSEGnustOlc JHMaVmpS3GUOeeoKUG/x9Oewnzkl6KNdnO9RzKLGoLk/V7gh1/BdHkH1Ydh3jJpz GHVLgD0nr4qUFS2pQ3pDJNdfA030/2Awskrtf7tVWVjtv3gYFX2QrQWWkTBvn0Tg RyHyryMh6cNF7HIqZ7W9Mll942jtwsxKHVWrKr6bWhdWBT9lUjn4/fsw9Bs0yhql +zybfoIvsqzFP/z9qzOmYzgtHO04zKA9QWWwyHPBO8J0mrsIoBYRKuW6b9t8g1rb w0ftdWquEzwyqAkKDGx6sT3BtwIDAQABo4IClTCCApEwHQYDVR0OBBYEFB2VeljA LS8HF4ujXyW3lRQyzlkyMB8GA1UdIwQYMBaAFJQ9PhC4u+E4tHc0VUtpBTEQ1Fvj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBM0UzRi8zMDVFQjg3NjdD REIxMUVEQUI4NDRDMTlDNEY5QUUwMi9sRDAtRUxpNzRUaTBkelJWUzJrRk1SRFVX LU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2xEMC1FTGk3NFRpMGR6UlZTMmtGTVJEVVctTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTNFM0YvMzA1RUI4NzY3Q0RCMTFFREFCODQ0QzE5QzRGOUFFMDIvNTQyMEEyOEM3 RjUyMTFFRDhBMTZFRjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGn3OIwDQYJKoZIhvcNAQELBQADggEBAATBktuofyFQCLeu 7GBdsCUX/xEl7NxC9RclX8XpC4xWfRMyxCS83QS5d3HuFEeR5eBBqeZIbl0zXroy HLzUdLlRRzNipTDsUtCM5RyXa/eMxdSRx6ts7whJa1T5DVLNzDxJTBjNjADhV1hs hJxg+CHw61b56nLEGPMgAV82dpRhqZbP7mGvySGs0Gm2H8Qx3//opnGzMP2Nn/K2 C7//THAVvmHO0X86BrqT+WcJhCX70z9ZEp5RsTeGpsMcdLAX8wASgND4AA6yVnTn tx5AtrdD0aeHI5V1GlVui5UJla4sX0hgfXMPRGIa2zxgYGLlUNnNQxx89ft3tdIr EMCVDfk= -----END CERTIFICATE-----Generated at Sat Apr 5 19:24:02 2025 by rpki-client