$ rpki-client -vvf rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9E40D11CC9EC11EE9644540FC4F9AE02.roa File: 9E40D11CC9EC11EE9644540FC4F9AE02.roa (raw, json) Hash identifier: hR3HemTX8sPR//njNhfSediG0DqzFMWVKhRmgOL4nRY= Subject key identifier: 5D:E0:40:A8:43:83:4E:FD:49:17:B1:F5:28:36:4E:5C:CE:96:AD:4A Certificate issuer: /CN=A91A55C9/serialNumber=EC678DE0D7BCF839D998A0FCE5C9EB75FFC8673D Certificate serial: CC Authority key identifier: EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9E40D11CC9EC11EE9644540FC4F9AE02.roa Signing time: Mon 03 Mar 2025 07:29:25 +0000 ROA not before: Mon 03 Mar 2025 07:29:25 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 59383 IP address blocks: 143.119.96.0/20 maxlen: 20 143.119.112.0/24 maxlen: 24 143.119.208.0/20 maxlen: 20 143.119.210.0/24 maxlen: 24 143.119.211.0/24 maxlen: 24 143.119.223.0/24 maxlen: 24 143.119.224.0/20 maxlen: 20 143.119.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 16 Apr 2025 04:28:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 204 (0xcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A55C9 Validity Not Before: Mar 3 07:29:25 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c55a55-315d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:20:ae:00:9a:6f:bc:52:dc:91:d7:7d:59:ab: b2:0a:7d:71:93:78:c9:40:3c:06:a5:81:cc:1d:31: 1a:38:bf:76:f8:e7:75:19:c9:34:1b:ae:68:ba:b0: 6f:8c:31:91:37:99:fd:70:32:5a:75:bc:bc:dc:f7: a2:76:f5:47:58:24:8b:ab:40:c7:b1:83:c7:c1:f5: 82:b7:93:bc:97:a6:32:4b:63:b0:ef:86:50:02:11: c7:f6:a6:c4:24:19:e6:46:a7:68:df:10:16:f8:c5: a0:a4:e1:10:89:49:69:02:12:65:a2:53:bf:74:8d: 76:51:74:75:9d:9b:5f:d6:a5:a4:7d:3f:59:7c:ae: 04:83:e5:b5:93:7a:37:35:1e:89:25:5f:ba:7b:99: 60:2d:01:57:e1:c0:f0:2a:5d:c9:f1:4f:2d:3b:f4: 30:f3:af:84:b3:e1:06:81:a8:32:2b:fc:c4:2d:e8: 19:8f:6c:a3:83:cd:8e:d0:51:28:e8:2f:17:4f:a0: 6b:bb:b8:55:09:86:cc:67:14:27:0d:c8:9e:a5:40: 11:a1:f2:a5:8f:7a:9d:83:6e:c5:0b:05:0b:53:26: 03:c8:68:fc:12:55:18:e9:b9:93:12:f0:67:1e:56: e8:52:65:bb:6f:26:7f:70:1f:a0:84:61:6c:3a:10: 45:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:E0:40:A8:43:83:4E:FD:49:17:B1:F5:28:36:4E:5C:CE:96:AD:4A X509v3 Authority Key Identifier: keyid:EC:67:8D:E0:D7:BC:F8:39:D9:98:A0:FC:E5:C9:EB:75:FF:C8:67:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/7GeN4Ne8-DnZmKD85cnrdf_IZz0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/7GeN4Ne8-DnZmKD85cnrdf_IZz0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A55C9/7E2F1268C9EB11EE8B857B0CC4F9AE02/9E40D11CC9EC11EE9644540FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 143.119.96.0-143.119.112.255 143.119.208.0-143.119.239.255 Signature Algorithm: sha256WithRSAEncryption 86:50:b1:ff:31:35:77:94:a7:e6:9a:5f:bc:90:e6:3a:7b:da: ce:6d:ec:7e:3a:ef:d1:75:f8:f1:bc:3b:36:83:2f:1d:0c:4c: 90:43:09:72:97:8a:f5:37:ff:8a:04:95:cd:06:57:ef:b2:6b: fb:1c:35:5d:36:fc:da:8c:9a:65:bd:63:88:6a:b0:5f:6c:af: f9:04:6f:03:06:a2:31:d3:3f:30:cd:b3:3b:a1:ac:ed:e3:38: fe:f9:73:1e:8e:9c:14:72:b5:1a:30:11:07:51:78:f9:ce:57: 4c:43:12:b2:a0:7a:45:ae:2a:67:ce:50:76:c8:fc:f0:f6:5d: b8:06:87:7c:7b:1e:2a:11:2d:03:b3:c0:01:dc:e4:42:6a:19: c6:1d:37:2f:81:be:6a:b5:37:03:78:b4:87:97:2d:af:07:56: 1b:80:69:2c:ec:52:4c:34:07:e0:73:7a:5d:f3:13:38:1b:19: 58:6d:55:08:c3:27:2b:1e:a3:b8:c6:aa:45:8b:9a:4c:b2:11: 4f:8b:80:f4:30:e2:ff:3e:b4:32:8b:d5:d1:82:8f:00:fa:44: cf:d5:97:59:a2:d2:c0:12:e6:7b:7d:43:f2:55:c9:56:84:af: 5f:bd:65:92:ea:06:dd:08:72:01:f8:e5:05:6e:6a:d1:0e:10: 9d:1d:c0:59 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICAMwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU1QzkxMTAvBgNVBAUTKEVDNjc4REUwRDdCQ0Y4MzlEOTk4QTBGQ0U1QzlFQjc1 RkZDODY3M0QwHhcNMjUwMzAzMDcyOTI1WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2M1NWE1NS0zMTVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCCuAJpvvFLckdd9WauyCn1xk3jJQDwGpYHMHTEaOL92+Od1Gck0G65ourBv jDGRN5n9cDJadby83PeidvVHWCSLq0DHsYPHwfWCt5O8l6YyS2Ow74ZQAhHH9qbE JBnmRqdo3xAW+MWgpOEQiUlpAhJlolO/dI12UXR1nZtf1qWkfT9ZfK4Eg+W1k3o3 NR6JJV+6e5lgLQFX4cDwKl3J8U8tO/Qw86+Es+EGgagyK/zELegZj2yjg82O0FEo 6C8XT6Bru7hVCYbMZxQnDciepUARofKlj3qdg27FCwULUyYDyGj8ElUY6bmTEvBn HlboUmW7byZ/cB+ghGFsOhBFhQIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFF3gQKhD g079SRex9Sg2TlzOlq1KMB8GA1UdIwQYMBaAFOxnjeDXvPg52Zig/OXJ63X/yGc9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTVDOS83RTJGMTI2OEM5 RUIxMUVFOEI4NTdCMENDNEY5QUUwMi83R2VONE5lOC1EblptS0Q4NWNucmRmX0la ejAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzdHZU40TmU4LURuWm1LRDg1Y25yZGZfSVp6MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU1QzkvN0UyRjEyNjhDOUVCMTFFRThCODU3QjBDQzRGOUFFMDIvOUU0MEQxMUND OUVDMTFFRTk2NDQ1NDBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMCIEAgABMBwwDAMEBY93YAMEAI93cDAMAwQEj3fQAwQEj3fgMA0GCSqGSIb3 DQEBCwUAA4IBAQCGULH/MTV3lKfmml+8kOY6e9rObex+Ou/RdfjxvDs2gy8dDEyQ Qwlyl4r1N/+KBJXNBlfvsmv7HDVdNvzajJplvWOIarBfbK/5BG8DBqIx0z8wzbM7 oazt4zj++XMejpwUcrUaMBEHUXj5zldMQxKyoHpFripnzlB2yPzw9l24Bod8ex4q ES0Ds8AB3ORCahnGHTcvgb5qtTcDeLSHly2vB1YbgGks7FJMNAfgc3pd8xM4GxlY bVUIwycrHqO4xqpFi5pMshFPi4D0MOL/PrQyi9XRgo8A+kTP1ZdZotLAEuZ7fUPy VclWhK9fvWWS6gbdCHIB+OUFbmrRDhCdHcBZ -----END CERTIFICATE-----Generated at Fri Apr 11 02:49:00 2025 by rpki-client