$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4C26EE1EBC4611EFB5EFA548C4F9AE02.roa File: 4C26EE1EBC4611EFB5EFA548C4F9AE02.roa (raw, json) Hash identifier: TzOoCb68FKk/DGC7dWndvtdvDfnyZYC64vokaZSjg+Y= Subject key identifier: 26:0C:C2:C6:BA:1E:AE:EA:A1:FE:DE:E6:4C:8D:49:79:FD:54:51:7F Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 492D Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4C26EE1EBC4611EFB5EFA548C4F9AE02.roa Signing time: Mon 06 Jan 2025 09:45:23 +0000 ROA not before: Mon 06 Jan 2025 09:45:23 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 135983 IP address blocks: 36.50.26.0/24 maxlen: 24 36.50.27.0/24 maxlen: 24 103.127.198.0/24 maxlen: 24 103.127.199.0/24 maxlen: 24 103.163.24.0/23 maxlen: 24 103.167.86.0/23 maxlen: 24 103.241.42.0/23 maxlen: 24 103.245.238.0/23 maxlen: 23 2001:df4:66c0::/48 maxlen: 48 2401:7c20::/48 maxlen: 48 2401:91a0::/48 maxlen: 48 2405:28c0::/48 maxlen: 48 2407:5c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:33:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18733 (0x492d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A Validity Not Before: Jan 6 09:45:23 2025 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=677ba632-c4e6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:26:d9:da:32:bd:7e:9a:46:62:b4:60:b5:6b: 0c:a5:90:77:f4:e8:81:b2:a2:1e:f6:50:ee:f1:b3: c3:c1:51:cc:a9:0a:9f:24:e5:54:3d:cb:c8:50:95: 2f:f4:ab:b7:9c:02:ab:bd:3f:67:f7:49:24:fd:22: e0:86:99:37:87:ad:4a:fb:42:1c:87:72:6e:c6:3b: 7b:60:ba:c6:be:4e:04:fb:55:91:0d:ef:68:f4:0e: 61:14:cf:fa:82:2c:d7:f3:dc:85:45:c8:6b:48:0d: 48:8d:79:e3:0e:d9:b9:8d:1d:c2:c3:41:48:01:60: 81:33:66:49:dd:fc:77:06:d1:cd:e6:42:05:d9:36: fe:b6:62:e9:2c:d6:12:17:fd:20:b9:38:30:75:93: b9:35:05:29:c2:ad:87:cf:cd:e1:11:0b:d9:50:19: 19:fd:5d:5f:2d:dd:03:a5:a0:ac:50:de:aa:f9:f2: 64:78:6c:52:03:65:fc:60:4b:2d:f7:44:f6:3b:56: ed:5e:75:2c:08:5e:1c:76:74:ca:fe:1f:bd:e9:8c: 1b:64:85:ab:b0:b9:01:c1:3a:0d:73:ed:d7:9a:8c: fa:68:be:db:5b:3d:c7:8a:6e:d5:cb:c7:06:a2:8a: 0d:4a:9c:73:e3:b9:10:67:de:0f:2c:59:fe:6a:b1: b6:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:0C:C2:C6:BA:1E:AE:EA:A1:FE:DE:E6:4C:8D:49:79:FD:54:51:7F X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/4C26EE1EBC4611EFB5EFA548C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.50.26.0/23 103.127.198.0/23 103.163.24.0/23 103.167.86.0/23 103.241.42.0/23 103.245.238.0/23 IPv6: 2001:df4:66c0::/48 2401:7c20::/48 2401:91a0::/48 2405:28c0::/48 2407:5c0::/48 Signature Algorithm: sha256WithRSAEncryption 57:97:e6:47:07:3e:bb:4a:de:41:10:55:ce:99:63:10:c1:c2: f0:25:3b:c3:08:20:7c:af:04:92:44:0c:e8:5f:38:fe:5c:a2: 0d:93:aa:41:7c:d1:6e:ff:56:0d:6a:77:6e:14:42:fa:4b:99: 38:a0:f9:af:31:24:2f:cc:3b:85:a3:30:9f:21:bc:91:0e:65: 12:63:df:4d:0d:a1:15:2b:92:c9:0d:bb:6d:25:bc:90:50:ca: 55:4a:9a:33:07:d5:4a:f8:91:77:86:0a:ca:aa:99:fc:29:d5: 05:53:64:d3:6e:2c:2c:fa:ae:34:17:9b:17:c4:93:10:01:ab: 06:10:46:7f:9b:83:70:8a:1a:5a:76:7b:3a:3e:da:ca:10:9b: d4:55:42:34:6f:df:03:70:31:67:6f:b0:b4:65:ba:8e:b8:64: b8:53:18:0c:b5:d4:23:ab:6e:56:7d:a4:93:8e:bd:6c:80:3f: 87:bd:cb:e0:2b:18:64:88:d9:15:29:7b:d3:df:54:b1:a2:33: aa:da:67:f8:c3:50:c1:a4:9f:33:73:0b:82:d6:9b:62:df:1f: 02:24:45:59:fd:19:fa:93:63:e3:fc:99:b1:4c:af:b7:c1:1b: 34:ba:e4:30:f4:cd:96:4a:a6:ad:2f:51:fc:77:f4:b3:50:74: bc:d1:d2:63 -----BEGIN CERTIFICATE----- MIIFxDCCBKygAwIBAgICSS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjUwMTA2MDk0NTIzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzdiYTYzMi1jNGU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtibZ2jK9fppGYrRgtWsMpZB39OiBsqIe9lDu8bPDwVHMqQqfJOVUPcvIUJUv 9Ku3nAKrvT9n90kk/SLghpk3h61K+0Ich3Juxjt7YLrGvk4E+1WRDe9o9A5hFM/6 gizX89yFRchrSA1IjXnjDtm5jR3Cw0FIAWCBM2ZJ3fx3BtHN5kIF2Tb+tmLpLNYS F/0guTgwdZO5NQUpwq2Hz83hEQvZUBkZ/V1fLd0DpaCsUN6q+fJkeGxSA2X8YEst 90T2O1btXnUsCF4cdnTK/h+96YwbZIWrsLkBwToNc+3Xmoz6aL7bWz3Him7Vy8cG oooNSpxz47kQZ94PLFn+arG22QIDAQABo4IC6DCCAuQwHQYDVR0OBBYEFCYMwsa6 Hq7qof7e5kyNSXn9VFF/MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvNEMyNkVFMUVC QzQ2MTFFRkI1RUZBNTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwcgYIKwYBBQUHAQcBAf8E YzBhMCoEAgABMCQDBAEkMhoDBAFnf8YDBAFnoxgDBAFnp1YDBAFn8SoDBAFn9e4w MwQCAAIwLQMHACABDfRmwAMHACQBfCAAAAMHACQBkaAAAAMHACQFKMAAAAMHACQH BcAAADANBgkqhkiG9w0BAQsFAAOCAQEAV5fmRwc+u0reQRBVzpljEMHC8CU7wwgg fK8EkkQM6F84/lyiDZOqQXzRbv9WDWp3bhRC+kuZOKD5rzEkL8w7haMwnyG8kQ5l EmPfTQ2hFSuSyQ27bSW8kFDKVUqaMwfVSviRd4YKyqqZ/CnVBVNk024sLPquNBeb F8STEAGrBhBGf5uDcIoaWnZ7Oj7ayhCb1FVCNG/fA3AxZ2+wtGW6jrhkuFMYDLXU I6tuVn2kk469bIA/h73L4CsYZIjZFSl7099UsaIzqtpn+MNQwaSfM3MLgtabYt8f AiRFWf0Z+pNj4/yZsUyvt8EbNLrkMPTNlkqmrS9R/Hf0s1B0vNHSYw== -----END CERTIFICATE-----Generated at Sat Apr 5 14:11:21 2025 by rpki-client