$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/7CF84F084B9111EBBA09CA72C4F9AE02.roa File: 7CF84F084B9111EBBA09CA72C4F9AE02.roa (raw, json) Hash identifier: HxA8u7nmZWUr6BPYIZAwMw8J3pQQtwxfZZvWeTi7tWI= Subject key identifier: BB:07:14:04:76:55:3B:4A:84:BA:69:C5:5F:8E:F9:18:2E:D6:C9:42 Certificate issuer: /CN=A91AB20B/serialNumber=5EC1A6AD76A3ABFDC1E1329EB2637C01864B4808 Certificate serial: 0749 Authority key identifier: 5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/7CF84F084B9111EBBA09CA72C4F9AE02.roa Signing time: Wed 04 Sep 2024 22:41:23 +0000 ROA not before: Wed 04 Sep 2024 22:41:23 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 133495 IP address blocks: 110.93.193.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:40:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1865 (0x749) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB20B Validity Not Before: Sep 4 22:41:23 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d8e212-7a80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:61:a8:0c:7a:68:e3:b7:e3:53:d4:69:67:b0: d9:1a:59:9f:b4:32:89:2a:fe:a8:d2:c9:aa:11:50: e5:a1:01:c2:dd:5f:26:4a:93:a6:5f:0a:83:a2:5d: 29:d6:17:a8:48:d2:41:01:fa:26:29:06:37:74:9e: 66:f9:0f:02:67:6b:8a:d0:aa:cc:a8:e5:4c:41:72: e5:b3:32:7f:d6:ea:27:3c:2a:e9:82:bb:ce:4a:b3: e4:5c:dd:dd:7f:21:1e:d8:70:63:a1:5a:c4:c3:01: 26:34:b7:77:ab:70:4c:83:ec:55:50:22:19:80:8e: d7:98:20:2b:28:3e:53:17:1b:f2:8c:04:5f:e7:0e: ef:34:f2:f1:f5:d5:58:75:8d:84:b1:d4:c0:c1:47: 78:32:4b:1f:01:41:f2:36:55:07:88:30:20:e4:36: 5b:a0:64:d4:80:0e:cd:e7:5a:29:7c:22:1a:70:fd: ed:1c:91:f0:ed:c3:48:c5:30:3d:e7:cf:79:18:1c: df:5d:a1:ca:06:6b:92:29:74:7e:ea:3e:ec:3b:01: da:cb:13:45:db:18:29:c0:d4:76:cd:ed:36:7e:7a: d9:01:e8:5c:d2:6c:f2:4a:dc:dd:3a:ea:7e:d2:90: bf:bf:85:02:bb:4a:8f:47:db:47:71:0f:a9:c5:d0: cc:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:07:14:04:76:55:3B:4A:84:BA:69:C5:5F:8E:F9:18:2E:D6:C9:42 X509v3 Authority Key Identifier: keyid:5E:C1:A6:AD:76:A3:AB:FD:C1:E1:32:9E:B2:63:7C:01:86:4B:48:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/XsGmrXajq_3B4TKesmN8AYZLSAg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XsGmrXajq_3B4TKesmN8AYZLSAg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB20B/BA71B648120311EBBAA19414C4F9AE02/7CF84F084B9111EBBA09CA72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.93.193.0/24 Signature Algorithm: sha256WithRSAEncryption 45:ad:41:41:05:4a:fc:8c:13:e8:db:c6:13:16:42:b3:4f:fb: 5e:67:ce:2a:89:42:10:6a:93:87:91:5b:49:92:05:99:93:01: bd:48:e4:1f:b7:e1:f3:bf:b8:a7:c7:a9:65:15:9a:b3:73:be: cd:9a:74:e4:f1:7f:d2:69:95:0e:84:f4:22:73:96:7d:73:36: ad:35:90:9c:02:29:b0:3d:c8:09:4e:bc:be:01:7e:20:60:6d: 6f:ed:c3:49:2f:a1:9c:30:16:fe:de:ef:67:f4:ec:e0:c8:bb: 92:b9:30:e1:ed:c9:45:e2:0b:7c:08:7c:5e:22:64:b5:17:fd: 61:7b:5c:5f:a0:35:04:75:53:32:7f:c3:2f:e3:08:33:36:29: d6:61:a5:54:5e:f3:11:61:06:b2:78:a6:76:ad:27:90:74:4b: 98:df:6f:6c:d2:98:43:47:d1:cc:dd:22:6d:ab:49:58:b1:e6: df:e8:43:bf:c5:2e:10:4f:30:9d:56:a3:8b:8c:3c:41:24:06: f7:bb:09:c6:22:81:aa:cf:ee:e0:54:45:2d:25:32:39:f2:b3: 4e:e8:0a:97:46:09:bf:e1:cc:68:5a:23:98:d7:12:19:e4:60: 1d:1d:ea:60:e1:27:1b:05:39:3d:83:77:20:c7:cf:2d:d6:93: 3e:fd:80:30 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB0kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIyMEIxMTAvBgNVBAUTKDVFQzFBNkFENzZBM0FCRkRDMUUxMzI5RUIyNjM3QzAx ODY0QjQ4MDgwHhcNMjQwOTA0MjI0MTIzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ4ZTIxMi03YTgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGGoDHpo47fjU9RpZ7DZGlmftDKJKv6o0smqEVDloQHC3V8mSpOmXwqDol0p 1heoSNJBAfomKQY3dJ5m+Q8CZ2uK0KrMqOVMQXLlszJ/1uonPCrpgrvOSrPkXN3d fyEe2HBjoVrEwwEmNLd3q3BMg+xVUCIZgI7XmCArKD5TFxvyjARf5w7vNPLx9dVY dY2EsdTAwUd4MksfAUHyNlUHiDAg5DZboGTUgA7N51opfCIacP3tHJHw7cNIxTA9 5895GBzfXaHKBmuSKXR+6j7sOwHayxNF2xgpwNR2ze02fnrZAehc0mzyStzdOup+ 0pC/v4UCu0qPR9tHcQ+pxdDM0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLsHFAR2 VTtKhLppxV+O+Rgu1slCMB8GA1UdIwQYMBaAFF7Bpq12o6v9weEynrJjfAGGS0gI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjIwQi9CQTcxQjY0ODEy MDMxMUVCQkFBMTk0MTRDNEY5QUUwMi9Yc0dtclhhanFfM0I0VEtlc21OOEFZWkxT QWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hzR21yWGFqcV8zQjRUS2VzbU44QVlaTFNBZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUIyMEIvQkE3MUI2NDgxMjAzMTFFQkJBQTE5NDE0QzRGOUFFMDIvN0NGODRGMDg0 QjkxMTFFQkJBMDlDQTcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABuXcEwDQYJKoZIhvcNAQELBQADggEBAEWtQUEFSvyME+jb xhMWQrNP+15nziqJQhBqk4eRW0mSBZmTAb1I5B+34fO/uKfHqWUVmrNzvs2adOTx f9JplQ6E9CJzln1zNq01kJwCKbA9yAlOvL4BfiBgbW/tw0kvoZwwFv7e72f07ODI u5K5MOHtyUXiC3wIfF4iZLUX/WF7XF+gNQR1UzJ/wy/jCDM2KdZhpVRe8xFhBrJ4 pnatJ5B0S5jfb2zSmENH0czdIm2rSVix5t/oQ7/FLhBPMJ1Wo4uMPEEkBve7CcYi garP7uBURS0lMjnys07oCpdGCb/hzGhaI5jXEhnkYB0d6mDhJxsFOT2DdyDHzy3W kz79gDA= -----END CERTIFICATE-----Generated at Sun Apr 6 06:39:43 2025 by rpki-client