$ rpki-client -vvf rpki.apnic.net/member_repository/A91B1FA8/DF470902AFD911E8B2ED4C7FC4F9AE02/7677A43AF8C511EBA498E771C4F9AE02.roa File: 7677A43AF8C511EBA498E771C4F9AE02.roa (raw, json) Hash identifier: 4U+E+SOSNCeOPAvIwzXbeqTBl70zy1co24nPCsNKCHs= Subject key identifier: B3:5E:4E:0B:70:BF:19:85:1D:65:DB:92:03:C3:FB:FA:D8:7B:58:54 Certificate issuer: /CN=A91B1FA8/serialNumber=0DEEED1362143C362F24F97C67C8E4ECE2C7A561 Certificate serial: 130A Authority key identifier: 0D:EE:ED:13:62:14:3C:36:2F:24:F9:7C:67:C8:E4:EC:E2:C7:A5:61 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/De7tE2IUPDYvJPl8Z8jk7OLHpWE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B1FA8/DF470902AFD911E8B2ED4C7FC4F9AE02/7677A43AF8C511EBA498E771C4F9AE02.roa Signing time: Tue 04 Mar 2025 17:44:56 +0000 ROA not before: Tue 04 Mar 2025 17:44:56 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 55002 IP address blocks: 159.196.220.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B1FA8/DF470902AFD911E8B2ED4C7FC4F9AE02/De7tE2IUPDYvJPl8Z8jk7OLHpWE.crl rsync://rpki.apnic.net/member_repository/A91B1FA8/DF470902AFD911E8B2ED4C7FC4F9AE02/De7tE2IUPDYvJPl8Z8jk7OLHpWE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/De7tE2IUPDYvJPl8Z8jk7OLHpWE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 17:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4874 (0x130a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B1FA8 Validity Not Before: Mar 4 17:44:56 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67c73c18-1b03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cb:39:2c:b8:f0:3e:aa:77:1c:01:ec:7a:0a: 71:08:0a:37:7f:a6:b8:eb:86:bf:39:7d:5f:e6:d8: 16:ad:02:e6:5f:7e:c9:88:38:80:c1:8c:bb:78:99: 9e:5e:e7:dc:cc:0e:dd:4c:a4:1a:cb:5a:e6:fd:6f: 59:f2:00:ff:59:f0:2d:8b:30:0b:ac:76:c9:d4:c7: 28:85:1a:fd:bd:cf:c7:41:84:98:6f:37:a7:b9:21: da:97:2c:28:9e:03:b9:c5:b6:58:de:31:67:d5:74: db:88:ad:00:90:de:c4:8a:12:52:cc:15:9c:93:0e: 05:d1:08:1e:4e:40:08:71:a9:54:aa:12:7a:16:97: 7a:8b:45:9f:24:50:00:e0:e2:5a:90:8a:e6:00:92: af:db:5f:7e:d5:24:cf:8e:a8:64:1d:53:30:28:d4: 2d:bd:29:c5:a3:01:a9:a6:7f:dc:42:f5:b0:d2:68: 52:8d:ba:2e:82:62:41:97:68:2c:82:a6:cd:50:45: ed:aa:f6:2e:20:9b:1b:6a:b0:9b:af:ee:0f:bf:99: 16:9d:38:f4:21:9c:7f:11:28:da:48:6a:ed:17:e3: 98:71:5f:3e:23:0b:75:c3:09:44:75:87:02:bc:ce: cd:de:e6:99:94:c1:9d:05:0f:41:9f:92:ed:4b:bf: 4f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:5E:4E:0B:70:BF:19:85:1D:65:DB:92:03:C3:FB:FA:D8:7B:58:54 X509v3 Authority Key Identifier: keyid:0D:EE:ED:13:62:14:3C:36:2F:24:F9:7C:67:C8:E4:EC:E2:C7:A5:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/DF470902AFD911E8B2ED4C7FC4F9AE02/De7tE2IUPDYvJPl8Z8jk7OLHpWE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/De7tE2IUPDYvJPl8Z8jk7OLHpWE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B1FA8/DF470902AFD911E8B2ED4C7FC4F9AE02/7677A43AF8C511EBA498E771C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 159.196.220.0/22 Signature Algorithm: sha256WithRSAEncryption 61:1c:25:d1:fa:fc:ad:fc:48:48:35:27:1b:55:b6:ff:66:03: bf:ac:bc:8c:1e:0a:95:13:df:b0:ba:b3:91:85:de:ff:da:95: e3:09:71:1a:ff:9f:fd:3e:8c:38:60:51:6d:e9:2d:7f:0f:61: 7d:fb:8c:4f:5f:de:32:64:0c:8a:0d:6f:c3:86:21:15:02:4e: 91:3a:0e:53:ab:57:b8:d4:05:2b:ba:7f:31:86:74:84:5e:ec: 80:1a:1a:7e:48:bd:16:74:49:eb:20:c8:7c:9c:a9:04:c4:93: d3:e2:d2:18:d8:d4:f9:0a:bd:0d:fa:3b:9d:9b:63:bc:c5:a5: 47:14:de:bd:2b:d7:98:7d:0c:78:09:51:b3:bf:81:a9:45:88: a8:98:91:5f:4e:1f:13:93:2d:1d:65:95:0d:21:9e:88:db:01: 02:b9:14:7e:8e:c9:5a:89:e6:97:e0:18:7b:f7:8a:79:71:c0: 53:25:52:63:b4:21:94:f3:38:bb:88:1d:48:e6:45:8c:39:23: ad:e8:02:20:33:85:74:da:21:97:17:df:cf:92:bc:b9:02:d3: 95:96:74:de:6b:ba:b7:34:b7:d2:41:44:88:61:e9:72:70:2b: d2:49:58:6a:18:55:62:85:b3:35:d0:d8:e2:45:8d:ea:25:bd: e1:2c:45:bb -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjFGQTgxMTAvBgNVBAUTKDBERUVFRDEzNjIxNDNDMzYyRjI0Rjk3QzY3QzhFNEVD RTJDN0E1NjEwHhcNMjUwMzA0MTc0NDU2WhcNMjYwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2M3M2MxOC0xYjAzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu8s5LLjwPqp3HAHsegpxCAo3f6a464a/OX1f5tgWrQLmX37JiDiAwYy7eJme XufczA7dTKQay1rm/W9Z8gD/WfAtizALrHbJ1McohRr9vc/HQYSYbzenuSHalywo ngO5xbZY3jFn1XTbiK0AkN7EihJSzBWckw4F0QgeTkAIcalUqhJ6Fpd6i0WfJFAA 4OJakIrmAJKv219+1STPjqhkHVMwKNQtvSnFowGppn/cQvWw0mhSjbougmJBl2gs gqbNUEXtqvYuIJsbarCbr+4Pv5kWnTj0IZx/ESjaSGrtF+OYcV8+Iwt1wwlEdYcC vM7N3uaZlMGdBQ9Bn5LtS79PdwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLNeTgtw vxmFHWXbkgPD+/rYe1hUMB8GA1UdIwQYMBaAFA3u7RNiFDw2LyT5fGfI5Ozix6Vh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMUZBOC9ERjQ3MDkwMkFG RDkxMUU4QjJFRDRDN0ZDNEY5QUUwMi9EZTd0RTJJVVBEWXZKUGw4WjhqazdPTEhw V0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0RlN3RFMklVUERZdkpQbDhaOGprN09MSHBXRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjFGQTgvREY0NzA5MDJBRkQ5MTFFOEIyRUQ0QzdGQzRGOUFFMDIvNzY3N0E0M0FG OEM1MTFFQkE0OThFNzcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAKfxNwwDQYJKoZIhvcNAQELBQADggEBAGEcJdH6/K38SEg1 JxtVtv9mA7+svIweCpUT37C6s5GF3v/aleMJcRr/n/0+jDhgUW3pLX8PYX37jE9f 3jJkDIoNb8OGIRUCTpE6DlOrV7jUBSu6fzGGdIRe7IAaGn5IvRZ0SesgyHycqQTE k9Pi0hjY1PkKvQ36O52bY7zFpUcU3r0r15h9DHgJUbO/galFiKiYkV9OHxOTLR1l lQ0hnojbAQK5FH6OyVqJ5pfgGHv3inlxwFMlUmO0IZTzOLuIHUjmRYw5I63oAiAz hXTaIZcX38+SvLkC05WWdN5rurc0t9JBRIhh6XJwK9JJWGoYVWKFszXQ2OJFjeol veEsRbs= -----END CERTIFICATE-----Generated at Sun Apr 6 02:22:59 2025 by rpki-client