$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/4DC27210558111EF880A8679C4F9AE02.roa File: 4DC27210558111EF880A8679C4F9AE02.roa (raw, json) Hash identifier: m1XRr2iAq+1TVgkspEslzx6eWsdA8L2B6700lAxn/d4= Subject key identifier: 6B:C1:49:04:00:A6:CB:62:94:6B:75:72:3A:F1:B4:C1:0D:8E:C2:41 Certificate issuer: /CN=A91B5D7E/serialNumber=4CAE3AEFB1AC8ABDDB99BCCEE4FA5A916D157B34 Certificate serial: 3592 Authority key identifier: 4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/4DC27210558111EF880A8679C4F9AE02.roa Signing time: Wed 18 Dec 2024 14:40:31 +0000 ROA not before: Wed 18 Dec 2024 14:40:31 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 131471 IP address blocks: 116.90.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 14:29:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13714 (0x3592) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5D7E Validity Not Before: Dec 18 14:40:31 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6762dedf-f209 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6d:4f:43:6a:2a:79:02:d8:41:6d:e5:4d:86: 65:76:f2:9e:36:ba:96:2c:70:b9:b8:54:e2:b4:7f: d9:46:e2:bf:13:9d:3b:15:5b:d4:24:53:dd:8a:a4: 08:60:86:e0:25:1c:25:04:ba:6c:4b:da:bb:23:69: 7e:76:83:99:d9:98:b9:56:4c:11:68:90:96:bb:24: ba:26:df:8f:da:31:15:5b:b6:71:9b:83:13:53:27: 9e:f3:dd:db:0a:82:3d:71:0c:31:07:f0:73:4c:fc: bf:b4:73:4b:66:98:ed:c0:2d:57:c0:3c:7e:2b:53: 76:3b:48:37:13:08:56:4a:6a:28:d7:94:4b:ec:e7: dd:1c:4f:95:7c:22:6f:0a:a7:db:00:e2:ac:c4:46: a6:8c:6c:24:0d:e3:58:ee:ef:ba:00:b7:d8:90:6a: fb:e7:e9:77:a7:23:3b:9b:50:58:30:4c:ca:78:4d: 81:3a:0c:ad:30:49:c5:28:46:e6:6b:7e:c1:0d:1a: 6d:77:8e:77:76:18:74:ac:74:d9:cc:d7:3c:92:35: 9a:41:22:0f:13:15:c4:28:72:ea:92:96:52:72:91: a9:f0:a8:d6:f1:4e:27:c4:0f:2a:20:3f:f6:d1:a6: 63:53:28:27:40:ce:fb:43:e1:a7:c8:64:83:f1:db: 6e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:C1:49:04:00:A6:CB:62:94:6B:75:72:3A:F1:B4:C1:0D:8E:C2:41 X509v3 Authority Key Identifier: keyid:4C:AE:3A:EF:B1:AC:8A:BD:DB:99:BC:CE:E4:FA:5A:91:6D:15:7B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/TK4677Gsir3bmbzO5PpakW0VezQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TK4677Gsir3bmbzO5PpakW0VezQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5D7E/ECA682341D8711E298322DE008B02CD2/4DC27210558111EF880A8679C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.90.101.0/24 Signature Algorithm: sha256WithRSAEncryption 02:84:88:a3:41:54:d2:03:43:3b:be:8b:22:27:5d:06:fd:c0: c1:ba:01:5d:08:0d:8d:2a:f8:8e:fa:6f:42:3c:9e:90:24:f2: b9:e3:c0:ce:27:12:2f:d2:21:c0:00:fe:93:72:f9:1c:99:89: e6:ac:6c:58:a3:11:71:d2:fa:83:de:da:61:53:e2:6a:aa:64: c3:b5:04:6e:1f:ec:63:0f:cf:00:32:54:70:c9:dd:df:74:69: a7:f9:8c:02:77:ba:74:50:7e:5b:e1:e6:9c:bc:63:d6:7b:fa: 1b:c7:a0:7a:26:6f:34:2d:13:35:74:76:05:62:74:7a:3b:01: 3e:60:9b:90:45:45:21:bc:40:1e:2d:2a:fd:39:79:a6:fe:20: 32:93:25:34:4e:b5:d0:df:3d:96:ed:61:91:fb:07:40:11:59: a5:6a:b5:44:b4:af:c8:e0:35:ae:d9:7e:9b:72:3c:a0:bd:3e: 24:86:93:75:62:9c:22:78:d8:16:e7:39:ec:55:2e:36:5d:eb: 10:86:18:cb:79:42:7e:ef:4e:2a:4c:6b:ec:6d:6f:fa:9a:d1: b3:87:3f:6b:4d:3a:f3:c0:f7:95:6b:db:96:2a:64:4a:e1:c4: 89:33:e7:c9:39:77:12:a0:6d:a7:23:de:17:90:bf:83:19:94: c6:9d:cb:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVEN0UxMTAvBgNVBAUTKDRDQUUzQUVGQjFBQzhBQkREQjk5QkNDRUU0RkE1QTkx NkQxNTdCMzQwHhcNMjQxMjE4MTQ0MDMxWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzYyZGVkZi1mMjA5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtW1PQ2oqeQLYQW3lTYZldvKeNrqWLHC5uFTitH/ZRuK/E507FVvUJFPdiqQI YIbgJRwlBLpsS9q7I2l+doOZ2Zi5VkwRaJCWuyS6Jt+P2jEVW7Zxm4MTUyee893b CoI9cQwxB/BzTPy/tHNLZpjtwC1XwDx+K1N2O0g3EwhWSmoo15RL7OfdHE+VfCJv CqfbAOKsxEamjGwkDeNY7u+6ALfYkGr75+l3pyM7m1BYMEzKeE2BOgytMEnFKEbm a37BDRptd453dhh0rHTZzNc8kjWaQSIPExXEKHLqkpZScpGp8KjW8U4nxA8qID/2 0aZjUygnQM77Q+GnyGSD8dtuXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGvBSQQA pstilGt1cjrxtMENjsJBMB8GA1UdIwQYMBaAFEyuOu+xrIq925m8zuT6WpFtFXs0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUQ3RS9FQ0E2ODIzNDFE ODcxMUUyOTgzMjJERTAwOEIwMkNEMi9USzQ2NzdHc2lyM2JtYnpPNVBwYWtXMFZl elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RLNDY3N0dzaXIzYm1iek81UHBha1cwVmV6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVEN0UvRUNBNjgyMzQxRDg3MTFFMjk4MzIyREUwMDhCMDJDRDIvNERDMjcyMTA1 NTgxMTFFRjg4MEE4Njc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB0WmUwDQYJKoZIhvcNAQELBQADggEBAAKEiKNBVNIDQzu+ iyInXQb9wMG6AV0IDY0q+I76b0I8npAk8rnjwM4nEi/SIcAA/pNy+RyZieasbFij EXHS+oPe2mFT4mqqZMO1BG4f7GMPzwAyVHDJ3d90aaf5jAJ3unRQflvh5py8Y9Z7 +hvHoHombzQtEzV0dgVidHo7AT5gm5BFRSG8QB4tKv05eab+IDKTJTROtdDfPZbt YZH7B0ARWaVqtUS0r8jgNa7ZfptyPKC9PiSGk3VinCJ42BbnOexVLjZd6xCGGMt5 Qn7vTipMa+xtb/qa0bOHP2tNOvPA95Vr25YqZErhxIkz58k5dxKgbacj3heQv4MZ lMady8k= -----END CERTIFICATE-----Generated at Sat Apr 5 01:40:43 2025 by rpki-client