$ rpki-client -vvf rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/870862B2222011EFACCDE81BC4F9AE02.roa File: 870862B2222011EFACCDE81BC4F9AE02.roa (raw, json) Hash identifier: iFM1hRRsTitvTXymeae3/v3L/18Q6Ng8NLFYYC8Eutc= Subject key identifier: 08:03:EA:93:FE:1B:4D:6A:4A:DB:E8:87:7C:9E:5C:1F:9E:91:BA:CA Certificate issuer: /CN=A91B7292/serialNumber=C2FC6448564EC6526B91B2FE23B4FD58342D20F4 Certificate serial: B5 Authority key identifier: C2:FC:64:48:56:4E:C6:52:6B:91:B2:FE:23:B4:FD:58:34:2D:20:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/870862B2222011EFACCDE81BC4F9AE02.roa Signing time: Wed 15 Jan 2025 04:47:23 +0000 ROA not before: Wed 15 Jan 2025 04:47:23 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 208770 IP address blocks: 123.108.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.crl rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 04:33:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 181 (0xb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B7292 Validity Not Before: Jan 15 04:47:23 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67873ddb-307f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9d:44:6c:c9:87:a7:ad:04:fa:42:b2:90:ca: 29:33:b3:62:41:cd:10:0f:e8:3d:1e:5d:56:8e:36: d5:66:1e:e0:66:27:8e:13:04:5c:6a:10:99:80:ce: af:aa:35:31:d4:71:bf:a3:a1:41:d4:fd:9f:7b:e7: 90:47:98:e5:0d:d1:04:96:de:7b:d1:06:1b:fe:db: 17:ef:5b:28:0a:14:3b:8a:19:eb:9e:cb:2a:ae:68: 57:1c:17:07:c6:3c:05:03:92:01:5e:4a:6c:85:54: ce:4c:78:9c:ea:ca:d1:58:e8:e6:33:17:d9:aa:f6: 3b:4b:3c:e5:fe:0d:47:e5:49:da:73:cb:58:ac:41: e9:d8:bf:8c:92:93:6a:a9:ca:cf:04:90:d3:a0:c5: a5:ad:66:52:b2:a9:9c:b7:21:0b:ee:fa:53:98:05: 39:be:57:6c:1f:03:4b:f2:5e:50:1c:57:8b:c6:1d: b1:76:54:e8:c5:c6:7c:4d:7d:d6:d1:7f:70:e5:64: a8:12:85:d1:a7:b9:94:92:38:c4:b1:74:29:71:0f: ac:ae:c0:3c:2f:b0:12:00:63:91:ac:28:79:4c:ce: 11:0d:ab:79:88:3f:f0:3b:45:ea:a6:9b:5d:3f:20: 58:da:2d:5f:c2:85:f4:93:6f:b1:cd:e0:a7:41:6c: c2:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:03:EA:93:FE:1B:4D:6A:4A:DB:E8:87:7C:9E:5C:1F:9E:91:BA:CA X509v3 Authority Key Identifier: keyid:C2:FC:64:48:56:4E:C6:52:6B:91:B2:FE:23:B4:FD:58:34:2D:20:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wvxkSFZOxlJrkbL-I7T9WDQtIPQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B7292/03B88ADAD14A11EE99DE2B52C4F9AE02/870862B2222011EFACCDE81BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.108.112.0/22 Signature Algorithm: sha256WithRSAEncryption 3a:09:90:91:1d:51:3f:4f:58:d7:2e:fc:24:89:9f:25:6e:cd: 21:dc:5c:ec:51:5a:cc:a4:71:45:0b:56:e7:19:54:66:9c:f7: 64:e0:d0:63:15:fe:56:31:54:d6:f8:c6:3b:d1:7a:da:93:9c: c7:da:5d:ce:ea:fb:99:72:b8:43:2a:85:45:77:f9:5f:fc:e6: 75:ca:28:c0:aa:60:4f:8b:74:b7:1b:88:0a:a8:9c:19:9a:74: 5d:ad:42:98:97:0f:66:70:5c:b3:4c:81:0b:08:08:37:be:a3: 70:bb:23:1d:07:cd:d3:28:6d:1f:66:64:82:c2:97:4a:a7:60: d6:98:85:a8:53:be:bf:cd:00:aa:86:65:e3:60:44:7d:bc:d9: de:1f:ae:03:8e:01:37:a2:2d:9f:2e:5e:9b:0d:22:d9:ca:eb: ac:44:f6:05:d7:7f:b7:fd:08:48:d5:ca:25:97:5a:7c:b8:1c: c1:96:1e:a6:e4:40:0e:8f:14:91:ab:7f:2e:8d:bd:d7:64:28: 7b:87:34:44:dd:11:16:f9:4e:17:b3:ef:75:bf:4e:09:5e:db: af:6a:d3:15:0d:02:12:b2:a3:90:09:ce:fe:23:0e:59:39:87: d5:3d:10:11:da:d5:43:6b:54:a3:b4:49:3c:fd:91:fb:40:c8: f3:11:db:be -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjcyOTIxMTAvBgNVBAUTKEMyRkM2NDQ4NTY0RUM2NTI2QjkxQjJGRTIzQjRGRDU4 MzQyRDIwRjQwHhcNMjUwMTE1MDQ0NzIzWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzg3M2RkYi0zMDdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyp1EbMmHp60E+kKykMopM7NiQc0QD+g9Hl1WjjbVZh7gZieOEwRcahCZgM6v qjUx1HG/o6FB1P2fe+eQR5jlDdEElt570QYb/tsX71soChQ7ihnrnssqrmhXHBcH xjwFA5IBXkpshVTOTHic6srRWOjmMxfZqvY7Szzl/g1H5Unac8tYrEHp2L+MkpNq qcrPBJDToMWlrWZSsqmctyEL7vpTmAU5vldsHwNL8l5QHFeLxh2xdlToxcZ8TX3W 0X9w5WSoEoXRp7mUkjjEsXQpcQ+srsA8L7ASAGORrCh5TM4RDat5iD/wO0Xqpptd PyBY2i1fwoX0k2+xzeCnQWzCJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAgD6pP+ G01qStvoh3yeXB+ekbrKMB8GA1UdIwQYMBaAFML8ZEhWTsZSa5Gy/iO0/Vg0LSD0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzI5Mi8wM0I4OEFEQUQx NEExMUVFOTlERTJCNTJDNEY5QUUwMi93dnhrU0ZaT3hsSnJrYkwtSTdUOVdEUXRJ UFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3d2eGtTRlpPeGxKcmtiTC1JN1Q5V0RRdElQUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjcyOTIvMDNCODhBREFEMTRBMTFFRTk5REUyQjUyQzRGOUFFMDIvODcwODYyQjIy MjIwMTFFRkFDQ0RFODFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ7bHAwDQYJKoZIhvcNAQELBQADggEBADoJkJEdUT9PWNcu /CSJnyVuzSHcXOxRWsykcUULVucZVGac92Tg0GMV/lYxVNb4xjvRetqTnMfaXc7q +5lyuEMqhUV3+V/85nXKKMCqYE+LdLcbiAqonBmadF2tQpiXD2ZwXLNMgQsICDe+ o3C7Ix0HzdMobR9mZILCl0qnYNaYhahTvr/NAKqGZeNgRH282d4frgOOATeiLZ8u XpsNItnK66xE9gXXf7f9CEjVyiWXWny4HMGWHqbkQA6PFJGrfy6NvddkKHuHNETd ERb5Thez73W/Tgle269q0xUNAhKyo5AJzv4jDlk5h9U9EBHa1UNrVKO0STz9kftA yPMR274= -----END CERTIFICATE-----Generated at Mon Apr 7 17:24:59 2025 by rpki-client