$ rpki-client -vvf rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/F9B10D46ADAA11ED810C6C45C4F9AE02.roa File: F9B10D46ADAA11ED810C6C45C4F9AE02.roa (raw, json) Hash identifier: 9uR9cVnp9mE1i5KXBSkkfpXEwSfx3/BMoE6xrI/LuMM= Subject key identifier: 78:AC:06:10:A8:8D:AC:10:40:A5:86:2A:53:E6:4C:F3:B4:C6:35:B2 Certificate issuer: /CN=A91B834D/serialNumber=D0E54405B03D3D123459DE01BB400F4D7A8329D0 Certificate serial: 0183 Authority key identifier: D0:E5:44:05:B0:3D:3D:12:34:59:DE:01:BB:40:0F:4D:7A:83:29:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/F9B10D46ADAA11ED810C6C45C4F9AE02.roa Signing time: Tue 11 Feb 2025 03:05:50 +0000 ROA not before: Tue 11 Feb 2025 03:05:50 +0000 ROA not after: Tue 31 Mar 2026 00:00:00 +0000 asID: 9438 IP address blocks: 203.13.33.0/24 maxlen: 24 203.17.122.0/24 maxlen: 24 203.18.16.0/24 maxlen: 24 203.18.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.crl rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 12 Apr 2025 02:55:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 387 (0x183) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B834D Validity Not Before: Feb 11 03:05:50 2025 GMT Not After : Mar 31 00:00:00 2026 GMT Subject: CN=67aabe8e-72ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:76:19:85:c0:a6:ec:22:e2:c7:2e:7a:fc:40: 79:a0:f5:10:c7:bd:bc:84:92:72:7d:1e:08:6a:91: 04:8b:68:37:80:37:97:29:be:f1:82:4b:2a:2a:e1: 65:97:f6:94:40:f7:b8:db:04:f2:6b:7a:43:a9:26: e3:83:71:eb:f1:83:08:fe:fd:df:90:60:00:e9:75: bd:fc:49:ba:59:8c:31:85:6c:36:7e:07:29:e3:ad: d3:d1:aa:d3:47:15:a9:6d:e4:e7:5b:e3:68:d0:f1: b2:49:f5:22:11:53:d4:02:49:16:fb:c1:cf:4f:dc: 31:83:6c:79:53:c4:e7:5a:9d:37:53:1c:cf:f4:66: 49:bf:f9:b3:9b:97:6f:fe:70:04:45:4d:ed:cb:98: 0c:9b:f5:9e:79:fe:3a:b5:10:47:cc:e6:3f:53:66: 14:d0:51:73:f2:bb:01:13:48:65:5c:8c:e4:79:9a: df:df:a5:7c:64:9e:95:56:ac:76:8e:e3:ac:c5:9e: ab:fb:1f:00:f3:34:13:47:a5:3a:65:de:cc:5e:5a: 1d:b3:68:c2:be:5c:b6:5d:ce:ac:a8:d9:32:06:6a: 00:ca:fd:fc:94:2b:be:57:61:89:dc:1b:90:2b:2b: f5:63:2c:4a:07:9c:e2:86:5e:ca:ce:3a:ef:d3:1d: 11:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:AC:06:10:A8:8D:AC:10:40:A5:86:2A:53:E6:4C:F3:B4:C6:35:B2 X509v3 Authority Key Identifier: keyid:D0:E5:44:05:B0:3D:3D:12:34:59:DE:01:BB:40:0F:4D:7A:83:29:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/F9B10D46ADAA11ED810C6C45C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.13.33.0/24 203.17.122.0/24 203.18.16.0/23 Signature Algorithm: sha256WithRSAEncryption 17:ca:04:58:45:f9:06:d4:0a:de:9c:97:20:dc:8d:8f:97:39: e9:a0:72:97:c6:a4:e4:c5:4a:cc:0a:b2:e4:f0:be:6e:92:84: 75:80:4d:d3:b4:6e:7c:73:70:34:5d:fb:6e:12:3e:7f:d5:f3: 0d:c6:05:ad:21:a3:a5:fe:97:58:82:72:d6:d1:1b:a3:0b:58: 39:54:f5:3a:1d:bd:25:5e:a7:b9:5e:ff:72:41:05:c8:39:0e: fb:58:25:91:05:ad:f8:51:ea:41:bf:35:33:bc:8b:72:5f:d2: 5c:99:b7:4f:ad:0f:e0:3a:26:d3:8b:0d:e4:6c:f0:f2:c1:9e: 0e:89:ff:65:9a:ac:03:b0:45:46:a2:85:05:cb:31:6e:35:76: c5:85:a2:b6:4c:9a:42:9a:06:c8:a5:51:56:bd:e6:72:ee:a6: 66:53:27:98:41:a6:34:47:59:03:e9:93:a0:a9:12:30:32:35: a3:36:65:28:92:82:ee:c2:ad:77:47:3a:3a:0c:55:3a:47:d5: 40:62:5f:8d:0a:7f:01:f0:38:5a:2d:b0:4d:d1:a6:59:58:f5: 56:fe:13:2e:d1:cb:e7:db:d6:71:29:b5:0b:fc:95:1f:3a:09: e0:c2:7e:08:37:d9:5a:02:12:57:ba:48:d9:4e:08:a9:ac:1b: 68:c0:3a:05 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAYMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgzNEQxMTAvBgNVBAUTKEQwRTU0NDA1QjAzRDNEMTIzNDU5REUwMUJCNDAwRjRE N0E4MzI5RDAwHhcNMjUwMjExMDMwNTUwWhcNMjYwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02N2FhYmU4ZS03MmFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAznYZhcCm7CLixy56/EB5oPUQx728hJJyfR4IapEEi2g3gDeXKb7xgksqKuFl l/aUQPe42wTya3pDqSbjg3Hr8YMI/v3fkGAA6XW9/Em6WYwxhWw2fgcp463T0arT RxWpbeTnW+No0PGySfUiEVPUAkkW+8HPT9wxg2x5U8TnWp03UxzP9GZJv/mzm5dv /nAERU3ty5gMm/Weef46tRBHzOY/U2YU0FFz8rsBE0hlXIzkeZrf36V8ZJ6VVqx2 juOsxZ6r+x8A8zQTR6U6Zd7MXlods2jCvly2Xc6sqNkyBmoAyv38lCu+V2GJ3BuQ Kyv1YyxKB5zihl7Kzjrv0x0RJQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHisBhCo jawQQKWGKlPmTPO0xjWyMB8GA1UdIwQYMBaAFNDlRAWwPT0SNFneAbtAD016gynQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODM0RC8zQTJDNTE5NkFE QTExMUVEQUI2REY0MkRDNEY5QUUwMi8wT1ZFQmJBOVBSSTBXZDRCdTBBUFRYcURL ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBPVkVCYkE5UFJJMFdkNEJ1MEFQVFhxREtkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjgzNEQvM0EyQzUxOTZBREExMTFFREFCNkRGNDJEQzRGOUFFMDIvRjlCMTBENDZB REFBMTFFRDgxMEM2QzQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADLDSEDBADLEXoDBAHLEhAwDQYJKoZIhvcNAQELBQADggEB ABfKBFhF+QbUCt6clyDcjY+XOemgcpfGpOTFSswKsuTwvm6ShHWATdO0bnxzcDRd +24SPn/V8w3GBa0ho6X+l1iCctbRG6MLWDlU9TodvSVep7le/3JBBcg5DvtYJZEF rfhR6kG/NTO8i3Jf0lyZt0+tD+A6JtOLDeRs8PLBng6J/2WarAOwRUaihQXLMW41 dsWForZMmkKaBsilUVa95nLupmZTJ5hBpjRHWQPpk6CpEjAyNaM2ZSiSgu7CrXdH OjoMVTpH1UBiX40KfwHwOFotsE3RpllY9Vb+Ey7Ry+fb1nEptQv8lR86CeDCfgg3 2VoCEle6SNlOCKmsG2jAOgU= -----END CERTIFICATE-----Generated at Mon Apr 7 00:09:39 2025 by rpki-client