$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/49ADB44C6DCC11EF8BE2A566C4F9AE02.roa File: 49ADB44C6DCC11EF8BE2A566C4F9AE02.roa (raw, json) Hash identifier: mtRkpBofIEP/NFZvK+kr1cdx0dZa5TNObQf1xWdBFqI= Subject key identifier: 03:F2:F6:EB:E2:EC:9C:30:45:0A:C7:12:9E:56:E0:17:04:17:A6:D2 Certificate issuer: /CN=A91BE89F/serialNumber=431B0A4835FCF696B3ECD335925A8E13610CD137 Certificate serial: 53 Authority key identifier: 43:1B:0A:48:35:FC:F6:96:B3:EC:D3:35:92:5A:8E:13:61:0C:D1:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/49ADB44C6DCC11EF8BE2A566C4F9AE02.roa Signing time: Fri 07 Feb 2025 05:39:35 +0000 ROA not before: Fri 07 Feb 2025 05:39:35 +0000 ROA not after: Fri 01 May 2026 00:00:00 +0000 asID: 23863 IP address blocks: 203.24.166.0/24 maxlen: 24 203.30.79.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.crl rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Apr 2025 05:37:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 83 (0x53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE89F, serialNumber=431B0A4835FCF696B3ECD335925A8E13610CD137 Validity Not Before: Feb 7 05:39:35 2025 GMT Not After : May 1 00:00:00 2026 GMT Subject: CN=67a59c96-1f69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1f:f2:cd:18:bc:ae:91:73:e8:0e:7d:a2:64: 31:1e:e9:99:dc:31:4d:7e:1f:61:f3:7d:52:a7:50: 3a:f9:f4:d8:e6:7e:6c:c6:9e:fb:af:4f:3d:92:f0: ac:4b:53:3c:a5:70:64:ae:a9:1f:0a:7c:f1:31:49: 48:f0:12:7a:0d:21:34:e4:11:dc:f5:f9:bc:da:5b: de:63:55:7b:f9:95:49:4e:af:d0:71:8b:99:64:30: fe:5c:7e:04:13:8d:e6:40:d5:d1:0d:38:52:a2:b4: 6d:78:3b:a3:70:96:5a:aa:08:cb:60:6f:9b:10:fa: 7d:34:5a:a4:af:f6:31:4f:e2:dd:84:82:67:32:55: 64:17:4e:bf:73:95:9a:9a:72:f6:5e:cf:41:c8:d8: 66:13:7e:a8:15:98:94:e5:06:e2:a2:7f:87:52:1b: e3:05:8a:16:94:4e:05:45:d7:ff:1d:1f:8b:b4:1f: cf:59:7c:3e:63:91:84:6f:cd:b1:fd:0a:f6:2f:3a: 33:86:ae:eb:b7:45:47:4f:e7:ff:70:9b:2d:29:d9: ce:c0:eb:35:10:b8:88:1d:c9:4d:ed:fd:09:15:ed: a5:51:49:70:78:e5:7f:ff:81:fd:99:21:34:ac:e4: 17:62:7d:d8:0d:de:0c:95:1a:59:39:7b:3c:04:fe: 41:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:F2:F6:EB:E2:EC:9C:30:45:0A:C7:12:9E:56:E0:17:04:17:A6:D2 X509v3 Authority Key Identifier: keyid:43:1B:0A:48:35:FC:F6:96:B3:EC:D3:35:92:5A:8E:13:61:0C:D1:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/QxsKSDX89paz7NM1klqOE2EM0Tc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QxsKSDX89paz7NM1klqOE2EM0Tc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE89F/AFFD21706DCB11EF9B39B865C4F9AE02/49ADB44C6DCC11EF8BE2A566C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.24.166.0/24 203.30.79.0/24 Signature Algorithm: sha256WithRSAEncryption 66:fc:2d:0b:b2:65:e2:f3:d4:9d:08:2e:9f:15:1c:d7:56:ea: cc:bb:f3:1c:49:b8:04:0c:5e:21:51:b1:e7:d1:07:67:c8:1b: 39:db:03:72:6f:05:99:7e:4f:df:ad:ba:42:10:6d:e5:43:8c: e9:0e:2f:76:79:94:40:54:67:e4:37:b6:d1:e2:9e:d0:25:4a: c4:2f:86:bb:6d:b8:0f:bc:70:2b:98:17:cb:d1:1b:eb:83:08: 7f:aa:84:c2:cd:2f:39:57:aa:55:dc:15:0f:d1:7a:c4:30:dc: 6c:8f:0a:5d:7e:bf:6f:58:c9:e6:4e:74:46:ea:d4:57:90:34: 82:1f:ed:c8:56:90:53:0a:2b:71:a9:55:7d:a5:90:83:12:21: 6c:86:05:d6:68:8e:6f:3a:2b:93:f8:72:2d:82:4b:88:73:11: 93:35:05:3d:64:60:25:2d:3b:8f:ed:0b:4f:0a:3c:64:71:86: df:7c:73:ee:27:3d:58:ae:f3:b2:4d:0b:a9:2a:99:c8:9f:67: 01:1a:db:14:c8:70:6c:43:2f:be:b8:58:70:d6:4e:e1:9f:29: b1:3b:4a:69:1a:ec:94:e5:3f:9f:93:20:ca:85:e5:f4:8d:6d: 61:af:9b:03:d1:06:77:1f:ef:0c:1a:f3:cc:3f:fc:36:a6:ca: 7b:d1:90:7c -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBUzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC RTg5RjExMC8GA1UEBRMoNDMxQjBBNDgzNUZDRjY5NkIzRUNEMzM1OTI1QThFMTM2 MTBDRDEzNzAeFw0yNTAyMDcwNTM5MzVaFw0yNjA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3YTU5Yzk2LTFmNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCcH/LNGLyukXPoDn2iZDEe6ZncMU1+H2HzfVKnUDr59NjmfmzGnvuvTz2S8KxL UzylcGSuqR8KfPExSUjwEnoNITTkEdz1+bzaW95jVXv5lUlOr9Bxi5lkMP5cfgQT jeZA1dENOFKitG14O6NwllqqCMtgb5sQ+n00WqSv9jFP4t2EgmcyVWQXTr9zlZqa cvZez0HI2GYTfqgVmJTlBuKif4dSG+MFihaUTgVF1/8dH4u0H89ZfD5jkYRvzbH9 CvYvOjOGruu3RUdP5/9wmy0p2c7A6zUQuIgdyU3t/QkV7aVRSXB45X//gf2ZITSs 5BdifdgN3gyVGlk5ezwE/kHZAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUA/L26+Ls nDBFCscSnlbgFwQXptIwHwYDVR0jBBgwFoAUQxsKSDX89paz7NM1klqOE2EM0Tcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUJFODlGL0FGRkQyMTcwNkRD QjExRUY5QjM5Qjg2NUM0RjlBRTAyL1F4c0tTRFg4OXBhejdOTTFrbHFPRTJFTTBU Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUXhzS1NEWDg5cGF6N05NMWtscU9FMkVNMFRjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC RTg5Ri9BRkZEMjE3MDZEQ0IxMUVGOUIzOUI4NjVDNEY5QUUwMi80OUFEQjQ0QzZE Q0MxMUVGOEJFMkE1NjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAMsYpgMEAMseTzANBgkqhkiG9w0BAQsFAAOCAQEAZvwtC7Jl 4vPUnQgunxUc11bqzLvzHEm4BAxeIVGx59EHZ8gbOdsDcm8FmX5P3626QhBt5UOM 6Q4vdnmUQFRn5De20eKe0CVKxC+Gu224D7xwK5gXy9Eb64MIf6qEws0vOVeqVdwV D9F6xDDcbI8KXX6/b1jJ5k50RurUV5A0gh/tyFaQUworcalVfaWQgxIhbIYF1miO bzork/hyLYJLiHMRkzUFPWRgJS07j+0LTwo8ZHGG33xz7ic9WK7zsk0LqSqZyJ9n ARrbFMhwbEMvvrhYcNZO4Z8psTtKaRrslOU/n5MgyoXl9I1tYa+bA9EGdx/vDBrz zD/8NqbKe9GQfA== -----END CERTIFICATE-----Generated at Fri Apr 18 10:22:52 2025 by rpki-client